Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2019.3009
Security update for the Linux Kernel
8 August 2019
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: linux kernel
Publisher: SUSE
Operating System: SUSE
Impact/Access: Execute Arbitrary Code/Commands -- Console/Physical
Denial of Service -- Existing Account
Access Confidential Data -- Existing Account
Resolution: Patch/Upgrade
CVE Names: CVE-2019-14284 CVE-2019-14283 CVE-2019-13648
CVE-2019-13631 CVE-2019-11810 CVE-2019-1125
CVE-2018-20855
Reference: ESB-2019.2985
ESB-2019.2974
ESB-2019.2132.3
ESB-2019.2001.4
Original Bulletin:
https://www.suse.com/support/update/announcement/2019/suse-su-20192070-1.html
https://www.suse.com/support/update/announcement/2019/suse-su-20192071-1.html
https://www.suse.com/support/update/announcement/2019/suse-su-20192072-1.html
https://www.suse.com/support/update/announcement/2019/suse-su-20192073-1.html
Comment: This bulletin contains four (4) SUSE security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2019:2070-1
Rating: important
References: #1051510 #1055117 #1071995 #1083647 #1083710 #1102247
#1103991 #1103992 #1104745 #1109837 #1111666 #1112374
#1119222 #1123080 #1127034 #1127315 #1127611 #1129770
#1130972 #1133021 #1134090 #1134097 #1134390 #1134399
#1135335 #1135642 #1136217 #1136342 #1136460 #1136461
#1136462 #1136467 #1136896 #1137458 #1137534 #1137535
#1137584 #1137609 #1137811 #1137827 #1138874 #1139358
#1139619 #1140133 #1140139 #1140322 #1140559 #1140652
#1140676 #1140887 #1140888 #1140889 #1140891 #1140893
#1140903 #1140945 #1140948 #1140954 #1140955 #1140956
#1140957 #1140958 #1140959 #1140960 #1140961 #1140962
#1140964 #1140971 #1140972 #1140992 #1141312 #1141401
#1141402 #1141452 #1141453 #1141454 #1141478 #1142023
#1142052 #1142112 #1142115 #1142119 #1142220 #1142221
#1142254 #1142350 #1142351 #1142354 #1142359 #1142450
#1142623 #1142673 #1142701 #1142868 #1143003 #1143045
#1143105 #1143185 #1143189 #1143191 #1143209 #1143507
Cross-References: CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631
CVE-2019-13648 CVE-2019-14283 CVE-2019-14284
Affected Products:
SUSE Linux Enterprise Server 12-SP4
______________________________________________________________________________
An update that solves 7 vulnerabilities and has 95 fixes is now available.
Description:
The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security
and bugfixes.
The following security bugs were fixed:
o CVE-2018-20855: An issue was discovered in the Linux kernel In
create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp
was never initialized, resulting in a leak of stack memory to userspace(bsc
#1143045).
o CVE-2019-1125: Exclude ATOMs from speculation through SWAPGS (bsc#1139358).
o CVE-2019-14283: In the Linux kernel, set_geometry in drivers/block/floppy.c
did not validate the sect and head fields, as demonstrated by an integer
overflow and out-of-bounds read. It could be triggered by an unprivileged
local user when a floppy disk was inserted. NOTE: QEMU creates the floppy
device by default. (bnc#1143191)
o CVE-2019-11810: An issue was discovered in the Linux kernel A NULL pointer
dereference could occur when megasas_create_frame_pool() failed in
megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This
caused a Denial of Service, related to a use-after-free (bnc#1134399).
o CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware
transactional memory was disabled, a local user could cause a denial of
service (TM Bad Thing exception and system crash) via a sigreturn() system
call that sent a crafted signal frame. (bnc#1142254)
o CVE-2019-13631: In parse_hid_report_descriptor in drivers/input/tablet/
gtco.c in the Linux kernel, a malicious USB device could send an HID report
that triggered an out-of-bounds write during generation of debugging
messages. (bnc#1142023)
The following non-security bugs were fixed:
o Correct the CVE and bug reference for a floppy security fix
(CVE-2019-14284,bsc#1143189) A dedicated CVE was already assigned
o acpi/nfit: Always dump _DSM output payload (bsc#1142351).
o Add back sibling paca poiter to paca (bsc#1055117).
o Add support for crct10dif-vpmsum ().
o af_unix: remove redundant lockdep class (git-fixes).
o alsa: compress: Be more restrictive about when a drain is allowed (bsc#
1051510).
o alsa: compress: Do not allow paritial drain operations on capture streams
(bsc#1051510).
o alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
o alsa: compress: Prevent bypasses of set_params (bsc#1051510).
o alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
o alsa: hda - Do not resume forcibly i915 HDMI/DP codec (bsc#1111666).
o alsa: hda - Fix intermittent CORB/RIRB stall on Intel chips (bsc#1111666).
o alsa: hda/hdmi - Fix i915 reverse port/pin mapping (bsc#1111666).
o alsa: hda/hdmi - Remove duplicated define (bsc#1111666).
o alsa: hda - Optimize resume for codecs without jack detection (bsc#
1111666).
o alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#
1051510).
o alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#
1051510).
o alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
o alsa: line6: Fix a typo (bsc#1051510).
o alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
o alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
o alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
o alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
o alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
o alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#
1051510).
o alsa: usb-audio: fix Line6 Helix audio format rates (bsc#1111666).
o alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
o arm64: do not override dma_max_pfn (jsc#SLE-6197 bsc#1140559 LTC#173150).
o asoc : cs4265 : readable register too low (bsc#1051510).
o asoc: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
o asoc: soc-pcm: BE dai needs prepare when pause release after resume (bsc#
1051510).
o ath10k: add missing error handling (bsc#1111666).
o ath10k: add peer id check in ath10k_peer_find_by_id (bsc#1111666).
o ath10k: destroy sdio workqueue while remove sdio module (bsc#1111666).
o ath10k: Do not send probe response template for mesh (bsc#1111666).
o ath10k: Fix encoding for protected management frames (bsc#1111666).
o ath10k: fix incorrect multicast/broadcast rate setting (bsc#1111666).
o ath10k: fix PCIE device wake up failed (bsc#1111666).
o ath6kl: add some bounds checking (bsc#1051510).
o ath9k: Check for errors when reading SREV register (bsc#1111666).
o ath9k: correctly handle short radar pulses (bsc#1111666).
o ath: DFS JP domain W56 fixed pulse type 3 RADAR detection (bsc#1111666).
o batman-adv: fix for leaked TVLV handler (bsc#1051510).
o bcache: acquire bch_register_lock later in cached_dev_detach_finish() (bsc#
1140652).
o bcache: acquire bch_register_lock later in cached_dev_free() (bsc#1140652).
o bcache: add code comments for journal_read_bucket() (bsc#1140652).
o bcache: Add comments for blkdev_put() in registration code path (bsc#
1140652).
o bcache: add comments for closure_fn to be called in closure_queue() (bsc#
1140652).
o bcache: add comments for kobj release callback routine (bsc#1140652).
o bcache: add comments for mutex_lock(b->write_lock) (bsc#1140652).
o bcache: add error check for calling register_bdev() (bsc#1140652).
o bcache: add failure check to run_cache_set() for journal replay (bsc#
1140652).
o bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
o bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
o bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
o bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
o bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
o bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
o bcache: avoid clang -Wunintialized warning (bsc#1140652).
o bcache: avoid flushing btree node in cache_set_flush() if io disabled (bsc#
1140652).
o bcache: avoid potential memleak of list of journal_replay(s) in the
CACHE_SYNC branch of run_cache_set (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
o bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() (bsc#
1140652).
o bcache: Clean up bch_get_congested() (bsc#1140652).
o bcache: destroy dc->writeback_write_wq if failed to create dc->
writeback_thread (bsc#1140652).
o bcache: do not assign in if condition in bcache_device_init() (bsc#
1140652).
o bcache: do not set max writeback rate if gc is running (bsc#1140652).
o bcache: fix a race between cache register and cacheset unregister (bsc#
1140652).
o bcache: fix crashes stopping bcache device before read miss done (bsc#
1140652).
o bcache: fix failure in journal relplay (bsc#1140652).
o bcache: fix inaccurate result of unused buckets (bsc#1140652).
o bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
o bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
o bcache: fix race in btree_flush_write() (bsc#1140652).
o bcache: fix return value error in bch_journal_read() (bsc#1140652).
o bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
o bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce branch
of btree_gc_coalesce (bsc#1140652).
o bcache: ignore read-ahead request failure on backing device (bsc#1140652).
o bcache: improve bcache_reboot() (bsc#1140652).
o bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
o bcache: make bset_search_tree() be more understandable (bsc#1140652).
o bcache: make is_discard_enabled() static (bsc#1140652).
o bcache: more detailed error message to bcache_device_link() (bsc#1140652).
o bcache: move definition of 'int ret' out of macro read_bucket() (bsc#
1140652).
o bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() (bsc#
1140652).
o bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
o bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached (bsc#
1140652).
o bcache: performance improvement for btree_flush_write() (bsc#1140652).
bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
o bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
o bcache: remove unnecessary prefetch() in bset_search_tree() (bsc#1140652).
o bcache: return error immediately in bch_journal_replay() (bsc#1140652).
o bcache: Revert "bcache: fix high CPU occupancy during journal" (bsc#
1140652).
o bcache: Revert "bcache: free heap cache_set->flush_btree in
bch_journal_free" (bsc#1140652).
o bcache: set largest seq to ja->seq[bucket_index] in journal_read_bucket()
(bsc#1140652).
o bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
o bcache: stop writeback kthread and kworker when bch_cached_dev_run() failed
(bsc#1140652).
o bcache: use sysfs_match_string() instead of __sysfs_match_string() (bsc#
1140652).
o be2net: Fix number of Rx queues used for flow hashing
(networking-stable-19_06_18).
o be2net: Signal that the device cannot transmit during reconfiguration (bsc#
1127315).
o be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
o block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
o bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
o bnxt_en: Cap the returned MSIX vectors to the RDMA driver (bsc#1134090 jsc#
SLE-5954).
o bnxt_en: Disable bus master during PCI shutdown and driver unload (bsc#
1104745).
o bnxt_en: Fix aggregation buffer leak under OOM condition
(networking-stable-19_05_31).
o bnxt_en: Fix statistics context reservation logic for RDMA driver (bsc#
1104745).
o bnxt_en: Suppress error messages when querying DSCP DCB capabilities (bsc#
1104745).
o bonding: fix arp_validate toggling in active-backup mode
(networking-stable-19_05_14).
o bonding: Force slave speed check after link state recovery for 802.3ad (bsc
#1137584).
o bpf: btf: fix the brackets of BTF_INT_OFFSET() (bsc#1083647).
o bpf: fix callees pruning callers (bsc#1109837).
o bpf: fix nested bpf tracepoints with per-cpu data (bsc#1083647).
o bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
o bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#
1083647).
o bridge: Fix error path for kobject_init_and_add()
(networking-stable-19_05_14).
o btrfs: fix race between block group removal and block group allocation (bsc
#1143003).
o carl9170: fix misuse of device driver API (bsc#1111666).
o cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css()
(bsc#1141478).
o clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
o clk: rockchip: Do not yell about bad mmc phases when getting (bsc#1051510).
o clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
o Correct iwlwifi 22000 series ucode file name (bsc#1142673)
o Correct the buggy backport about AER / DPC pcie stuff (bsc#1142623)
o cpufreq: acpi-cpufreq: Report if CPU does not support boost technologies
(bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#
1051510).
o cpufreq: check if policy is inactive early in __cpufreq_get() (bsc#
1051510).
o cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
o cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
o cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
o cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
o cpufreq: Use struct kobj_attribute instead of struct global_attr (bsc#
1051510).
o crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
o crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
o crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
o crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
o crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
o crypto: ccp - Validate the the error value used to index error messages
(bsc#1051510).
o crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc
#1051510).
o crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe (bsc#
1051510).
o crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#
1051510).
o crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
o crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
o crypto: talitos - fix CTR alg blocksize (bsc#1051510).
o crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
o crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#
1051510).
o crypto: talitos - properly handle split ICV (bsc#1051510).
o crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
o crypto: talitos - rename alternative AEAD algos (bsc#1051510).
o dasd_fba: Display '00000000' for zero page when dumping sense (bsc#
1123080).
o Delete patches.fixes/s390-setup-fix-early-warning-messages (bsc#1140948).
o dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc (bsc
#1111666).
o dma-direct: add support for allocation from ZONE_DMA and ZONE_DMA32 (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o dma-direct: do not retry allocation for no-op GFP_DMA (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o dma-direct: retry allocations using GFP_DMA for small masks (jsc#SLE-6197
bsc#1140559 LTC#173150).
o dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
o dma-mapping: move dma_mark_clean to dma-direct.h (jsc#SLE-6197 bsc#1140559
LTC#173150).
o dma-mapping: move swiotlb arch helpers to a new header (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o dma-mapping: take dma_pfn_offset into account in dma_max_pfn (jsc#SLE-6197
bsc#1140559 LTC#173150).
o dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
o drm/amd/display: Make some functions static (bsc#1111666).
o drm/atmel-hlcdc: revert shift by 8 (bsc#1111666).
o drm/i915/cml: Introduce Comet Lake PCH (jsc#SLE-6681).
o drm/i915/icl: Add WaDisableBankHangMode (bsc#1111666).
o drm/meson: Add support for XBGR8888 + ABGR8888 formats (bsc#1051510).
o drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
o drm/msm/mdp5: Fix mdp5_cfg_init error return (bsc#1111666).
o drm/nouveau/i2c: Enable i2c pads + busses during preinit (bsc#1051510).
o drm: return -EFAULT if copy_to_user() fails (bsc#1111666).
o drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#
1051510).
o drm/udl: introduce a macro to convert dev to udl (bsc#1111666).
o drm/udl: move to embedding drm device inside udl device (bsc#1111666).
o drm/udl: Replace drm_dev_unref with drm_dev_put (bsc#1111666).
o drm/vc4: fix fb references in async update (bsc#1141312).
o drm/vmwgfx: Honor the sg list segment size limitation (bsc#1111666).
o e1000e: start network tx queue only when link is up (bsc#1051510).
o Enable intel-speed-select driver and update supported.conf (jsc#SLE-5364)
o ethtool: check the return value of get_regs_len (git-fixes).
o ethtool: fix potential userspace buffer overflow
(networking-stable-19_06_09).
o Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
o Fix memory leak in sctp_process_init (networking-stable-19_06_09).
o fork, memcg: fix cached_stacks case (bsc#1134097).
o fork, memcg: fix crash in free_thread_stack on memcg charge fail (bsc#
1134097).
o fpga: add intel stratix10 soc fpga manager driver (jsc#SLE-7057).
o fpga: stratix10-soc: fix use-after-free on s10_init() (jsc#SLE-7057).
o fpga: stratix10-soc: fix wrong of_node_put() in init function (jsc#jsc#
SLE-7057).
o gpu: ipu-v3: ipu-ic: Fix saturation bit offset in TPMEM (bsc#1111666).
o hid: wacom: correct touch resolution x/y typo (bsc#1051510).
o hid: wacom: generic: Correct pad syncing (bsc#1051510).
o hid: wacom: generic: only switch the mode on devices with LEDs (bsc#
1051510).
o hid: wacom: generic: read HID_DG_CONTACTMAX from any feature report (bsc#
1051510).
o ib/ipoib: Add child to parent list only if device initialized (bsc#
1103992).
o ib/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE (bsc#
1103991).
o idr: fix overflow case for idr_for_each_entry_ul() (bsc#1109837).
o input: elantech - enable middle button support on 2 ThinkPads (bsc#
1051510).
o input: imx_keypad - make sure keyboard can always wake up system (bsc#
1051510).
o input: psmouse - fix build error of multiple definition (bsc#1051510).
o input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
o input: tm2-touchkey - acknowledge that setting brightness is a blocking
call (bsc#1129770).
o intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
o iommu-helper: mark iommu_is_span_boundary as inline (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o ipv4: Fix raw socket lookup for local traffic (networking-stable-19_05_14).
o ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
(networking-stable-19_05_31).
o ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
(networking-stable-19_05_31).
o ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop
(git-fixes).
o ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
(networking-stable-19_05_31).
o ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
(networking-stable-19_06_09).
o ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
(networking-stable-19_06_18).
o ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
(networking-stable-19_06_09).
o iwlwifi: correct one of the PCI struct names (bsc#1111666).
o iwlwifi: do not WARN when calling iwl_get_shared_mem_conf with RF-Kill (bsc
#1111666).
o iwlwifi: fix cfg structs for 22000 with different RF modules (bsc#1111666).
o iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules (bsc#
1111666).
o iwlwifi: Fix double-free problems in iwl_req_fw_callback() (bsc#1111666).
o iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices (bsc#
1111666).
o iwlwifi: mvm: Drop large non sta frames (bsc#1111666).
o iwlwifi: pcie: do not service an interrupt that was masked (bsc#1111666).
o iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X (bsc
#1111666).
o kabi fix for hda_codec.relaxed_resume flag (bsc#1111666).
o kabi: Fix lost iommu-helper symbols on arm64 (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o kabi: mask changes made by basic protected virtualization support (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: mask changes made by swiotlb for protected virtualization (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: mask changes made by use of DMA memory for adapter interrupts (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: remove unused hcall definition (bsc#1140322 LTC#176270).
o kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled (bsc#1071995).
o kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#
178058 LTC#178059).
o kvm: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc
#1133021).
o kvm: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory
(bsc#1133021).
o kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
o kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch (bsc#1135335).
o kvm: polling: add architecture backend to disable polling (bsc#1119222).
o kvm: s390: change default halt poll time to 50us (bsc#1119222).
o kvm: s390: enable CONFIG_HAVE_kvm_NO_POLL (bsc#1119222) We need to enable
CONFIG_HAVE_kvm_NO_POLL for bsc#1119222
o kvm: s390: fix typo in parameter description (bsc#1119222).
o kvm: s390: kABI Workaround for 'kvm_vcpu_stat' Add halt_no_poll_steal to
kvm_vcpu_stat. Hide it from the kABI checker.
o kvm: s390: kABI Workaround for 'lowcore' (bsc#1119222).
o kvm: s390: provide kvm_arch_no_poll function (bsc#1119222).
o kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
o kvm: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
o lapb: fixed leak of control-blocks (networking-stable-19_06_18).
o lib: fix stall in __bitmap_parselist() (bsc#1051510).
o lib/bitmap.c: make bitmap_parselist() thread-safe and much faster (bsc#
1143507).
o libnvdimm/namespace: Fix label tracking error (bsc#1142350).
o libnvdimm/region: Register badblocks before namespaces (bsc#1143209).
o lib/scatterlist: Fix mapping iterator when sg->offset is greater than
PAGE_SIZE (bsc#1051510).
o livepatch: Remove duplicate warning about missing reliable stacktrace
support (bsc#1071995).
o livepatch: Use static buffer for debugging messages under rq lock (bsc#
1071995).
o llc: fix skb leak in llc_build_and_send_ui_pkt()
(networking-stable-19_05_31).
o mac80211: do not start any work during reconfigure flow (bsc#1111666).
o mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() (bsc#
1111666).
o mac80211: free peer keys before vif down in mesh (bsc#1111666).
o mac80211: mesh: fix RCU warning (bsc#1111666).
o mac80211: only warn once on chanctx_conf being NULL (bsc#1111666).
o media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
o media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
o media: s5p-mfc: Make additional clocks optional (bsc#1051510).
o media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() (bsc#
1051510).
o media: vivid: fix incorrect assignment operation when setting video mode
(bsc#1051510).
o mei: bus: need to unlink client before freeing (bsc#1051510).
o mei: me: add denverton innovation engine device IDs (bsc#1051510).
o mei: me: add gemini lake devices id (bsc#1051510).
o memory: tegra: Fix integer overflow on tick value calculation (bsc#
1051510).
o memstick: Fix error cleanup path of memstick_init (bsc#1051510).
o mfd: intel-lpss: Release IDA resources (bsc#1051510).
o mips: fix an off-by-one in dma_capable (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o mlxsw: spectrum_dcb: Configure DSCP map as the last rule is removed (bsc#
1112374).
o mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL (bsc#
1051510).
o mm: migrate: Fix reference check race between __find_get_block() and
migration (bnc#1137609).
o mm/nvdimm: add is_ioremap_addr and use that to check ioremap address (bsc#
1140322 LTC#176270).
o mm, page_alloc: fix has_unmovable_pages for HugePages (bsc#1127034).
o mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
o mt7601u: do not schedule rx_tasklet when the device has been disconnected
(bsc#1111666).
o mt7601u: fix possible memory leak when the device is disconnected (bsc#
1111666).
o neigh: fix use-after-free read in pneigh_get_next
(networking-stable-19_06_18).
o net/af_iucv: build proper skbs for HiperTransport (bsc#1142221 LTC#179332).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112 bsc
#1142221 LTC#179334 LTC#179332).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142221 LTC
#179332).
o net: avoid weird emergency message (networking-stable-19_05_21).
o net: fec: fix the clk mismatch in failed_reset path
(networking-stable-19_05_31).
o netfilter: conntrack: fix calculation of next bucket number in early_drop
(git-fixes).
o net-gro: fix use-after-free read in napi_gro_frags()
(networking-stable-19_05_31).
o net: hns3: Fix inconsistent indenting (bsc#1140676).
o net: hns: fix ICMP6 neighbor solicitation messages discard problem (bsc#
1140676).
o net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() (bsc#1140676).
o net: hns: Fix loopback test failed at copper ports (bsc#1140676).
o net: hns: Fix probabilistic memory overwrite when HNS driver initialized
(bsc#1140676).
o net: hns: fix unsigned comparison to less than zero (bsc#1140676).
o net: hns: Fix WARNING when remove HNS driver with SMMU enabled (bsc#
1140676).
o net: hns: Use NAPI_POLL_WEIGHT for hns driver (bsc#1140676).
o net/mlx4_core: Change the error print to info print
(networking-stable-19_05_21).
o net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
(networking-stable-19_06_09).
o net/mlx5: Allocate root ns memory using kzalloc to match kfree
(networking-stable-19_05_31).
o net/mlx5: Avoid double free in fs init error unwinding path
(networking-stable-19_05_31).
o net/mlx5e: Rx, Fix checksum calculation for new hardware (bsc#1127611).
o net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
o net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
(networking-stable-19_05_31).
o net: openvswitch: do not free vport if register_netdevice() is failed
(networking-stable-19_06_18).
o net/packet: fix memory leak in packet_set_ring() (git-fixes).
o net: rds: fix memory leak in rds_ib_flush_mr_pool
(networking-stable-19_06_09).
o net: seeq: fix crash caused by not set dev.parent
(networking-stable-19_05_14).
o net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
o net/tls: fix socket wmem accounting on fallback with netem (bsc#1109837).
o net/tls: make sure offload also gets the keys wiped (bsc#1109837).
o net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
(networking-stable-19_05_21).
o nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
o ocfs2: add first lock wait time in locking_state (bsc#1134390).
o ocfs2: add last unlock times in locking_state (bsc#1134390).
o ocfs2: add locking filter debugfs file (bsc#1134390).
o p54usb: Fix race between disconnect and firmware loading (bsc#1111666).
o packet: Fix error path in packet_init (networking-stable-19_05_14).
o packet: in recvmsg msg_name return at least sizeof sockaddr_ll (git-fixes).
o pci/aer: Use cached AER Capability offset (bsc#1142623).
o pci: Always allow probing with driver_override (bsc#1051510).
o pci: hv: Add hv_pci_remove_slots() when we unload the driver (bsc#1142701).
o pci: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary
(bsc#1142701).
o pci: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix a use-after-free bug in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
o pci: hv: Remove unused reason for refcount handler (bsc#1142701).
o pci: hv: support reporting serial number as slot information (bsc#1142701).
o pci/P2PDMA: Fix missing check for dma_virt_ops (bsc#1111666).
o pci / PM: Use SMART_SUSPEND and LEAVE_SUSPENDED flags for PCIe ports (bsc#
1142623).
o pci/portdrv: Add #defines for AER and DPC Interrupt Message Number masks
(bsc#1142623).
o pci/portdrv: Consolidate comments (bsc#1142623).
o pci/portdrv: Disable port driver in compat mode (bsc#1142623).
o pci/portdrv: Remove pcie_portdrv_err_handler.slot_reset (bsc#1142623).
o pci: portdrv: Restore PCI config state on slot reset (bsc#1142623).
o pci/portdrv: Support PCIe services on subtractive decode bridges (bsc#
1142623).
o pci/portdrv: Use conventional Device ID table formatting (bsc#1142623).
o pci: Return error if cannot probe VF (bsc#1051510).
o pkey: Indicate old mkvp only if old and current mkvp are different (bsc#
1137827 LTC#178090).
o pktgen: do not sleep with the thread lock held (git-fixes).
o platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#
1051510).
o platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys
from asus_nb_wmi (bsc#1051510).
o platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms (jsc#
SLE-5439).
o platform/x86: ISST: Add common API to register and handle ioctls (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mailbox interface via MSRs (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mailbox interface via PCI (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mmio interface (jsc#SLE-5364).
o platform/x86: ISST: Add Intel Speed Select PUNIT MSR interface (jsc#
SLE-5364).
o platform/x86: ISST: Add IOCTL to Translate Linux logical CPU to PUNIT CPU
number (jsc#SLE-5364).
o platform/x86: ISST: Restore state on resume (jsc#SLE-5364).
o platform/x86: ISST: Store per CPU information (jsc#SLE-5364).
o platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
critclk_systems DMI table (bsc#1051510).
o powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753,
git-fixes).
o powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test ().
o powerpc/mm: Change function prototype (bsc#1055117).
o powerpc/mm: Consolidate numa_enable check and min_common_depth check (bsc#
1140322 LTC#176270).
o powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0 (bsc#
1140322 LTC#176270).
o powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
o powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
__ptep_set_access_flags directly (bsc#1055117).
o powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#
1055117).
o powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#
1055117).
o powerpc/papr_scm: Force a scm-unbind if initial scm-bind fails (bsc#1140322
LTC#176270).
o powerpc/papr_scm: Update drc_pmem_unbind() to use H_SCM_UNBIND_ALL (bsc#
1140322 LTC#176270).
o powerpc/pseries: Update SCM hcall op-codes in hvcall.h (bsc#1140322 LTC#
176270).
o powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#
1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#
178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
o ppc: Convert mmu context allocation to new IDA API (bsc#1139619 LTC#
178538).
o ppp: deflate: Fix possible crash in deflate_init
(networking-stable-19_05_21).
o qed: Fix build error without CONFIG_DEVLINK (bsc#1136460 jsc#SLE-4691 bsc#
1136461 jsc#SLE-4692).
o qed: Fix -Wmaybe-uninitialized false positive (bsc#1136460 jsc#SLE-4691 bsc
#1136461 jsc#SLE-4692).
o qedi: Use hwfns and affin_hwfn_idx to get MSI-X vector index (jsc#SLE-4693
bsc#1136462).
o rdma/odp: Fix missed unlock in non-blocking invalidate_start (bsc#1103992).
o rdma/srp: Accept again source addresses that do not have a port number (bsc
#1103992).
o rdma/srp: Document srp_parse_in() arguments (bsc#1103992 ).
o rdma/uverbs: check for allocation failure in uapi_add_elm() (bsc#1103992).
o rds: ib: fix 'passing zero to ERR_PTR()' warning (git-fixes).
o Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" (bsc#
1140652).
o Revert "e1000e: fix cyclic resets at link up with active tx" (bsc#1051510).
o Revert "livepatch: Remove reliable stacktrace check in klp_try_switch_task
()" (bsc#1071995).
o Revert "serial: 8250: Do not service RX FIFO if interrupts are disabled"
(bsc#1051510).
o rtlwifi: rtl8192cu: fix error handle when usb probe failed (bsc#1111666).
o rtnetlink: always put IFLA_LINK for links with a link-netnsid
(networking-stable-19_05_21).
o s390: add alignment hints to vector load and store (jsc#SLE-6907 LTC#
175887).
o s390/airq: use DMA memory for adapter interrupts (jsc#SLE-6197 bsc#1140559
LTC#173150).
o s390/cio: add basic protected virtualization support (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o s390/cio: introduce DMA pools to cio (jsc#SLE-6197 bsc#1140559 LTC#173150).
o s390/cpum_cf: add ctr_stcctm() function (jsc#SLE-6904 ).
o s390/cpum_cf: Add minimal in-kernel interface for counter measurements (jsc
#SLE-6904).
o s390/cpum_cf: Add support for CPU-MF SVN 6 (jsc#SLE-6904 ).
o s390/cpum_cf_diag: Add support for CPU-MF SVN 6 (jsc#SLE-6904 ).
o s390/cpum_cf_diag: Add support for s390 counter facility diagnostic trace
(jsc#SLE-6904).
o s390/cpum_cf: introduce kernel_cpumcf_alert() to obtain measurement alerts
(jsc#SLE-6904).
o s390/cpum_cf: introduce kernel_cpumcf_avail() function (jsc#SLE-6904).
o s390/cpum_cf: move counter set controls to a new header file (jsc#
SLE-6904).
o s390/cpum_cf: prepare for in-kernel counter measurements (jsc#SLE-6904).
o s390/cpum_cf: rename per-CPU counter facility structure and variables (jsc#
SLE-6904).
o s390/cpumf: Add extended counter set definitions for model 8561 and 8562
(bsc#1142052 LTC#179320).
o s390/cpu_mf: add store cpu counter multiple instruction support (jsc#
SLE-6904).
o s390/cpumf: Fix warning from check_processor_id (jsc#SLE-6904 ).
o s390/cpu_mf: move struct cpu_cf_events and per-CPU variable to header file
(jsc#SLE-6904).
o s390/cpu_mf: replace stcctm5() with the stcctm() function (jsc#SLE-6904).
o s390/dma: provide proper ARCH_ZONE_DMA_BITS value (jsc#SLE-6197 bsc#1140559
LTC#173150).
o s390/mm: force swiotlb for protected virtualization (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o s390/qdio: handle PENDING state for QEBSM devices (bsc#1142119 LTC#179331).
o s390/qeth: be drop monitor friendly (bsc#1142115 LTC#179337).
o s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
o s390: remove the unused dma_capable helper (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o s390: report new CPU capabilities (jsc#SLE-6907 LTC#175887).
o s390/vtime: steal time exponential moving average (bsc#1119222).
o s390/zcrypt: Fix wrong dispatching for control domain CPRBs (bsc#1137811
LTC#178088).
o scripts/git_sort/git_sort.py: Add mmots tree.
o scsi: cxgb4i: add wait_for_completion() (jsc#SLE-4678 bsc#1136342).
o scsi: cxgbi: KABI: fix handle completion etc (jsc#SLE-4678 bsc#1136342).
o scsi: cxgbi: remove redundant __kfree_skb call on skb and free cst->atid
(jsc#SLE-4678 bsc#1136342).
o scsi: fc: add FPIN ELS definition (bsc#1136217,jsc#SLE-4722).
o scsi/fc: kABI fixes for new ELS_FPIN definition (bsc#1136217,jsc#SLE-4722).
o scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458 LTC#
178093).
o scsi: lpfc: Add loopback testing to trunking mode (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: add support for posting FC events on FPIN reception (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Annotate switch/case fall-through (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: avoid uninitialized variable warning (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Cancel queued work for an IO when processing a received ABTS
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Change smp_processor_id() into raw_smp_processor_id() (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Convert bootstrap mbx polling from msleep to udelay (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Coordinate adapter error handling with offline handling (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Correct boot bios information to FDMI registration (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Correct localport timeout duration error (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Correct __lpfc_sli_issue_iocb_s4 lockdep check (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: Correct nvmet buffer free race condition (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Declare local functions static (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Enhance 6072 log string (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix 32-bit format string warning (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix a handful of indentation issues (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix alloc context on oas lun creations (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix a recently introduced compiler warning (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix BFS crash with DIX enabled (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix build error (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix calls to dma_set_mask_and_coherent() (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix deadlock due to nested hbalock call (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix driver crash in target reset handler (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix duplicate log message numbers (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix error code if kcalloc() fails (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix error codes in lpfc_sli4_pci_mem_setup() (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix fc4type information for FDMI (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix fcp_rsp_len checking on lun reset (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix FDMI fc4type for nvme support (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix FDMI manufacturer attribute value (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix handling of trunk links state reporting (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix hardlockup in scsi_cmd_iocb_cmpl (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix HDMI2 registration string for symbolic name (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix incorrect logical link speed on trunks when links down (bsc
#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix indentation and balance braces (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix io lost on host resets (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix kernel warnings related to smp_processor_id() (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix link speed reporting for 4-link trunk (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix location of SCSI ktime counters (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix lpfc_nvmet_mrq attribute handling when 0 (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix mailbox hang on adapter init (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix memory leak in abnormal exit path from lpfc_eq_create (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix missing wakeups on abort threads (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet async receive buffer replenishment (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet handling of first burst cmd (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet handling of received ABTS for unmapped frames (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix nvmet target abort cmd matching (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix oops when driver is loaded with 1 interrupt vector (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix poor use of hardware queues if fewer irq vectors (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix protocol support on G6 and G7 adapters (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix PT2PT PLOGI collison stopping discovery (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: fix unused variable warning (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fixup eq_clr_intr references (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix use-after-free mailbox cmd completion (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Make lpfc_sli4_oas_verify static (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Move trunk_errmsg[] from a header file into a .c file (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Prevent 'use after free' memory overwrite in nvmet LS handling
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Reduce memory footprint for lpfc_queue (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Remove set but not used variable 'phys_id' (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Remove set-but-not-used variables (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Remove unused functions (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Resolve inconsistent check of hdwq in lpfc_scsi_cmd_iocb_cmpl
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Resolve irq-unsafe lockdep heirarchy warning in lpfc_io_free
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: resolve static checker warning in lpfc_sli4_hba_unset (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Revert message logging on unsupported topology (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: Revise message when stuck due to unresponsive adapter (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Rework misleading nvme not supported in firmware message (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Separate CQ processing for nvmet_fc upcalls (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Specify node affinity for queue memory allocation (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Stop adapter if pci errors detected (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update Copyright in driver version (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update lpfc version to 12.2.0.1 (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update lpfc version to 12.2.0.3 (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: use dma_set_mask_and_coherent (bsc#1136217,jsc#SLE-4722).
o scsi: qedf: Add additional checks for io_req->sc_cmd validity (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Add a flag to help debugging io_req which could not be cleaned
(bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add comment to display logging levels (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Add driver state to 'driver_stats' debugfs node (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Add LBA to underrun debug messages (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload
check (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add missing return in qedf_scsi_done() (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Add port_id for fcport into initiate_cleanup debug message (bsc
#1136467 jsc#SLE-4694).
o scsi: qedf: Add return value to log message if scsi_add_host fails (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Change MSI-X load error message (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check both the FCF and fabric ID before servicing clear virtual
link (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check for fcoe_libfc_config failure (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check for tm_flags instead of cmd_type during cleanup (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Check the return value of start_xmit (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Cleanup rrq_work after QEDF_CMD_OUTSTANDING is cleared (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Correctly handle refcounting of rdata (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Do not queue anything if upload is in progress (bsc#1136467 jsc
#SLE-4694).
o scsi: qedf: Do not send ABTS for under run scenario (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: fc_rport_priv reference counting fixes (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Fix lport may be used uninitialized warning (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Log message if scsi_add_host fails (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Modify abort and tmf handler to handle edge condition and flush
(bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Modify flush routine to handle all I/Os and TMF (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Print fcport information on wait for upload timeout (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Print scsi_cmd backpointer in good completion path if the
command is still being used (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: remove memset/memcpy to nfunc and use func instead (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Remove set but not used variable 'fr_len' (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: remove set but not used variables (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Update the driver version to 8.37.25.19 (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Update the driver version to 8.37.25.20 (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Wait for upload and link down processing during soft ctx reset
(bsc#1136467 jsc#SLE-4694).
o scsi: qedi: add module param to set ping packet size (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Add packet filter in light L2 Rx path (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Check for session online before getting iSCSI TLV data (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Cleanup redundant QEDI_PAGE_SIZE macro definition (jsc#SLE-4693
bsc#1136462).
o scsi: qedi: Fix spelling mistake "OUSTANDING" -> "OUTSTANDING" (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Move LL2 producer index processing in BH (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: remove set but not used variables 'cdev' and 'udev' (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Replace PAGE_SIZE with QEDI_PAGE_SIZE (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Update driver version to 8.33.0.21 (jsc#SLE-4693 bsc#1136462).
o scsi: qla2xxx: do not crash on uninitialized pool list (boo#1138874).
o scsi: scsi_transport_fc: Add FPIN fc event codes (bsc#1136217,jsc#
SLE-4722).
o scsi: scsi_transport_fc: refactor event posting routines (bsc#1136217,jsc#
SLE-4722).
o sctp: Free cookie before we memdup a new one (networking-stable-19_06_18).
o sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
o serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
o serial: uartps: Fix long line over 80 chars (bsc#1051510).
o serial: uartps: Fix multiple line dereference (bsc#1051510).
o serial: uartps: Remove useless return from cdns_uart_poll_put_char (bsc#
1051510).
o staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bsc#
1051510).
o staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#
1051510).
o staging: rtl8712: reduce stack usage, again (bsc#1051510).
o sunhv: Fix device naming inconsistency between sunhv_console and sunhv_reg
(networking-stable-19_06_18).
o tcp: fix tcp_set_congestion_control() use from bpf hook (bsc#1109837).
o tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
o team: Always enable vlan tx offload (bsc#1051510).
o tools: bpftool: Fix json dump crash on powerpc (bsc#1109837).
o tools: bpftool: use correct argument in cgroup errors (bsc#1109837).
o tools/power/x86: A tool to validate Intel Speed Select commands (jsc#
SLE-5364).
o tty: rocket: fix incorrect forward declaration of 'rp_init()' (bsc#
1051510).
o tty: serial_core: Set port active bit in uart_port_activate (bsc#1051510).
o tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
o tuntap: synchronize through tfiles array instead of tun->numqueues
(networking-stable-19_05_14).
o usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bsc#
1051510).
o usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
o usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC (bsc#
1051510).
o usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
o usb: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
o usb: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#
1051510).
o virtio/s390: add indirection to indicators access (jsc#SLE-6197 bsc#1140559
LTC#173150).
o virtio/s390: DMA support for virtio-ccw (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o virtio/s390: make airq summary indicators DMA (jsc#SLE-6197 bsc#1140559 LTC
#173150).
o virtio/s390: use cacheline aligned airq bit vectors (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o virtio/s390: use DMA memory for ccw I/O and classic notifiers (jsc#SLE-6197
bsc#1140559 LTC#173150).
o virtio/s390: use vring_create_virtqueue (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o vmci: Fix integer overflow in VMCI handle arrays (bsc#1051510).
o vrf: sit mtu should not be updated when vrf netdev is the link
(networking-stable-19_05_14).
o vsock/virtio: free packets during the socket release
(networking-stable-19_05_21).
o vsock/virtio: set SOCK_DONE on peer shutdown (networking-stable-19_06_18).
o wil6210: drop old event after wmi_call timeout (bsc#1111666).
o wil6210: fix potential out-of-bounds read (bsc#1051510).
o wil6210: fix spurious interrupts in 3-msi (bsc#1111666).
o x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#
1140903).
o xdp: fix possible cq entry leak (bsc#1109837).
o xdp: fix race on generic receive path (bsc#1109837).
o xdp: hold device for umem regardless of zero-copy mode (bsc#1109837).
o xen: let alloc_xenballooned_pages() fail if not enough memory free (bsc#
1142450 XSA-300).
o xfs: do not overflow xattr listent buffer (bsc#1143105).
o xprtrdma: Fix use-after-free in rpcrdma_post_recvs (bsc#1103992 ).
o xsk: Properly terminate assignment in xskq_produce_flush_desc (bsc#
1109837).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server 12-SP4:
zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-2070=1
Package List:
o SUSE Linux Enterprise Server 12-SP4 (x86_64):
kernel-azure-4.12.14-6.23.1
kernel-azure-base-4.12.14-6.23.1
kernel-azure-base-debuginfo-4.12.14-6.23.1
kernel-azure-debuginfo-4.12.14-6.23.1
kernel-azure-debugsource-4.12.14-6.23.1
kernel-azure-devel-4.12.14-6.23.1
kernel-syms-azure-4.12.14-6.23.1
o SUSE Linux Enterprise Server 12-SP4 (noarch):
kernel-devel-azure-4.12.14-6.23.1
kernel-source-azure-4.12.14-6.23.1
References:
o https://www.suse.com/security/cve/CVE-2018-20855.html
o https://www.suse.com/security/cve/CVE-2019-1125.html
o https://www.suse.com/security/cve/CVE-2019-11810.html
o https://www.suse.com/security/cve/CVE-2019-13631.html
o https://www.suse.com/security/cve/CVE-2019-13648.html
o https://www.suse.com/security/cve/CVE-2019-14283.html
o https://www.suse.com/security/cve/CVE-2019-14284.html
o https://bugzilla.suse.com/1051510
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1071995
o https://bugzilla.suse.com/1083647
o https://bugzilla.suse.com/1083710
o https://bugzilla.suse.com/1102247
o https://bugzilla.suse.com/1103991
o https://bugzilla.suse.com/1103992
o https://bugzilla.suse.com/1104745
o https://bugzilla.suse.com/1109837
o https://bugzilla.suse.com/1111666
o https://bugzilla.suse.com/1112374
o https://bugzilla.suse.com/1119222
o https://bugzilla.suse.com/1123080
o https://bugzilla.suse.com/1127034
o https://bugzilla.suse.com/1127315
o https://bugzilla.suse.com/1127611
o https://bugzilla.suse.com/1129770
o https://bugzilla.suse.com/1130972
o https://bugzilla.suse.com/1133021
o https://bugzilla.suse.com/1134090
o https://bugzilla.suse.com/1134097
o https://bugzilla.suse.com/1134390
o https://bugzilla.suse.com/1134399
o https://bugzilla.suse.com/1135335
o https://bugzilla.suse.com/1135642
o https://bugzilla.suse.com/1136217
o https://bugzilla.suse.com/1136342
o https://bugzilla.suse.com/1136460
o https://bugzilla.suse.com/1136461
o https://bugzilla.suse.com/1136462
o https://bugzilla.suse.com/1136467
o https://bugzilla.suse.com/1136896
o https://bugzilla.suse.com/1137458
o https://bugzilla.suse.com/1137534
o https://bugzilla.suse.com/1137535
o https://bugzilla.suse.com/1137584
o https://bugzilla.suse.com/1137609
o https://bugzilla.suse.com/1137811
o https://bugzilla.suse.com/1137827
o https://bugzilla.suse.com/1138874
o https://bugzilla.suse.com/1139358
o https://bugzilla.suse.com/1139619
o https://bugzilla.suse.com/1140133
o https://bugzilla.suse.com/1140139
o https://bugzilla.suse.com/1140322
o https://bugzilla.suse.com/1140559
o https://bugzilla.suse.com/1140652
o https://bugzilla.suse.com/1140676
o https://bugzilla.suse.com/1140887
o https://bugzilla.suse.com/1140888
o https://bugzilla.suse.com/1140889
o https://bugzilla.suse.com/1140891
o https://bugzilla.suse.com/1140893
o https://bugzilla.suse.com/1140903
o https://bugzilla.suse.com/1140945
o https://bugzilla.suse.com/1140948
o https://bugzilla.suse.com/1140954
o https://bugzilla.suse.com/1140955
o https://bugzilla.suse.com/1140956
o https://bugzilla.suse.com/1140957
o https://bugzilla.suse.com/1140958
o https://bugzilla.suse.com/1140959
o https://bugzilla.suse.com/1140960
o https://bugzilla.suse.com/1140961
o https://bugzilla.suse.com/1140962
o https://bugzilla.suse.com/1140964
o https://bugzilla.suse.com/1140971
o https://bugzilla.suse.com/1140972
o https://bugzilla.suse.com/1140992
o https://bugzilla.suse.com/1141312
o https://bugzilla.suse.com/1141401
o https://bugzilla.suse.com/1141402
o https://bugzilla.suse.com/1141452
o https://bugzilla.suse.com/1141453
o https://bugzilla.suse.com/1141454
o https://bugzilla.suse.com/1141478
o https://bugzilla.suse.com/1142023
o https://bugzilla.suse.com/1142052
o https://bugzilla.suse.com/1142112
o https://bugzilla.suse.com/1142115
o https://bugzilla.suse.com/1142119
o https://bugzilla.suse.com/1142220
o https://bugzilla.suse.com/1142221
o https://bugzilla.suse.com/1142254
o https://bugzilla.suse.com/1142350
o https://bugzilla.suse.com/1142351
o https://bugzilla.suse.com/1142354
o https://bugzilla.suse.com/1142359
o https://bugzilla.suse.com/1142450
o https://bugzilla.suse.com/1142623
o https://bugzilla.suse.com/1142673
o https://bugzilla.suse.com/1142701
o https://bugzilla.suse.com/1142868
o https://bugzilla.suse.com/1143003
o https://bugzilla.suse.com/1143045
o https://bugzilla.suse.com/1143105
o https://bugzilla.suse.com/1143185
o https://bugzilla.suse.com/1143189
o https://bugzilla.suse.com/1143191
o https://bugzilla.suse.com/1143209
o https://bugzilla.suse.com/1143507
- ---
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2019:2071-1
Rating: important
References: #1051510 #1055117 #1071995 #1083647 #1083710 #1102247
#1119222 #1123080 #1127034 #1127315 #1129770 #1130972
#1133021 #1134097 #1134390 #1134399 #1135335 #1135642
#1137458 #1137534 #1137535 #1137584 #1137609 #1137827
#1139358 #1140133 #1140322 #1140652 #1140903 #1140945
#1141401 #1141402 #1141452 #1141453 #1141454 #1141478
#1142023 #1142112 #1142220 #1142221 #1142254 #1142350
#1142351 #1142354 #1142359 #1142450 #1142701 #1142868
#1143003 #1143045 #1143105 #1143185 #1143189 #1143191
#1143507
Cross-References: CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631
CVE-2019-13648 CVE-2019-14283 CVE-2019-14284
Affected Products:
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise High Availability 15
______________________________________________________________________________
An update that solves 7 vulnerabilities and has 48 fixes is now available.
Description:
The SUSE Linux Enterprise 15 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
o CVE-2018-20855: An issue was discovered in the Linux kernel In
create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp
was never initialized, resulting in a leak of stack memory to userspace(bsc
#1143045).
o CVE-2019-1125: Exclude ATOMs from speculation through SWAPGS (bsc#1139358).
o CVE-2019-14283: In the Linux kernel, set_geometry in drivers/block/floppy.c
did not validate the sect and head fields, as demonstrated by an integer
overflow and out-of-bounds read. It could be triggered by an unprivileged
local user when a floppy disk was inserted. NOTE: QEMU creates the floppy
device by default. (bnc#1143191)
o CVE-2019-11810: An issue was discovered in the Linux kernel A NULL pointer
dereference could occur when megasas_create_frame_pool() failed in
megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This
caused a Denial of Service, related to a use-after-free (bnc#1134399).
o CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware
transactional memory was disabled, a local user could cause a denial of
service (TM Bad Thing exception and system crash) via a sigreturn() system
call that sent a crafted signal frame. (bnc#1142254)
o CVE-2019-13631: In parse_hid_report_descriptor in drivers/input/tablet/
gtco.c in the Linux kernel, a malicious USB device could send an HID report
that triggered an out-of-bounds write during generation of debugging
messages. (bnc#1142023)
The following non-security bugs were fixed:
o Correct the CVE and bug reference for a floppy security fix
(CVE-2019-14284,bsc#1143189) A dedicated CVE was already assigned
o acpi/nfit: Always dump _DSM output payload (bsc#1142351).
o Add back sibling paca poiter to paca (bsc#1055117).
o Add support for crct10dif-vpmsum ().
o af_unix: remove redundant lockdep class (git-fixes). alsa: compress: Be
more restrictive about when a drain is allowed (bsc#1051510).
o alsa: compress: Do not allow paritial drain operations on capture streams
(bsc#1051510).
o alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
o alsa: compress: Prevent bypasses of set_params (bsc#1051510).
o alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
o alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#
1051510).
o alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#
1051510).
o alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
o alsa: line6: Fix a typo (bsc#1051510).
o alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
o alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
o alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
o alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
o alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
o alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#
1051510).
o alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
o asoc : cs4265 : readable register too low (bsc#1051510).
o asoc: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
o asoc: soc-pcm: BE dai needs prepare when pause release after resume (bsc#
1051510).
o ath6kl: add some bounds checking (bsc#1051510).
o batman-adv: fix for leaked TVLV handler (bsc#1051510).
o bcache: acquire bch_register_lock later in cached_dev_detach_finish() (bsc#
1140652).
o bcache: acquire bch_register_lock later in cached_dev_free() (bsc#1140652).
o bcache: add code comments for journal_read_bucket() (bsc#1140652).
o bcache: Add comments for blkdev_put() in registration code path (bsc#
1140652).
o bcache: add comments for closure_fn to be called in closure_queue() (bsc#
1140652).
o bcache: add comments for kobj release callback routine (bsc#1140652).
o bcache: add comments for mutex_lock(&b->write_lock) (bsc#1140652).
o bcache: add error check for calling register_bdev() (bsc#1140652).
o bcache: add failure check to run_cache_set() for journal replay (bsc#
1140652).
o bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
o bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
o bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
o bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
o bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
o bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
o bcache: avoid clang -Wunintialized warning (bsc#1140652).
o bcache: avoid flushing btree node in cache_set_flush() if io disabled (bsc#
1140652).
o bcache: avoid potential memleak of list of journal_replay(s) in the
CACHE_SYNC branch of run_cache_set (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
o bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() (bsc#
1140652).
o bcache: Clean up bch_get_congested() (bsc#1140652).
o bcache: destroy dc->writeback_write_wq if failed to create dc->
writeback_thread (bsc#1140652).
o bcache: do not assign in if condition in bcache_device_init() (bsc#
1140652).
o bcache: do not set max writeback rate if gc is running (bsc#1140652).
o bcache: fix a race between cache register and cacheset unregister (bsc#
1140652).
o bcache: fix crashes stopping bcache device before read miss done (bsc#
1140652).
o bcache: fix failure in journal relplay (bsc#1140652).
o bcache: fix inaccurate result of unused buckets (bsc#1140652).
o bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
o bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
o bcache: fix race in btree_flush_write() (bsc#1140652).
o bcache: fix return value error in bch_journal_read() (bsc#1140652).
o bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
o bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce branch
of btree_gc_coalesce (bsc#1140652).
o bcache: ignore read-ahead request failure on backing device (bsc#1140652).
o bcache: improve bcache_reboot() (bsc#1140652).
o bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
o bcache: make bset_search_tree() be more understandable (bsc#1140652).
o bcache: make is_discard_enabled() static (bsc#1140652).
o bcache: more detailed error message to bcache_device_link() (bsc#1140652).
o bcache: move definition of 'int ret' out of macro read_bucket() (bsc#
1140652).
o bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() (bsc#
1140652).
o bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
o bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached (bsc#
1140652).
o bcache: performance improvement for btree_flush_write() (bsc#1140652).
o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
o bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
o bcache: remove unnecessary prefetch() in bset_search_tree() (bsc#1140652).
o bcache: remove "XXX:" comment line from run_cache_set() (bsc#1140652).
o bcache: return error immediately in bch_journal_replay() (bsc#1140652).
o bcache: Revert "bcache: fix high CPU occupancy during journal" (bsc#
1140652).
o bcache: Revert "bcache: free heap cache_set->flush_btree in
bch_journal_free" (bsc#1140652).
o bcache: set largest seq to ja->seq[bucket_index] in journal_read_bucket()
(bsc#1140652).
o bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
o bcache: stop writeback kthread and kworker when bch_cached_dev_run() failed
(bsc#1140652).
o bcache: use sysfs_match_string() instead of __sysfs_match_string() (bsc#
1140652).
o be2net: Fix number of Rx queues used for flow hashing
(networking-stable-19_06_18).
o be2net: Signal that the device cannot transmit during reconfiguration (bsc#
1127315).
o be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
o block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
o bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
o bnxt_en: Fix aggregation buffer leak under OOM condition
(networking-stable-19_05_31).
o bonding: fix arp_validate toggling in active-backup mode
(networking-stable-19_05_14).
o bonding: Force slave speed check after link state recovery for 802.3ad (bsc
#1137584).
o bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
o bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#
1083647).
o bridge: Fix error path for kobject_init_and_add()
(networking-stable-19_05_14).
o btrfs: fix race between block group removal and block group allocation (bsc
#1143003).
o cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css()
(bsc#1141478).
o clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
o clk: rockchip: Do not yell about bad mmc phases when getting (bsc#1051510).
o clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
o cpufreq: acpi-cpufreq: Report if CPU does not support boost technologies
(bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#
1051510).
o cpufreq: check if policy is inactive early in __cpufreq_get() (bsc#
1051510).
o cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
o cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
o cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
o cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
o cpufreq: Use struct kobj_attribute instead of struct global_attr (bsc#
1051510).
o crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
o crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
o crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
o crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
o crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
o crypto: ccp - Validate the the error value used to index error messages
(bsc#1051510).
o crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc
#1051510).
o crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe (bsc#
1051510).
o crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#
1051510).
o crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
o crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
o crypto: talitos - fix CTR alg blocksize (bsc#1051510).
o crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
o crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#
1051510).
o crypto: talitos - properly handle split ICV (bsc#1051510).
o crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
o crypto: talitos - rename alternative AEAD algos (bsc#1051510).
o dasd_fba: Display '00000000' for zero page when dumping sense (bsc#
1123080).
o dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
o dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
o drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
o drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
o drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
o drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#
1051510).
o e1000e: start network tx queue only when link is up (bsc#1051510).
o ethtool: check the return value of get_regs_len (git-fixes).
o ethtool: fix potential userspace buffer overflow
(networking-stable-19_06_09).
o Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
o Fix memory leak in sctp_process_init (networking-stable-19_06_09).
o fork, memcg: fix cached_stacks case (bsc#1134097).
o fork, memcg: fix crash in free_thread_stack on memcg charge fail (bsc#
1134097).
o hid: wacom: correct touch resolution x/y typo (bsc#1051510).
o hid: wacom: generic: Correct pad syncing (bsc#1051510).
o hid: wacom: generic: only switch the mode on devices with LEDs (bsc#
1051510).
o hid: wacom: generic: read HID_DG_CONTACTMAX from any feature report (bsc#
1051510).
o input: elantech - enable middle button support on 2 ThinkPads (bsc#
1051510).
o input: imx_keypad - make sure keyboard can always wake up system (bsc#
1051510).
o input: psmouse - fix build error of multiple definition (bsc#1051510).
o input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
o input: tm2-touchkey - acknowledge that setting brightness is a blocking
call (bsc#1129770).
o intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
o ipv4: Fix raw socket lookup for local traffic (networking-stable-19_05_14).
o ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
(networking-stable-19_05_31).
o ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
(networking-stable-19_05_31).
o ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop
(git-fixes).
o ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
(networking-stable-19_05_31).
o ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
(networking-stable-19_06_09).
o ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
(networking-stable-19_06_18).
o ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
(networking-stable-19_06_09).
o kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled (bsc#1071995).
o kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#
178058 LTC#178059).
o kvm: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc
#1133021).
o kvm: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory
(bsc#1133021).
o kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
o kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch (bsc#1135335).
o kvm: polling: add architecture backend to disable polling (bsc#1119222).
o kvm: s390: change default halt poll time to 50us (bsc#1119222).
o kvm: s390: enable CONFIG_HAVE_KVM_NO_POLL (bsc#1119222) We need to enable
CONFIG_HAVE_KVM_NO_POLL for bsc#1119222
o kvm: s390: fix typo in parameter description (bsc#1119222).
o kvm: s390: kABI Workaround for 'kvm_vcpu_stat' Add halt_no_poll_steal to
kvm_vcpu_stat. Hide it from the kABI checker.
o kvm: s390: kABI Workaround for 'lowcore' (bsc#1119222).
o kvm: s390: provide kvm_arch_no_poll function (bsc#1119222).
o kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
o kvm: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
o lapb: fixed leak of control-blocks (networking-stable-19_06_18).
o lib: fix stall in __bitmap_parselist() (bsc#1051510).
o libnvdimm/namespace: Fix label tracking error (bsc#1142350).
o lib/bitmap.c: make bitmap_parselist() thread-safe and much faster (bsc#
1143507).
o lib/scatterlist: Fix mapping iterator when sg->offset is greater than
PAGE_SIZE (bsc#1051510).
o livepatch: Remove duplicate warning about missing reliable stacktrace
support (bsc#1071995).
o livepatch: Use static buffer for debugging messages under rq lock (bsc#
1071995).
o llc: fix skb leak in llc_build_and_send_ui_pkt()
(networking-stable-19_05_31).
o media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
o media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
o media: s5p-mfc: Make additional clocks optional (bsc#1051510).
o media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() (bsc#
1051510).
o media: vivid: fix incorrect assignment operation when setting video mode
(bsc#1051510).
o mei: bus: need to unlink client before freeing (bsc#1051510).
o mei: me: add denverton innovation engine device IDs (bsc#1051510).
o mei: me: add gemini lake devices id (bsc#1051510).
o memory: tegra: Fix integer overflow on tick value calculation (bsc#
1051510).
o memstick: Fix error cleanup path of memstick_init (bsc#1051510).
o mfd: intel-lpss: Release IDA resources (bsc#1051510).
o mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL (bsc#
1051510).
o mm: migrate: Fix reference check race between __find_get_block() and
migration (bnc#1137609).
o mm/nvdimm: add is_ioremap_addr and use that to check ioremap address (bsc#
1140322 LTC#176270).
o mm, page_alloc: fix has_unmovable_pages for HugePages (bsc#1127034).
o mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
o neigh: fix use-after-free read in pneigh_get_next
(networking-stable-19_06_18).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112 bsc
#1142221 LTC#179334 LTC#179332).
o net: avoid weird emergency message (networking-stable-19_05_21).
o net: fec: fix the clk mismatch in failed_reset path
(networking-stable-19_05_31).
o netfilter: conntrack: fix calculation of next bucket number in early_drop
(git-fixes).
o net-gro: fix use-after-free read in napi_gro_frags()
(networking-stable-19_05_31).
o net/mlx4_core: Change the error print to info print
(networking-stable-19_05_21).
o net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
(networking-stable-19_06_09).
o net/mlx5: Allocate root ns memory using kzalloc to match kfree
(networking-stable-19_05_31).
o net/mlx5: Avoid double free in fs init error unwinding path
(networking-stable-19_05_31).
o net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
o net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
(networking-stable-19_05_31).
o net: openvswitch: do not free vport if register_netdevice() is failed
(networking-stable-19_06_18).
o net/packet: fix memory leak in packet_set_ring() (git-fixes).
o net: rds: fix memory leak in rds_ib_flush_mr_pool
(networking-stable-19_06_09).
o net: seeq: fix crash caused by not set dev.parent
(networking-stable-19_05_14).
o net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
o net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
(networking-stable-19_05_21).
o nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
o ocfs2: add first lock wait time in locking_state (bsc#1134390).
o ocfs2: add last unlock times in locking_state (bsc#1134390).
o ocfs2: add locking filter debugfs file (bsc#1134390).
o packet: Fix error path in packet_init (networking-stable-19_05_14).
o packet: in recvmsg msg_name return at least sizeof sockaddr_ll (git-fixes).
o pci: Always allow probing with driver_override (bsc#1051510).
o pci: hv: Add hv_pci_remove_slots() when we unload the driver (bsc#1142701).
o pci: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary
(bsc#1142701).
o pci: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix a use-after-free bug in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
o pci: hv: Remove unused reason for refcount handler (bsc#1142701).
o pci: hv: support reporting serial number as slot information (bsc#1142701).
o pci: Return error if cannot probe VF (bsc#1051510).
o pkey: Indicate old mkvp only if old and current mkvp are different (bsc#
1137827 LTC#178090).
o pktgen: do not sleep with the thread lock held (git-fixes).
o platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#
1051510).
o platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys
from asus_nb_wmi (bsc#1051510).
o platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms (jsc#
SLE-5439).
o platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
critclk_systems DMI table (bsc#1051510).
o powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753,
git-fixes).
o powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test ().
o powerpc/mm: Change function prototype (bsc#1055117).
o powerpc/mm: Consolidate numa_enable check and min_common_depth check (bsc#
1140322 LTC#176270).
o powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0 (bsc#
1140322 LTC#176270).
o powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
o powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
__ptep_set_access_flags directly (bsc#1055117).
o powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#
1055117).
o powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#
1055117).
o powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#
1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#
178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
o ppp: deflate: Fix possible crash in deflate_init
(networking-stable-19_05_21).
o rds: ib: fix 'passing zero to ERR_PTR()' warning (git-fixes).
o Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" (bsc#
1140652).
o Revert "e1000e: fix cyclic resets at link up with active tx" (bsc#1051510).
o Revert "livepatch: Remove reliable stacktrace check in klp_try_switch_task
()" (bsc#1071995).
o Revert "serial: 8250: Do not service RX FIFO if interrupts are disabled"
(bsc#1051510).
o rtnetlink: always put IFLA_LINK for links with a link-netnsid
(networking-stable-19_05_21).
o s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
o s390/vtime: steal time exponential moving average (bsc#1119222).
o scripts/git_sort/git_sort.py: Add mmots tree.
o scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458 LTC#
178093).
o sctp: Free cookie before we memdup a new one (networking-stable-19_06_18).
o sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
o serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
o serial: uartps: Fix long line over 80 chars (bsc#1051510).
o serial: uartps: Fix multiple line dereference (bsc#1051510).
o serial: uartps: Remove useless return from cdns_uart_poll_put_char (bsc#
1051510).
o staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bsc#
1051510).
o staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#
1051510).
o staging: rtl8712: reduce stack usage, again (bsc#1051510).
o sunhv: Fix device naming inconsistency between sunhv_console and sunhv_reg
(networking-stable-19_06_18).
o tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
o team: Always enable vlan tx offload (bsc#1051510).
o tty: rocket: fix incorrect forward declaration of 'rp_init()' (bsc#
1051510).
o tty: serial_core: Set port active bit in uart_port_activate (bsc#1051510).
o tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
o tuntap: synchronize through tfiles array instead of tun->numqueues
(networking-stable-19_05_14).
o usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bsc#
1051510).
o usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
o usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC (bsc#
1051510).
o usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
o usb: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
o usb: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#
1051510).
o vmci: Fix integer overflow in VMCI handle arrays (bsc#1051510).
o vsock/virtio: free packets during the socket release
(networking-stable-19_05_21).
o vsock/virtio: set SOCK_DONE on peer shutdown (networking-stable-19_06_18).
o wil6210: fix potential out-of-bounds read (bsc#1051510).
o x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#
1140903).
o xen: let alloc_xenballooned_pages() fail if not enough memory free (bsc#
1142450 XSA-300).
o xfs: do not overflow xattr listent buffer (bsc#1143105).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Workstation Extension 15:
zypper in -t patch SUSE-SLE-Product-WE-15-2019-2071=1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15:
zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2019-2071=1
o SUSE Linux Enterprise Module for Live Patching 15:
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-2019-2071=1
o SUSE Linux Enterprise Module for Legacy Software 15:
zypper in -t patch SUSE-SLE-Module-Legacy-15-2019-2071=1
o SUSE Linux Enterprise Module for Development Tools 15:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-2019-2071=1
o SUSE Linux Enterprise Module for Basesystem 15:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-2019-2071=1
o SUSE Linux Enterprise High Availability 15:
zypper in -t patch SUSE-SLE-Product-HA-15-2019-2071=1
Package List:
o SUSE Linux Enterprise Workstation Extension 15 (x86_64):
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
kernel-default-extra-4.12.14-150.32.1
kernel-default-extra-debuginfo-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
(aarch64 ppc64le s390x x86_64):
kernel-default-base-4.12.14-150.32.1
kernel-default-base-debuginfo-4.12.14-150.32.1
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
kernel-obs-qa-4.12.14-150.32.1
kselftests-kmp-default-4.12.14-150.32.1
kselftests-kmp-default-debuginfo-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
(noarch):
kernel-docs-html-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Live Patching 15 (ppc64le x86_64):
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
kernel-default-livepatch-4.12.14-150.32.1
kernel-livepatch-4_12_14-150_32-default-1-1.5.1
kernel-livepatch-4_12_14-150_32-default-debuginfo-1-1.5.1
o SUSE Linux Enterprise Module for Legacy Software 15 (aarch64 ppc64le s390x
x86_64):
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
reiserfs-kmp-default-4.12.14-150.32.1
reiserfs-kmp-default-debuginfo-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Development Tools 15 (aarch64 ppc64le
s390x x86_64):
kernel-obs-build-4.12.14-150.32.1
kernel-obs-build-debugsource-4.12.14-150.32.1
kernel-syms-4.12.14-150.32.1
kernel-vanilla-base-4.12.14-150.32.1
kernel-vanilla-base-debuginfo-4.12.14-150.32.1
kernel-vanilla-debuginfo-4.12.14-150.32.1
kernel-vanilla-debugsource-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Development Tools 15 (noarch):
kernel-docs-4.12.14-150.32.1
kernel-source-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le s390x
x86_64):
kernel-default-4.12.14-150.32.1
kernel-default-base-4.12.14-150.32.1
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
kernel-default-devel-4.12.14-150.32.1
kernel-default-devel-debuginfo-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Basesystem 15 (noarch):
kernel-devel-4.12.14-150.32.1
kernel-macros-4.12.14-150.32.1
o SUSE Linux Enterprise Module for Basesystem 15 (s390x):
kernel-default-man-4.12.14-150.32.1
kernel-zfcpdump-4.12.14-150.32.1
kernel-zfcpdump-debuginfo-4.12.14-150.32.1
kernel-zfcpdump-debugsource-4.12.14-150.32.1
o SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64):
cluster-md-kmp-default-4.12.14-150.32.1
cluster-md-kmp-default-debuginfo-4.12.14-150.32.1
dlm-kmp-default-4.12.14-150.32.1
dlm-kmp-default-debuginfo-4.12.14-150.32.1
gfs2-kmp-default-4.12.14-150.32.1
gfs2-kmp-default-debuginfo-4.12.14-150.32.1
kernel-default-debuginfo-4.12.14-150.32.1
kernel-default-debugsource-4.12.14-150.32.1
ocfs2-kmp-default-4.12.14-150.32.1
ocfs2-kmp-default-debuginfo-4.12.14-150.32.1
References:
o https://www.suse.com/security/cve/CVE-2018-20855.html
o https://www.suse.com/security/cve/CVE-2019-1125.html
o https://www.suse.com/security/cve/CVE-2019-11810.html
o https://www.suse.com/security/cve/CVE-2019-13631.html
o https://www.suse.com/security/cve/CVE-2019-13648.html
o https://www.suse.com/security/cve/CVE-2019-14283.html
o https://www.suse.com/security/cve/CVE-2019-14284.html
o https://bugzilla.suse.com/1051510
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1071995
o https://bugzilla.suse.com/1083647
o https://bugzilla.suse.com/1083710
o https://bugzilla.suse.com/1102247
o https://bugzilla.suse.com/1119222
o https://bugzilla.suse.com/1123080
o https://bugzilla.suse.com/1127034
o https://bugzilla.suse.com/1127315
o https://bugzilla.suse.com/1129770
o https://bugzilla.suse.com/1130972
o https://bugzilla.suse.com/1133021
o https://bugzilla.suse.com/1134097
o https://bugzilla.suse.com/1134390
o https://bugzilla.suse.com/1134399
o https://bugzilla.suse.com/1135335
o https://bugzilla.suse.com/1135642
o https://bugzilla.suse.com/1137458
o https://bugzilla.suse.com/1137534
o https://bugzilla.suse.com/1137535
o https://bugzilla.suse.com/1137584
o https://bugzilla.suse.com/1137609
o https://bugzilla.suse.com/1137827
o https://bugzilla.suse.com/1139358
o https://bugzilla.suse.com/1140133
o https://bugzilla.suse.com/1140322
o https://bugzilla.suse.com/1140652
o https://bugzilla.suse.com/1140903
o https://bugzilla.suse.com/1140945
o https://bugzilla.suse.com/1141401
o https://bugzilla.suse.com/1141402
o https://bugzilla.suse.com/1141452
o https://bugzilla.suse.com/1141453
o https://bugzilla.suse.com/1141454
o https://bugzilla.suse.com/1141478
o https://bugzilla.suse.com/1142023
o https://bugzilla.suse.com/1142112
o https://bugzilla.suse.com/1142220
o https://bugzilla.suse.com/1142221
o https://bugzilla.suse.com/1142254
o https://bugzilla.suse.com/1142350
o https://bugzilla.suse.com/1142351
o https://bugzilla.suse.com/1142354
o https://bugzilla.suse.com/1142359
o https://bugzilla.suse.com/1142450
o https://bugzilla.suse.com/1142701
o https://bugzilla.suse.com/1142868
o https://bugzilla.suse.com/1143003
o https://bugzilla.suse.com/1143045
o https://bugzilla.suse.com/1143105
o https://bugzilla.suse.com/1143185
o https://bugzilla.suse.com/1143189
o https://bugzilla.suse.com/1143191
o https://bugzilla.suse.com/1143507
- ---
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2019:2072-1
Rating: important
References: #1051510 #1055117 #1071995 #1083647 #1083710 #1102247
#1111666 #1119222 #1123080 #1127034 #1127315 #1129770
#1130972 #1133021 #1134097 #1134390 #1134399 #1135335
#1135642 #1136896 #1137458 #1137534 #1137535 #1137584
#1137609 #1137811 #1137827 #1139358 #1140133 #1140139
#1140322 #1140652 #1140887 #1140888 #1140889 #1140891
#1140893 #1140903 #1140945 #1140954 #1140955 #1140956
#1140957 #1140958 #1140959 #1140960 #1140961 #1140962
#1140964 #1140971 #1140972 #1140992 #1141401 #1141402
#1141452 #1141453 #1141454 #1141478 #1142023 #1142112
#1142220 #1142221 #1142254 #1142350 #1142351 #1142354
#1142359 #1142450 #1142701 #1142868 #1143003 #1143045
#1143105 #1143185 #1143189 #1143191 #1143507
Cross-References: CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631
CVE-2019-13648 CVE-2019-14283 CVE-2019-14284
Affected Products:
SUSE Linux Enterprise Workstation Extension 12-SP4
SUSE Linux Enterprise Software Development Kit 12-SP4
SUSE Linux Enterprise Server 12-SP4
SUSE Linux Enterprise Live Patching 12-SP4
SUSE Linux Enterprise High Availability 12-SP4
SUSE Linux Enterprise Desktop 12-SP4
______________________________________________________________________________
An update that solves 7 vulnerabilities and has 70 fixes is now available.
Description:
The SUSE Linux Enterprise 12 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
o CVE-2018-20855: An issue was discovered in the Linux kernel In
create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp
was never initialized, resulting in a leak of stack memory to userspace(bsc
#1143045).
o CVE-2019-1125: Exclude ATOMs from speculation through SWAPGS (bsc#1139358).
o CVE-2019-14283: In the Linux kernel, set_geometry in drivers/block/floppy.c
did not validate the sect and head fields, as demonstrated by an integer
overflow and out-of-bounds read. It could be triggered by an unprivileged
local user when a floppy disk was inserted. NOTE: QEMU creates the floppy
device by default. (bnc#1143191)
o CVE-2019-11810: An issue was discovered in the Linux kernel A NULL pointer
dereference could occur when megasas_create_frame_pool() failed in
megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This
caused a Denial of Service, related to a use-after-free (bnc#1134399).
o CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware
transactional memory was disabled, a local user could cause a denial of
service (TM Bad Thing exception and system crash) via a sigreturn() system
call that sent a crafted signal frame. (bnc#1142254)
o CVE-2019-13631: In parse_hid_report_descriptor in drivers/input/tablet/
gtco.c in the Linux kernel, a malicious USB device could send an HID report
that triggered an out-of-bounds write during generation of debugging
messages. (bnc#1142023)
The following non-security bugs were fixed:
o Correct the CVE and bug reference for a floppy security fix
(CVE-2019-14284,bsc#1143189) A dedicated CVE was already assigned
o acpi/nfit: Always dump _DSM output payload (bsc#1142351).
o Add back sibling paca poiter to paca (bsc#1055117).
o Add support for crct10dif-vpmsum ().
o af_unix: remove redundant lockdep class (git-fixes).
o alsa: compress: Be more restrictive about when a drain is allowed (bsc#
1051510).
o alsa: compress: Do not allow paritial drain operations on capture streams
(bsc#1051510).
o alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
o alsa: compress: Prevent bypasses of set_params (bsc#1051510).
o alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
o alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#
1051510).
o alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#
1051510).
o alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
o alsa: line6: Fix a typo (bsc#1051510).
o alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
o alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
o alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
o alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
o alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
o alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#
1051510).
o alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
o asoc : cs4265 : readable register too low (bsc#1051510).
o asoc: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
o asoc: soc-pcm: BE dai needs prepare when pause release after resume (bsc#
1051510).
o ath6kl: add some bounds checking (bsc#1051510).
o batman-adv: fix for leaked TVLV handler (bsc#1051510).
o bcache: acquire bch_register_lock later in cached_dev_detach_finish() (bsc#
1140652).
o bcache: acquire bch_register_lock later in cached_dev_free() (bsc#1140652).
o bcache: add code comments for journal_read_bucket() (bsc#1140652).
o bcache: Add comments for blkdev_put() in registration code path (bsc#
1140652).
o bcache: add comments for closure_fn to be called in closure_queue() (bsc#
1140652).
o bcache: add comments for kobj release callback routine (bsc#1140652).
o bcache: add comments for mutex_lock(&b->write_lock) (bsc#1140652).
o bcache: add error check for calling register_bdev() (bsc#1140652).
o bcache: add failure check to run_cache_set() for journal replay (bsc#
1140652).
o bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
o bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
o bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
o bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
o bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
o bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
o bcache: avoid clang -Wunintialized warning (bsc#1140652).
o bcache: avoid flushing btree node in cache_set_flush() if io disabled (bsc#
1140652).
o bcache: avoid potential memleak of list of journal_replay(s) in the
CACHE_SYNC branch of run_cache_set (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
o bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() (bsc#
1140652).
o bcache: Clean up bch_get_congested() (bsc#1140652).
o bcache: destroy dc->writeback_write_wq if failed to create dc->
writeback_thread (bsc#1140652).
o bcache: do not assign in if condition in bcache_device_init() (bsc#
1140652).
o bcache: do not set max writeback rate if gc is running (bsc#1140652).
o bcache: fix a race between cache register and cacheset unregister (bsc#
1140652).
o bcache: fix crashes stopping bcache device before read miss done (bsc#
1140652).
o bcache: fix failure in journal relplay (bsc#1140652).
o bcache: fix inaccurate result of unused buckets (bsc#1140652).
o bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
o bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
o bcache: fix race in btree_flush_write() (bsc#1140652).
o bcache: fix return value error in bch_journal_read() (bsc#1140652).
o bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
o bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce branch
of btree_gc_coalesce (bsc#1140652).
o bcache: ignore read-ahead request failure on backing device (bsc#1140652).
o bcache: improve bcache_reboot() (bsc#1140652).
o bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
o bcache: make bset_search_tree() be more understandable (bsc#1140652).
o bcache: make is_discard_enabled() static (bsc#1140652).
o bcache: more detailed error message to bcache_device_link() (bsc#1140652).
o bcache: move definition of 'int ret' out of macro read_bucket() (bsc#
1140652).
o bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() (bsc#
1140652).
o bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
o bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached (bsc#
1140652).
o bcache: performance improvement for btree_flush_write() (bsc#1140652).
o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
o bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
o bcache: remove unnecessary prefetch() in bset_search_tree() (bsc#1140652).
o bcache: remove "XXX:" comment line from run_cache_set() (bsc#1140652).
o bcache: return error immediately in bch_journal_replay() (bsc#1140652).
o bcache: Revert "bcache: fix high CPU occupancy during journal" (bsc#
1140652).
o bcache: Revert "bcache: free heap cache_set->flush_btree in
bch_journal_free" (bsc#1140652).
o bcache: set largest seq to ja->seq[bucket_index] in journal_read_bucket()
(bsc#1140652).
o bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
o bcache: stop writeback kthread and kworker when bch_cached_dev_run() failed
(bsc#1140652).
o bcache: use sysfs_match_string() instead of __sysfs_match_string() (bsc#
1140652).
o be2net: Fix number of Rx queues used for flow hashing
(networking-stable-19_06_18).
o be2net: Signal that the device cannot transmit during reconfiguration (bsc#
1127315).
o be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
o block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
o bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
o bnxt_en: Fix aggregation buffer leak under OOM condition
(networking-stable-19_05_31).
o bonding: fix arp_validate toggling in active-backup mode
(networking-stable-19_05_14).
o bonding: Force slave speed check after link state recovery for 802.3ad (bsc
#1137584).
o bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
o bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#
1083647).
o bridge: Fix error path for kobject_init_and_add()
(networking-stable-19_05_14).
o btrfs: fix race between block group removal and block group allocation (bsc
#1143003).
o cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css()
(bsc#1141478).
o clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
o clk: rockchip: Do not yell about bad mmc phases when getting (bsc#1051510).
o clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
o cpufreq: acpi-cpufreq: Report if CPU does not support boost technologies
(bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#
1051510).
o cpufreq: check if policy is inactive early in __cpufreq_get() (bsc#
1051510).
o cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
o cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
o cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
o cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
o cpufreq: Use struct kobj_attribute instead of struct global_attr (bsc#
1051510).
o crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
o crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
o crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
o crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
o crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
o crypto: ccp - Validate the the error value used to index error messages
(bsc#1051510).
o crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc
#1051510).
o crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe (bsc#
1051510).
o crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#
1051510).
o crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
o crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
o crypto: talitos - fix CTR alg blocksize (bsc#1051510).
o crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
o crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#
1051510).
o crypto: talitos - properly handle split ICV (bsc#1051510).
o crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
o crypto: talitos - rename alternative AEAD algos (bsc#1051510).
o dasd_fba: Display '00000000' for zero page when dumping sense (bsc#
1123080).
o dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
o dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
o drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
o drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
o drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
o drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#
1051510).
o e1000e: start network tx queue only when link is up (bsc#1051510).
o ethtool: check the return value of get_regs_len (git-fixes).
o ethtool: fix potential userspace buffer overflow
(networking-stable-19_06_09).
o Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
o Fix memory leak in sctp_process_init (networking-stable-19_06_09).
o fork, memcg: fix cached_stacks case (bsc#1134097).
o fork, memcg: fix crash in free_thread_stack on memcg charge fail (bsc#
1134097).
o hid: wacom: correct touch resolution x/y typo (bsc#1051510).
o hid: wacom: generic: Correct pad syncing (bsc#1051510).
o hid: wacom: generic: only switch the mode on devices with LEDs (bsc#
1051510).
o hid: wacom: generic: read HID_DG_CONTACTMAX from any feature report (bsc#
1051510).
o input: elantech - enable middle button support on 2 ThinkPads (bsc#
1051510).
o input: imx_keypad - make sure keyboard can always wake up system (bsc#
1051510).
o input: psmouse - fix build error of multiple definition (bsc#1051510).
o input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
o input: tm2-touchkey - acknowledge that setting brightness is a blocking
call (bsc#1129770).
o intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
o ipv4: Fix raw socket lookup for local traffic (networking-stable-19_05_14).
o ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
(networking-stable-19_05_31).
o ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
(networking-stable-19_05_31).
o ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop
(git-fixes).
o ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
(networking-stable-19_05_31).
o ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
(networking-stable-19_06_09).
o ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
(networking-stable-19_06_18).
o ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
(networking-stable-19_06_09).
o kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled (bsc#1071995).
o kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#
178058 LTC#178059).
o kvm: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc
#1133021).
o kvm: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory
(bsc#1133021).
o kvm: fix Guest installation fails by "Invalid value '0-31' for
'cpuset.cpus': Invalid argument" (bsc#1143507)
o kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
o kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch (bsc#1135335).
o kvm: polling: add architecture backend to disable polling (bsc#1119222).
o kvm: s390: change default halt poll time to 50us (bsc#1119222).
o kvm: s390: enable CONFIG_HAVE_KVM_NO_POLL (bsc#1119222) We need to enable
CONFIG_HAVE_KVM_NO_POLL for bsc#1119222
o kvm: s390: fix typo in parameter description (bsc#1119222).
o kvm: s390: kABI Workaround for 'kvm_vcpu_stat' Add halt_no_poll_steal to
kvm_vcpu_stat. Hide it from the kABI checker.
o kvm: s390: kABI Workaround for 'lowcore' (bsc#1119222).
o kvm: s390: provide kvm_arch_no_poll function (bsc#1119222).
o kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
o kvm: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
o lapb: fixed leak of control-blocks (networking-stable-19_06_18).
o lib: fix stall in __bitmap_parselist() (bsc#1051510).
o libnvdimm/namespace: Fix label tracking error (bsc#1142350).
o lib/scatterlist: Fix mapping iterator when sg->offset is greater than
PAGE_SIZE (bsc#1051510).
o livepatch: Remove duplicate warning about missing reliable stacktrace
support (bsc#1071995).
o livepatch: Use static buffer for debugging messages under rq lock (bsc#
1071995).
o llc: fix skb leak in llc_build_and_send_ui_pkt()
(networking-stable-19_05_31).
o media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
o media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
o media: s5p-mfc: Make additional clocks optional (bsc#1051510).
o media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() (bsc#
1051510).
o media: vivid: fix incorrect assignment operation when setting video mode
(bsc#1051510).
o mei: bus: need to unlink client before freeing (bsc#1051510).
o mei: me: add denverton innovation engine device IDs (bsc#1051510).
o mei: me: add gemini lake devices id (bsc#1051510).
o memory: tegra: Fix integer overflow on tick value calculation (bsc#
1051510).
o memstick: Fix error cleanup path of memstick_init (bsc#1051510).
o mfd: intel-lpss: Release IDA resources (bsc#1051510).
o mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL (bsc#
1051510).
o mm: migrate: Fix reference check race between __find_get_block() and
migration (bnc#1137609).
o mm/nvdimm: add is_ioremap_addr and use that to check ioremap address (bsc#
1140322 LTC#176270).
o mm, page_alloc: fix has_unmovable_pages for HugePages (bsc#1127034).
o mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
o neigh: fix use-after-free read in pneigh_get_next
(networking-stable-19_06_18).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112 bsc
#1142221 LTC#179334 LTC#179332).
o net: avoid weird emergency message (networking-stable-19_05_21).
o net: fec: fix the clk mismatch in failed_reset path
(networking-stable-19_05_31).
o netfilter: conntrack: fix calculation of next bucket number in early_drop
(git-fixes).
o net-gro: fix use-after-free read in napi_gro_frags()
(networking-stable-19_05_31).
o net/mlx4_core: Change the error print to info print
(networking-stable-19_05_21).
o net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
(networking-stable-19_06_09).
o net/mlx5: Allocate root ns memory using kzalloc to match kfree
(networking-stable-19_05_31).
o net/mlx5: Avoid double free in fs init error unwinding path
(networking-stable-19_05_31).
o net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
o net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
(networking-stable-19_05_31).
o net: openvswitch: do not free vport if register_netdevice() is failed
(networking-stable-19_06_18).
o net/packet: fix memory leak in packet_set_ring() (git-fixes).
o net: rds: fix memory leak in rds_ib_flush_mr_pool
(networking-stable-19_06_09).
o net: seeq: fix crash caused by not set dev.parent
(networking-stable-19_05_14).
o net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
o net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
(networking-stable-19_05_21).
o nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
o ocfs2: add first lock wait time in locking_state (bsc#1134390).
o ocfs2: add last unlock times in locking_state (bsc#1134390).
o ocfs2: add locking filter debugfs file (bsc#1134390).
o packet: Fix error path in packet_init (networking-stable-19_05_14).
o packet: in recvmsg msg_name return at least sizeof sockaddr_ll (git-fixes).
o pci: Always allow probing with driver_override (bsc#1051510).
o pci: hv: Add hv_pci_remove_slots() when we unload the driver (bsc#1142701).
o pci: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary
(bsc#1142701).
o pci: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix a use-after-free bug in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
o pci: hv: Remove unused reason for refcount handler (bsc#1142701).
o pci: hv: support reporting serial number as slot information (bsc#1142701).
o pci: Return error if cannot probe VF (bsc#1051510).
o pkey: Indicate old mkvp only if old and current mkvp are different (bsc#
1137827 LTC#178090).
o pktgen: do not sleep with the thread lock held (git-fixes).
o platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#
1051510).
o platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys
from asus_nb_wmi (bsc#1051510).
o platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms (jsc#
SLE-5439).
o platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
critclk_systems DMI table (bsc#1051510).
o powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753,
git-fixes).
o powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test ().
o powerpc/mm: Change function prototype (bsc#1055117).
o powerpc/mm: Consolidate numa_enable check and min_common_depth check (bsc#
1140322 LTC#176270).
o powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0 (bsc#
1140322 LTC#176270).
o powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
o powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
__ptep_set_access_flags directly (bsc#1055117).
o powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#
1055117).
o powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#
1055117).
o powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#
1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#
178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
o ppp: deflate: Fix possible crash in deflate_init
(networking-stable-19_05_21).
o rds: ib: fix 'passing zero to ERR_PTR()' warning (git-fixes).
o Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" (bsc#
1140652).
o Revert "e1000e: fix cyclic resets at link up with active tx" (bsc#1051510).
o Revert "livepatch: Remove reliable stacktrace check in klp_try_switch_task
()" (bsc#1071995).
o Revert "serial: 8250: Do not service RX FIFO if interrupts are disabled"
(bsc#1051510).
o rtnetlink: always put IFLA_LINK for links with a link-netnsid
(networking-stable-19_05_21).
o s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
o s390/vtime: steal time exponential moving average (bsc#1119222).
o scripts/git_sort/git_sort.py: Add mmots tree.
o scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458 LTC#
178093).
o sctp: Free cookie before we memdup a new one (networking-stable-19_06_18).
o sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
o serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
o serial: uartps: Fix long line over 80 chars (bsc#1051510).
o serial: uartps: Fix multiple line dereference (bsc#1051510).
o serial: uartps: Remove useless return from cdns_uart_poll_put_char (bsc#
1051510).
o staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bsc#
1051510).
o staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#
1051510).
o staging: rtl8712: reduce stack usage, again (bsc#1051510).
o sunhv: Fix device naming inconsistency between sunhv_console and sunhv_reg
(networking-stable-19_06_18).
o tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
o team: Always enable vlan tx offload (bsc#1051510).
o tty: rocket: fix incorrect forward declaration of 'rp_init()' (bsc#
1051510).
o tty: serial_core: Set port active bit in uart_port_activate (bsc#1051510).
o tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
o tuntap: synchronize through tfiles array instead of tun->numqueues
(networking-stable-19_05_14).
o usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bsc#
1051510).
o usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
o usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC (bsc#
1051510).
o usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
o usb: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
o usb: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#
1051510).
o vmci: Fix integer overflow in VMCI handle arrays (bsc#1051510).
o vsock/virtio: free packets during the socket release
(networking-stable-19_05_21).
o vsock/virtio: set SOCK_DONE on peer shutdown (networking-stable-19_06_18).
o wil6210: fix potential out-of-bounds read (bsc#1051510).
o x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#
1140903).
o xen: let alloc_xenballooned_pages() fail if not enough memory free (bsc#
1142450 XSA-300).
o xfs: do not overflow xattr listent buffer (bsc#1143105).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Workstation Extension 12-SP4:
zypper in -t patch SUSE-SLE-WE-12-SP4-2019-2072=1
o SUSE Linux Enterprise Software Development Kit 12-SP4:
zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-2072=1
o SUSE Linux Enterprise Server 12-SP4:
zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-2072=1
o SUSE Linux Enterprise Live Patching 12-SP4:
zypper in -t patch SUSE-SLE-Live-Patching-12-SP4-2019-2072=1
o SUSE Linux Enterprise High Availability 12-SP4:
zypper in -t patch SUSE-SLE-HA-12-SP4-2019-2072=1
o SUSE Linux Enterprise Desktop 12-SP4:
zypper in -t patch SUSE-SLE-DESKTOP-12-SP4-2019-2072=1
Package List:
o SUSE Linux Enterprise Workstation Extension 12-SP4 (x86_64):
kernel-default-debuginfo-4.12.14-95.29.1
kernel-default-debugsource-4.12.14-95.29.1
kernel-default-extra-4.12.14-95.29.1
kernel-default-extra-debuginfo-4.12.14-95.29.1
o SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 ppc64le
s390x x86_64):
kernel-obs-build-4.12.14-95.29.1
kernel-obs-build-debugsource-4.12.14-95.29.1
o SUSE Linux Enterprise Software Development Kit 12-SP4 (noarch):
kernel-docs-4.12.14-95.29.1
o SUSE Linux Enterprise Server 12-SP4 (aarch64 ppc64le s390x x86_64):
kernel-default-4.12.14-95.29.1
kernel-default-base-4.12.14-95.29.1
kernel-default-base-debuginfo-4.12.14-95.29.1
kernel-default-debuginfo-4.12.14-95.29.1
kernel-default-debugsource-4.12.14-95.29.1
kernel-default-devel-4.12.14-95.29.1
kernel-syms-4.12.14-95.29.1
o SUSE Linux Enterprise Server 12-SP4 (noarch):
kernel-devel-4.12.14-95.29.1
kernel-macros-4.12.14-95.29.1
kernel-source-4.12.14-95.29.1
o SUSE Linux Enterprise Server 12-SP4 (x86_64):
kernel-default-devel-debuginfo-4.12.14-95.29.1
o SUSE Linux Enterprise Server 12-SP4 (s390x):
kernel-default-man-4.12.14-95.29.1
o SUSE Linux Enterprise Live Patching 12-SP4 (ppc64le x86_64):
kgraft-patch-4_12_14-95_29-default-1-6.5.1
o SUSE Linux Enterprise High Availability 12-SP4 (ppc64le s390x x86_64):
cluster-md-kmp-default-4.12.14-95.29.1
cluster-md-kmp-default-debuginfo-4.12.14-95.29.1
dlm-kmp-default-4.12.14-95.29.1
dlm-kmp-default-debuginfo-4.12.14-95.29.1
gfs2-kmp-default-4.12.14-95.29.1
gfs2-kmp-default-debuginfo-4.12.14-95.29.1
kernel-default-debuginfo-4.12.14-95.29.1
kernel-default-debugsource-4.12.14-95.29.1
ocfs2-kmp-default-4.12.14-95.29.1
ocfs2-kmp-default-debuginfo-4.12.14-95.29.1
o SUSE Linux Enterprise Desktop 12-SP4 (x86_64):
kernel-default-4.12.14-95.29.1
kernel-default-debuginfo-4.12.14-95.29.1
kernel-default-debugsource-4.12.14-95.29.1
kernel-default-devel-4.12.14-95.29.1
kernel-default-devel-debuginfo-4.12.14-95.29.1
kernel-default-extra-4.12.14-95.29.1
kernel-default-extra-debuginfo-4.12.14-95.29.1
kernel-syms-4.12.14-95.29.1
o SUSE Linux Enterprise Desktop 12-SP4 (noarch):
kernel-devel-4.12.14-95.29.1
kernel-macros-4.12.14-95.29.1
kernel-source-4.12.14-95.29.1
References:
o https://www.suse.com/security/cve/CVE-2018-20855.html
o https://www.suse.com/security/cve/CVE-2019-1125.html
o https://www.suse.com/security/cve/CVE-2019-11810.html
o https://www.suse.com/security/cve/CVE-2019-13631.html
o https://www.suse.com/security/cve/CVE-2019-13648.html
o https://www.suse.com/security/cve/CVE-2019-14283.html
o https://www.suse.com/security/cve/CVE-2019-14284.html
o https://bugzilla.suse.com/1051510
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1071995
o https://bugzilla.suse.com/1083647
o https://bugzilla.suse.com/1083710
o https://bugzilla.suse.com/1102247
o https://bugzilla.suse.com/1111666
o https://bugzilla.suse.com/1119222
o https://bugzilla.suse.com/1123080
o https://bugzilla.suse.com/1127034
o https://bugzilla.suse.com/1127315
o https://bugzilla.suse.com/1129770
o https://bugzilla.suse.com/1130972
o https://bugzilla.suse.com/1133021
o https://bugzilla.suse.com/1134097
o https://bugzilla.suse.com/1134390
o https://bugzilla.suse.com/1134399
o https://bugzilla.suse.com/1135335
o https://bugzilla.suse.com/1135642
o https://bugzilla.suse.com/1136896
o https://bugzilla.suse.com/1137458
o https://bugzilla.suse.com/1137534
o https://bugzilla.suse.com/1137535
o https://bugzilla.suse.com/1137584
o https://bugzilla.suse.com/1137609
o https://bugzilla.suse.com/1137811
o https://bugzilla.suse.com/1137827
o https://bugzilla.suse.com/1139358
o https://bugzilla.suse.com/1140133
o https://bugzilla.suse.com/1140139
o https://bugzilla.suse.com/1140322
o https://bugzilla.suse.com/1140652
o https://bugzilla.suse.com/1140887
o https://bugzilla.suse.com/1140888
o https://bugzilla.suse.com/1140889
o https://bugzilla.suse.com/1140891
o https://bugzilla.suse.com/1140893
o https://bugzilla.suse.com/1140903
o https://bugzilla.suse.com/1140945
o https://bugzilla.suse.com/1140954
o https://bugzilla.suse.com/1140955
o https://bugzilla.suse.com/1140956
o https://bugzilla.suse.com/1140957
o https://bugzilla.suse.com/1140958
o https://bugzilla.suse.com/1140959
o https://bugzilla.suse.com/1140960
o https://bugzilla.suse.com/1140961
o https://bugzilla.suse.com/1140962
o https://bugzilla.suse.com/1140964
o https://bugzilla.suse.com/1140971
o https://bugzilla.suse.com/1140972
o https://bugzilla.suse.com/1140992
o https://bugzilla.suse.com/1141401
o https://bugzilla.suse.com/1141402
o https://bugzilla.suse.com/1141452
o https://bugzilla.suse.com/1141453
o https://bugzilla.suse.com/1141454
o https://bugzilla.suse.com/1141478
o https://bugzilla.suse.com/1142023
o https://bugzilla.suse.com/1142112
o https://bugzilla.suse.com/1142220
o https://bugzilla.suse.com/1142221
o https://bugzilla.suse.com/1142254
o https://bugzilla.suse.com/1142350
o https://bugzilla.suse.com/1142351
o https://bugzilla.suse.com/1142354
o https://bugzilla.suse.com/1142359
o https://bugzilla.suse.com/1142450
o https://bugzilla.suse.com/1142701
o https://bugzilla.suse.com/1142868
o https://bugzilla.suse.com/1143003
o https://bugzilla.suse.com/1143045
o https://bugzilla.suse.com/1143105
o https://bugzilla.suse.com/1143185
o https://bugzilla.suse.com/1143189
o https://bugzilla.suse.com/1143191
o https://bugzilla.suse.com/1143507
- ---
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2019:2073-1
Rating: important
References: #1051510 #1055117 #1071995 #1083647 #1083710 #1102247
#1103991 #1103992 #1104745 #1109837 #1111666 #1112374
#1119222 #1123080 #1127034 #1127315 #1127611 #1129770
#1130972 #1133021 #1134090 #1134097 #1134390 #1134399
#1135335 #1135642 #1136217 #1136342 #1136460 #1136461
#1136462 #1136467 #1137458 #1137534 #1137535 #1137584
#1137609 #1137811 #1137827 #1138874 #1139358 #1139619
#1140133 #1140139 #1140322 #1140559 #1140652 #1140676
#1140903 #1140945 #1140948 #1141312 #1141401 #1141402
#1141452 #1141453 #1141454 #1141478 #1141558 #1142023
#1142052 #1142083 #1142112 #1142115 #1142119 #1142220
#1142221 #1142254 #1142350 #1142351 #1142354 #1142359
#1142450 #1142623 #1142673 #1142701 #1142868 #1143003
#1143045 #1143105 #1143185 #1143189 #1143191 #1143209
#1143507
Cross-References: CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631
CVE-2019-13648 CVE-2019-14283 CVE-2019-14284
Affected Products:
SUSE Linux Enterprise Workstation Extension 15-SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
SUSE Linux Enterprise Module for Live Patching 15-SP1
SUSE Linux Enterprise Module for Legacy Software 15-SP1
SUSE Linux Enterprise Module for Development Tools 15-SP1
SUSE Linux Enterprise Module for Basesystem 15-SP1
SUSE Linux Enterprise High Availability 15-SP1
______________________________________________________________________________
An update that solves 7 vulnerabilities and has 78 fixes is now available.
Description:
The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security
and bugfixes.
The following security bugs were fixed:
o CVE-2018-20855: An issue was discovered in the Linux kernel In
create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp
was never initialized, resulting in a leak of stack memory to userspace(bsc
#1143045).
o CVE-2019-1125: Exclude ATOMs from speculation through SWAPGS (bsc#1139358).
o CVE-2019-14283: In the Linux kernel, set_geometry in drivers/block/floppy.c
did not validate the sect and head fields, as demonstrated by an integer
overflow and out-of-bounds read. It could be triggered by an unprivileged
local user when a floppy disk was inserted. NOTE: QEMU creates the floppy
device by default. (bnc#1143191)
o CVE-2019-11810: An issue was discovered in the Linux kernel A NULL pointer
dereference could occur when megasas_create_frame_pool() failed in
megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This
caused a Denial of Service, related to a use-after-free (bnc#1134399).
o CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware
transactional memory was disabled, a local user could cause a denial of
service (TM Bad Thing exception and system crash) via a sigreturn() system
call that sent a crafted signal frame. (bnc#1142254)
o CVE-2019-13631: In parse_hid_report_descriptor in drivers/input/tablet/
gtco.c in the Linux kernel, a malicious USB device could send an HID report
that triggered an out-of-bounds write during generation of debugging
messages. (bnc#1142023)
The following non-security bugs were fixed:
o acpi/nfit: Always dump _DSM output payload (bsc#1142351).
o Add back sibling paca poiter to paca (bsc#1055117).
o Add support for crct10dif-vpmsum ().
o af_unix: remove redundant lockdep class (git-fixes).
o alsa: compress: Be more restrictive about when a drain is allowed (bsc#
1051510).
o alsa: compress: Do not allow paritial drain operations on capture streams
(bsc#1051510).
o alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
o alsa: compress: Prevent bypasses of set_params (bsc#1051510).
o alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
o alsa: hda - Do not resume forcibly i915 HDMI/DP codec (bsc#1111666).
o alsa: hda - Fix intermittent CORB/RIRB stall on Intel chips (bsc#1111666).
o alsa: hda/hdmi - Fix i915 reverse port/pin mapping (bsc#1111666).
o alsa: hda/hdmi - Remove duplicated define (bsc#1111666).
o alsa: hda - Optimize resume for codecs without jack detection (bsc#
1111666).
o alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#
1051510).
o alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#
1051510).
o alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
o alsa: line6: Fix a typo (bsc#1051510).
o alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
o alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
o alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
o alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
o alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
o alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#
1051510).
o alsa: usb-audio: fix Line6 Helix audio format rates (bsc#1111666).
o alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
o arm64: do not override dma_max_pfn (jsc#SLE-6197 bsc#1140559 LTC#173150).
o asoc : cs4265 : readable register too low (bsc#1051510).
o asoc: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
o asoc: soc-pcm: BE dai needs prepare when pause release after resume (bsc#
1051510).
o ath10k: add missing error handling (bsc#1111666).
o ath10k: add peer id check in ath10k_peer_find_by_id (bsc#1111666).
o ath10k: destroy sdio workqueue while remove sdio module (bsc#1111666).
o ath10k: Do not send probe response template for mesh (bsc#1111666).
o ath10k: Fix encoding for protected management frames (bsc#1111666).
o ath10k: fix incorrect multicast/broadcast rate setting (bsc#1111666).
o ath10k: fix PCIE device wake up failed (bsc#1111666).
o ath6kl: add some bounds checking (bsc#1051510).
o ath9k: Check for errors when reading SREV register (bsc#1111666).
o ath9k: correctly handle short radar pulses (bsc#1111666).
o ath: DFS JP domain W56 fixed pulse type 3 RADAR detection (bsc#1111666).
o batman-adv: fix for leaked TVLV handler (bsc#1051510).
o bcache: acquire bch_register_lock later in cached_dev_detach_finish() (bsc#
1140652).
o bcache: acquire bch_register_lock later in cached_dev_free() (bsc#1140652).
o bcache: add code comments for journal_read_bucket() (bsc#1140652).
o bcache: Add comments for blkdev_put() in registration code path (bsc#
1140652).
o bcache: add comments for closure_fn to be called in closure_queue() (bsc#
1140652).
o bcache: add comments for kobj release callback routine (bsc#1140652).
o bcache: add comments for mutex_lock(b->write_lock) (bsc#1140652).
o bcache: add error check for calling register_bdev() (bsc#1140652).
o bcache: add failure check to run_cache_set() for journal replay (bsc#
1140652).
o bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
o bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
o bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
o bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
o bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
o bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
o bcache: avoid clang -Wunintialized warning (bsc#1140652).
o bcache: avoid flushing btree node in cache_set_flush() if io disabled (bsc#
1140652).
o bcache: avoid potential memleak of list of journal_replay(s) in the
CACHE_SYNC branch of run_cache_set (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
o bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
o bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() (bsc#
1140652).
o bcache: Clean up bch_get_congested() (bsc#1140652).
o bcache: destroy dc->writeback_write_wq if failed to create dc->
writeback_thread (bsc#1140652).
o bcache: do not assign in if condition in bcache_device_init() (bsc#
1140652).
o bcache: do not set max writeback rate if gc is running (bsc#1140652).
o bcache: fix a race between cache register and cacheset unregister (bsc#
1140652).
o bcache: fix crashes stopping bcache device before read miss done (bsc#
1140652).
o bcache: fix failure in journal relplay (bsc#1140652).
o bcache: fix inaccurate result of unused buckets (bsc#1140652).
o bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
o bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
o bcache: fix race in btree_flush_write() (bsc#1140652).
o bcache: fix return value error in bch_journal_read() (bsc#1140652).
o bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
o bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce branch
of btree_gc_coalesce (bsc#1140652).
o bcache: ignore read-ahead request failure on backing device (bsc#1140652).
o bcache: improve bcache_reboot() (bsc#1140652).
o bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
o bcache: make bset_search_tree() be more understandable (bsc#1140652).
o bcache: make is_discard_enabled() static (bsc#1140652).
o bcache: more detailed error message to bcache_device_link() (bsc#1140652).
o bcache: move definition of 'int ret' out of macro read_bucket() (bsc#
1140652).
o bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() (bsc#
1140652).
o bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
o bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached (bsc#
1140652).
o bcache: performance improvement for btree_flush_write() (bsc#1140652).
o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
1140652).
o bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
o bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
o bcache: remove unnecessary prefetch() in bset_search_tree() (bsc#1140652).
o bcache: return error immediately in bch_journal_replay() (bsc#1140652).
o bcache: Revert "bcache: fix high CPU occupancy during journal" (bsc#
1140652).
o bcache: Revert "bcache: free heap cache_set->flush_btree in
bch_journal_free" (bsc#1140652).
o bcache: set largest seq to ja->seq[bucket_index] in journal_read_bucket()
(bsc#1140652).
o bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
o bcache: stop writeback kthread and kworker when bch_cached_dev_run() failed
(bsc#1140652).
o bcache: use sysfs_match_string() instead of __sysfs_match_string() (bsc#
1140652).
o be2net: Fix number of Rx queues used for flow hashing
(networking-stable-19_06_18).
o be2net: Signal that the device cannot transmit during reconfiguration (bsc#
1127315).
o be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
o block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
o bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
o bnxt_en: Cap the returned MSIX vectors to the RDMA driver (bsc#1134090 jsc#
SLE-5954).
o bnxt_en: Disable bus master during PCI shutdown and driver unload (bsc#
1104745).
o bnxt_en: Fix aggregation buffer leak under OOM condition
(networking-stable-19_05_31).
o bnxt_en: Fix statistics context reservation logic for RDMA driver (bsc#
1104745).
o bnxt_en: Suppress error messages when querying DSCP DCB capabilities (bsc#
1104745).
o bonding: fix arp_validate toggling in active-backup mode
(networking-stable-19_05_14).
o bonding: Force slave speed check after link state recovery for 802.3ad (bsc
#1137584).
o bpf: btf: fix the brackets of BTF_INT_OFFSET() (bsc#1083647).
o bpf: fix callees pruning callers (bsc#1109837).
o bpf: fix nested bpf tracepoints with per-cpu data (bsc#1083647).
o bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
o bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#
1083647).
o bridge: Fix error path for kobject_init_and_add()
(networking-stable-19_05_14).
o btrfs: fix race between block group removal and block group allocation (bsc
#1143003).
o carl9170: fix misuse of device driver API (bsc#1111666).
o cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css()
(bsc#1141478).
o clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
o clk: rockchip: Do not yell about bad mmc phases when getting (bsc#1051510).
o clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
o Correct iwlwifi 22000 series ucode file name (bsc#1142673)
o Correct the buggy backport about AER / DPC pcie stuff (bsc#1142623)
o cpufreq: acpi-cpufreq: Report if CPU does not support boost technologies
(bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
o cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#
1051510).
o cpufreq: check if policy is inactive early in __cpufreq_get() (bsc#
1051510).
o cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
o cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
o cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
o cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
o cpufreq: Use struct kobj_attribute instead of struct global_attr (bsc#
1051510).
o crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#
1051510).
o crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
o crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
o crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
o crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
o crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
o crypto: ccp - Validate the the error value used to index error messages
(bsc#1051510).
o crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc
#1051510).
o crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe (bsc#
1051510).
o crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#
1051510).
o crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
o crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
o crypto: talitos - fix CTR alg blocksize (bsc#1051510).
o crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
o crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#
1051510).
o crypto: talitos - properly handle split ICV (bsc#1051510).
o crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
o crypto: talitos - rename alternative AEAD algos (bsc#1051510).
o dasd_fba: Display '00000000' for zero page when dumping sense (bsc#
1123080).
o Delete patches.fixes/s390-setup-fix-early-warning-messages (bsc#1140948).
o dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc (bsc
#1111666).
o dma-direct: add support for allocation from ZONE_DMA and ZONE_DMA32 (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o dma-direct: do not retry allocation for no-op GFP_DMA (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o dma-direct: retry allocations using GFP_DMA for small masks (jsc#SLE-6197
bsc#1140559 LTC#173150).
o dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
o dma-mapping: move dma_mark_clean to dma-direct.h (jsc#SLE-6197 bsc#1140559
LTC#173150).
o dma-mapping: move swiotlb arch helpers to a new header (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o dma-mapping: take dma_pfn_offset into account in dma_max_pfn (jsc#SLE-6197
bsc#1140559 LTC#173150).
o dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
o drm/amd/display: Make some functions static (bsc#1111666).
o drm/atmel-hlcdc: revert shift by 8 (bsc#1111666).
o drm/i915/cml: Introduce Comet Lake PCH (jsc#SLE-6681).
o drm/i915/icl: Add WaDisableBankHangMode (bsc#1111666).
o drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
o drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
o drm/msm/mdp5: Fix mdp5_cfg_init error return (bsc#1111666).
o drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
o drm: return -EFAULT if copy_to_user() fails (bsc#1111666).
o drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#
1051510).
o drm/udl: introduce a macro to convert dev to udl (bsc#1111666).
o drm/udl: move to embedding drm device inside udl device (bsc#1111666).
o drm/udl: Replace drm_dev_unref with drm_dev_put (bsc#1111666).
o drm/vc4: fix fb references in async update (bsc#1141312).
o drm/vmwgfx: Honor the sg list segment size limitation (bsc#1111666).
o e1000e: start network tx queue only when link is up (bsc#1051510).
o Enable intel-speed-select driver and update supported.conf (jsc#SLE-5364)
o ethtool: check the return value of get_regs_len (git-fixes).
o ethtool: fix potential userspace buffer overflow
(networking-stable-19_06_09).
o Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
o Fix memory leak in sctp_process_init (networking-stable-19_06_09).
o fork, memcg: fix cached_stacks case (bsc#1134097).
o fork, memcg: fix crash in free_thread_stack on memcg charge fail (bsc#
1134097).
o fpga: add intel stratix10 soc fpga manager driver (jsc#SLE-7057).
o fpga: stratix10-soc: fix use-after-free on s10_init() (jsc#SLE-7057).
o fpga: stratix10-soc: fix wrong of_node_put() in init function (jsc#jsc#
SLE-7057).
o gpu: ipu-v3: ipu-ic: Fix saturation bit offset in TPMEM (bsc#1111666).
o hid: wacom: correct touch resolution x/y typo (bsc#1051510).
o hid: wacom: generic: Correct pad syncing (bsc#1051510).
o hid: wacom: generic: only switch the mode on devices with LEDs (bsc#
1051510).
o hid: wacom: generic: read HID_DG_CONTACTMAX from any feature report (bsc#
1051510).
o ib/ipoib: Add child to parent list only if device initialized (bsc#
1103992).
o ib/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE (bsc#
1103991).
o idr: fix overflow case for idr_for_each_entry_ul() (bsc#1109837).
o input: elantech - enable middle button support on 2 ThinkPads (bsc#
1051510).
o input: imx_keypad - make sure keyboard can always wake up system (bsc#
1051510).
o input: psmouse - fix build error of multiple definition (bsc#1051510).
o input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
o input: tm2-touchkey - acknowledge that setting brightness is a blocking
call (bsc#1129770).
o intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
o iommu-helper: mark iommu_is_span_boundary as inline (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o ipv4: Fix raw socket lookup for local traffic (networking-stable-19_05_14).
o ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
(networking-stable-19_05_31).
o ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
(networking-stable-19_05_31).
o ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop
(git-fixes).
o ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
(networking-stable-19_05_31).
o ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
(networking-stable-19_06_09).
o ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
(networking-stable-19_06_18).
o ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
(networking-stable-19_06_09).
o iwlwifi: correct one of the PCI struct names (bsc#1111666).
o iwlwifi: do not WARN when calling iwl_get_shared_mem_conf with RF-Kill (bsc
#1111666).
o iwlwifi: fix cfg structs for 22000 with different RF modules (bsc#1111666).
o iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules (bsc#
1111666).
o iwlwifi: Fix double-free problems in iwl_req_fw_callback() (bsc#1111666).
o iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices (bsc#
1111666).
o iwlwifi: mvm: Drop large non sta frames (bsc#1111666).
o iwlwifi: pcie: do not service an interrupt that was masked (bsc#1111666).
o iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X (bsc
#1111666).
o kabi fix for hda_codec.relaxed_resume flag (bsc#1111666).
o kabi: Fix lost iommu-helper symbols on arm64 (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o kabi: mask changes made by basic protected virtualization support (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: mask changes made by swiotlb for protected virtualization (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: mask changes made by use of DMA memory for adapter interrupts (jsc#
SLE-6197 bsc#1140559 LTC#173150).
o kabi: remove unused hcall definition (bsc#1140322 LTC#176270).
o kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled (bsc#1071995).
o kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#
178058 LTC#178059).
o kvm: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc
#1133021).
o kvm: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory
(bsc#1133021).
o kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
o kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch (bsc#1135335).
o kvm: polling: add architecture backend to disable polling (bsc#1119222).
o kvm: s390: change default halt poll time to 50us (bsc#1119222).
o kvm: s390: enable CONFIG_HAVE_kvm_NO_POLL (bsc#1119222) We need to enable
CONFIG_HAVE_kvm_NO_POLL for bsc#1119222
o kvm: s390: fix typo in parameter description (bsc#1119222).
o kvm: s390: kABI Workaround for 'kvm_vcpu_stat' Add halt_no_poll_steal to
kvm_vcpu_stat. Hide it from the kABI checker.
o kvm: s390: kABI Workaround for 'lowcore' (bsc#1119222).
o kvm: s390: provide kvm_arch_no_poll function (bsc#1119222).
o kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
o kvm: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
o lapb: fixed leak of control-blocks (networking-stable-19_06_18).
o lib: fix stall in __bitmap_parselist() (bsc#1051510).
o libnvdimm/namespace: Fix label tracking error (bsc#1142350).
o libnvdimm/region: Register badblocks before namespaces (bsc#1143209).
o lib/bitmap.c: make bitmap_parselist() thread-safe and much faster (bsc#
1143507).
o lib/scatterlist: Fix mapping iterator when sg->offset is greater than
PAGE_SIZE (bsc#1051510).
o livepatch: Remove duplicate warning about missing reliable stacktrace
support (bsc#1071995).
o livepatch: Use static buffer for debugging messages under rq lock (bsc#
1071995).
o llc: fix skb leak in llc_build_and_send_ui_pkt()
(networking-stable-19_05_31).
o mac80211: do not start any work during reconfigure flow (bsc#1111666).
o mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() (bsc#
1111666).
o mac80211: free peer keys before vif down in mesh (bsc#1111666).
o mac80211: mesh: fix RCU warning (bsc#1111666).
o mac80211: only warn once on chanctx_conf being NULL (bsc#1111666).
o media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
o media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
o media: s5p-mfc: Make additional clocks optional (bsc#1051510).
o media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() (bsc#
1051510).
o media: vivid: fix incorrect assignment operation when setting video mode
(bsc#1051510).
o mei: bus: need to unlink client before freeing (bsc#1051510).
o mei: me: add denverton innovation engine device IDs (bsc#1051510).
o mei: me: add gemini lake devices id (bsc#1051510).
o memory: tegra: Fix integer overflow on tick value calculation (bsc#
1051510).
o memstick: Fix error cleanup path of memstick_init (bsc#1051510).
o mfd: intel-lpss: Release IDA resources (bsc#1051510).
o mips: fix an off-by-one in dma_capable (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o mlxsw: spectrum_dcb: Configure DSCP map as the last rule is removed (bsc#
1112374).
o mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL (bsc#
1051510).
o mm: migrate: Fix reference check race between __find_get_block() and
migration (bnc#1137609).
o mm/nvdimm: add is_ioremap_addr and use that to check ioremap address (bsc#
1140322 LTC#176270).
o mm, page_alloc: fix has_unmovable_pages for HugePages (bsc#1127034).
o mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
o mt7601u: do not schedule rx_tasklet when the device has been disconnected
(bsc#1111666).
o mt7601u: fix possible memory leak when the device is disconnected (bsc#
1111666).
o neigh: fix use-after-free read in pneigh_get_next
(networking-stable-19_06_18).
o net/af_iucv: build proper skbs for HiperTransport (bsc#1142221 LTC#179332).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112 bsc
#1142221 LTC#179334 LTC#179332).
o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142221 LTC
#179332).
o net: avoid weird emergency message (networking-stable-19_05_21).
o net: fec: fix the clk mismatch in failed_reset path
(networking-stable-19_05_31).
o netfilter: conntrack: fix calculation of next bucket number in early_drop
(git-fixes).
o net-gro: fix use-after-free read in napi_gro_frags()
(networking-stable-19_05_31).
o net: hns3: Fix inconsistent indenting (bsc#1140676).
o net: hns: fix ICMP6 neighbor solicitation messages discard problem (bsc#
1140676).
o net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() (bsc#1140676).
o net: hns: Fix loopback test failed at copper ports (bsc#1140676).
o net: hns: Fix probabilistic memory overwrite when HNS driver initialized
(bsc#1140676).
o net: hns: fix unsigned comparison to less than zero (bsc#1140676).
o net: hns: Fix WARNING when remove HNS driver with SMMU enabled (bsc#
1140676).
o net: hns: Use NAPI_POLL_WEIGHT for hns driver (bsc#1140676).
o net/mlx4_core: Change the error print to info print
(networking-stable-19_05_21).
o net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
(networking-stable-19_06_09).
o net/mlx5: Allocate root ns memory using kzalloc to match kfree
(networking-stable-19_05_31).
o net/mlx5: Avoid double free in fs init error unwinding path
(networking-stable-19_05_31).
o net/mlx5e: Rx, Fix checksum calculation for new hardware (bsc#1127611).
o net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
o net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
(networking-stable-19_05_31).
o net: openvswitch: do not free vport if register_netdevice() is failed
(networking-stable-19_06_18).
o net/packet: fix memory leak in packet_set_ring() (git-fixes).
o net: rds: fix memory leak in rds_ib_flush_mr_pool
(networking-stable-19_06_09).
o net: seeq: fix crash caused by not set dev.parent
(networking-stable-19_05_14).
o net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
o net/tls: fix socket wmem accounting on fallback with netem (bsc#1109837).
o net/tls: make sure offload also gets the keys wiped (bsc#1109837).
o net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
(networking-stable-19_05_21).
o nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
o ocfs2: add first lock wait time in locking_state (bsc#1134390).
o ocfs2: add last unlock times in locking_state (bsc#1134390).
o ocfs2: add locking filter debugfs file (bsc#1134390).
o p54usb: Fix race between disconnect and firmware loading (bsc#1111666).
o packet: Fix error path in packet_init (networking-stable-19_05_14).
o packet: in recvmsg msg_name return at least sizeof sockaddr_ll (git-fixes).
o pci/aer: Use cached AER Capability offset (bsc#1142623).
o pci: Always allow probing with driver_override (bsc#1051510).
o pci: hv: Add hv_pci_remove_slots() when we unload the driver (bsc#1142701).
o pci: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary
(bsc#1142701).
o pci: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix a use-after-free bug in hv_eject_device_work() (bsc#1142701).
o pci: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
o pci: hv: Remove unused reason for refcount handler (bsc#1142701).
o pci: hv: support reporting serial number as slot information (bsc#1142701).
o pci/P2PDMA: Fix missing check for dma_virt_ops (bsc#1111666).
o pci / PM: Use SMART_SUSPEND and LEAVE_SUSPENDED flags for PCIe ports (bsc#
1142623).
o pci/portdrv: Add #defines for AER and DPC Interrupt Message Number masks
(bsc#1142623).
o pci/portdrv: Consolidate comments (bsc#1142623).
o pci/portdrv: Disable port driver in compat mode (bsc#1142623).
o pci/portdrv: Remove pcie_portdrv_err_handler.slot_reset (bsc#1142623).
o pci: portdrv: Restore PCI config state on slot reset (bsc#1142623).
o pci/portdrv: Support PCIe services on subtractive decode bridges (bsc#
1142623).
o pci/portdrv: Use conventional Device ID table formatting (bsc#1142623).
o pci: Return error if cannot probe VF (bsc#1051510).
o pkey: Indicate old mkvp only if old and current mkvp are different (bsc#
1137827 LTC#178090).
o pktgen: do not sleep with the thread lock held (git-fixes).
o platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#
1051510).
o platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys
from asus_nb_wmi (bsc#1051510).
o platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms (jsc#
SLE-5439).
o platform/x86: ISST: Add common API to register and handle ioctls (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mailbox interface via MSRs (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mailbox interface via PCI (jsc#
SLE-5364).
o platform/x86: ISST: Add Intel Speed Select mmio interface (jsc#SLE-5364).
o platform/x86: ISST: Add Intel Speed Select PUNIT MSR interface (jsc#
SLE-5364).
o platform/x86: ISST: Add IOCTL to Translate Linux logical CPU to PUNIT CPU
number (jsc#SLE-5364).
o platform/x86: ISST: Restore state on resume (jsc#SLE-5364).
o platform/x86: ISST: Store per CPU information (jsc#SLE-5364).
o platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
critclk_systems DMI table (bsc#1051510).
o powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753,
git-fixes).
o powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test ().
o powerpc/mm: Change function prototype (bsc#1055117).
o powerpc/mm: Consolidate numa_enable check and min_common_depth check (bsc#
1140322 LTC#176270).
o powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0 (bsc#
1140322 LTC#176270).
o powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
o powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
__ptep_set_access_flags directly (bsc#1055117).
o powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#
1055117).
o powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#
1055117).
o powerpc/papr_scm: Force a scm-unbind if initial scm-bind fails (bsc#1140322
LTC#176270).
o powerpc/papr_scm: Update drc_pmem_unbind() to use H_SCM_UNBIND_ALL (bsc#
1140322 LTC#176270).
o powerpc/pseries: Update SCM hcall op-codes in hvcall.h (bsc#1140322 LTC#
176270).
o powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#
1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#
178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
o ppc: Convert mmu context allocation to new IDA API (bsc#1139619 LTC#
178538).
o ppp: deflate: Fix possible crash in deflate_init
(networking-stable-19_05_21).
o qed: Fix build error without CONFIG_DEVLINK (bsc#1136460 jsc#SLE-4691 bsc#
1136461 jsc#SLE-4692).
o qed: Fix -Wmaybe-uninitialized false positive (bsc#1136460 jsc#SLE-4691 bsc
#1136461 jsc#SLE-4692).
o qedi: Use hwfns and affin_hwfn_idx to get MSI-X vector index (jsc#SLE-4693
bsc#1136462).
o rdma/odp: Fix missed unlock in non-blocking invalidate_start (bsc#1103992).
o rdma/srp: Accept again source addresses that do not have a port number (bsc
#1103992).
o rdma/srp: Document srp_parse_in() arguments (bsc#1103992 ).
o rdma/uverbs: check for allocation failure in uapi_add_elm() (bsc#1103992).
o rds: ib: fix 'passing zero to ERR_PTR()' warning (git-fixes).
o Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" (bsc#
1140652).
o Revert "e1000e: fix cyclic resets at link up with active tx" (bsc#1051510).
o Revert "livepatch: Remove reliable stacktrace check in klp_try_switch_task
()" (bsc#1071995).
o Revert "serial: 8250: Do not service RX FIFO if interrupts are disabled"
(bsc#1051510).
o rtlwifi: rtl8192cu: fix error handle when usb probe failed (bsc#1111666).
o rtnetlink: always put IFLA_LINK for links with a link-netnsid
(networking-stable-19_05_21).
o s390: add alignment hints to vector load and store (jsc#SLE-6907 LTC#
175887).
o s390/airq: use DMA memory for adapter interrupts (jsc#SLE-6197 bsc#1140559
LTC#173150).
o s390/cio: add basic protected virtualization support (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o s390/cio: introduce DMA pools to cio (jsc#SLE-6197 bsc#1140559 LTC#173150).
o s390/cpum_cf: add ctr_stcctm() function (jsc#SLE-6904 ).
o s390/cpum_cf: Add minimal in-kernel interface for counter measurements (jsc
#SLE-6904).
o s390/cpum_cf: Add support for CPU-MF SVN 6 (jsc#SLE-6904 ).
o s390/cpum_cf_diag: Add support for CPU-MF SVN 6 (jsc#SLE-6904 ).
o s390/cpum_cf_diag: Add support for s390 counter facility diagnostic trace
(jsc#SLE-6904).
o s390/cpum_cf: introduce kernel_cpumcf_alert() to obtain measurement alerts
(jsc#SLE-6904).
o s390/cpum_cf: introduce kernel_cpumcf_avail() function (jsc#SLE-6904).
o s390/cpum_cf: move counter set controls to a new header file (jsc#
SLE-6904).
o s390/cpum_cf: prepare for in-kernel counter measurements (jsc#SLE-6904).
o s390/cpum_cf: rename per-CPU counter facility structure and variables (jsc#
SLE-6904).
o s390/cpumf: Add extended counter set definitions for model 8561 and 8562
(bsc#1142052 LTC#179320).
o s390/cpu_mf: add store cpu counter multiple instruction support (jsc#
SLE-6904).
o s390/cpumf: Fix warning from check_processor_id (jsc#SLE-6904 ).
o s390/cpu_mf: move struct cpu_cf_events and per-CPU variable to header file
(jsc#SLE-6904).
o s390/cpu_mf: replace stcctm5() with the stcctm() function (jsc#SLE-6904).
o s390/dma: provide proper ARCH_ZONE_DMA_BITS value (jsc#SLE-6197 bsc#1140559
LTC#173150).
o s390/mm: force swiotlb for protected virtualization (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o s390/qdio: handle PENDING state for QEBSM devices (bsc#1142119 LTC#179331).
o s390/qeth: be drop monitor friendly (bsc#1142115 LTC#179337).
o s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
o s390: remove the unused dma_capable helper (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o s390: report new CPU capabilities (jsc#SLE-6907 LTC#175887).
o s390/vtime: steal time exponential moving average (bsc#1119222).
o s390/zcrypt: Fix wrong dispatching for control domain CPRBs (bsc#1137811
LTC#178088).
o scripts/git_sort/git_sort.py: Add mmots tree.
o scsi: cxgb4i: add wait_for_completion() (jsc#SLE-4678 bsc#1136342).
o scsi: cxgbi: KABI: fix handle completion etc (jsc#SLE-4678 bsc#1136342).
o scsi: cxgbi: remove redundant __kfree_skb call on skb and free cst->atid
(jsc#SLE-4678 bsc#1136342).
o scsi: fc: add FPIN ELS definition (bsc#1136217,jsc#SLE-4722).
o scsi/fc: kABI fixes for new ELS_FPIN definition (bsc#1136217,jsc#SLE-4722).
o scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458 LTC#
178093).
o scsi: lpfc: Add loopback testing to trunking mode (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: add support for posting FC events on FPIN reception (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Annotate switch/case fall-through (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: avoid uninitialized variable warning (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Cancel queued work for an IO when processing a received ABTS
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Change smp_processor_id() into raw_smp_processor_id() (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Convert bootstrap mbx polling from msleep to udelay (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Coordinate adapter error handling with offline handling (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Correct boot bios information to FDMI registration (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Correct localport timeout duration error (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Correct __lpfc_sli_issue_iocb_s4 lockdep check (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: Correct nvmet buffer free race condition (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Declare local functions static (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Enhance 6072 log string (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix 32-bit format string warning (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix a handful of indentation issues (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix alloc context on oas lun creations (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix a recently introduced compiler warning (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix BFS crash with DIX enabled (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix build error (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: fix calls to dma_set_mask_and_coherent() (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix deadlock due to nested hbalock call (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix driver crash in target reset handler (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix duplicate log message numbers (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix error code if kcalloc() fails (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix error codes in lpfc_sli4_pci_mem_setup() (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix fc4type information for FDMI (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix fcp_rsp_len checking on lun reset (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix FDMI fc4type for nvme support (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix FDMI manufacturer attribute value (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix handling of trunk links state reporting (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix hardlockup in scsi_cmd_iocb_cmpl (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix HDMI2 registration string for symbolic name (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix incorrect logical link speed on trunks when links down (bsc
#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix indentation and balance braces (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix io lost on host resets (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix kernel warnings related to smp_processor_id() (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix link speed reporting for 4-link trunk (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix location of SCSI ktime counters (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix lpfc_nvmet_mrq attribute handling when 0 (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix mailbox hang on adapter init (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix memory leak in abnormal exit path from lpfc_eq_create (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix missing wakeups on abort threads (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet async receive buffer replenishment (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet handling of first burst cmd (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix nvmet handling of received ABTS for unmapped frames (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix nvmet target abort cmd matching (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix oops when driver is loaded with 1 interrupt vector (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix poor use of hardware queues if fewer irq vectors (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Fix protocol support on G6 and G7 adapters (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix PT2PT PLOGI collison stopping discovery (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: fix unused variable warning (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fixup eq_clr_intr references (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Fix use-after-free mailbox cmd completion (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Make lpfc_sli4_oas_verify static (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Move trunk_errmsg[] from a header file into a .c file (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Prevent 'use after free' memory overwrite in nvmet LS handling
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Reduce memory footprint for lpfc_queue (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Remove set but not used variable 'phys_id' (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Remove set-but-not-used variables (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Remove unused functions (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Resolve inconsistent check of hdwq in lpfc_scsi_cmd_iocb_cmpl
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Resolve irq-unsafe lockdep heirarchy warning in lpfc_io_free
(bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: resolve static checker warning in lpfc_sli4_hba_unset (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Revert message logging on unsupported topology (bsc#1136217,jsc
#SLE-4722).
o scsi: lpfc: Revise message when stuck due to unresponsive adapter (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Rework misleading nvme not supported in firmware message (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Separate CQ processing for nvmet_fc upcalls (bsc#1136217,jsc#
SLE-4722).
o scsi: lpfc: Specify node affinity for queue memory allocation (bsc#
1136217,jsc#SLE-4722).
o scsi: lpfc: Stop adapter if pci errors detected (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update Copyright in driver version (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update lpfc version to 12.2.0.1 (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: Update lpfc version to 12.2.0.3 (bsc#1136217,jsc#SLE-4722).
o scsi: lpfc: use dma_set_mask_and_coherent (bsc#1136217,jsc#SLE-4722).
o scsi: qedf: Add additional checks for io_req->sc_cmd validity (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Add a flag to help debugging io_req which could not be cleaned
(bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add comment to display logging levels (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Add driver state to 'driver_stats' debugfs node (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Add LBA to underrun debug messages (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload
check (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Add missing return in qedf_scsi_done() (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Add port_id for fcport into initiate_cleanup debug message (bsc
#1136467 jsc#SLE-4694).
o scsi: qedf: Add return value to log message if scsi_add_host fails (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Change MSI-X load error message (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check both the FCF and fabric ID before servicing clear virtual
link (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check for fcoe_libfc_config failure (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Check for tm_flags instead of cmd_type during cleanup (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Check the return value of start_xmit (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Cleanup rrq_work after QEDF_CMD_OUTSTANDING is cleared (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Correctly handle refcounting of rdata (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Do not queue anything if upload is in progress (bsc#1136467 jsc
#SLE-4694).
o scsi: qedf: Do not send ABTS for under run scenario (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: fc_rport_priv reference counting fixes (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Fix lport may be used uninitialized warning (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Log message if scsi_add_host fails (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Modify abort and tmf handler to handle edge condition and flush
(bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Modify flush routine to handle all I/Os and TMF (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Print fcport information on wait for upload timeout (bsc#
1136467 jsc#SLE-4694).
o scsi: qedf: Print scsi_cmd backpointer in good completion path if the
command is still being used (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: remove memset/memcpy to nfunc and use func instead (bsc#1136467
jsc#SLE-4694).
o scsi: qedf: Remove set but not used variable 'fr_len' (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: remove set but not used variables (bsc#1136467 jsc#SLE-4694).
o scsi: qedf: Update the driver version to 8.37.25.19 (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Update the driver version to 8.37.25.20 (bsc#1136467 jsc#
SLE-4694).
o scsi: qedf: Wait for upload and link down processing during soft ctx reset
(bsc#1136467 jsc#SLE-4694).
o scsi: qedi: add module param to set ping packet size (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Add packet filter in light L2 Rx path (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Check for session online before getting iSCSI TLV data (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Cleanup redundant QEDI_PAGE_SIZE macro definition (jsc#SLE-4693
bsc#1136462).
o scsi: qedi: Fix spelling mistake "OUSTANDING" -> "OUTSTANDING" (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Move LL2 producer index processing in BH (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: remove set but not used variables 'cdev' and 'udev' (jsc#
SLE-4693 bsc#1136462).
o scsi: qedi: Replace PAGE_SIZE with QEDI_PAGE_SIZE (jsc#SLE-4693 bsc#
1136462).
o scsi: qedi: Update driver version to 8.33.0.21 (jsc#SLE-4693 bsc#1136462).
o scsi: qla2xxx: do not crash on uninitialized pool list (boo#1138874).
o scsi: scsi_transport_fc: Add FPIN fc event codes (bsc#1136217,jsc#
SLE-4722).
o scsi: scsi_transport_fc: refactor event posting routines (bsc#1136217,jsc#
SLE-4722).
o sctp: Free cookie before we memdup a new one (networking-stable-19_06_18).
o sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
o serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
o serial: uartps: Fix long line over 80 chars (bsc#1051510).
o serial: uartps: Fix multiple line dereference (bsc#1051510).
o serial: uartps: Remove useless return from cdns_uart_poll_put_char (bsc#
1051510).
o staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bsc#
1051510).
o staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#
1051510).
o staging: rtl8712: reduce stack usage, again (bsc#1051510).
o sunhv: Fix device naming inconsistency between sunhv_console and sunhv_reg
(networking-stable-19_06_18).
o tcp: fix tcp_set_congestion_control() use from bpf hook (bsc#1109837).
o tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
o team: Always enable vlan tx offload (bsc#1051510).
o tools: bpftool: Fix json dump crash on powerpc (bsc#1109837).
o tools: bpftool: use correct argument in cgroup errors (bsc#1109837).
o tools/power/x86: A tool to validate Intel Speed Select commands (jsc#
SLE-5364).
o tty: rocket: fix incorrect forward declaration of 'rp_init()' (bsc#
1051510).
o tty: serial_core: Set port active bit in uart_port_activate (bsc#1051510).
o tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
o tuntap: synchronize through tfiles array instead of tun->numqueues
(networking-stable-19_05_14).
o usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bsc#
1051510).
o usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
o usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC (bsc#
1051510).
o usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
o usb: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
o usb: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#
1051510).
o virtio/s390: add indirection to indicators access (jsc#SLE-6197 bsc#1140559
LTC#173150).
o virtio/s390: DMA support for virtio-ccw (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o virtio/s390: make airq summary indicators DMA (jsc#SLE-6197 bsc#1140559 LTC
#173150).
o virtio/s390: use cacheline aligned airq bit vectors (jsc#SLE-6197 bsc#
1140559 LTC#173150).
o virtio/s390: use DMA memory for ccw I/O and classic notifiers (jsc#SLE-6197
bsc#1140559 LTC#173150).
o virtio/s390: use vring_create_virtqueue (jsc#SLE-6197 bsc#1140559 LTC#
173150).
o vmci: Fix integer overflow in VMCI handle arrays (bsc#1051510).
o vrf: sit mtu should not be updated when vrf netdev is the link
(networking-stable-19_05_14).
o vsock/virtio: free packets during the socket release
(networking-stable-19_05_21).
o vsock/virtio: set SOCK_DONE on peer shutdown (networking-stable-19_06_18).
o wil6210: drop old event after wmi_call timeout (bsc#1111666).
o wil6210: fix potential out-of-bounds read (bsc#1051510).
o wil6210: fix spurious interrupts in 3-msi (bsc#1111666).
o x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#
1140903).
o xdp: fix possible cq entry leak (bsc#1109837).
o xdp: fix race on generic receive path (bsc#1109837).
o xdp: hold device for umem regardless of zero-copy mode (bsc#1109837).
o xen: let alloc_xenballooned_pages() fail if not enough memory free (bsc#
1142450 XSA-300).
o xfs: do not overflow xattr listent buffer (bsc#1143105).
o xprtrdma: Fix use-after-free in rpcrdma_post_recvs (bsc#1103992 ).
o xsk: Properly terminate assignment in xskq_produce_flush_desc (bsc#
1109837).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Workstation Extension 15-SP1:
zypper in -t patch SUSE-SLE-Product-WE-15-SP1-2019-2073=1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools
15-SP1:
zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2073=1
o SUSE Linux Enterprise Module for Live Patching 15-SP1:
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP1-2019-2073=1
o SUSE Linux Enterprise Module for Legacy Software 15-SP1:
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP1-2019-2073=1
o SUSE Linux Enterprise Module for Development Tools 15-SP1:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP1-2019-2073=1
o SUSE Linux Enterprise Module for Basesystem 15-SP1:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2019-2073=1
o SUSE Linux Enterprise High Availability 15-SP1:
zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2019-2073=1
Package List:
o SUSE Linux Enterprise Workstation Extension 15-SP1 (x86_64):
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
kernel-default-extra-4.12.14-197.15.1
kernel-default-extra-debuginfo-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(aarch64 ppc64le s390x x86_64):
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
kernel-obs-qa-4.12.14-197.15.1
kernel-vanilla-4.12.14-197.15.1
kernel-vanilla-base-4.12.14-197.15.1
kernel-vanilla-base-debuginfo-4.12.14-197.15.1
kernel-vanilla-debuginfo-4.12.14-197.15.1
kernel-vanilla-debugsource-4.12.14-197.15.1
kernel-vanilla-devel-4.12.14-197.15.1
kernel-vanilla-devel-debuginfo-4.12.14-197.15.1
kernel-vanilla-livepatch-devel-4.12.14-197.15.1
kselftests-kmp-default-4.12.14-197.15.1
kselftests-kmp-default-debuginfo-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(ppc64le x86_64):
kernel-debug-4.12.14-197.15.1
kernel-debug-base-4.12.14-197.15.1
kernel-debug-base-debuginfo-4.12.14-197.15.1
kernel-debug-debuginfo-4.12.14-197.15.1
kernel-debug-debugsource-4.12.14-197.15.1
kernel-debug-devel-4.12.14-197.15.1
kernel-debug-devel-debuginfo-4.12.14-197.15.1
kernel-debug-livepatch-devel-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(aarch64 s390x):
kernel-default-livepatch-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(aarch64):
dtb-al-4.12.14-197.15.1
dtb-allwinner-4.12.14-197.15.1
dtb-altera-4.12.14-197.15.1
dtb-amd-4.12.14-197.15.1
dtb-amlogic-4.12.14-197.15.1
dtb-apm-4.12.14-197.15.1
dtb-arm-4.12.14-197.15.1
dtb-broadcom-4.12.14-197.15.1
dtb-cavium-4.12.14-197.15.1
dtb-exynos-4.12.14-197.15.1
dtb-freescale-4.12.14-197.15.1
dtb-hisilicon-4.12.14-197.15.1
dtb-lg-4.12.14-197.15.1
dtb-marvell-4.12.14-197.15.1
dtb-mediatek-4.12.14-197.15.1
dtb-nvidia-4.12.14-197.15.1
dtb-qcom-4.12.14-197.15.1
dtb-renesas-4.12.14-197.15.1
dtb-rockchip-4.12.14-197.15.1
dtb-socionext-4.12.14-197.15.1
dtb-sprd-4.12.14-197.15.1
dtb-xilinx-4.12.14-197.15.1
dtb-zte-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(x86_64):
kernel-kvmsmall-4.12.14-197.15.1
kernel-kvmsmall-base-4.12.14-197.15.1
kernel-kvmsmall-base-debuginfo-4.12.14-197.15.1
kernel-kvmsmall-debuginfo-4.12.14-197.15.1
kernel-kvmsmall-debugsource-4.12.14-197.15.1
kernel-kvmsmall-devel-4.12.14-197.15.1
kernel-kvmsmall-devel-debuginfo-4.12.14-197.15.1
kernel-kvmsmall-livepatch-devel-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(noarch):
kernel-docs-html-4.12.14-197.15.1
kernel-source-vanilla-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
(s390x):
kernel-zfcpdump-debuginfo-4.12.14-197.15.1
kernel-zfcpdump-debugsource-4.12.14-197.15.1
kernel-zfcpdump-man-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Live Patching 15-SP1 (ppc64le x86_64):
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
kernel-default-livepatch-4.12.14-197.15.1
kernel-default-livepatch-devel-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Legacy Software 15-SP1 (aarch64 ppc64le
s390x x86_64):
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
reiserfs-kmp-default-4.12.14-197.15.1
reiserfs-kmp-default-debuginfo-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Development Tools 15-SP1 (aarch64 ppc64le
s390x x86_64):
kernel-obs-build-4.12.14-197.15.1
kernel-obs-build-debugsource-4.12.14-197.15.1
kernel-syms-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Development Tools 15-SP1 (noarch):
kernel-docs-4.12.14-197.15.1
kernel-source-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Basesystem 15-SP1 (aarch64 ppc64le s390x
x86_64):
kernel-default-4.12.14-197.15.1
kernel-default-base-4.12.14-197.15.1
kernel-default-base-debuginfo-4.12.14-197.15.1
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
kernel-default-devel-4.12.14-197.15.1
kernel-default-devel-debuginfo-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Basesystem 15-SP1 (noarch):
kernel-devel-4.12.14-197.15.1
kernel-macros-4.12.14-197.15.1
o SUSE Linux Enterprise Module for Basesystem 15-SP1 (s390x):
kernel-default-man-4.12.14-197.15.1
kernel-zfcpdump-4.12.14-197.15.1
kernel-zfcpdump-debuginfo-4.12.14-197.15.1
kernel-zfcpdump-debugsource-4.12.14-197.15.1
o SUSE Linux Enterprise High Availability 15-SP1 (aarch64 ppc64le s390x
x86_64):
cluster-md-kmp-default-4.12.14-197.15.1
cluster-md-kmp-default-debuginfo-4.12.14-197.15.1
dlm-kmp-default-4.12.14-197.15.1
dlm-kmp-default-debuginfo-4.12.14-197.15.1
gfs2-kmp-default-4.12.14-197.15.1
gfs2-kmp-default-debuginfo-4.12.14-197.15.1
kernel-default-debuginfo-4.12.14-197.15.1
kernel-default-debugsource-4.12.14-197.15.1
ocfs2-kmp-default-4.12.14-197.15.1
ocfs2-kmp-default-debuginfo-4.12.14-197.15.1
References:
o https://www.suse.com/security/cve/CVE-2018-20855.html
o https://www.suse.com/security/cve/CVE-2019-1125.html
o https://www.suse.com/security/cve/CVE-2019-11810.html
o https://www.suse.com/security/cve/CVE-2019-13631.html
o https://www.suse.com/security/cve/CVE-2019-13648.html
o https://www.suse.com/security/cve/CVE-2019-14283.html
o https://www.suse.com/security/cve/CVE-2019-14284.html
o https://bugzilla.suse.com/1051510
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1071995
o https://bugzilla.suse.com/1083647
o https://bugzilla.suse.com/1083710
o https://bugzilla.suse.com/1102247
o https://bugzilla.suse.com/1103991
o https://bugzilla.suse.com/1103992
o https://bugzilla.suse.com/1104745
o https://bugzilla.suse.com/1109837
o https://bugzilla.suse.com/1111666
o https://bugzilla.suse.com/1112374
o https://bugzilla.suse.com/1119222
o https://bugzilla.suse.com/1123080
o https://bugzilla.suse.com/1127034
o https://bugzilla.suse.com/1127315
o https://bugzilla.suse.com/1127611
o https://bugzilla.suse.com/1129770
o https://bugzilla.suse.com/1130972
o https://bugzilla.suse.com/1133021
o https://bugzilla.suse.com/1134090
o https://bugzilla.suse.com/1134097
o https://bugzilla.suse.com/1134390
o https://bugzilla.suse.com/1134399
o https://bugzilla.suse.com/1135335
o https://bugzilla.suse.com/1135642
o https://bugzilla.suse.com/1136217
o https://bugzilla.suse.com/1136342
o https://bugzilla.suse.com/1136460
o https://bugzilla.suse.com/1136461
o https://bugzilla.suse.com/1136462
o https://bugzilla.suse.com/1136467
o https://bugzilla.suse.com/1137458
o https://bugzilla.suse.com/1137534
o https://bugzilla.suse.com/1137535
o https://bugzilla.suse.com/1137584
o https://bugzilla.suse.com/1137609
o https://bugzilla.suse.com/1137811
o https://bugzilla.suse.com/1137827
o https://bugzilla.suse.com/1138874
o https://bugzilla.suse.com/1139358
o https://bugzilla.suse.com/1139619
o https://bugzilla.suse.com/1140133
o https://bugzilla.suse.com/1140139
o https://bugzilla.suse.com/1140322
o https://bugzilla.suse.com/1140559
o https://bugzilla.suse.com/1140652
o https://bugzilla.suse.com/1140676
o https://bugzilla.suse.com/1140903
o https://bugzilla.suse.com/1140945
o https://bugzilla.suse.com/1140948
o https://bugzilla.suse.com/1141312
o https://bugzilla.suse.com/1141401
o https://bugzilla.suse.com/1141402
o https://bugzilla.suse.com/1141452
o https://bugzilla.suse.com/1141453
o https://bugzilla.suse.com/1141454
o https://bugzilla.suse.com/1141478
o https://bugzilla.suse.com/1141558
o https://bugzilla.suse.com/1142023
o https://bugzilla.suse.com/1142052
o https://bugzilla.suse.com/1142083
o https://bugzilla.suse.com/1142112
o https://bugzilla.suse.com/1142115
o https://bugzilla.suse.com/1142119
o https://bugzilla.suse.com/1142220
o https://bugzilla.suse.com/1142221
o https://bugzilla.suse.com/1142254
o https://bugzilla.suse.com/1142350
o https://bugzilla.suse.com/1142351
o https://bugzilla.suse.com/1142354
o https://bugzilla.suse.com/1142359
o https://bugzilla.suse.com/1142450
o https://bugzilla.suse.com/1142623
o https://bugzilla.suse.com/1142673
o https://bugzilla.suse.com/1142701
o https://bugzilla.suse.com/1142868
o https://bugzilla.suse.com/1143003
o https://bugzilla.suse.com/1143045
o https://bugzilla.suse.com/1143105
o https://bugzilla.suse.com/1143185
o https://bugzilla.suse.com/1143189
o https://bugzilla.suse.com/1143191
o https://bugzilla.suse.com/1143209
o https://bugzilla.suse.com/1143507
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=V8mB
-----END PGP SIGNATURE-----