Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2021.1635
Security update for the Linux Kernel
13 May 2021
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: Linux kernel
Publisher: SUSE
Operating System: SUSE
Impact/Access: Execute Arbitrary Code/Commands -- Existing Account
Increased Privileges -- Existing Account
Overwrite Arbitrary Files -- Existing Account
Denial of Service -- Existing Account
Access Confidential Data -- Existing Account
Reduced Security -- Existing Account
Resolution: Patch/Upgrade
CVE Names: CVE-2021-30002 CVE-2021-29650 CVE-2021-29647
CVE-2021-29265 CVE-2021-29264 CVE-2021-29155
CVE-2021-29154 CVE-2021-28972 CVE-2021-28971
CVE-2021-28964 CVE-2021-28950 CVE-2021-28688
CVE-2021-28660 CVE-2021-28038 CVE-2021-27365
CVE-2021-27364 CVE-2021-27363 CVE-2021-26931
CVE-2021-20261 CVE-2021-20219 CVE-2021-3483
CVE-2021-3444 CVE-2021-3428 CVE-2020-36322
CVE-2020-36312 CVE-2020-36311 CVE-2020-36310
CVE-2020-35519 CVE-2020-27815 CVE-2020-27673
CVE-2020-27171 CVE-2020-27170 CVE-2020-25673
CVE-2020-25672 CVE-2020-25671 CVE-2020-25670
CVE-2020-0433
Reference: ESB-2021.1625
ESB-2021.1624
ESB-2021.1623
ESB-2021.1588
ESB-2021.1466
Original Bulletin:
https://www.suse.com/support/update/announcement/2021/suse-su-20211574-1
https://www.suse.com/support/update/announcement/2021/suse-su-20211573-1
https://www.suse.com/support/update/announcement/2021/suse-su-20211572-1
https://www.suse.com/support/update/announcement/2021/suse-su-20211571-1
https://www.suse.com/support/update/announcement/2021/suse-su-202114724-1
Comment: This bulletin contains five (5) SUSE security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1574-1
Rating: important
References: #1043990 #1055117 #1065729 #1152457 #1152489 #1156395
#1167260 #1168838 #1174416 #1174426 #1178089 #1179243
#1179851 #1180846 #1181161 #1182613 #1183063 #1183203
#1183289 #1184208 #1184209 #1184436 #1184514 #1184650
#1184724 #1184728 #1184730 #1184731 #1184736 #1184737
#1184738 #1184740 #1184741 #1184742 #1184760 #1184811
#1184893 #1184934 #1184942 #1184957 #1184969 #1184984
#1185041 #1185113 #1185233 #1185244 #1185269 #1185365
#1185454 #1185472 #1185491 #1185549 #1185586 #1185587
Cross-References: CVE-2021-29155 CVE-2021-29650
Affected Products:
SUSE MicroOS 5.0
SUSE Linux Enterprise Workstation Extension 15-SP2
SUSE Linux Enterprise Module for Live Patching 15-SP2
SUSE Linux Enterprise Module for Legacy Software 15-SP2
SUSE Linux Enterprise Module for Development Tools 15-SP2
SUSE Linux Enterprise Module for Basesystem 15-SP2
SUSE Linux Enterprise High Availability 15-SP2
______________________________________________________________________________
An update that solves two vulnerabilities and has 52 fixes is now available.
Description:
The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security
and bugfixes.
The following security bugs were fixed:
o CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed
attackers to cause a denial of service (panic) because net/netfilter/
x_tables.c and include/linux/netfilter/x_tables.h lack a full memory
barrier upon the assignment of a new table value (bnc#1184208).
o CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c
that performs undesirable out-of-bounds speculation on pointer arithmetic,
leading to side-channel attacks that defeat Spectre mitigations and obtain
sensitive information from kernel memory. Specifically, for sequences of
pointer arithmetic operations, the pointer modification performed by the
first operation was not correctly accounted for when restricting subsequent
operations (bnc#1184942).
The following non-security bugs were fixed:
o ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes).
o ALSA: core: remove redundant spin_lock pair in snd_card_disconnect
(git-fixes).
o ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer
(git-fixes).
o ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes).
o ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes).
o ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion
codec (git-fixes).
o ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion
codec (git-fixes).
o ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes).
o ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes).
o ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups
(git-fixes).
o ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB
(git-fixes).
o ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye
(git-fixes).
o ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes).
o ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes).
o ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes).
o ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes).
o ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes).
o ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices
(git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries
(git-fixes).
o ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes).
o ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes).
o ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls
(git-fixes).
o ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes).
o ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes).
o ALSA: usb-audio: DJM-750: ensure format is set (git-fixes).
o ALSA: usb-audio: Explicitly set up the clock selector (git-fixes).
o ALSA: usb-audio: Fix implicit sync clearance at stopping stream
(git-fixes).
o ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to
set samplerate (git-fixes).
o ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails
(git-fixes).
o arm: dts: add imx7d pcf2127 fix to blacklist
o ASoC: ak5558: correct reset polarity (git-fixes).
o ASoC: ak5558: Fix s/show/slow/ typo (git-fixes).
o ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function
(git-fixes).
o ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes).
o ASoC: simple-card: fix possible uninitialized single_cpu local variable
(git-fixes).
o ASoC: SOF: Intel: HDA: fix core status verification (git-fixes).
o ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes).
o ata: libahci_platform: fix IRQ check (git-fixes).
o ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock
(git-fixes).
o ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices
(git-fixes).
o backlight: journada720: Fix Wmisleading-indentation warning (git-fixes).
o blkcg: fix memleak for iolatency (git-fixes).
o block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#
1168838).
o block: recalculate segment count for multi-segment discards correctly (bsc#
1184724).
o block: rsxx: select CONFIG_CRC32 (git-fixes).
o bluetooth: eliminate the potential race condition when removing the HCI
controller (git-fixes).
o bnxt_en: reverse order of TX disable and carrier off (git-fixes).
o bsg: free the request before return error code (git-fixes).
o btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549).
o btrfs: fix race between swap file activation and snapshot creation (bsc#
1185587).
o btrfs: fix race between writes to swap files and scrub (bsc#1185586).
o btrfs: track qgroup released data in own variable in
insert_prealloc_file_extent (bsc#1185549).
o bus: qcom: Put child node before return (git-fixes).
o cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes).
o clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes).
o clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1
GHz (git-fixes).
o clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0
(git-fixes).
o clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock
(git-fixes).
o clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes).
o clk: uniphier: Fix potential infinite loop (git-fixes).
o clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback
(git-fixes).
o coresight: etm4x: Fix issues on trcseqevr access (git-fixes).
o coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register
(git-fixes).
o coresight: tmc-etr: Fix barrier packet insertion for perf buffer
(git-fixes).
o cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes).
o cpufreq: armada-37xx: Fix driver cleanup when registration failed
(git-fixes).
o cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes).
o cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes).
o cpufreq: Kconfig: fix documentation links (git-fixes).
o crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes).
o crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS
(git-fixes).
o cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes).
o cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4
and ulds (git-fixes).
o dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes).
o dm: eliminate potential source of excessive kernel log noise (git-fixes).
o dm era: Fix bitset memory leaks (git-fixes).
o dm era: only resize metadata in preresume (git-fixes).
o dm era: Recover committed writeset after crash (git-fixes).
o dm era: Reinitialize bitset cache before digesting a new writeset
(git-fixes).
o dm era: Use correct value size in equality function of writeset tree
(git-fixes).
o dm era: Verify the data block size hasn't changed (git-fixes).
o dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes).
o dm integrity: fix error reporting in bitmap mode after creation
(git-fixes).
o dm ioctl: fix error return code in target_message (git-fixes).
o dm mpath: fix racey management of PG initialization (git-fixes).
o dm raid: fix discard limits for raid1 (git-fixes).
o dm: remove invalid sparse __acquires and __releases annotations
(git-fixes).
o dm writecache: fix the maximum number of arguments (git-fixes).
o dm writecache: handle DAX to partitions on persistent memory correctly
(git-fixes).
o dm writecache: remove BUG() and fail gracefully instead (git-fixes).
o dm zoned: select CONFIG_CRC32 (git-fixes).
o dpaa_eth: copy timestamp fields to new skb in A-050385 workaround
(git-fixes).
o dpaa_eth: fix the RX headroom size alignment (git-fixes).
o dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom
(git-fixes).
o dpaa_eth: Use random MAC address when none is given (bsc#1184811).
o drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs
()' (git-fixes).
o drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes).
o drm/ast: Add 25MHz refclk support (bsc#1174416).
o drm/ast: Add support for 1152x864 mode (bsc#1174416).
o drm/ast: Add support for AIP200 (bsc#1174416).
o drm/ast: AST2500 fixups (bsc#1174416).
o drm/ast: Correct mode table for AST2500 precatch (bsc#1174416).
o drm/ast: Disable screen on register init (bsc#1174416).
o drm/ast: Disable VGA decoding while driver is active (bsc#1174416).
o drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416).
o drm/ast: Fix P2A config detection (bsc#1174416).
o drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416).
o drm/ast: Keep MISC fields when enabling VGA (bsc#1174416).
o drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes).
o drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes).
o drm/msm: Fix a5xx/a6xx timestamps (git-fixes).
o drm/omap: fix misleading indentation in pixinc() (git-fixes).
o drm/radeon: fix copy of uninitialized variable back to userspace
(git-fixes).
o drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes).
o e1000e: add rtnl_lock() to e1000_reset_task (git-fixes).
o e1000e: Fix duplicate include guard (git-fixes).
o e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes).
o enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes).
o enetc: Workaround for MDIO register access issue (git-fixes).
o ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx
(git-fixes).
o ext4: do not try to set xattr into ea_inode if value is empty (bsc#
1184730).
o ext4: find old entry again if failed to rename whiteout (bsc#1184742).
o ext4: fix potential error in ext4_do_update_inode (bsc#1184731).
o ext4: fix potential htree index checksum corruption (bsc#1184728).
o firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes).
o fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851).
o fotg210-udc: Complete OUT requests on short packets (git-fixes).
o fotg210-udc: Do not DMA more than the buffer can take (git-fixes).
o fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes).
o fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes).
o fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes).
o fotg210-udc: Remove a dubious condition leading to fotg210_done
(git-fixes).
o fs: direct-io: fix missing sdio->boundary (bsc#1184736).
o fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741).
o fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811).
o fsl/fman: tolerate missing MAC address in device tree (bsc#1184811).
o gpio: omap: Save and restore sysconfig (git-fixes).
o gpio: sysfs: Obey valid_mask (git-fixes).
o HID: alps: fix error return code in alps_input_configured() (git-fixes).
o HID: google: add don USB id (git-fixes).
o HID: plantronics: Workaround for double volume key presses (git-fixes).
o HID: wacom: Assign boolean values to a bool variable (git-fixes).
o HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
(git-fixes).
o i2c: cadence: add IRQ check (git-fixes).
o i2c: emev2: add IRQ check (git-fixes).
o i2c: img-scb: fix reference leak when pm_runtime_get_sync fails
(git-fixes).
o i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails
(git-fixes).
o i2c: jz4780: add IRQ check (git-fixes).
o i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes).
o i2c: sh7760: add IRQ check (git-fixes).
o i2c: sh7760: fix IRQ error path (git-fixes).
o i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes).
o i40e: Added Asym_Pause to supported link modes (git-fixes).
o i40e: Add zero-initialization of AQ command structures (git-fixes).
o i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes).
o i40e: Fix add TC filter for IPv6 (git-fixes).
o i40e: Fix display statistics for veb_tc (git-fixes).
o i40e: Fix endianness conversions (git-fixes).
o i40e: Fix flow for IPv6 next header (extension header) (git-fixes).
o i40e: Fix kernel oops when i40e driver removes VF's (git-fixes).
o i40e: Fix overwriting flow control settings during driver loading
(git-fixes).
o i40e: Fix sparse errors in i40e_txrx.c (git-fixes).
o i40e: Fix sparse warning: missing error code 'err' (git-fixes).
o i40e: fix the panic when running bpf in xdpdrv mode (git-fixes).
o ibmvnic: avoid calling napi_disable() twice (bsc#1065729).
o ibmvnic: clean up the remaining debugfs data structures (bsc#1065729).
o ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#
SLE-17043 bsc#1179243 ltc#189290 git-fixes).
o ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes).
o ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes).
o ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#
1065729).
o ibmvnic: remove duplicate napi_schedule call in open function (bsc#
1065729).
o ice: Account for port VLAN in VF max packet size calculation (git-fixes).
o ice: Cleanup fltr list in case of allocation issues (git-fixes).
o ice: Fix for dereference of NULL pointer (git-fixes).
o ice: Increase control queue timeout (git-fixes).
o ice: prevent ice_open and ice_stop during reset (git-fixes).
o igb: check timestamp validity (git-fixes).
o igb: Fix duplicate include guard (git-fixes).
o igc: Fix Pause Frame Advertising (git-fixes).
o igc: Fix Supported Pause Frame Link Setting (git-fixes).
o igc: reinit_locked() should be called with rtnl_lock (git-fixes).
o iio:accel:adis16201: Fix wrong axis assignment that prevents loading
(git-fixes).
o ima: Free IMA measurement buffer after kexec syscall (git-fixes).
o Input: i8042 - fix Pegatron C15B ID entry (git-fixes).
o Input: nspire-keypad - enable interrupts only when opened (git-fixes).
o Input: s6sy761 - fix coordinate read bit shift (git-fixes).
o interconnect: core: fix error return code of icc_link_destroy()
(git-fixes).
o iopoll: introduce read_poll_timeout macro (git-fixes).
o ipw2x00: potential buffer overflow in libipw_wx_set_encodeext()
(git-fixes).
o irqchip: Add support for Layerscape external interrupt lines (bsc#1185233).
o irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#
1185233).
o irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#
1185233).
o isofs: release buffer head before return (bsc#1182613).
o ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes).
o jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740).
o kABI: cover up change in struct kvm_arch (bsc#1184969).
o kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426).
o kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#
1184209 ltc#190917).
o kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846).
o KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489).
o KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#
1156395).
o KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395).
o libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#
1185269).
o libnvdimm/namespace: Fix reaping of invalidated block-window-namespace
labels (bsc#1185269).
o libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#
1184969 git-fixes).
o libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr
(git-fixes).
o liquidio: Fix unintented sign extension of a left shift of a u16
(git-fixes).
o locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#
1185041).
o mac80211: bail out if cipher schemes are invalid (git-fixes).
o mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes).
o macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes).
o media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes).
o media: m88rs6000t: avoid potential out-of-bounds reads on arrays
(git-fixes).
o media: mantis: remove orphan mantis_core.c (git-fixes).
o media: omap4iss: return error code when omap4iss_get() failed (git-fixes).
o media: platform: sunxi: sun6i-csi: fix error return code of
sun6i_video_start_streaming() (git-fixes).
o media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes).
o media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes).
o media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes).
o media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes).
o memory: gpmc: fix out of bounds read and dereference on gpmc_cs[]
(git-fixes).
o memory: pl353: fix mask of ECC page_size config register (git-fixes).
o mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000"
(git-fixes).
o mfd: stm32-timers: Avoid clearing auto reload register (git-fixes).
o misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes).
o misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes).
o misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct
(git-fixes).
o mmc: core: Correct descriptions in mmc_of_parse() (git-fixes).
o mmc: cqhci: Add cqhci_deactivate() (git-fixes).
o mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes).
o mmc: sdhci-of-arasan: Add missed checks for devm_clk_register()
(git-fixes).
o mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes).
o mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes).
o mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes).
o mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes).
o mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based
controllers (git-fixes).
o mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes).
o mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe()
(git-fixes).
o mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes).
o mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes).
o Move upstreamed i915 fix into sorted section
o mt7601u: fix always true expression (git-fixes).
o mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes).
o mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes).
o mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes).
o mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes).
o mtd: rawnand: qcom: Return actual error code instead of -ENODEV
(git-fixes).
o mtd: require write permissions for locking and badblock ioctls (git-fixes).
o mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes).
o mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260).
o mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260).
o nbd: fix a block_device refcount leak in nbd_release (git-fixes).
o net: atlantic: fix out of range usage of active_vlans array (git-fixes).
o net: atlantic: fix potential error handling (git-fixes).
o net: atlantic: fix use after free kasan warn (git-fixes).
o net: dsa: felix: implement port flushing on .phylink_mac_link_down
(git-fixes).
o net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr
(git-fixes).
o net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes).
o net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes).
o net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb
(git-fixes).
o net: hns3: clear VF down state bit before request link status (git-fixes).
o net: hns3: fix bug when calculating the TCAM table info (git-fixes).
o net: hns3: fix query vlan mask value error for flow director (git-fixes).
o net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event()
(git-fixes).
o net: ll_temac: Add more error handling of dma_map_single() calls
(git-fixes).
o net: ll_temac: Fix race condition causing TX hang (git-fixes).
o net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure
(git-fixes).
o net: ll_temac: Handle DMA halt condition caused by buffer underrun
(git-fixes).
o net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes).
o net/mlx5: Do not request more than supported EQs (git-fixes).
o net/mlx5e: Do not match on Geneve options in case option masks are all zero
(git-fixes).
o net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes).
o net/mlx5e: Fix ethtool indication of connector type (git-fixes).
o net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#
SLE-8464).
o net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes).
o net: phy: intel-xway: enable integrated led functions (git-fixes).
o net: phy: marvell: fix m88e1011_set_downshift (git-fixes).
o net: phy: marvell: fix m88e1111_set_downshift (git-fixes).
o net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template
(git-fixes).
o net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes).
o net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter
(git-fixes).
o net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter
(git-fixes).
o net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes).
o nfc: pn533: prevent potential memory corruption (git-fixes).
o nfp: flower: ignore duplicate merge hints from FW (git-fixes).
o node: fix device cleanups in error handling code (git-fixes).
o null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes).
o nvme-fabrics: reject I/O to offline device (bsc#1181161).
o nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161).
o ocfs2: fix a use after free on error (bsc#1184738).
o pata_arasan_cf: fix IRQ check (git-fixes).
o pata_ipx4xx_cf: fix IRQ check (git-fixes).
o PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426).
o PCI/AER: Add RCEC AER error injection support (bsc#1174426).
o PCI/AER: Clear AER status from Root Port when resetting Downstream Port
(bsc#1174426).
o PCI/AER: Specify the type of Port that was reset (bsc#1174426).
o PCI/AER: Use "aer" variable for capability offset (bsc#1174426).
o PCI/AER: Write AER Capability only when we control it (bsc#1174426).
o PCI: designware-ep: Fix the Header Type check (git-fixes).
o PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426).
o PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426).
o PCI/ERR: Avoid negated conditional for clarity (bsc#1174426).
o PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426).
o PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#
1174426).
o PCI/ERR: Clear AER status only when we control AER (bsc#1174426).
o PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426).
o PCI/ERR: Clear status of the reporting device (bsc#1174426).
o PCI/ERR: Recover from RCEC AER errors (bsc#1174426).
o PCI/ERR: Recover from RCiEP AER errors (bsc#1174426).
o PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426).
o PCI/ERR: Retain status from error notification (bsc#1174426).
o PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426).
o PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426).
o PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426).
o PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426).
o PCI/portdrv: Report reset for frozen channel (bsc#1174426).
o PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes).
o PCI: tegra: Move "dbi" accesses to post common DWC initialization
(git-fixes).
o phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y,
unconditionally (git-fixes).
o pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes).
o pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes).
o platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with
critclk_systems DMI table (git-fixes).
o PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes).
o powerepc/book3s64/hash: Align start/end address correctly with bolt mapping
(bsc#1184957).
o powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117
git-fixes).
o powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729).
o powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395).
o powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729).
o powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289
ltc#191637).
o powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#
1184969).
o powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969).
o powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729).
o powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729).
o powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#
190917).
o powerpc/time: Enable sched clock for irqtime (bsc#1156395).
o regmap: set debugfs_name to NULL after it is freed (git-fixes).
o regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()'
(git-fixes).
o reintroduce cqhci_suspend for kABI (git-fixes).
o reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737).
o rpm/constraints.in: bump disk space to 45GB on riscv64
o rpm/kernel-obs-build.spec.in: Include essiv with dm-crypt (boo#1183063).
o rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
o rpm/mkspec: Use tilde instead of dot for version string with rc (bsc#
1184650)
o rsi: Use resume_noirq for SDIO (git-fixes).
o rsxx: remove extraneous 'const' qualifier (git-fixes).
o rtc: ds1307: Fix wday settings for rx8130 (git-fixes).
o rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454).
o rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454).
o rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454).
o rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454).
o rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454).
o rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454).
o rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#
1185454).
o rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454).
o rtc: pcf2127: add alarm support (bsc#1185233).
o rtc: pcf2127: add pca2129 device id (bsc#1185233).
o rtc: pcf2127: add tamper detection support (bsc#1185233).
o rtc: pcf2127: add watchdog feature support (bsc#1185233).
o rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233).
o rtc: pcf2127: cleanup register and bit defines (bsc#1185233).
o rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233).
o rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233).
o rtc: pcf2127: fix alarm handling (bsc#1185233).
o rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233).
o rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233).
o rtc: pcf2127: let the core handle rtc range (bsc#1185233).
o rtc: pcf2127: move watchdog initialisation to a separate function (bsc#
1185233).
o rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233).
o rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#
1185233).
o rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233).
o rtc: pcf2127: set regmap max_register (bsc#1185233).
o rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233).
o rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes).
o rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes).
o sata_mv: add IRQ checks (git-fixes).
o scsi: block: Fix a race in the runtime power management code (git-fixes).
o scsi: core: add scsi_host_busy_iter() (bsc#1179851).
o scsi: core: Only return started requests from scsi_host_find_tag() (bsc#
1179851).
o scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472).
o scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472).
o scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472).
o scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472).
o scsi: lpfc: Fix a typo (bsc#1185472).
o scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO
response (bsc#1185472).
o scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365).
o scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode
(bsc#1185472).
o scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472).
o scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472).
o scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203).
o scsi: lpfc: Fix incorrectly documented function
lpfc_debugfs_commonxripools_data() (bsc#1185472).
o scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#
1185472).
o scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472).
o scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#
1185472).
o scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472).
o scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#
1185472).
o scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency
(bsc#1185472).
o scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#
1185472).
o scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#
1185472).
o scsi: lpfc: Fix silent memory allocation failure in
lpfc_sli4_bsg_link_diag_test() (bsc#1185472).
o scsi: lpfc: Fix some error codes in debugfs (bsc#1185472).
o scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#
1185472).
o scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#
1185472).
o scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472).
o scsi: lpfc: Standardize discovery object logging format (bsc#1185472).
o scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472).
o scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491).
o scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#
1185491).
o scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats()
(bsc#1185491).
o scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491).
o scsi: qla2xxx: Check kzalloc() return value (bsc#1185491).
o scsi: qla2xxx: Consolidate zio threshold setting for both FCP NVMe (bsc#
1185491).
o scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491).
o scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#
1185491).
o scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491).
o scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#
1185491).
o scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491).
o scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491).
o scsi: qla2xxx: Fix broken #endif placement (bsc#1185491).
o scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491).
o scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491).
o scsi: qla2xxx: Fix endianness annotations (bsc#1185491).
o scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#
1185491).
o scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491).
o scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491).
o scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491).
o scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491).
o scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491).
o scsi: qla2xxx: Fix some memory corruption (bsc#1185491).
o scsi: qla2xxx: Fix stuck session (bsc#1185491).
o scsi: qla2xxx: Fix use after free in bsg (bsc#1185491).
o scsi: qla2xxx: Implementation to get and manage host, target stats and
initiator port (bsc#1185491).
o scsi: qla2xxx: Move some messages from debug to normal log level (bsc#
1185491).
o scsi: qla2xxx: Remove redundant NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491).
o scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#
1185491).
o scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436).
o scsi: qla2xxx: Reuse existing error handling path (bsc#1185491).
o scsi: qla2xxx: Simplify if statement (bsc#1185491).
o scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491).
o scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491).
o scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491).
o scsi: qla2xxx: Update default AER debug mask (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491).
o scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491).
o scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#
1185491).
o scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089).
o scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089).
o scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089).
o selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460).
o selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#
191460).
o selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#
191460).
o selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460).
o selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460).
o selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#
191460).
o selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460).
o selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460).
o selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#
191460).
o soc: aspeed: fix a ternary sign expansion bug (git-fixes).
o soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes).
o soc: qcom: mdt_loader: Validate that p_filesz p_memsz (git-fixes).
o soundwire: bus: Fix device found flag correctly (git-fixes).
o soundwire: stream: fix memory leak in stream config error path (git-fixes).
o spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260).
o spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260).
o spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260).
o spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware()
(git-fixes).
o spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#
1167260).
o spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible
(bsc#1167260).
o spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx
functions (bsc#1167260).
o spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260).
o spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260).
o spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260).
o spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode
(bsc#1167260).
o spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#
1167260).
o spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros
(bsc#1167260).
o spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260).
o spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#
1167260).
o spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260).
o spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260).
o spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260).
o spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260).
o spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#
1167260).
o spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260).
o spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#
1167260).
o spi: spi-fsl-dspi: Fix code alignment (bsc#1167260).
o spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260).
o spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths
(bsc#1167260).
o spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path
(bsc#1167260).
o spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#
1167260).
o spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc
#1167260).
o spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer
(bsc#1167260).
o spi: spi-fsl-dspi: fix native data copy (bsc#1167260).
o spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260).
o spi: spi-fsl-dspi: Fix typos (bsc#1167260).
o spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260).
o spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#
1167260).
o spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#
1167260).
o spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260).
o spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260).
o spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc
#1167260).
o spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message
(bsc#1167260).
o spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count
(bsc#1167260).
o spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#
1167260).
o spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#
1167260).
o spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260).
o spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#
1167260).
o spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the
driver. References: bsc#1167260
o spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260).
o spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL
(bsc#1167260).
o spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260).
o spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260).
o spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc
#1167260).
o spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#
1167260).
o spi: spi-fsl-dspi: Replace interruptible wait queue with a simple
completion (bsc#1167260).
o spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc
#1167260).
o spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260).
o spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260).
o spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#
1167260).
o spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260).
o spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel
() (bsc#1167260).
o spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#
1167260).
o spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#
1167260).
o spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#
1167260).
o spi: spi-fsl-dspi: Use specific compatible strings for all SoC
instantiations (bsc#1167260).
o spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#
1167260).
o spi: spi-ti-qspi: Free DMA resources (git-fixes).
o staging: fwserial: fix TIOCGSERIAL implementation (git-fixes).
o staging: fwserial: fix TIOCSSERIAL implementation (git-fixes).
o staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes).
o staging: fwserial: fix TIOCSSERIAL permission check (git-fixes).
o staging: rtl8192u: Fix potential infinite loop (git-fixes).
o usb: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984).
o usb: CDC-ACM: fix poison/unpoison imbalance (git-fixes).
o usb: cdc-acm: fix TIOCGSERIAL implementation (git-fixes).
o usb: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes).
o usb: dwc2: Fix hibernation between host and device modes (git-fixes).
o usb: dwc2: Fix host mode hibernation exit with remote wakeup flow
(git-fixes).
o usb: dwc2: Fix session request interrupt handler (git-fixes).
o usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes).
o usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code
(git-fixes).
o usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify
code (git-fixes).
o usb: dwc3: Switch to use device_property_count_u32() (git-fixes).
o usb: gadget: aspeed: fix dma map failure (git-fixes).
o usb: gadget: Fix double free of device descriptor pointers (git-fixes).
o usb: gadget: pch_udc: Check for DMA mapping error (git-fixes).
o usb: gadget: pch_udc: Check if driver is present before calling ->setup()
(git-fixes).
o usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc
(git-fixes).
o usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes).
o usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes).
o usb: gadget: r8a66597: Add missing null check on return from
platform_get_resource (git-fixes).
o usb: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR()
(git-fixes).
o usb: Remove dev_err() usage after platform_get_irq() (git-fixes).
o usb: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: f81232: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: f81534: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: fix return value for unsupported ioctls (git-fixes).
o usb: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: opticon: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes).
o usb: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes).
o usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS
(git-fixes).
o usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply
(git-fixes).
o usb: typec: tcpm: Honour pSnkStdby requirement during negotiation
(git-fixes).
o veth: Store queue_mapping independently of XDP prog presence (git-fixes).
o vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes).
o virt_wifi: Return micros for BSS TSF values (git-fixes).
o vxlan: move debug check after netdev unregister (git-fixes).
o workqueue: Move the position of debug_work_activate() in __queue_work()
(bsc#1184893).
o x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#
1152489).
o x86/insn: Add some Intel instructions to the opcode map (bsc#1184760).
o x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760).
o x86/microcode: Check for offline CPUs before requesting new microcode (bsc#
1152489).
o x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489).
o x86/platform/uv: Set section block size for hubless architectures (bsc#
1152489).
o x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#
1152489).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE MicroOS 5.0:
zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-1574=1
o SUSE Linux Enterprise Workstation Extension 15-SP2:
zypper in -t patch SUSE-SLE-Product-WE-15-SP2-2021-1574=1
o SUSE Linux Enterprise Module for Live Patching 15-SP2:
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2021-1574=1
o SUSE Linux Enterprise Module for Legacy Software 15-SP2:
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP2-2021-1574=1
o SUSE Linux Enterprise Module for Development Tools 15-SP2:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP2-2021-1574=1
o SUSE Linux Enterprise Module for Basesystem 15-SP2:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-1574=1
o SUSE Linux Enterprise High Availability 15-SP2:
zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2021-1574=1
Package List:
o SUSE MicroOS 5.0 (aarch64 x86_64):
kernel-default-5.3.18-24.64.1
kernel-default-base-5.3.18-24.64.1.9.28.1
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
o SUSE Linux Enterprise Workstation Extension 15-SP2 (x86_64):
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
kernel-default-extra-5.3.18-24.64.1
kernel-default-extra-debuginfo-5.3.18-24.64.1
kernel-preempt-extra-5.3.18-24.64.1
kernel-preempt-extra-debuginfo-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Live Patching 15-SP2 (ppc64le s390x
x86_64):
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
kernel-default-livepatch-5.3.18-24.64.1
kernel-default-livepatch-devel-5.3.18-24.64.1
kernel-livepatch-5_3_18-24_64-default-1-5.3.1
kernel-livepatch-5_3_18-24_64-default-debuginfo-1-5.3.1
kernel-livepatch-SLE15-SP2_Update_13-debugsource-1-5.3.1
o SUSE Linux Enterprise Module for Legacy Software 15-SP2 (aarch64 ppc64le
s390x x86_64):
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
reiserfs-kmp-default-5.3.18-24.64.1
reiserfs-kmp-default-debuginfo-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Development Tools 15-SP2 (aarch64 ppc64le
s390x x86_64):
kernel-obs-build-5.3.18-24.64.1
kernel-obs-build-debugsource-5.3.18-24.64.1
kernel-syms-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Development Tools 15-SP2 (aarch64 x86_64):
kernel-preempt-debuginfo-5.3.18-24.64.1
kernel-preempt-debugsource-5.3.18-24.64.1
kernel-preempt-devel-5.3.18-24.64.1
kernel-preempt-devel-debuginfo-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Development Tools 15-SP2 (noarch):
kernel-docs-5.3.18-24.64.2
kernel-source-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x
x86_64):
kernel-default-5.3.18-24.64.1
kernel-default-base-5.3.18-24.64.1.9.28.1
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
kernel-default-devel-5.3.18-24.64.1
kernel-default-devel-debuginfo-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 x86_64):
kernel-preempt-5.3.18-24.64.1
kernel-preempt-debuginfo-5.3.18-24.64.1
kernel-preempt-debugsource-5.3.18-24.64.1
o SUSE Linux Enterprise Module for Basesystem 15-SP2 (noarch):
kernel-devel-5.3.18-24.64.1
kernel-macros-5.3.18-24.64.1
o SUSE Linux Enterprise High Availability 15-SP2 (aarch64 ppc64le s390x
x86_64):
cluster-md-kmp-default-5.3.18-24.64.1
cluster-md-kmp-default-debuginfo-5.3.18-24.64.1
dlm-kmp-default-5.3.18-24.64.1
dlm-kmp-default-debuginfo-5.3.18-24.64.1
gfs2-kmp-default-5.3.18-24.64.1
gfs2-kmp-default-debuginfo-5.3.18-24.64.1
kernel-default-debuginfo-5.3.18-24.64.1
kernel-default-debugsource-5.3.18-24.64.1
ocfs2-kmp-default-5.3.18-24.64.1
ocfs2-kmp-default-debuginfo-5.3.18-24.64.1
References:
o https://www.suse.com/security/cve/CVE-2021-29155.html
o https://www.suse.com/security/cve/CVE-2021-29650.html
o https://bugzilla.suse.com/1043990
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1065729
o https://bugzilla.suse.com/1152457
o https://bugzilla.suse.com/1152489
o https://bugzilla.suse.com/1156395
o https://bugzilla.suse.com/1167260
o https://bugzilla.suse.com/1168838
o https://bugzilla.suse.com/1174416
o https://bugzilla.suse.com/1174426
o https://bugzilla.suse.com/1178089
o https://bugzilla.suse.com/1179243
o https://bugzilla.suse.com/1179851
o https://bugzilla.suse.com/1180846
o https://bugzilla.suse.com/1181161
o https://bugzilla.suse.com/1182613
o https://bugzilla.suse.com/1183063
o https://bugzilla.suse.com/1183203
o https://bugzilla.suse.com/1183289
o https://bugzilla.suse.com/1184208
o https://bugzilla.suse.com/1184209
o https://bugzilla.suse.com/1184436
o https://bugzilla.suse.com/1184514
o https://bugzilla.suse.com/1184650
o https://bugzilla.suse.com/1184724
o https://bugzilla.suse.com/1184728
o https://bugzilla.suse.com/1184730
o https://bugzilla.suse.com/1184731
o https://bugzilla.suse.com/1184736
o https://bugzilla.suse.com/1184737
o https://bugzilla.suse.com/1184738
o https://bugzilla.suse.com/1184740
o https://bugzilla.suse.com/1184741
o https://bugzilla.suse.com/1184742
o https://bugzilla.suse.com/1184760
o https://bugzilla.suse.com/1184811
o https://bugzilla.suse.com/1184893
o https://bugzilla.suse.com/1184934
o https://bugzilla.suse.com/1184942
o https://bugzilla.suse.com/1184957
o https://bugzilla.suse.com/1184969
o https://bugzilla.suse.com/1184984
o https://bugzilla.suse.com/1185041
o https://bugzilla.suse.com/1185113
o https://bugzilla.suse.com/1185233
o https://bugzilla.suse.com/1185244
o https://bugzilla.suse.com/1185269
o https://bugzilla.suse.com/1185365
o https://bugzilla.suse.com/1185454
o https://bugzilla.suse.com/1185472
o https://bugzilla.suse.com/1185491
o https://bugzilla.suse.com/1185549
o https://bugzilla.suse.com/1185586
o https://bugzilla.suse.com/1185587
- --------------------------------------------------------------------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1573-1
Rating: important
References: #1047233 #1173485 #1176720 #1177411 #1178181 #1179454
#1181032 #1182672 #1182715 #1182716 #1182717 #1183022
#1183063 #1183069 #1183509 #1183593 #1183646 #1183686
#1183696 #1183775 #1184120 #1184167 #1184168 #1184170
#1184192 #1184193 #1184194 #1184196 #1184198 #1184208
#1184211 #1184388 #1184391 #1184393 #1184397 #1184509
#1184511 #1184512 #1184514 #1184583 #1184650 #1184942
#1185113 #1185244 #1185248
Cross-References: CVE-2020-0433 CVE-2020-25670 CVE-2020-25671 CVE-2020-25672
CVE-2020-25673 CVE-2020-27170 CVE-2020-27171 CVE-2020-27673
CVE-2020-27815 CVE-2020-35519 CVE-2020-36310 CVE-2020-36311
CVE-2020-36312 CVE-2020-36322 CVE-2021-20219 CVE-2021-27363
CVE-2021-27364 CVE-2021-27365 CVE-2021-28038 CVE-2021-28660
CVE-2021-28688 CVE-2021-28950 CVE-2021-28964 CVE-2021-28971
CVE-2021-28972 CVE-2021-29154 CVE-2021-29155 CVE-2021-29264
CVE-2021-29265 CVE-2021-29647 CVE-2021-29650 CVE-2021-30002
CVE-2021-3428 CVE-2021-3444 CVE-2021-3483
Affected Products:
SUSE Linux Enterprise Server for SAP 15
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Availability 15
______________________________________________________________________________
An update that solves 35 vulnerabilities and has 10 fixes is now available.
Description:
The SUSE Linux Enterprise 15 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
o CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a
kvm_io_bus_unregister_dev memory leak upon a kmalloc failure (bnc#1184509).
o CVE-2021-29650: Fixed an issue inside the netfilter subsystem that allowed
attackers to cause a denial of service (panic) because net/netfilter/
x_tables.c and include/linux/netfilter/x_tables.h lack a full memory
barrier upon the assignment of a new table value (bnc#1184208).
o CVE-2021-29155: Fixed an issue within kernel/bpf/verifier.c that performed
undesirable out-of-bounds speculation on pointer arithmetic, leading to
side-channel attacks that defeat Spectre mitigations and obtain sensitive
information from kernel memory. Specifically, for sequences of pointer
arithmetic operations, the pointer modification performed by the first
operation is not correctly accounted for when restricting subsequent
operations (bnc#1184942).
o CVE-2020-36310: Fixed an issue in arch/x86/kvm/svm/svm.c that allowed a
set_memory_region_test infinite loop for certain nested page faults (bnc#
1184512).
o CVE-2020-27673: Fixed an issue in Xen where a guest OS users could have
caused a denial of service (host OS hang) via a high rate of events to dom0
(bnc#1177411, bnc#1184583).
o CVE-2021-29154: Fixed BPF JIT compilers that allowed to execute arbitrary
code within the kernel context (bnc#1184391).
o CVE-2020-25673: Fixed NFC endless loops caused by repeated
llcp_sock_connect() (bsc#1178181).
o CVE-2020-25672: Fixed NFC memory leak in llcp_sock_connect() (bsc#1178181).
o CVE-2020-25671: Fixed NFC refcount leak in llcp_sock_connect() (bsc#
1178181).
o CVE-2020-25670: Fixed NFC refcount leak in llcp_sock_bind() (bsc#1178181).
o CVE-2020-36311: Fixed an issue in arch/x86/kvm/svm/sev.c that allowed
attackers to cause a denial of service (soft lockup) by triggering
destruction of a large SEV VM (which requires unregistering many encrypted
regions) (bnc#1184511).
o CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h where a "stall on CPU"
could have occured because a retry loop continually finds the same bad
inode (bnc#1184194, bnc#1184211).
o CVE-2020-36322: Fixed an issue inside the FUSE filesystem implementation
where fuse_do_getattr() calls make_bad_inode() in inappropriate situations,
could have caused a system crash. NOTE: the original fix for this
vulnerability was incomplete, and its incompleteness is tracked as
CVE-2021-28950 (bnc#1184211).
o CVE-2021-30002: Fixed a memory leak issue when a webcam device exists (bnc#
1184120).
o CVE-2021-3483: Fixed a use-after-free bug in nosy_ioctl() (bsc#1184393).
o CVE-2021-20219: Fixed a denial of service vulnerability in drivers/tty/
n_tty.c of the Linux kernel. In this flaw a local attacker with a normal
user privilege could have delayed the loop and cause a threat to the system
availability (bnc#1184397).
o CVE-2021-28964: Fixed a race condition in fs/btrfs/ctree.c that could have
caused a denial of service because of a lack of locking on an extent buffer
before a cloning operation (bnc#1184193).
o CVE-2021-3444: Fixed the bpf verifier as it did not properly handle mod32
destination register truncation when the source register was known to be 0.
A local attacker with the ability to load bpf programs could use this gain
out-of-bounds reads in kernel memory leading to information disclosure
(kernel memory), and possibly out-of-bounds writes that could potentially
lead to code execution (bnc#1184170).
o CVE-2021-28971: Fixed a potential local denial of service in
intel_pmu_drain_pebs_nhm where userspace applications can cause a system
crash because the PEBS status in a PEBS record is mishandled (bnc#1184196).
o CVE-2021-28688: Fixed XSA-365 that includes initialization of pointers such
that subsequent cleanup code wouldn't use uninitialized or stale values.
This initialization went too far and may under certain conditions also
overwrite pointers which are in need of cleaning up. The lack of cleanup
would result in leaking persistent grants. The leak in turn would prevent
fully cleaning up after a respective guest has died, leaving around zombie
domains (bnc#1183646).
o CVE-2021-29265: Fixed an issue in usbip_sockfd_store in drivers/usb/usbip/
stub_dev.c that allowed attackers to cause a denial of service (GPF)
because the stub-up sequence has race conditions during an update of the
local and shared status (bnc#1184167).
o CVE-2021-29264: Fixed an issue in drivers/net/ethernet/freescale/gianfar.c
in the Freescale Gianfar Ethernet driver that allowed attackers to cause a
system crash because a negative fragment size is calculated in situations
involving an rx queue overrun when jumbo packets are used and NAPI is
enabled (bnc#1184168).
o CVE-2021-28972: Fixed an issue in drivers/pci/hotplug/rpadlpar_sysfs.c
where the RPA PCI Hotplug driver had a user-tolerable buffer overflow when
writing a new device name to the driver from userspace, allowing userspace
to write data to the kernel stack frame directly. This occurs because
add_slot_store and remove_slot_store mishandle drc_name '\0' termination
(bnc#1184198).
o CVE-2021-29647: Fixed an issue in kernel qrtr_recvmsg in net/qrtr/qrtr.c
that allowed attackers to obtain sensitive information from kernel memory
because of a partially uninitialized data structure (bnc#1184192).
o CVE-2020-27171: Fixed an issue in kernel/bpf/verifier.c that had an
off-by-one error (with a resultant integer underflow) affecting
out-of-bounds speculation on pointer arithmetic, leading to side-channel
attacks that defeat Spectre mitigations and obtain sensitive information
from kernel memory (bnc#1183686, bnc#1183775).
o CVE-2020-27170: Fixed an issue in kernel/bpf/verifier.c that performed
undesirable out-of-bounds speculation on pointer arithmetic, leading to
side-channel attacks that defeat Spectre mitigations and obtain sensitive
information from kernel memory. This affects pointer types that do not
define a ptr_limit (bnc#1183686 bnc#1183775).
o CVE-2021-28660: Fixed rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/
ioctl_linux.c that allowed writing beyond the end of the ssid array (bnc#
1183593).
o CVE-2020-35519: Update patch reference for x25 fix (bsc#1183696).
o CVE-2021-3428: Fixed ext4 integer overflow in ext4_es_cache_extent (bsc#
1173485, bsc#1183509).
o CVE-2020-0433: Fixed blk_mq_queue_tag_busy_iter of blk-mq-tag.c, where a
possible use after free due to improper locking could have happened. This
could have led to local escalation of privilege with no additional
execution privileges needed. User interaction is not needed for
exploitation (bnc#1176720).
o CVE-2021-28038: Fixed an issue with Xen PV. A certain part of the netback
driver lacks necessary treatment of errors such as failed memory
allocations (as a result of changes to the handling of grant mapping
errors). A host OS denial of service may occur during misbehavior of a
networking frontend driver. NOTE: this issue exists because of an
incomplete fix for CVE-2021-26931 (bnc#1183022, bnc#1183069).
o CVE-2020-27815: Fixed jfs array index bounds check in dbAdjTree (bsc#
1179454).
o CVE-2021-27365: Fixed an issue inside the iSCSI data structures that does
not have appropriate length constraints or checks, and can exceed the
PAGE_SIZE value. An unprivileged user can send a Netlink message that is
associated with iSCSI, and has a length up to the maximum length of a
Netlink message (bnc#1182715).
o CVE-2021-27363: Fixed an issue with a kernel pointer leak that could have
been used to determine the address of the iscsi_transport structure. When
an iSCSI transport is registered with the iSCSI subsystem, the transport's
handle is available to unprivileged users via the sysfs file system, at /
sys/class/iscsi_transport/$TRANSPORT_NAME/handle. When read, the
show_transport_handle function (in drivers/scsi/scsi_transport_iscsi.c) is
called, which leaks the handle. This handle is actually the pointer to an
iscsi_transport struct in the kernel module's global variables (bnc#
1182716).
o CVE-2021-27364: Fixed an issue in drivers/scsi/scsi_transport_iscsi.c where
an unprivileged user can craft Netlink messages (bnc#1182717).
The following non-security bugs were fixed:
o Revert "rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package
(bsc#1184514)" This turned out to be a bad idea: the kernel-$flavor-devel
package must be usable without kernel-$flavor, e.g. at the build of a KMP.
And this change brought superfluous installation of kernel-preempt when a
system had kernel-syms (bsc#1185113).
o Xen/gnttab: handle p2m update errors on a per-slot basis (bsc#1183022
XSA-367).
o bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775).
o bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#
1183775).
o ext4: check journal inode extents more carefully (bsc#1173485).
o ext4: do not allow overlapping system zones (bsc#1173485).
o ext4: handle error of ext4_setup_system_zone() on remount (bsc#1173485).
o hv: clear ring_buffer pointer during cleanup (part of ae6935ed) (bsc#
1181032).
o hv_netvsc: remove ndo_poll_controller (bsc#1185248).
o macros.kernel-source: Use spec_install_pre for certificate installation
(boo#1182672).
o post.sh: Return an error when module update fails (bsc#1047233 bsc#
1184388).
o rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#
1184514).
o rpm/kernel-obs-build.spec.in: Include essiv with dm-crypt (boo#1183063).
o rpm/kernel-subpackage-build: Workaround broken bot (https://github.com/
openSUSE/openSUSE-release-tools/issues/2439)
o rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
o rpm/mkspec: Use tilde instead of dot for version string with rc (bsc#
1184650)
o xen-netback: respect gnttab_map_refs()'s return value (bsc#1183022
XSA-367).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server for SAP 15:
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2021-1573=1
o SUSE Linux Enterprise Server 15-LTSS:
zypper in -t patch SUSE-SLE-Product-SLES-15-2021-1573=1
o SUSE Linux Enterprise Module for Live Patching 15:
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-2021-1573=1
o SUSE Linux Enterprise High Performance Computing 15-LTSS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2021-1573=1
o SUSE Linux Enterprise High Performance Computing 15-ESPOS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2021-1573=1
o SUSE Linux Enterprise High Availability 15:
zypper in -t patch SUSE-SLE-Product-HA-15-2021-1573=1
Package List:
o SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
kernel-default-4.12.14-150.72.1
kernel-default-base-4.12.14-150.72.1
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
kernel-default-devel-4.12.14-150.72.1
kernel-default-devel-debuginfo-4.12.14-150.72.1
kernel-obs-build-4.12.14-150.72.1
kernel-obs-build-debugsource-4.12.14-150.72.1
kernel-syms-4.12.14-150.72.1
kernel-vanilla-base-4.12.14-150.72.1
kernel-vanilla-base-debuginfo-4.12.14-150.72.1
kernel-vanilla-debuginfo-4.12.14-150.72.1
kernel-vanilla-debugsource-4.12.14-150.72.1
reiserfs-kmp-default-4.12.14-150.72.1
reiserfs-kmp-default-debuginfo-4.12.14-150.72.1
o SUSE Linux Enterprise Server for SAP 15 (noarch):
kernel-devel-4.12.14-150.72.1
kernel-docs-4.12.14-150.72.2
kernel-macros-4.12.14-150.72.1
kernel-source-4.12.14-150.72.1
o SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
kernel-default-4.12.14-150.72.1
kernel-default-base-4.12.14-150.72.1
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
kernel-default-devel-4.12.14-150.72.1
kernel-default-devel-debuginfo-4.12.14-150.72.1
kernel-obs-build-4.12.14-150.72.1
kernel-obs-build-debugsource-4.12.14-150.72.1
kernel-syms-4.12.14-150.72.1
kernel-vanilla-base-4.12.14-150.72.1
kernel-vanilla-base-debuginfo-4.12.14-150.72.1
kernel-vanilla-debuginfo-4.12.14-150.72.1
kernel-vanilla-debugsource-4.12.14-150.72.1
reiserfs-kmp-default-4.12.14-150.72.1
reiserfs-kmp-default-debuginfo-4.12.14-150.72.1
o SUSE Linux Enterprise Server 15-LTSS (noarch):
kernel-devel-4.12.14-150.72.1
kernel-docs-4.12.14-150.72.2
kernel-macros-4.12.14-150.72.1
kernel-source-4.12.14-150.72.1
o SUSE Linux Enterprise Server 15-LTSS (s390x):
kernel-default-man-4.12.14-150.72.1
kernel-zfcpdump-debuginfo-4.12.14-150.72.1
kernel-zfcpdump-debugsource-4.12.14-150.72.1
o SUSE Linux Enterprise Module for Live Patching 15 (ppc64le x86_64):
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
kernel-default-livepatch-4.12.14-150.72.1
kernel-livepatch-4_12_14-150_72-default-1-1.3.1
kernel-livepatch-4_12_14-150_72-default-debuginfo-1-1.3.1
o SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
kernel-default-4.12.14-150.72.1
kernel-default-base-4.12.14-150.72.1
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
kernel-default-devel-4.12.14-150.72.1
kernel-default-devel-debuginfo-4.12.14-150.72.1
kernel-obs-build-4.12.14-150.72.1
kernel-obs-build-debugsource-4.12.14-150.72.1
kernel-syms-4.12.14-150.72.1
kernel-vanilla-base-4.12.14-150.72.1
kernel-vanilla-base-debuginfo-4.12.14-150.72.1
kernel-vanilla-debuginfo-4.12.14-150.72.1
kernel-vanilla-debugsource-4.12.14-150.72.1
o SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch):
kernel-devel-4.12.14-150.72.1
kernel-docs-4.12.14-150.72.2
kernel-macros-4.12.14-150.72.1
kernel-source-4.12.14-150.72.1
o SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
kernel-default-4.12.14-150.72.1
kernel-default-base-4.12.14-150.72.1
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
kernel-default-devel-4.12.14-150.72.1
kernel-default-devel-debuginfo-4.12.14-150.72.1
kernel-obs-build-4.12.14-150.72.1
kernel-obs-build-debugsource-4.12.14-150.72.1
kernel-syms-4.12.14-150.72.1
kernel-vanilla-base-4.12.14-150.72.1
kernel-vanilla-base-debuginfo-4.12.14-150.72.1
kernel-vanilla-debuginfo-4.12.14-150.72.1
kernel-vanilla-debugsource-4.12.14-150.72.1
o SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch):
kernel-devel-4.12.14-150.72.1
kernel-docs-4.12.14-150.72.2
kernel-macros-4.12.14-150.72.1
kernel-source-4.12.14-150.72.1
o SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64):
cluster-md-kmp-default-4.12.14-150.72.1
cluster-md-kmp-default-debuginfo-4.12.14-150.72.1
dlm-kmp-default-4.12.14-150.72.1
dlm-kmp-default-debuginfo-4.12.14-150.72.1
gfs2-kmp-default-4.12.14-150.72.1
gfs2-kmp-default-debuginfo-4.12.14-150.72.1
kernel-default-debuginfo-4.12.14-150.72.1
kernel-default-debugsource-4.12.14-150.72.1
ocfs2-kmp-default-4.12.14-150.72.1
ocfs2-kmp-default-debuginfo-4.12.14-150.72.1
References:
o https://www.suse.com/security/cve/CVE-2020-0433.html
o https://www.suse.com/security/cve/CVE-2020-25670.html
o https://www.suse.com/security/cve/CVE-2020-25671.html
o https://www.suse.com/security/cve/CVE-2020-25672.html
o https://www.suse.com/security/cve/CVE-2020-25673.html
o https://www.suse.com/security/cve/CVE-2020-27170.html
o https://www.suse.com/security/cve/CVE-2020-27171.html
o https://www.suse.com/security/cve/CVE-2020-27673.html
o https://www.suse.com/security/cve/CVE-2020-27815.html
o https://www.suse.com/security/cve/CVE-2020-35519.html
o https://www.suse.com/security/cve/CVE-2020-36310.html
o https://www.suse.com/security/cve/CVE-2020-36311.html
o https://www.suse.com/security/cve/CVE-2020-36312.html
o https://www.suse.com/security/cve/CVE-2020-36322.html
o https://www.suse.com/security/cve/CVE-2021-20219.html
o https://www.suse.com/security/cve/CVE-2021-27363.html
o https://www.suse.com/security/cve/CVE-2021-27364.html
o https://www.suse.com/security/cve/CVE-2021-27365.html
o https://www.suse.com/security/cve/CVE-2021-28038.html
o https://www.suse.com/security/cve/CVE-2021-28660.html
o https://www.suse.com/security/cve/CVE-2021-28688.html
o https://www.suse.com/security/cve/CVE-2021-28950.html
o https://www.suse.com/security/cve/CVE-2021-28964.html
o https://www.suse.com/security/cve/CVE-2021-28971.html
o https://www.suse.com/security/cve/CVE-2021-28972.html
o https://www.suse.com/security/cve/CVE-2021-29154.html
o https://www.suse.com/security/cve/CVE-2021-29155.html
o https://www.suse.com/security/cve/CVE-2021-29264.html
o https://www.suse.com/security/cve/CVE-2021-29265.html
o https://www.suse.com/security/cve/CVE-2021-29647.html
o https://www.suse.com/security/cve/CVE-2021-29650.html
o https://www.suse.com/security/cve/CVE-2021-30002.html
o https://www.suse.com/security/cve/CVE-2021-3428.html
o https://www.suse.com/security/cve/CVE-2021-3444.html
o https://www.suse.com/security/cve/CVE-2021-3483.html
o https://bugzilla.suse.com/1047233
o https://bugzilla.suse.com/1173485
o https://bugzilla.suse.com/1176720
o https://bugzilla.suse.com/1177411
o https://bugzilla.suse.com/1178181
o https://bugzilla.suse.com/1179454
o https://bugzilla.suse.com/1181032
o https://bugzilla.suse.com/1182672
o https://bugzilla.suse.com/1182715
o https://bugzilla.suse.com/1182716
o https://bugzilla.suse.com/1182717
o https://bugzilla.suse.com/1183022
o https://bugzilla.suse.com/1183063
o https://bugzilla.suse.com/1183069
o https://bugzilla.suse.com/1183509
o https://bugzilla.suse.com/1183593
o https://bugzilla.suse.com/1183646
o https://bugzilla.suse.com/1183686
o https://bugzilla.suse.com/1183696
o https://bugzilla.suse.com/1183775
o https://bugzilla.suse.com/1184120
o https://bugzilla.suse.com/1184167
o https://bugzilla.suse.com/1184168
o https://bugzilla.suse.com/1184170
o https://bugzilla.suse.com/1184192
o https://bugzilla.suse.com/1184193
o https://bugzilla.suse.com/1184194
o https://bugzilla.suse.com/1184196
o https://bugzilla.suse.com/1184198
o https://bugzilla.suse.com/1184208
o https://bugzilla.suse.com/1184211
o https://bugzilla.suse.com/1184388
o https://bugzilla.suse.com/1184391
o https://bugzilla.suse.com/1184393
o https://bugzilla.suse.com/1184397
o https://bugzilla.suse.com/1184509
o https://bugzilla.suse.com/1184511
o https://bugzilla.suse.com/1184512
o https://bugzilla.suse.com/1184514
o https://bugzilla.suse.com/1184583
o https://bugzilla.suse.com/1184650
o https://bugzilla.suse.com/1184942
o https://bugzilla.suse.com/1185113
o https://bugzilla.suse.com/1185244
o https://bugzilla.suse.com/1185248
- --------------------------------------------------------------------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1572-1
Rating: important
References: #1043990 #1046303 #1047233 #1055117 #1056787 #1065729
#1087405 #1097583 #1097584 #1097585 #1097586 #1097587
#1097588 #1101816 #1103990 #1104353 #1109837 #1111981
#1114648 #1118657 #1118661 #1151794 #1152457 #1175306
#1178089 #1180624 #1180846 #1181062 #1181161 #1182613
#1182672 #1183063 #1183203 #1183289 #1184170 #1184194
#1184208 #1184209 #1184211 #1184350 #1184388 #1184509
#1184512 #1184514 #1184647 #1184650 #1184724 #1184731
#1184736 #1184737 #1184738 #1184742 #1184760 #1184942
#1184952 #1184957 #1184984 #1185041 #1185113 #1185195
#1185197 #1185244 #1185269 #1185335 #1185365 #1185472
#1185491 #1185549
Cross-References: CVE-2020-36310 CVE-2020-36312 CVE-2020-36322 CVE-2021-28950
CVE-2021-29155 CVE-2021-29650
Affected Products:
SUSE Linux Enterprise Server 12-SP5
______________________________________________________________________________
An update that solves 6 vulnerabilities and has 62 fixes is now available.
Description:
The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
o CVE-2020-36312: Fixed an issue within virt/kvm/kvm_main.c that had a
kvm_io_bus_unregister_dev memory leak upon a kmalloc failure (bnc#1184509).
o CVE-2021-29650: Fixed an issue within the netfilter subsystem that allowed
attackers to cause a denial of service (panic) because net/netfilter/
x_tables.c and include/linux/netfilter/x_tables.h lack a full memory
barrier upon the assignment of a new table value (bnc#1184208).
o CVE-2021-29155: Fixed an issue within kernel/bpf/verifier.c that performed
undesirable out-of-bounds speculation on pointer arithmetic, leading to
side-channel attacks that defeat Spectre mitigations and obtain sensitive
information from kernel memory. Specifically, for sequences of pointer
arithmetic operations, the pointer modification performed by the first
operation is not correctly accounted for when restricting subsequent
operations (bnc#1184942).
o CVE-2020-36310: Fixed an issue within arch/x86/kvm/svm/svm.c that allowed a
set_memory_region_test infinite loop for certain nested page faults (bnc#
1184512).
o CVE-2021-28950: Fixed an issue within fs/fuse/fuse_i.h where a "stall on
CPU" could have occured because a retry loop continually finds the same bad
inode (bnc#1184194, bnc#1184211).
o CVE-2020-36322: Fixed an issue within the FUSE filesystem implementation
where fuse_do_getattr() calls make_bad_inode() in inappropriate situations,
causing a system crash. NOTE: the original fix for this vulnerability was
incomplete, and its incompleteness is tracked as CVE-2021-28950 (bnc#
1184211, bnc#1184952).
o CVE-2021-3444: Fixed incorrect mod32 BPF verifier truncation (bsc#1184170).
The following non-security bugs were fixed:
o arm64: PCI: mobiveil: remove driver Prepare to replace it with upstreamed
driver
o blk-settings: align max_sectors on "logical_block_size" boundary (bsc#
1185195).
o block: fix use-after-free on cached last_lookup partition (bsc#1181062).
o block: recalculate segment count for multi-segment discards correctly (bsc#
1184724).
o btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549).
o btrfs: track qgroup released data in own variable in
insert_prealloc_file_extent (bsc#1185549).
o cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes).
o cxgb4: avoid collecting SGE_QBASE regs during traffic (bsc#1097585 bsc#
1097586 bsc#1097587 bsc#1097588 bsc#1097583 bsc#1097584).
o drivers/perf: thunderx2_pmu: Fix memory resource error handling
(git-fixes).
o ext4: find old entry again if failed to rename whiteout (bsc#1184742).
o ext4: fix potential error in ext4_do_update_inode (bsc#1184731).
o fs: direct-io: fix missing sdio->boundary (bsc#1184736).
o handle also the opposite type of race condition
o i40e: Fix display statistics for veb_tc (bsc#1111981).
o i40e: Fix kernel oops when i40e driver removes VF's (bsc#1101816 ).
o i40e: Fix sparse warning: missing error code 'err' (jsc#SLE-4797).
o ibmvnic: avoid calling napi_disable() twice (bsc#1065729).
o ibmvnic: clean up the remaining debugfs data structures (bsc#1065729).
o ibmvnic: Continue with reset if set link down failed (bsc#1184350 ltc#
191533).
o ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes).
o ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes).
o ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#
1065729).
o ibmvnic: remove duplicate napi_schedule call in open function (bsc#
1065729).
o ice: Cleanup fltr list in case of allocation issues (bsc#1118661 ).
o ice: Fix for dereference of NULL pointer (bsc#1118661 ).
o igc: Fix Pause Frame Advertising (jsc#SLE-4799).
o igc: Fix Supported Pause Frame Link Setting (jsc#SLE-4799).
o igc: reinit_locked() should be called with rtnl_lock (bsc#1118657).
o iopoll: introduce read_poll_timeout macro (git-fixes).
o isofs: release buffer head before return (bsc#1182613).
o kabi: Fix breakage in NVMe driver (bsc#1181161).
o kabi: Fix nvmet error log definitions (bsc#1181161).
o kabi: nvme: fix fast_io_fail_tmo (bsc#1181161).
o kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#
1184209 ltc#190917).
o kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846).
o libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1109837).
o libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#
1185269).
o libnvdimm/namespace: Fix reaping of invalidated block-window-namespace
labels (bsc#1185269).
o libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr
(git-fixes).
o locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#
1185041).
o macros.kernel-source: Use spec_install_pre for certificate installation
(boo#1182672).
o mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes).
o mmc: sdhci-of-esdhc: set the sd clock divisor value above 3 (git-fixes).
o mm: fix memory_failure() handling of dax-namespace metadata (bsc#1185335).
o net: bcmgenet: use hardware padding of runt frames (git-fixes).
o net: cxgb4: fix return error value in t4_prep_fw (git-fixes).
o net: hns3: clear VF down state bit before request link status (bsc#
1104353).
o net/mlx5: Fix PBMC register mapping (bsc#1103990).
o net/mlx5: Fix placement of log_max_flow_counter (bsc#1046303 ).
o netsec: ignore 'phy-mode' device property on ACPI systems (git-fixes).
o nvme: add error log page slot definition (bsc#1181161).
o nvme-fabrics: allow to queue requests for live queues (bsc#1181161).
o nvme-fabrics: do not check state NVME_CTRL_NEW for request acceptance (bsc#
1181161).
o nvme-fabrics: reject I/O to offline device (bsc#1181161).
o nvme: include admin_q sync with nvme_sync_queues (bsc#1181161).
o nvme: introduce "Command Aborted By host" status code (bsc#1181161).
o nvme: introduce nvme_is_fabrics to check fabrics cmd (bsc#1181161).
o nvme: introduce nvme_sync_io_queues (bsc#1181161).
o nvme: make fabrics command run on a separate request queue (bsc#1181161).
o nvme-pci: Sync queues on reset (bsc#1181161).
o nvme: prevent warning triggered by nvme_stop_keep_alive (bsc#1181161).
o nvme-rdma: avoid race between time out and tear down (bsc#1181161).
o nvme-rdma: avoid repeated request completion (bsc#1181161).
o nvme-rdma: avoid request double completion for concurrent nvme_rdma_timeout
(bsc#1181161).
o nvme-rdma: fix controller reset hang during traffic (bsc#1181161).
o nvme-rdma: fix possible hang when failing to set io queues (bsc#1181161).
o nvme-rdma: fix timeout handler (bsc#1181161).
o nvme-rdma: serialize controller teardown sequences (bsc#1181161).
o nvme: Restart request timers in resetting state (bsc#1181161).
o nvmet: add error-log definitions (bsc#1181161).
o nvmet: add error log support for fabrics-cmd (bsc#1181161).
o nvme-tcp: avoid race between time out and tear down (bsc#1181161).
o nvme-tcp: avoid repeated request completion (bsc#1181161).
o nvme-tcp: avoid request double completion for concurrent nvme_tcp_timeout
(bsc#1181161).
o nvme-tcp: fix controller reset hang during traffic (bsc#1181161).
o nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161).
o nvme-tcp: fix timeout handler (bsc#1181161).
o nvme-tcp: serialize controller teardown sequences (bsc#1181161).
o nvme: unlink head after removing last namespace (bsc#1181161).
o ocfs2: fix a use after free on error (bsc#1184738).
o ocfs2: fix deadlock between setattr and dio_end_io_write (bsc#1185197).
o PCI: mobiveil: Add 8-bit and 16-bit CSR register accessors ().
o PCI: mobiveil: Add callback function for interrupt initialization ().
o PCI: mobiveil: Add callback function for link up check ().
o PCI: mobiveil: Add configured inbound windows counter ().
o PCI: mobiveil: Add Header Type field check ().
o PCI: mobiveil: Add PCIe Gen4 RC driver for Layerscape SoCs ().
o PCI: mobiveil: Add upper 32-bit CPU base address setup in outbound window
().
o PCI: mobiveil: Add upper 32-bit PCI base address setup in inbound window
().
o PCI: mobiveil: Allow mobiveil_host_init() to be used to re-init host ().
o PCI: mobiveil: Clean-up program_{ib/ob}_windows() ().
o PCI: mobiveil: Clear the control fields before updating it ().
o PCI: mobiveil: Collect the interrupt related operations into a function ().
o PCI: mobiveil: Fix csr_read()/write() build issue ().
o PCI: mobiveil: Fix devfn check in mobiveil_pcie_valid_device() ().
o PCI: mobiveil: Fix error return values ().
o PCI: mobiveil: Fix infinite-loop in the INTx handling function ().
o PCI: mobiveil: Fix INTx interrupt clearing in mobiveil_pcie_isr() ().
o PCI: mobiveil: Fix PCI base address in MEM/IO outbound windows ().
o PCI: mobiveil: Fix the Class Code field ().
o PCI: mobiveil: Fix the CPU base address setup in inbound window ().
o PCI: mobiveil: Fix the valid check for inbound and outbound windows ().
o PCI: mobiveil: Initialize Primary/Secondary/Subordinate bus numbers ().
o PCI: mobiveil: Introduce a new structure mobiveil_root_port ().
o PCI: mobiveil: ls_pcie_g4: add Workaround for A-011451 ().
o PCI: mobiveil: ls_pcie_g4: add Workaround for A-011577 ().
o PCI: mobiveil: ls_pcie_g4: fix SError when accessing config space ().
o PCI: mobiveil: Make some register updates more readable ().
o PCI: mobiveil: Mask out hardcoded bits in inbound/outbound windows setup
().
o PCI: mobiveil: Modularize the Mobiveil PCIe Host Bridge IP driver ().
o PCI: mobiveil: Move IRQ chained handler setup out of DT parse ().
o PCI: mobiveil: Move PCIe PIO enablement out of inbound window routine ().
o PCI: mobiveil: Move the host initialization into a function ().
o PCI: mobiveil: Move the link up waiting out of mobiveil_host_init() ().
o PCI: mobiveil: Refactor the MEM/IO outbound window initialization ().
o PCI: mobiveil: Reformat the code for readability ().
o PCI: mobiveil: Remove an unnecessary return value check ().
o PCI: mobiveil: Remove the flag MSI_FLAG_MULTI_PCI_MSI ().
o PCI: mobiveil: Unify register accessors ().
o PCI: mobiveil: Update the resource list traversal function ().
o PCI: mobiveil: Use pci_parse_request_of_pci_ranges() ().
o PCI: mobiveil: Use the 1st inbound window for MEM inbound transactions ().
o PCI: mobiveil: Use WIN_NUM_0 explicitly for CFG outbound window ().
o post.sh: Return an error when module update fails (bsc#1047233 bsc#
1184388).
o powerepc/book3s64/hash: Align start/end address correctly with bolt mapping
(bsc#1184957).
o powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117
git-fixes).
o powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729).
o powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729).
o powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289
ltc#191637).
o powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729).
o powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729).
o powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#
190917).
o reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737).
o Revert "rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package
(bsc#1184514)" This turned out to be a bad idea: the kernel-$flavor-devel
package must be usable without kernel-$flavor, e.g. at the build of a KMP.
And this change brought superfluous installation of kernel-preempt when a
system had kernel-syms (bsc#1185113).
o rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#
1184514)
o rpm/kernel-obs-build.spec.in: Include essiv with dm-crypt (boo#1183063).
o rpm/kernel-subpackage-build: Workaround broken bot (https://github.com/
openSUSE/openSUSE-release-tools/issues/2439)
o rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
o rpm/mkspec: Use tilde instead of dot for version string with rc (bsc#
1184650)
o rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (git-fixes).
o sch_red: fix off-by-one checks in red_check_params() (bsc1056787).
o scsi: ibmvfc: Fix invalid state machine BUG_ON() (bsc#1184647 ltc#191231).
o scsi: libsas: docs: Remove notify_ha_event() (git-fixes).
o scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472).
o scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472).
o scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472).
o scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472).
o scsi: lpfc: Fix a typo (bsc#1185472).
o scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO
response (bsc#1185472).
o scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365).
o scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode
(bsc#1185472).
o scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472).
o scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472).
o scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203).
o scsi: lpfc: Fix incorrectly documented function
lpfc_debugfs_commonxripools_data() (bsc#1185472).
o scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#
1185472).
o scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472).
o scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#
1185472).
o scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472).
o scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#
1185472).
o scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency
(bsc#1185472).
o scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#
1185472).
o scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#
1185472).
o scsi: lpfc: Fix silent memory allocation failure in
lpfc_sli4_bsg_link_diag_test() (bsc#1185472).
o scsi: lpfc: Fix some error codes in debugfs (bsc#1185472).
o scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#
1185472).
o scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#
1185472).
o scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472).
o scsi: lpfc: Standardize discovery object logging format (bsc#1185472).
o scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472).
o scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491).
o scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#
1185491).
o scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats()
(bsc#1185491).
o scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491).
o scsi: qla2xxx: Check kzalloc() return value (bsc#1185491).
o scsi: qla2xxx: Consolidate zio threshold setting for both FCP NVMe (bsc#
1185491).
o scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491).
o scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#
1185491).
o scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491).
o scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#
1185491).
o scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491).
o scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491).
o scsi: qla2xxx: Fix broken #endif placement (bsc#1185491).
o scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491).
o scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491).
o scsi: qla2xxx: Fix endianness annotations (bsc#1185491).
o scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#
1185491).
o scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491).
o scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491).
o scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491).
o scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491).
o scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491).
o scsi: qla2xxx: Fix some memory corruption (bsc#1185491).
o scsi: qla2xxx: Fix stuck session (bsc#1185491).
o scsi: qla2xxx: Fix use after free in bsg (bsc#1185491).
o scsi: qla2xxx: Implementation to get and manage host, target stats and
initiator port (bsc#1185491).
o scsi: qla2xxx: Move some messages from debug to normal log level (bsc#
1185491).
o scsi: qla2xxx: Remove redundant NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491).
o scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#
1185491).
o scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1185491).
o scsi: qla2xxx: Reuse existing error handling path (bsc#1185491).
o scsi: qla2xxx: Simplify if statement (bsc#1185491).
o scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491).
o scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491).
o scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491).
o scsi: qla2xxx: Update default AER debug mask (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491).
o scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491).
o scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#
1185491).
o scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089).
o scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089).
o scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089).
o smsc95xx: avoid memory leak in smsc95xx_bind (git-fixes).
o smsc95xx: check return value of smsc95xx_reset (git-fixes).
o spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA
(git-fixes).
o stop_machine: mark helpers __always_inline (bsc#1087405 git-fixes).
o struct usbip_device kABI fixup (git-fixes).
o USB: cdc-acm: downgrade message to debug (git-fixes).
o USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984).
o USB: cdc-acm: fix use-after-free after probe failure (git-fixes).
o USB: cdc-acm: untangle a circular dependency between callback and softint
(git-fixes).
o USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem
(git-fixes).
o USB: serial: ch341: add new Product ID (git-fixes).
o USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter
(git-fixes).
o USB: serial: cp210x: add some more GE USB IDs (git-fixes).
o USB: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes).
o usbip: add sysfs_lock to synchronize sysfs code paths (git-fixe).
o usbip: fix vudc to check for stream socket (git-fixes).
o usbip: stub-dev synchronize sysfs code paths (git-fixes).
o usbip: synchronize event handler with sysfs code paths (git-fixes).
o veth: Store queue_mapping independently of XDP prog presence (bsc#1109837).
o video: hyperv_fb: Fix a double free in hvfb_probe (bsc#1175306, git-fixes).
o x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#
1114648).
o x86/insn: Add some Intel instructions to the opcode map (bsc#1184760).
o x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760).
o x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#
1114648).
o x86/microcode: Check for offline CPUs before requesting new microcode (bsc#
1114648).
o x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1114648).
o x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#
1114648).
o xdp: fix xdp_return_frame() kernel BUG throw for page_pool memory model
(bsc#1109837).
o xhci: Improve detection of device initiated wake signal (git-fixes).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server 12-SP5:
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-1572=1
Package List:
o SUSE Linux Enterprise Server 12-SP5 (noarch):
kernel-devel-azure-4.12.14-16.56.1
kernel-source-azure-4.12.14-16.56.1
o SUSE Linux Enterprise Server 12-SP5 (x86_64):
kernel-azure-4.12.14-16.56.1
kernel-azure-base-4.12.14-16.56.1
kernel-azure-base-debuginfo-4.12.14-16.56.1
kernel-azure-debuginfo-4.12.14-16.56.1
kernel-azure-debugsource-4.12.14-16.56.1
kernel-azure-devel-4.12.14-16.56.1
kernel-syms-azure-4.12.14-16.56.1
References:
o https://www.suse.com/security/cve/CVE-2020-36310.html
o https://www.suse.com/security/cve/CVE-2020-36312.html
o https://www.suse.com/security/cve/CVE-2020-36322.html
o https://www.suse.com/security/cve/CVE-2021-28950.html
o https://www.suse.com/security/cve/CVE-2021-29155.html
o https://www.suse.com/security/cve/CVE-2021-29650.html
o https://bugzilla.suse.com/1043990
o https://bugzilla.suse.com/1046303
o https://bugzilla.suse.com/1047233
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1056787
o https://bugzilla.suse.com/1065729
o https://bugzilla.suse.com/1087405
o https://bugzilla.suse.com/1097583
o https://bugzilla.suse.com/1097584
o https://bugzilla.suse.com/1097585
o https://bugzilla.suse.com/1097586
o https://bugzilla.suse.com/1097587
o https://bugzilla.suse.com/1097588
o https://bugzilla.suse.com/1101816
o https://bugzilla.suse.com/1103990
o https://bugzilla.suse.com/1104353
o https://bugzilla.suse.com/1109837
o https://bugzilla.suse.com/1111981
o https://bugzilla.suse.com/1114648
o https://bugzilla.suse.com/1118657
o https://bugzilla.suse.com/1118661
o https://bugzilla.suse.com/1151794
o https://bugzilla.suse.com/1152457
o https://bugzilla.suse.com/1175306
o https://bugzilla.suse.com/1178089
o https://bugzilla.suse.com/1180624
o https://bugzilla.suse.com/1180846
o https://bugzilla.suse.com/1181062
o https://bugzilla.suse.com/1181161
o https://bugzilla.suse.com/1182613
o https://bugzilla.suse.com/1182672
o https://bugzilla.suse.com/1183063
o https://bugzilla.suse.com/1183203
o https://bugzilla.suse.com/1183289
o https://bugzilla.suse.com/1184170
o https://bugzilla.suse.com/1184194
o https://bugzilla.suse.com/1184208
o https://bugzilla.suse.com/1184209
o https://bugzilla.suse.com/1184211
o https://bugzilla.suse.com/1184350
o https://bugzilla.suse.com/1184388
o https://bugzilla.suse.com/1184509
o https://bugzilla.suse.com/1184512
o https://bugzilla.suse.com/1184514
o https://bugzilla.suse.com/1184647
o https://bugzilla.suse.com/1184650
o https://bugzilla.suse.com/1184724
o https://bugzilla.suse.com/1184731
o https://bugzilla.suse.com/1184736
o https://bugzilla.suse.com/1184737
o https://bugzilla.suse.com/1184738
o https://bugzilla.suse.com/1184742
o https://bugzilla.suse.com/1184760
o https://bugzilla.suse.com/1184942
o https://bugzilla.suse.com/1184952
o https://bugzilla.suse.com/1184957
o https://bugzilla.suse.com/1184984
o https://bugzilla.suse.com/1185041
o https://bugzilla.suse.com/1185113
o https://bugzilla.suse.com/1185195
o https://bugzilla.suse.com/1185197
o https://bugzilla.suse.com/1185244
o https://bugzilla.suse.com/1185269
o https://bugzilla.suse.com/1185335
o https://bugzilla.suse.com/1185365
o https://bugzilla.suse.com/1185472
o https://bugzilla.suse.com/1185491
o https://bugzilla.suse.com/1185549
- --------------------------------------------------------------------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1571-1
Rating: important
References: #1043990 #1055117 #1065729 #1152457 #1152489 #1155518
#1156395 #1167260 #1167574 #1168838 #1174416 #1174426
#1175995 #1178089 #1179243 #1179851 #1180846 #1181161
#1182613 #1183063 #1183203 #1183289 #1184208 #1184209
#1184436 #1184485 #1184514 #1184585 #1184650 #1184724
#1184728 #1184730 #1184731 #1184736 #1184737 #1184738
#1184740 #1184741 #1184742 #1184760 #1184811 #1184893
#1184934 #1184942 #1184957 #1184969 #1184984 #1185041
#1185113 #1185233 #1185244 #1185269 #1185365 #1185454
#1185472 #1185491 #1185549 #1185586 #1185587
Cross-References: CVE-2021-29155 CVE-2021-29650
Affected Products:
SUSE Linux Enterprise Module for Realtime 15-SP2
______________________________________________________________________________
An update that solves two vulnerabilities and has 57 fixes is now available.
Description:
The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
o CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed
attackers to cause a denial of service (panic) because net/netfilter/
x_tables.c and include/linux/netfilter/x_tables.h lack a full memory
barrier upon the assignment of a new table value (bnc#1184208).
o CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c
that performs undesirable out-of-bounds speculation on pointer arithmetic,
leading to side-channel attacks that defeat Spectre mitigations and obtain
sensitive information from kernel memory. Specifically, for sequences of
pointer arithmetic operations, the pointer modification performed by the
first operation was not correctly accounted for when restricting subsequent
operations (bnc#1184942).
The following non-security bugs were fixed:
o ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes).
o ALSA: core: remove redundant spin_lock pair in snd_card_disconnect
(git-fixes).
o ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer
(git-fixes).
o ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes).
o ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes).
o ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion
codec (git-fixes).
o ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion
codec (git-fixes).
o ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes).
o ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes).
o ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups
(git-fixes).
o ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB
(git-fixes).
o ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye
(git-fixes).
o ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes).
o ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes).
o ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes).
o ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes).
o ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes).
o ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices
(git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes).
o ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries
(git-fixes).
o ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes).
o ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes).
o ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls
(git-fixes).
o ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes).
o ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes).
o ALSA: usb-audio: DJM-750: ensure format is set (git-fixes).
o ALSA: usb-audio: Explicitly set up the clock selector (git-fixes).
o ALSA: usb-audio: Fix implicit sync clearance at stopping stream
(git-fixes).
o ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to
set samplerate (git-fixes).
o ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails
(git-fixes).
o arm: dts: add imx7d pcf2127 fix to blacklist
o ASoC: ak5558: correct reset polarity (git-fixes).
o ASoC: ak5558: Fix s/show/slow/ typo (git-fixes).
o ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function
(git-fixes).
o ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes).
o ASoC: simple-card: fix possible uninitialized single_cpu local variable
(git-fixes).
o ASoC: SOF: Intel: HDA: fix core status verification (git-fixes).
o ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes).
o ata: libahci_platform: fix IRQ check (git-fixes).
o ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock
(git-fixes).
o ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices
(git-fixes).
o backlight: journada720: Fix Wmisleading-indentation warning (git-fixes).
o blkcg: fix memleak for iolatency (git-fixes).
o block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#
1168838).
o block: recalculate segment count for multi-segment discards correctly (bsc#
1184724).
o block: rsxx: select CONFIG_CRC32 (git-fixes).
o bluetooth: eliminate the potential race condition when removing the HCI
controller (git-fixes).
o bnxt_en: reverse order of TX disable and carrier off (git-fixes).
o bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518).
o bpf, libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518).
o bpf, samples: Fix possible hang in xdpsock with multiple threads (bsc#
1155518).
o bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518).
o bsg: free the request before return error code (git-fixes).
o btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549).
o btrfs: fix race between swap file activation and snapshot creation (bsc#
1185587).
o btrfs: fix race between writes to swap files and scrub (bsc#1185586).
o btrfs: track qgroup released data in own variable in
insert_prealloc_file_extent (bsc#1185549).
o bus: qcom: Put child node before return (git-fixes).
o cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes).
o clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes).
o clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1
GHz (git-fixes).
o clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0
(git-fixes).
o clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock
(git-fixes).
o clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes).
o clk: uniphier: Fix potential infinite loop (git-fixes).
o clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback
(git-fixes).
o coresight: etm4x: Fix issues on trcseqevr access (git-fixes).
o coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register
(git-fixes).
o coresight: tmc-etr: Fix barrier packet insertion for perf buffer
(git-fixes).
o cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes).
o cpufreq: armada-37xx: Fix driver cleanup when registration failed
(git-fixes).
o cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes).
o cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes).
o cpufreq: Kconfig: fix documentation links (git-fixes).
o crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes).
o crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS
(git-fixes).
o cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes).
o cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4
and ulds (git-fixes).
o dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes).
o dm: eliminate potential source of excessive kernel log noise (git-fixes).
o dm era: Fix bitset memory leaks (git-fixes).
o dm era: only resize metadata in preresume (git-fixes).
o dm era: Recover committed writeset after crash (git-fixes).
o dm era: Reinitialize bitset cache before digesting a new writeset
(git-fixes).
o dm era: Use correct value size in equality function of writeset tree
(git-fixes).
o dm era: Verify the data block size hasn't changed (git-fixes).
o dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes).
o dm integrity: fix error reporting in bitmap mode after creation
(git-fixes).
o dm ioctl: fix error return code in target_message (git-fixes).
o dm mpath: fix racey management of PG initialization (git-fixes).
o dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#
1175995, bsc#1184485).
o dm raid: fix discard limits for raid1 (git-fixes).
o dm: remove invalid sparse __acquires and __releases annotations
(git-fixes).
o dm writecache: fix the maximum number of arguments (git-fixes).
o dm writecache: handle DAX to partitions on persistent memory correctly
(git-fixes).
o dm writecache: remove BUG() and fail gracefully instead (git-fixes).
o dm zoned: select CONFIG_CRC32 (git-fixes).
o dpaa_eth: copy timestamp fields to new skb in A-050385 workaround
(git-fixes).
o dpaa_eth: fix the RX headroom size alignment (git-fixes).
o dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom
(git-fixes).
o dpaa_eth: Use random MAC address when none is given (bsc#1184811).
o drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs
()' (git-fixes).
o drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes).
o drm/ast: Add 25MHz refclk support (bsc#1174416).
o drm/ast: Add support for 1152x864 mode (bsc#1174416).
o drm/ast: Add support for AIP200 (bsc#1174416).
o drm/ast: AST2500 fixups (bsc#1174416).
o drm/ast: Correct mode table for AST2500 precatch (bsc#1174416).
o drm/ast: Disable screen on register init (bsc#1174416).
o drm/ast: Disable VGA decoding while driver is active (bsc#1174416).
o drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416).
o drm/ast: Fix P2A config detection (bsc#1174416).
o drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416).
o drm/ast: Keep MISC fields when enabling VGA (bsc#1174416).
o drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes).
o drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes).
o drm/msm: Fix a5xx/a6xx timestamps (git-fixes).
o drm/omap: fix misleading indentation in pixinc() (git-fixes).
o drm/radeon: fix copy of uninitialized variable back to userspace
(git-fixes).
o drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes).
o e1000e: add rtnl_lock() to e1000_reset_task (git-fixes).
o e1000e: Fix duplicate include guard (git-fixes).
o e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes).
o enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes).
o enetc: Workaround for MDIO register access issue (git-fixes).
o ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx
(git-fixes).
o ext4: do not try to set xattr into ea_inode if value is empty (bsc#
1184730).
o ext4: find old entry again if failed to rename whiteout (bsc#1184742).
o ext4: fix potential error in ext4_do_update_inode (bsc#1184731).
o ext4: fix potential htree index checksum corruption (bsc#1184728).
o firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes).
o fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851).
o fotg210-udc: Complete OUT requests on short packets (git-fixes).
o fotg210-udc: Do not DMA more than the buffer can take (git-fixes).
o fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes).
o fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes).
o fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes).
o fotg210-udc: Remove a dubious condition leading to fotg210_done
(git-fixes).
o fs: direct-io: fix missing sdio->boundary (bsc#1184736).
o fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741).
o fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811).
o fsl/fman: tolerate missing MAC address in device tree (bsc#1184811).
o gpio: omap: Save and restore sysconfig (git-fixes).
o gpio: sysfs: Obey valid_mask (git-fixes).
o HID: alps: fix error return code in alps_input_configured() (git-fixes).
o HID: google: add don USB id (git-fixes).
o HID: plantronics: Workaround for double volume key presses (git-fixes).
o HID: wacom: Assign boolean values to a bool variable (git-fixes).
o HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
(git-fixes).
o i2c: cadence: add IRQ check (git-fixes).
o i2c: emev2: add IRQ check (git-fixes).
o i2c: img-scb: fix reference leak when pm_runtime_get_sync fails
(git-fixes).
o i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails
(git-fixes).
o i2c: jz4780: add IRQ check (git-fixes).
o i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes).
o i2c: sh7760: add IRQ check (git-fixes).
o i2c: sh7760: fix IRQ error path (git-fixes).
o i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes).
o i40e: Added Asym_Pause to supported link modes (git-fixes).
o i40e: Add zero-initialization of AQ command structures (git-fixes).
o i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes).
o i40e: Fix add TC filter for IPv6 (git-fixes).
o i40e: Fix display statistics for veb_tc (git-fixes).
o i40e: Fix endianness conversions (git-fixes).
o i40e: Fix flow for IPv6 next header (extension header) (git-fixes).
o i40e: Fix kernel oops when i40e driver removes VF's (git-fixes).
o i40e: Fix overwriting flow control settings during driver loading
(git-fixes).
o i40e: Fix sparse errors in i40e_txrx.c (git-fixes).
o i40e: Fix sparse warning: missing error code 'err' (git-fixes).
o i40e: fix the panic when running bpf in xdpdrv mode (git-fixes).
o ibmvnic: avoid calling napi_disable() twice (bsc#1065729).
o ibmvnic: clean up the remaining debugfs data structures (bsc#1065729).
o ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#
SLE-17043 bsc#1179243 ltc#189290 git-fixes).
o ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes).
o ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes).
o ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432
git-fixes).
o ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#
1065729).
o ibmvnic: remove duplicate napi_schedule call in open function (bsc#
1065729).
o ice: Account for port VLAN in VF max packet size calculation (git-fixes).
o ice: Cleanup fltr list in case of allocation issues (git-fixes).
o ice: Fix for dereference of NULL pointer (git-fixes).
o ice: Increase control queue timeout (git-fixes).
o ice: prevent ice_open and ice_stop during reset (git-fixes).
o igb: check timestamp validity (git-fixes).
o igb: Fix duplicate include guard (git-fixes).
o igc: Fix Pause Frame Advertising (git-fixes).
o igc: Fix Supported Pause Frame Link Setting (git-fixes).
o igc: reinit_locked() should be called with rtnl_lock (git-fixes).
o iio:accel:adis16201: Fix wrong axis assignment that prevents loading
(git-fixes).
o ima: Free IMA measurement buffer after kexec syscall (git-fixes).
o Input: i8042 - fix Pegatron C15B ID entry (git-fixes).
o Input: nspire-keypad - enable interrupts only when opened (git-fixes).
o Input: s6sy761 - fix coordinate read bit shift (git-fixes).
o interconnect: core: fix error return code of icc_link_destroy()
(git-fixes).
o iopoll: introduce read_poll_timeout macro (git-fixes).
o iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585).
o ipw2x00: potential buffer overflow in libipw_wx_set_encodeext()
(git-fixes).
o irqchip: Add support for Layerscape external interrupt lines (bsc#1185233).
o irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#
1185233).
o irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#
1185233).
o isofs: release buffer head before return (bsc#1182613).
o ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes).
o jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740).
o kABI: cover up change in struct kvm_arch (bsc#1184969).
o kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426).
o kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#
1184209 ltc#190917).
o kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846).
o KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489).
o KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#
1156395).
o KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395).
o libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#
1185269).
o libnvdimm/namespace: Fix reaping of invalidated block-window-namespace
labels (bsc#1185269).
o libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#
1184969 git-fixes).
o libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr
(git-fixes).
o liquidio: Fix unintented sign extension of a left shift of a u16
(git-fixes).
o locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#
1185041).
o mac80211: bail out if cipher schemes are invalid (git-fixes).
o mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes).
o macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes).
o media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes).
o media: m88rs6000t: avoid potential out-of-bounds reads on arrays
(git-fixes).
o media: mantis: remove orphan mantis_core.c (git-fixes).
o media: omap4iss: return error code when omap4iss_get() failed (git-fixes).
o media: platform: sunxi: sun6i-csi: fix error return code of
sun6i_video_start_streaming() (git-fixes).
o media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes).
o media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes).
o media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes).
o media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes).
o memory: gpmc: fix out of bounds read and dereference on gpmc_cs[]
(git-fixes).
o memory: pl353: fix mask of ECC page_size config register (git-fixes).
o mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000"
(git-fixes).
o mfd: stm32-timers: Avoid clearing auto reload register (git-fixes).
o misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes).
o misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes).
o misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct
(git-fixes).
o mmc: core: Correct descriptions in mmc_of_parse() (git-fixes).
o mmc: cqhci: Add cqhci_deactivate() (git-fixes).
o mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes).
o mmc: sdhci-of-arasan: Add missed checks for devm_clk_register()
(git-fixes).
o mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes).
o mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes).
o mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes).
o mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes).
o mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based
controllers (git-fixes).
o mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes).
o mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe()
(git-fixes).
o mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes).
o mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes).
o Move upstreamed i915 fix into sorted section
o mt7601u: fix always true expression (git-fixes).
o mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes).
o mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes).
o mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes).
o mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes).
o mtd: rawnand: qcom: Return actual error code instead of -ENODEV
(git-fixes).
o mtd: require write permissions for locking and badblock ioctls (git-fixes).
o mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes).
o mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260).
o mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260).
o nbd: fix a block_device refcount leak in nbd_release (git-fixes).
o net: atlantic: fix out of range usage of active_vlans array (git-fixes).
o net: atlantic: fix potential error handling (git-fixes).
o net: atlantic: fix use after free kasan warn (git-fixes).
o net: dsa: felix: implement port flushing on .phylink_mac_link_down
(git-fixes).
o net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr
(git-fixes).
o net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes).
o net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes).
o net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb
(git-fixes).
o net: hns3: clear VF down state bit before request link status (git-fixes).
o net: hns3: fix bug when calculating the TCAM table info (git-fixes).
o net: hns3: fix query vlan mask value error for flow director (git-fixes).
o net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event()
(git-fixes).
o net: ll_temac: Add more error handling of dma_map_single() calls
(git-fixes).
o net: ll_temac: Fix race condition causing TX hang (git-fixes).
o net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure
(git-fixes).
o net: ll_temac: Handle DMA halt condition caused by buffer underrun
(git-fixes).
o net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes).
o net/mlx5: Do not request more than supported EQs (git-fixes).
o net/mlx5e: Do not match on Geneve options in case option masks are all zero
(git-fixes).
o net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes).
o net/mlx5e: Fix ethtool indication of connector type (git-fixes).
o net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#
SLE-8464).
o net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes).
o net: phy: intel-xway: enable integrated led functions (git-fixes).
o net: phy: marvell: fix m88e1011_set_downshift (git-fixes).
o net: phy: marvell: fix m88e1111_set_downshift (git-fixes).
o net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template
(git-fixes).
o net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes).
o net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter
(git-fixes).
o net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter
(git-fixes).
o net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes).
o nfc: pn533: prevent potential memory corruption (git-fixes).
o nfp: flower: ignore duplicate merge hints from FW (git-fixes).
o node: fix device cleanups in error handling code (git-fixes).
o null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes).
o nvme-fabrics: reject I/O to offline device (bsc#1181161).
o nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161).
o ocfs2: fix a use after free on error (bsc#1184738).
o pata_arasan_cf: fix IRQ check (git-fixes).
o pata_ipx4xx_cf: fix IRQ check (git-fixes).
o PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426).
o PCI/AER: Add RCEC AER error injection support (bsc#1174426).
o PCI/AER: Clear AER status from Root Port when resetting Downstream Port
(bsc#1174426).
o PCI/AER: Specify the type of Port that was reset (bsc#1174426).
o PCI/AER: Use "aer" variable for capability offset (bsc#1174426).
o PCI/AER: Write AER Capability only when we control it (bsc#1174426).
o PCI: designware-ep: Fix the Header Type check (git-fixes).
o PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426).
o PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426).
o PCI/ERR: Avoid negated conditional for clarity (bsc#1174426).
o PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426).
o PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#
1174426).
o PCI/ERR: Clear AER status only when we control AER (bsc#1174426).
o PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426).
o PCI/ERR: Clear status of the reporting device (bsc#1174426).
o PCI/ERR: Recover from RCEC AER errors (bsc#1174426).
o PCI/ERR: Recover from RCiEP AER errors (bsc#1174426).
o PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426).
o PCI/ERR: Retain status from error notification (bsc#1174426).
o PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426).
o PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426).
o PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426).
o PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426).
o PCI/portdrv: Report reset for frozen channel (bsc#1174426).
o PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes).
o PCI: tegra: Move "dbi" accesses to post common DWC initialization
(git-fixes).
o phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y,
unconditionally (git-fixes).
o pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes).
o pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes).
o platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with
critclk_systems DMI table (git-fixes).
o PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes).
o powerepc/book3s64/hash: Align start/end address correctly with bolt mapping
(bsc#1184957).
o powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117
git-fixes).
o powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729).
o powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395).
o powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729).
o powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289
ltc#191637).
o powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#
1184969).
o powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969).
o powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729).
o powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729).
o powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#
190917).
o powerpc/time: Enable sched clock for irqtime (bsc#1156395).
o regmap: set debugfs_name to NULL after it is freed (git-fixes).
o regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()'
(git-fixes).
o reintroduce cqhci_suspend for kABI (git-fixes).
o reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737).
o rpm/constraints.in: bump disk space to 45GB on riscv64
o rpm/kernel-obs-build.spec.in: Include essiv with dm-crypt (boo#1183063).
o rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
o rpm/mkspec: Use tilde instead of dot for version string with rc (bsc#
1184650)
o rsi: Use resume_noirq for SDIO (git-fixes).
o rsxx: remove extraneous 'const' qualifier (git-fixes).
o rtc: ds1307: Fix wday settings for rx8130 (git-fixes).
o rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454).
o rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454).
o rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454).
o rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454).
o rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454).
o rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454).
o rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#
1185454).
o rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454).
o rtc: pcf2127: add alarm support (bsc#1185233).
o rtc: pcf2127: add pca2129 device id (bsc#1185233).
o rtc: pcf2127: add tamper detection support (bsc#1185233).
o rtc: pcf2127: add watchdog feature support (bsc#1185233).
o rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233).
o rtc: pcf2127: cleanup register and bit defines (bsc#1185233).
o rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233).
o rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233).
o rtc: pcf2127: fix alarm handling (bsc#1185233).
o rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233).
o rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233).
o rtc: pcf2127: let the core handle rtc range (bsc#1185233).
o rtc: pcf2127: move watchdog initialisation to a separate function (bsc#
1185233).
o rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233).
o rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#
1185233).
o rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233).
o rtc: pcf2127: set regmap max_register (bsc#1185233).
o rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233).
o rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes).
o rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes).
o sata_mv: add IRQ checks (git-fixes).
o scsi: block: Fix a race in the runtime power management code (git-fixes).
o scsi: core: add scsi_host_busy_iter() (bsc#1179851).
o scsi: core: Only return started requests from scsi_host_find_tag() (bsc#
1179851).
o scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472).
o scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472).
o scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472).
o scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472).
o scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472).
o scsi: lpfc: Fix a typo (bsc#1185472).
o scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO
response (bsc#1185472).
o scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365).
o scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode
(bsc#1185472).
o scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472).
o scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472).
o scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203).
o scsi: lpfc: Fix incorrectly documented function
lpfc_debugfs_commonxripools_data() (bsc#1185472).
o scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#
1185472).
o scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472).
o scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#
1185472).
o scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472).
o scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#
1185472).
o scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency
(bsc#1185472).
o scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#
1185472).
o scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#
1185472).
o scsi: lpfc: Fix silent memory allocation failure in
lpfc_sli4_bsg_link_diag_test() (bsc#1185472).
o scsi: lpfc: Fix some error codes in debugfs (bsc#1185472).
o scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#
1185472).
o scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#
1185472).
o scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472).
o scsi: lpfc: Standardize discovery object logging format (bsc#1185472).
o scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472).
o scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491).
o scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#
1185491).
o scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats()
(bsc#1185491).
o scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491).
o scsi: qla2xxx: Check kzalloc() return value (bsc#1185491).
o scsi: qla2xxx: Consolidate zio threshold setting for both FCP NVMe (bsc#
1185491).
o scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491).
o scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#
1185491).
o scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491).
o scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#
1185491).
o scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491).
o scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491).
o scsi: qla2xxx: Fix broken #endif placement (bsc#1185491).
o scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491).
o scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491).
o scsi: qla2xxx: Fix endianness annotations (bsc#1185491).
o scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#
1185491).
o scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491).
o scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491).
o scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491).
o scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491).
o scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491).
o scsi: qla2xxx: Fix some memory corruption (bsc#1185491).
o scsi: qla2xxx: Fix stuck session (bsc#1185491).
o scsi: qla2xxx: Fix use after free in bsg (bsc#1185491).
o scsi: qla2xxx: Implementation to get and manage host, target stats and
initiator port (bsc#1185491).
o scsi: qla2xxx: Move some messages from debug to normal log level (bsc#
1185491).
o scsi: qla2xxx: Remove redundant NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491).
o scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491).
o scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#
1185491).
o scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436).
o scsi: qla2xxx: Reuse existing error handling path (bsc#1185491).
o scsi: qla2xxx: Simplify if statement (bsc#1185491).
o scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491).
o scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491).
o scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491).
o scsi: qla2xxx: Update default AER debug mask (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491).
o scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491).
o scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491).
o scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#
1185491).
o scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089).
o scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089).
o scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089).
o selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460).
o selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#
191460).
o selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#
191460).
o selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460).
o selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460).
o selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#
191460).
o selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460).
o selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460).
o selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#
191460).
o soc: aspeed: fix a ternary sign expansion bug (git-fixes).
o soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes).
o soc: qcom: mdt_loader: Validate that p_filesz p_memsz (git-fixes).
o soundwire: bus: Fix device found flag correctly (git-fixes).
o soundwire: stream: fix memory leak in stream config error path (git-fixes).
o spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260).
o spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260).
o spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260).
o spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware()
(git-fixes).
o spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#
1167260).
o spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible
(bsc#1167260).
o spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx
functions (bsc#1167260).
o spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260).
o spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260).
o spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260).
o spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode
(bsc#1167260).
o spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#
1167260).
o spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros
(bsc#1167260).
o spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260).
o spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#
1167260).
o spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260).
o spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260).
o spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260).
o spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260).
o spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#
1167260).
o spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260).
o spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#
1167260).
o spi: spi-fsl-dspi: Fix code alignment (bsc#1167260).
o spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260).
o spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths
(bsc#1167260).
o spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path
(bsc#1167260).
o spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#
1167260).
o spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc
#1167260).
o spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer
(bsc#1167260).
o spi: spi-fsl-dspi: fix native data copy (bsc#1167260).
o spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260).
o spi: spi-fsl-dspi: Fix typos (bsc#1167260).
o spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260).
o spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#
1167260).
o spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#
1167260).
o spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260).
o spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260).
o spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc
#1167260).
o spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message
(bsc#1167260).
o spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count
(bsc#1167260).
o spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#
1167260).
o spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#
1167260).
o spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260).
o spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#
1167260).
o spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the
driver. References: bsc#1167260
o spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260).
o spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL
(bsc#1167260).
o spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260).
o spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260).
o spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc
#1167260).
o spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#
1167260).
o spi: spi-fsl-dspi: Replace interruptible wait queue with a simple
completion (bsc#1167260).
o spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc
#1167260).
o spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260).
o spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260).
o spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#
1167260).
o spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260).
o spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel
() (bsc#1167260).
o spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#
1167260).
o spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#
1167260).
o spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#
1167260).
o spi: spi-fsl-dspi: Use specific compatible strings for all SoC
instantiations (bsc#1167260).
o spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#
1167260).
o spi: spi-ti-qspi: Free DMA resources (git-fixes).
o staging: fwserial: fix TIOCGSERIAL implementation (git-fixes).
o staging: fwserial: fix TIOCSSERIAL implementation (git-fixes).
o staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes).
o staging: fwserial: fix TIOCSSERIAL permission check (git-fixes).
o staging: rtl8192u: Fix potential infinite loop (git-fixes).
o usb: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984).
o usb: CDC-ACM: fix poison/unpoison imbalance (git-fixes).
o usb: cdc-acm: fix TIOCGSERIAL implementation (git-fixes).
o usb: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes).
o usb: dwc2: Fix hibernation between host and device modes (git-fixes).
o usb: dwc2: Fix host mode hibernation exit with remote wakeup flow
(git-fixes).
o usb: dwc2: Fix session request interrupt handler (git-fixes).
o usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes).
o usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code
(git-fixes).
o usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify
code (git-fixes).
o usb: dwc3: Switch to use device_property_count_u32() (git-fixes).
o usb: gadget: aspeed: fix dma map failure (git-fixes).
o usb: gadget: Fix double free of device descriptor pointers (git-fixes).
o usb: gadget: pch_udc: Check for DMA mapping error (git-fixes).
o usb: gadget: pch_udc: Check if driver is present before calling ->setup()
(git-fixes).
o usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc
(git-fixes).
o usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes).
o usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes).
o usb: gadget: r8a66597: Add missing null check on return from
platform_get_resource (git-fixes).
o usb: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR()
(git-fixes).
o usb: Remove dev_err() usage after platform_get_irq() (git-fixes).
o usb: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: f81232: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: f81534: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: fix return value for unsupported ioctls (git-fixes).
o usb: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: opticon: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes).
o usb: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes).
o usb: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes).
o usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS
(git-fixes).
o usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply
(git-fixes).
o usb: typec: tcpm: Honour pSnkStdby requirement during negotiation
(git-fixes).
o veth: Store queue_mapping independently of XDP prog presence (git-fixes).
o vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes).
o virt_wifi: Return micros for BSS TSF values (git-fixes).
o vxlan: move debug check after netdev unregister (git-fixes).
o workqueue: Move the position of debug_work_activate() in __queue_work()
(bsc#1184893).
o x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#
1152489).
o x86/insn: Add some Intel instructions to the opcode map (bsc#1184760).
o x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760).
o x86/microcode: Check for offline CPUs before requesting new microcode (bsc#
1152489).
o x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489).
o x86/platform/uv: Set section block size for hubless architectures (bsc#
1152489).
o x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#
1152489).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Module for Realtime 15-SP2:
zypper in -t patch SUSE-SLE-Module-RT-15-SP2-2021-1571=1
Package List:
o SUSE Linux Enterprise Module for Realtime 15-SP2 (x86_64):
cluster-md-kmp-rt-5.3.18-36.2
cluster-md-kmp-rt-debuginfo-5.3.18-36.2
dlm-kmp-rt-5.3.18-36.2
dlm-kmp-rt-debuginfo-5.3.18-36.2
gfs2-kmp-rt-5.3.18-36.2
gfs2-kmp-rt-debuginfo-5.3.18-36.2
kernel-rt-5.3.18-36.2
kernel-rt-debuginfo-5.3.18-36.2
kernel-rt-debugsource-5.3.18-36.2
kernel-rt-devel-5.3.18-36.2
kernel-rt-devel-debuginfo-5.3.18-36.2
kernel-rt_debug-5.3.18-36.2
kernel-rt_debug-debuginfo-5.3.18-36.2
kernel-rt_debug-debugsource-5.3.18-36.2
kernel-rt_debug-devel-5.3.18-36.2
kernel-rt_debug-devel-debuginfo-5.3.18-36.2
kernel-syms-rt-5.3.18-36.1
ocfs2-kmp-rt-5.3.18-36.2
ocfs2-kmp-rt-debuginfo-5.3.18-36.2
o SUSE Linux Enterprise Module for Realtime 15-SP2 (noarch):
kernel-devel-rt-5.3.18-36.2
kernel-source-rt-5.3.18-36.2
References:
o https://www.suse.com/security/cve/CVE-2021-29155.html
o https://www.suse.com/security/cve/CVE-2021-29650.html
o https://bugzilla.suse.com/1043990
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1065729
o https://bugzilla.suse.com/1152457
o https://bugzilla.suse.com/1152489
o https://bugzilla.suse.com/1155518
o https://bugzilla.suse.com/1156395
o https://bugzilla.suse.com/1167260
o https://bugzilla.suse.com/1167574
o https://bugzilla.suse.com/1168838
o https://bugzilla.suse.com/1174416
o https://bugzilla.suse.com/1174426
o https://bugzilla.suse.com/1175995
o https://bugzilla.suse.com/1178089
o https://bugzilla.suse.com/1179243
o https://bugzilla.suse.com/1179851
o https://bugzilla.suse.com/1180846
o https://bugzilla.suse.com/1181161
o https://bugzilla.suse.com/1182613
o https://bugzilla.suse.com/1183063
o https://bugzilla.suse.com/1183203
o https://bugzilla.suse.com/1183289
o https://bugzilla.suse.com/1184208
o https://bugzilla.suse.com/1184209
o https://bugzilla.suse.com/1184436
o https://bugzilla.suse.com/1184485
o https://bugzilla.suse.com/1184514
o https://bugzilla.suse.com/1184585
o https://bugzilla.suse.com/1184650
o https://bugzilla.suse.com/1184724
o https://bugzilla.suse.com/1184728
o https://bugzilla.suse.com/1184730
o https://bugzilla.suse.com/1184731
o https://bugzilla.suse.com/1184736
o https://bugzilla.suse.com/1184737
o https://bugzilla.suse.com/1184738
o https://bugzilla.suse.com/1184740
o https://bugzilla.suse.com/1184741
o https://bugzilla.suse.com/1184742
o https://bugzilla.suse.com/1184760
o https://bugzilla.suse.com/1184811
o https://bugzilla.suse.com/1184893
o https://bugzilla.suse.com/1184934
o https://bugzilla.suse.com/1184942
o https://bugzilla.suse.com/1184957
o https://bugzilla.suse.com/1184969
o https://bugzilla.suse.com/1184984
o https://bugzilla.suse.com/1185041
o https://bugzilla.suse.com/1185113
o https://bugzilla.suse.com/1185233
o https://bugzilla.suse.com/1185244
o https://bugzilla.suse.com/1185269
o https://bugzilla.suse.com/1185365
o https://bugzilla.suse.com/1185454
o https://bugzilla.suse.com/1185472
o https://bugzilla.suse.com/1185491
o https://bugzilla.suse.com/1185549
o https://bugzilla.suse.com/1185586
o https://bugzilla.suse.com/1185587
- --------------------------------------------------------------------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:14724-1
Rating: important
References: #1056134 #1180963 #1182715 #1182716 #1182717 #1183400
#1183696 #1184120 #1184194 #1184198 #1184208 #1184211
#1184393
Cross-References: CVE-2020-35519 CVE-2020-36322 CVE-2021-20261 CVE-2021-27363
CVE-2021-27364 CVE-2021-27365 CVE-2021-28950 CVE-2021-28972
CVE-2021-29650 CVE-2021-30002 CVE-2021-3483
Affected Products:
SUSE Linux Enterprise Server 11-SP4-LTSS
SUSE Linux Enterprise Server 11-EXTRA
SUSE Linux Enterprise Debuginfo 11-SP4
______________________________________________________________________________
An update that solves 11 vulnerabilities and has two fixes is now available.
Description:
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security
and bugfixes.
The following security bugs were fixed:
o CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393).
o CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy
(bsc#1184120).
o CVE-2021-29650: Fixed an issue where the netfilter subsystem allowed
attackers to cause a denial of service (bsc#1184208).
o CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new
device name to the driver from userspace, allowing userspace to write data
to the kernel stack frame directly (bsc#1184198).
o CVE-2021-28950: Fixed an infinite loop because a retry loop continually
finds the same bad inode (bsc#1184194).
o CVE-2021-27365: Fixed an issue where an unprivileged user can send a
Netlink message that is associated with iSCSI, and has a length up to the
maximum length of a Netlink message (bsc#1182715).
o CVE-2021-27364: Fixed an issue where an attacker could craft Netlink
messages (bsc#1182717).
o CVE-2021-27363: Fixed a kernel pointer leak which could have been used to
determine the address of the iscsi_transport structure (bsc#1182716).
o CVE-2021-20261: Fixed a race condition in the implementation of the floppy
disk drive controller driver software (bsc#1183400).
o CVE-2020-36322: Fixed an issue in the FUSE filesystem implementation which
could have caused a system crash (bsc#1184211).
o CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind
(bsc#1183696).
The following non-security bugs were fixed:
o md: md.c: Return -ENODEV when mddev is NULL in rdev_attr_show (bsc#1056134,
bsc#1180963).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server 11-SP4-LTSS:
zypper in -t patch slessp4-kernel-source-14724=1
o SUSE Linux Enterprise Server 11-EXTRA:
zypper in -t patch slexsp3-kernel-source-14724=1
o SUSE Linux Enterprise Debuginfo 11-SP4:
zypper in -t patch dbgsp4-kernel-source-14724=1
Package List:
o SUSE Linux Enterprise Server 11-SP4-LTSS (i586 ppc64 s390x x86_64):
kernel-default-3.0.101-108.126.1
kernel-default-base-3.0.101-108.126.1
kernel-default-devel-3.0.101-108.126.1
kernel-source-3.0.101-108.126.1
kernel-syms-3.0.101-108.126.1
kernel-trace-3.0.101-108.126.1
kernel-trace-base-3.0.101-108.126.1
kernel-trace-devel-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-SP4-LTSS (i586 x86_64):
kernel-ec2-3.0.101-108.126.1
kernel-ec2-base-3.0.101-108.126.1
kernel-ec2-devel-3.0.101-108.126.1
kernel-xen-3.0.101-108.126.1
kernel-xen-base-3.0.101-108.126.1
kernel-xen-devel-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-SP4-LTSS (s390x):
kernel-default-man-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-SP4-LTSS (ppc64):
kernel-bigmem-3.0.101-108.126.1
kernel-bigmem-base-3.0.101-108.126.1
kernel-bigmem-devel-3.0.101-108.126.1
kernel-ppc64-3.0.101-108.126.1
kernel-ppc64-base-3.0.101-108.126.1
kernel-ppc64-devel-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-SP4-LTSS (i586):
kernel-pae-3.0.101-108.126.1
kernel-pae-base-3.0.101-108.126.1
kernel-pae-devel-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-EXTRA (i586 ia64 ppc64 s390x x86_64):
kernel-default-extra-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-EXTRA (i586 x86_64):
kernel-xen-extra-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-EXTRA (x86_64):
kernel-trace-extra-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-EXTRA (ppc64):
kernel-ppc64-extra-3.0.101-108.126.1
o SUSE Linux Enterprise Server 11-EXTRA (i586):
kernel-pae-extra-3.0.101-108.126.1
o SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ppc64 s390x x86_64):
kernel-default-debuginfo-3.0.101-108.126.1
kernel-default-debugsource-3.0.101-108.126.1
kernel-trace-debuginfo-3.0.101-108.126.1
kernel-trace-debugsource-3.0.101-108.126.1
o SUSE Linux Enterprise Debuginfo 11-SP4 (i586 s390x x86_64):
kernel-default-devel-debuginfo-3.0.101-108.126.1
kernel-trace-devel-debuginfo-3.0.101-108.126.1
o SUSE Linux Enterprise Debuginfo 11-SP4 (i586 x86_64):
kernel-ec2-debuginfo-3.0.101-108.126.1
kernel-ec2-debugsource-3.0.101-108.126.1
kernel-xen-debuginfo-3.0.101-108.126.1
kernel-xen-debugsource-3.0.101-108.126.1
kernel-xen-devel-debuginfo-3.0.101-108.126.1
o SUSE Linux Enterprise Debuginfo 11-SP4 (ppc64):
kernel-bigmem-debuginfo-3.0.101-108.126.1
kernel-bigmem-debugsource-3.0.101-108.126.1
kernel-ppc64-debuginfo-3.0.101-108.126.1
kernel-ppc64-debugsource-3.0.101-108.126.1
o SUSE Linux Enterprise Debuginfo 11-SP4 (i586):
kernel-pae-debuginfo-3.0.101-108.126.1
kernel-pae-debugsource-3.0.101-108.126.1
kernel-pae-devel-debuginfo-3.0.101-108.126.1
References:
o https://www.suse.com/security/cve/CVE-2020-35519.html
o https://www.suse.com/security/cve/CVE-2020-36322.html
o https://www.suse.com/security/cve/CVE-2021-20261.html
o https://www.suse.com/security/cve/CVE-2021-27363.html
o https://www.suse.com/security/cve/CVE-2021-27364.html
o https://www.suse.com/security/cve/CVE-2021-27365.html
o https://www.suse.com/security/cve/CVE-2021-28950.html
o https://www.suse.com/security/cve/CVE-2021-28972.html
o https://www.suse.com/security/cve/CVE-2021-29650.html
o https://www.suse.com/security/cve/CVE-2021-30002.html
o https://www.suse.com/security/cve/CVE-2021-3483.html
o https://bugzilla.suse.com/1056134
o https://bugzilla.suse.com/1180963
o https://bugzilla.suse.com/1182715
o https://bugzilla.suse.com/1182716
o https://bugzilla.suse.com/1182717
o https://bugzilla.suse.com/1183400
o https://bugzilla.suse.com/1183696
o https://bugzilla.suse.com/1184120
o https://bugzilla.suse.com/1184194
o https://bugzilla.suse.com/1184198
o https://bugzilla.suse.com/1184208
o https://bugzilla.suse.com/1184211
o https://bugzilla.suse.com/1184393
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=sTFc
-----END PGP SIGNATURE-----