Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2022.2956
Security update for the Linux Kernel
16 June 2022
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: Linux Kernel
Publisher: SUSE
Operating System: SUSE
Resolution: Patch/Upgrade
CVE Names: CVE-2022-30594 CVE-2022-24448 CVE-2022-21180
CVE-2022-21166 CVE-2022-21127 CVE-2022-21125
CVE-2022-21123 CVE-2022-20008 CVE-2022-1972
CVE-2022-1729 CVE-2022-1652 CVE-2022-1184
CVE-2022-0168 CVE-2021-33061 CVE-2019-19377
Original Bulletin:
https://www.suse.com/support/update/announcement/2022/suse-su-20222079-1
Comment: CVSS (Max): 8.4 CVE-2022-30594 (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
CVSS Source: SUSE
Calculator: https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- --------------------------BEGIN INCLUDED TEXT--------------------
SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2022:2079-1
Rating: important
References: #1055117 #1061840 #1065729 #1103269 #1118212 #1152472
#1152489 #1153274 #1154353 #1156395 #1158266 #1167773
#1176447 #1178134 #1180100 #1183405 #1188885 #1195612
#1195651 #1195826 #1196426 #1196478 #1196570 #1196840
#1197446 #1197472 #1197601 #1197675 #1198438 #1198534
#1198577 #1198971 #1198989 #1199035 #1199052 #1199063
#1199114 #1199314 #1199505 #1199507 #1199564 #1199626
#1199631 #1199650 #1199670 #1199839 #1200019 #1200045
#1200046 #1200192 #1200216
Cross-References: CVE-2019-19377 CVE-2021-33061 CVE-2022-0168 CVE-2022-1184
CVE-2022-1652 CVE-2022-1729 CVE-2022-1972 CVE-2022-20008
CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166
CVE-2022-21180 CVE-2022-24448 CVE-2022-30594
Affected Products:
SUSE Linux Enterprise High Performance Computing 15-SP3
SUSE Linux Enterprise Module for Public Cloud 15-SP3
SUSE Linux Enterprise Server 15-SP3
SUSE Linux Enterprise Server for SAP Applications 15-SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
openSUSE Leap 15.3
______________________________________________________________________________
An update that solves 15 vulnerabilities, contains two features and has 36
fixes is now available.
Description:
The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:
o CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to
speculatively/transiently disclose information via spectre like attacks.
(bsc#1199650)
o CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to
speculatively/transiently disclose information via spectre like attacks.
(bsc#1199650)
o CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to
speculatively/transiently disclose information via spectre like attacks.
(bsc#1199650)
o CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to
speculatively/transiently disclose information via spectre like attacks.
(bsc#1199650)
o CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to
speculatively/transiently disclose information via spectre like attacks.
(bsc#1199650)
o CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to
privilege escalation. (bsc#1200019)
o CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self
(bsc#1199507).
o CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when
mounting and operating on a corrupted image. (bsc#1198577)
o CVE-2022-1652: Fixed a statically allocated error counter inside the floppy
kernel module (bsc#1199063).
o CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP
flag (bnc#1199505).
o CVE-2021-33061: Fixed insufficient control flow management for the Intel(R)
82599 Ethernet Controllers and Adapters that may have allowed an
authenticated user to potentially enable denial of service via local access
(bnc#1196426).
o CVE-2019-19377: Fixed an user-after-free that could be triggered when an
attacker mounts a crafted btrfs filesystem image. (bnc#1158266)
o CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to
uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564)
o CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info.
(bsc#1197472)
o CVE-2022-24448: Fixed an issue if an application sets the O_DIRECTORY flag,
and tries to open a regular file, nfs_atomic_open() performs a regular
lookup. If a regular file is found, ENOTDIR should have occured, but the
server instead returned uninitialized data in the file descriptor (bsc#
1195612).
The following non-security bugs were fixed:
o ACPI: property: Release subnode properties with data nodes (git-fixes).
o ALSA: ctxfi: Add SB046x PCI ID (git-fixes).
o ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
(git-fixes).
o ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes).
o ALSA: hda/realtek - Add new type for ALC245 (git-fixes).
o ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
(git-fixes).
o ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop
(git-fixes).
o ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes).
o ALSA: pcm: Check for null pointer of pointer substream before dereferencing
it (git-fixes).
o ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes).
o ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes).
o ALSA: usb-audio: Configure sync endpoints before data (git-fixes).
o ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
constant (git-fixes).
o ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes).
o ALSA: wavefront: Proper check of get_user() error (git-fixes).
o ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes)
o ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes)
o ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes)
o ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes)
o ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes)
o ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes)
o ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes)
o ARM: dts: at91: fix pinctrl phandles (git-fixes)
o ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes)
o ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes)
o ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes)
o ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes)
o ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes)
o ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes)
o ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes)
o ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes)
o ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes)
o ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes)
o ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes)
o ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes)
o ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes)
o ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes)
o ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes)
o ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes)
o ARM: dts: meson: Fix the UART compatible strings (git-fixes)
o ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes)
o ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes)
o ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes)
o ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes)
o ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes)
o ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes)
o ARM: mediatek: select arch timer for mt7629 (git-fixes)
o ARM: omap: remove debug-leds driver (git-fixes)
o ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes)
o ARM: socfpga: dts: fix qspi node compatible (git-fixes)
o ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes)
o ARM: tegra: Move panels to AUX bus (git-fixes)
o arm64: dts: broadcom: Fix sata nodename (git-fixes)
o arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes)
o arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes)
o arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes).
o arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions
(git-fixes)
o arm64/mm: avoid fixmap race condition when create pud mapping (git-fixes)
o ASoC: atmel-classd: Remove endianness flag on class d component
(git-fixes).
o ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes).
o ASoC: da7219: Fix change notifications for tone generator frequency
(git-fixes).
o ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes).
o ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes).
o ASoC: max98090: Generate notifications on changes for custom control
(git-fixes).
o ASoC: max98090: Move check for invalid values before casting in
max98090_put_enab_tlv() (git-fixes).
o ASoC: max98090: Reject invalid values in custom control put() (git-fixes).
o ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
(git-fixes).
o ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
(git-fixes).
o ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes).
o ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes).
o ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes).
o ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes).
o ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
(git-fixes).
o ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes).
o ASoC: wm2000: fix missing clk_disable_unprepare() on error in
wm2000_anc_transition() (git-fixes).
o ASoC: wm8958: Fix change notifications for DSP controls (git-fixes).
o assoc_array: Fix BUG_ON during garbage collect (git-fixes).
o ata: pata_hpt37x: fix PCI clock detection (git-fixes).
o ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes).
o ath9k_htc: fix potential out of bounds access with invalid rxstatus->
rs_keyix (git-fixes).
o ath9k: fix ar9003_get_eepmisc (git-fixes).
o backlight: qcom-wled: Respect enabled-strings in set_brightness (bsc#
1152489)
o batman-adv: Do not skb_split skbuffs with frag_list (git-fixes).
o blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045).
o Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
(git-fixes).
o Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
(git-fixes).
o Bluetooth: Fix the creation of hdev->name (git-fixes).
o Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes).
o bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#
SLE-8371 bsc#1153274).
o bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075).
o brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
constant (git-fixes).
o bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create()
(git-fixes).
o bus: ti-sysc: Fix warnings for unbind for serial (git-fixes).
o can: grcan: grcan_close(): fix deadlock (git-fixes).
o can: grcan: use ofdev->dev when allocating DMA memory (git-fixes).
o carl9170: tx: fix an incorrect use of list iterator (git-fixes).
o ceph: fix setting of xattrs on async created inodes (bsc#1200192).
o cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
(bsc#1199839).
o clk: at91: generated: consider range when calculating best rate
(git-fixes).
o clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes).
o clk: imx8mp: fix usb_root_clk parent (git-fixes).
o clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes).
o clk: sunxi: sun9i-mmc: check return value after calling
platform_get_resource() (git-fixes).
o copy_process(): Move fd_install() out of sighand->siglock critical section
(bsc#1199626).
o crypto: caam - fix i.MX6SX entropy delay value (git-fixes).
o crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes).
o crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes).
o crypto: x86 - eliminate anonymous module_init & module_exit (git-fixes).
o crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes).
o dim: initialize all struct fields (git-fixes).
o dmaengine: idxd: Fix the error handling path in idxd_cdev_register()
(git-fixes).
o dmaengine: stm32-mdma: remove GISR1 register (git-fixes).
o docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#
159753).
o docs: submitting-patches: Fix crossref to 'The canonical patch format'
(git-fixes).
o drbd: fix an invalid memory access caused by incorrect use of list iterator
(git-fixes).
o drbd: fix duplicate array initializer (git-fixes).
o drbd: Fix five use after free bugs in get_initial_state (git-fixes).
o drbd: remove assign_p_sizes_qlim (git-fixes).
o drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes).
o drbd: use bdev_alignment_offset instead of queue_alignment_offset
(git-fixes).
o driver core: fix deadlock in __device_attach (git-fixes).
o driver: base: fix UAF when driver_attach failed (git-fixes).
o drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION()
(git-fixes)
o drivers/base/memory: fix an unlikely reference counting issue in
__add_memory_block() (git-fixes).
o drivers/base/node.c: fix compaction sysfs file leak (git-fixes).
o drm: mali-dp: potential dereference of null pointer (git-fixes).
o drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes).
o drm: sti: do not use kernel-doc markers (git-fixes).
o drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1152472)
o drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version,
environment} types (git-fixes).
o drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1152489)
o drm/amdkfd: Fix GWS queue count (git-fixes).
o drm/blend: fix typo in the comment (git-fixes).
o drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes).
o drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes).
o drm/bridge: Fix error handling in analogix_dp_probe (git-fixes).
o drm/cma-helper: Set VM_DONTEXPAND for mmap (bsc#1152472)
o drm/edid: fix invalid EDID extension block filtering (git-fixes).
o drm/fb-helper: Mark screen buffers in system memory with (bsc#1152472)
o drm/i915: Drop all references to DRM IRQ midlayer (bsc#1152489)
o drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes).
o drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes).
o drm/i915: Keep gem ctx->vm alive until the final put (bsc#1152489)
o drm/i915: s/JSP2/ICP2/ PCH (bsc#1152489)
o drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
(git-fixes).
o drm/mediatek: Fix mtk_cec_mask() (git-fixes).
o drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
(git-fixes).
o drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes).
o drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory
free during pm runtime resume (git-fixes).
o drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes).
o drm/msm/dsi: fix error checks and return values for DSI xmit functions
(git-fixes).
o drm/msm/hdmi: check return value after calling platform_get_resource_byname
() (git-fixes).
o drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
(git-fixes).
o drm/msm/mdp5: check the return of kzalloc() (git-fixes).
o drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is
detected (git-fixes).
o drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is
detected (git-fixes).
o drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name()
(git-fixes).
o drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes).
o drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator
(git-fixes).
o drm/nouveau/tegra: Stop using iommu_present() (git-fixes).
o drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01
(git-fixes).
o drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap (bsc#1152472)
o drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes).
o drm/vc4: crtc: Lookup the encoder from the register at boot (bsc#1198534)
o drm/vc4: hvs: Reset muxes at probe time (git-fixes).
o drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes).
o drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes).
o drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes).
o drm/vmwgfx: Remove unused compile options (bsc#1152472)
o EDAC/synopsys: Read the error count from the correct register (bsc#
1178134).
o firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes).
o firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes).
o firewire: remove check of list iterator against head past the loop body
(git-fixes).
o firmware: arm_scmi: Fix list protocols enumeration in the base protocol
(git-fixes).
o firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response
(git-fixes).
o firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
(git-fixes).
o firmware: stratix10-svc: fix a missing check on list iterator (git-fixes).
o Fix double fget() in vhost_net_set_backend() (git-fixes).
o genirq: Fix reference leaks on irq affinity notifiers (git-fixes)
o genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes)
o genirq/affinity: Consider that CPUs on nodes can be (git-fixes)
o genirq/affinity: Handle affinity setting on inactive (git-fixes)
o genirq/msi: Ensure deactivation on teardown (git-fixes)
o genirq/proc: Reject invalid affinity masks (again) (git-fixes)
o genirq/timings: Fix error return code in (git-fixes)
o genirq/timings: Prevent potential array overflow in (git-fixes)
o gma500: fix an incorrect NULL check on list iterator (git-fixes).
o gpio: adp5588: Remove support for platform setup and teardown callbacks
(git-fixes).
o gpio: gpio-vf610: do not touch other bits when set the target bit
(git-fixes).
o gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes).
o gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not
set) (git-fixes).
o gpio: pca953x: use the correct register address to do regcache sync
(git-fixes).
o gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes).
o hex2bin: fix access beyond string end (git-fixes).
o HID: elan: Fix potential double free in elan_input_configured (git-fixes).
o HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes).
o hinic: fix bug of wq out of bound access (bsc#1176447).
o hwmon: (f71882fg) Fix negative temperature (git-fixes).
o hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes).
o hwmon: (tmp401) Add OF device ID table (git-fixes).
o i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes).
o i2c: at91: use dma safe buffers (git-fixes).
o i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe
() (git-fixes).
o i40e: stop disabling VFs due to PF error responses (git-fixes).
o ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878).
o ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878).
o ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926).
o ice: Fix race conditions between virtchnl handling and VF ndo ops
(git-fixes).
o ice: synchronize_rcu() when terminating rings (jsc#SLE-7926).
o iio: adc: ad7124: Remove shift from scan_type (git-fixes).
o iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes).
o iio: adc: sc27xx: fix read big scale voltage not right (git-fixes).
o iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
(git-fixes).
o iio: dac: ad5446: Fix read_raw not returning set value (git-fixes).
o iio: dac: ad5592r: Fix the missing return value (git-fixes).
o iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
(git-fixes).
o Input: add bounds checking to input_set_capability() (git-fixes).
o Input: ili210x - fix reset timing (git-fixes).
o Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes).
o Input: stmfts - do not leave device disabled in stmfts_input_open
(git-fixes).
o Input: stmfts - fix reference leak in stmfts_input_open (git-fixes).
o iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052).
o ionic: avoid races in ionic_heartbeat_check (bsc#1167773).
o ionic: Cleanups in the Tx hotpath code (bsc#1167773).
o ionic: disable napi when ionic_lif_init() fails (bsc#1167773).
o ionic: Do not send reset commands if FW isn't running (bsc#1167773).
o ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#
1167773).
o ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649).
o ionic: monitor fw status generation (bsc#1167773).
o ionic: remove the dbid_inuse bitmap (bsc#1167773).
o ionic: start watchdog after all is setup (bsc#1167773).
o ivtv: fix incorrect device_caps for ivtvfb (git-fixes).
o iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes).
o iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes).
o jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971).
o kABI: ivtv: restore caps member (git-fixes).
o Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH
(git-fixes).
o KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes).
o KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state
(git-fixes).
o lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes).
o lan743x: remove redundant assignment to variable rx_process_result
(git-fixes).
o lib/raid6/test: fix multiple definition linking error (git-fixes).
o lpfc: Readd update to version 14.2.0.1 (bsc#1197675 bsc#1196478 bsc#
1198989) The update was reverted due to some regression on older hardware.
These have been fixed in the meantime, thus update the driver.
o mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
(git-fixes).
o mac80211: fix rx reordering with non explicit / psmp ack policy
(git-fixes).
o mac80211: Reset MBSSID parameters upon connection (git-fixes).
o media: davinci: Make use of the helper function
devm_platform_ioremap_resource() (git-fixes).
o media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes).
o media: davinci: vpif: fix use-after-free on driver unbind (git-fixes).
o media: media-entity.h: Fix documentation for media_create_intf_link
(git-fixes).
o media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes).
o media: platform: add missing put_device() call in mtk_jpeg_probe() and
mtk_jpeg_remove() (git-fixes).
o media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
(git-fixes).
o media: saa7134: fix incorrect use to determine if list is empty
(git-fixes).
o media: uvcvideo: Fix missing check to determine if element is found in list
(git-fixes).
o media: videobuf2: Fix the size printk format (git-fixes).
o media: vim2m: Register video device after setting up internals (git-fixes).
o mfd: ipaq-micro: Fix error check return value of platform_get_irq()
(git-fixes).
o misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes).
o mm, page_alloc: fix build_zonerefs_node() (git-fixes).
o mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#
SLE-15176, jsc#SLE-16387).
o mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD
(git-fixes).
o mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes).
o mt76: Fix undefined behavior due to shift overflowing the constant
(git-fixes).
o mt76: mt7663s: fix rx buffer refcounting (git-fixes).
o mtd: rawnand: fix ecc parameters for mt7622 (git-fixes).
o mtd: rawnand: Fix return value check of wait_for_completion_timeout
(git-fixes).
o mtd: spi-nor: core: Check written SR value in
spi_nor_write_16bit_sr_and_check() (git-fixes).
o net: bcmgenet: Fix a resource leak in an error handling path in the probe
functin (git-fixes).
o net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs
(git-fixes).
o net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes).
o net: ethernet: Fix memleak in ethoc_probe (git-fixes).
o net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered
(git-fixes).
o net: hdlc_ppp: Fix issues when mod_timer is called while timer is running
(git-fixes).
o net: hns3: add a check for index in hclge_get_rss_key() (git-fixes).
o net: hns3: clear inited state and stop client after failed to register
netdev (bsc#1154353).
o net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#
SLE-14777).
o net: hns3: fix kernel crash when unload VF while it is being reset
(git-fixes).
o net: korina: fix return value (git-fixes).
o net: mana: Add counter for packet dropped by XDP (bsc#1195651).
o net: mana: Add counter for XDP_TX (bsc#1195651).
o net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651).
o net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe()
(bsc#1195651).
o net: mana: Reuse XDP dropped page (bsc#1195651).
o net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#
1195651).
o net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#
1183405).
o net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes).
o net: stmmac: dwmac-sun8i: Balance internal PHY resource references
(git-fixes).
o net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes).
o net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes).
o net/mlx5: Fix a race on command flush flow (jsc#SLE-15172).
o net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172).
o netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216).
o netfilter: conntrack: connection timeout after re-register (bsc#1199035).
o netfilter: conntrack: move synack init code to helper (bsc#1199035).
o netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#
1199035).
o netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#
1199035).
o netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035).
o netfilter: nft_set_rbtree: overlap detection with element re-addition after
deletion (bsc#1176447).
o NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
(git-fixes).
o NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc
(git-fixes).
o NFC: netlink: fix sleep in atomic bug when firmware download timeout
(git-fixes).
o NFC: nfcmrvl: main: reorder destructive operations in
nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes).
o NFC: NULL out the dev->rfkill to prevent UAF (git-fixes).
o NFS: limit use of ACCESS cache for negative responses (bsc#1196570).
o NFSv4: Do not invalidate inode attributes on delegation return (git-fixes).
o nl80211: show SSID for P2P_GO interfaces (git-fixes).
o nvdimm/region: always show the 'align' attribute (bsc#1199114).
o nvme-tcp: allow selecting the network interface for connections (bsc#
1199670).
o nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE
(bsc#1199670).
o objtool: Fix type of reloc::addend (git-fixes).
o PCI: aardvark: Clear all MSIs at setup (git-fixes).
o PCI: cadence: Fix find_first_zero_bit() limit (git-fixes).
o PCI: Do not enable AtomicOps on VFs (git-fixes).
o PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes).
o PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#
1199314).
o PCI: imx6: Fix PERST# start-up sequence (git-fixes).
o PCI: iproc: Set affinity mask on MSI interrupts (git-fixes).
o PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes).
o PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes).
o PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes).
o PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes).
o PCI/PM: Power up all devices during runtime resume (git-fixes).
o phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe
(git-fixes).
o phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes).
o phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes).
o phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes).
o phy: samsung: exynos5250-sata: fix missing device put in probe error paths
(git-fixes).
o phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
(git-fixes).
o phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe
(git-fixes).
o phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
(git-fixes).
o pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes).
o pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes).
o pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes).
o pinctrl/rockchip: support deferring other gpio params (git-fixes).
o ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826).
o ping: remove pr_err from ping_lookup (bsc#1195826).
o platform/chrome: cros_ec_debugfs: detach log reader wq from devm
(git-fixes).
o platform/x86: samsung-laptop: Fix an unsigned comparison which can never be
negative (git-fixes).
o powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#
159753).
o powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes).
o powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840
git-fixes).
o powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395).
o powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#
169948 git-fixes).
o powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885
ltc#193722 git-fixes).
o powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885
ltc#193722 git-fixes).
o powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885
ltc#193722 git-fixes).
o powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess
flushes (bsc#1188885 ltc#193722 git-fixes).
o powerpc/xive: Add some error handling code to 'xive_spapr_init()'
(git-fixes).
o powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes).
o pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes).
o pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes).
o qlcnic: Fix error code in probe (git-fixes).
o regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes).
o regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
(git-fixes).
o reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes).
o rtc: fix use-after-free on device removal (git-fixes).
o rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes).
o rtc: mt6397: check return value after calling platform_get_resource()
(git-fixes).
o sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes).
o sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes).
o sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes)
o sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#
183000).
o scsi: dc395x: Fix a missing check on list iterator (git-fixes).
o scsi: fnic: Fix a tracing statement (git-fixes).
o scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631).
o scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes).
o scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045).
o scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045).
o scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#
1200045).
o scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#
1200045).
o scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045).
o scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045
bsc#1198989 bsc#1197675).
o scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045).
o scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link()
(bsc#1200045).
o scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045).
o scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045).
o scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#
1200045).
o scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#
1200045).
o scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045).
o scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#
1200045).
o scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#
1200045).
o scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045).
o scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045).
o scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and
PLOGI (bsc#1200045).
o scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045).
o scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#
1200045).
o scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#
1197675).
o scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#
1200045).
o scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN
completion (bsc#1200045).
o scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#
1200045).
o scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#
1200045).
o scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#
1200045).
o scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045).
o scsi: lpfc: Register for Application Services FC-4 type in Fabric topology
(bsc#1200045).
o scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#
1200045).
o scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045).
o scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#
1200045).
o scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path
(bsc#1200045).
o scsi: lpfc: Remove unneeded variable (bsc#1200045).
o scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#
1200045).
o scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups
(bsc#1200045).
o scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045).
o scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted
(bsc#1200045).
o scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#
1200045).
o scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB
submit (bsc#1200045).
o scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045).
o scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045).
o scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#
1200045).
o scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#
1200045).
o scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#
1200045).
o scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045).
o scsi: pm8001: Fix abort all task initialization (git-fixes).
o scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
(git-fixes).
o scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
(git-fixes).
o scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
(git-fixes).
o scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
(git-fixes).
o scsi: pm8001: Fix le32 values handling in
pm80xx_set_sas_protocol_timer_config() (git-fixes).
o scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes).
o scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes).
o scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
(git-fixes).
o scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
(git-fixes).
o scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes).
o scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes).
o scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046).
o scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046).
o scsi: qla2xxx: Remove free_sg command flag (bsc#1200046).
o scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046).
o scsi: sr: Do not leak information in ioctl (git-fixes).
o scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes).
o scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
(git-fixes).
o scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes).
o scsi: virtio-scsi: Eliminate anonymous module_init & module_exit
(git-fixes).
o scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes).
o selftests: firmware: Use smaller dictionary for XZ compression (git-fixes).
o serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes).
o serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes).
o serial: 8250_mtk: Fix UART_EFR register address (git-fixes).
o serial: 8250: Also set sticky MCR bits in console restoration (git-fixes).
o serial: 8250: core: Remove unneeded <linux/pm_runtime.h> (git-fixes).
o serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
(git-fixes).
o serial: 8250: pxa: Remove unneeded <linux/pm_runtime.h> (git-fixes).
o serial: digicolor-usart: Do not allow CS5-6 (git-fixes).
o serial: imx: fix overrun interrupts in DMA mode (git-fixes).
o serial: meson: acquire port->lock in startup() (git-fixes).
o serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes).
o serial: rda-uart: Do not allow CS5-6 (git-fixes).
o serial: sh-sci: Do not allow CS5-6 (git-fixes).
o serial: sifive: Sanitize CSIZE and c_iflag (git-fixes).
o serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes).
o serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes).
o serial: txx9: Do not allow CS5-6 (git-fixes).
o slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes).
o smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes).
o smsc911x: allow using IRQ0 (git-fixes).
o soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes).
o soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes).
o soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes).
o spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes).
o spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes).
o spi: spi-fsl-qspi: check return value after calling
platform_get_resource_byname() (git-fixes).
o spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
(git-fixes).
o staging: fieldbus: Fix the error handling path in anybuss_host_common_probe
() (git-fixes).
o SUNRPC: Ensure gss-proxy connects on setup (git-fixes).
o SUNRPC: Ensure that the gssproxy client can start in a connected state
(git-fixes).
o thermal: int340x: Fix attr.show callback prototype (git-fixes).
o thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes).
o thermal/drivers/broadcom: Fix potential NULL dereference in
sr_thermal_probe (git-fixes).
o timekeeping: Really make sure wall_to_monotonic isn't (git-fixes)
o timers: Fix warning condition in __run_timers() (git-fixes)
o tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes).
o tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#
1065729).
o tracing: Fix potential double free in create_var_ref() (git-fixes).
o tracing: Fix return value of trace_pid_write() (git-fixes).
o tty: fix deadlock caused by calling printk() under tty_port->lock
(git-fixes).
o tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes).
o tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
and ida_simple_get (git-fixes).
o tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
(git-fixes).
o tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe
() (git-fixes).
o usb: cdc-wdm: fix reading stuck on device close (git-fixes).
o usb: dwc3: core: Fix tx/rx threshold settings (git-fixes).
o usb: dwc3: core: Only handle soft-reset in DCTL (git-fixes).
o usb: dwc3: gadget: Return proper request status (git-fixes).
o usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes).
o usb: ehci-omap: drop unused ehci_read() function (git-fixes).
o usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind
() (git-fixes).
o usb: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (bsc#
1152489)
o usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes).
o usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes).
o usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes).
o usb: quirks: add a Realtek card reader (git-fixes).
o usb: quirks: add STRING quirk for VCOM device (git-fixes).
o usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes).
o usb: serial: option: add Fibocom L610 modem (git-fixes).
o usb: serial: option: add Fibocom MA510 modem (git-fixes).
o usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes).
o usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
(git-fixes).
o usb: serial: pl2303: add device id for HP LM930 Display (git-fixes).
o usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes).
o usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
(git-fixes).
o usb: storage: karma: fix rio_karma_init return (git-fixes).
o usb: typec: mux: Check dev_set_name() return value (git-fixes).
o usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes).
o usb: typec: ucsi: Fix reuse of completion structure (git-fixes).
o usb: typec: ucsi: Fix role swapping (git-fixes).
o usb: usbip: add missing device lock on tweak configuration cmd (git-fixes).
o usb: usbip: fix a refcount leak in stub_probe() (git-fixes).
o video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
(git-fixes).
o watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes).
o wifi: mac80211: fix use-after-free in chanctx code (git-fixes).
o wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes).
o xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
(git-fixes).
o xhci: stop polling roothubs after shutdown (git-fixes).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2022-2079=1
o SUSE Linux Enterprise Module for Public Cloud 15-SP3:
zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP3-2022-2079=1
Package List:
o openSUSE Leap 15.3 (x86_64):
cluster-md-kmp-azure-5.3.18-150300.38.59.1
cluster-md-kmp-azure-debuginfo-5.3.18-150300.38.59.1
dlm-kmp-azure-5.3.18-150300.38.59.1
dlm-kmp-azure-debuginfo-5.3.18-150300.38.59.1
gfs2-kmp-azure-5.3.18-150300.38.59.1
gfs2-kmp-azure-debuginfo-5.3.18-150300.38.59.1
kernel-azure-5.3.18-150300.38.59.1
kernel-azure-debuginfo-5.3.18-150300.38.59.1
kernel-azure-debugsource-5.3.18-150300.38.59.1
kernel-azure-devel-5.3.18-150300.38.59.1
kernel-azure-devel-debuginfo-5.3.18-150300.38.59.1
kernel-azure-extra-5.3.18-150300.38.59.1
kernel-azure-extra-debuginfo-5.3.18-150300.38.59.1
kernel-azure-livepatch-devel-5.3.18-150300.38.59.1
kernel-azure-optional-5.3.18-150300.38.59.1
kernel-azure-optional-debuginfo-5.3.18-150300.38.59.1
kernel-syms-azure-5.3.18-150300.38.59.1
kselftests-kmp-azure-5.3.18-150300.38.59.1
kselftests-kmp-azure-debuginfo-5.3.18-150300.38.59.1
ocfs2-kmp-azure-5.3.18-150300.38.59.1
ocfs2-kmp-azure-debuginfo-5.3.18-150300.38.59.1
reiserfs-kmp-azure-5.3.18-150300.38.59.1
reiserfs-kmp-azure-debuginfo-5.3.18-150300.38.59.1
o openSUSE Leap 15.3 (noarch):
kernel-devel-azure-5.3.18-150300.38.59.1
kernel-source-azure-5.3.18-150300.38.59.1
o SUSE Linux Enterprise Module for Public Cloud 15-SP3 (noarch):
kernel-devel-azure-5.3.18-150300.38.59.1
kernel-source-azure-5.3.18-150300.38.59.1
o SUSE Linux Enterprise Module for Public Cloud 15-SP3 (x86_64):
kernel-azure-5.3.18-150300.38.59.1
kernel-azure-debuginfo-5.3.18-150300.38.59.1
kernel-azure-debugsource-5.3.18-150300.38.59.1
kernel-azure-devel-5.3.18-150300.38.59.1
kernel-azure-devel-debuginfo-5.3.18-150300.38.59.1
kernel-syms-azure-5.3.18-150300.38.59.1
References:
o https://www.suse.com/security/cve/CVE-2019-19377.html
o https://www.suse.com/security/cve/CVE-2021-33061.html
o https://www.suse.com/security/cve/CVE-2022-0168.html
o https://www.suse.com/security/cve/CVE-2022-1184.html
o https://www.suse.com/security/cve/CVE-2022-1652.html
o https://www.suse.com/security/cve/CVE-2022-1729.html
o https://www.suse.com/security/cve/CVE-2022-1972.html
o https://www.suse.com/security/cve/CVE-2022-20008.html
o https://www.suse.com/security/cve/CVE-2022-21123.html
o https://www.suse.com/security/cve/CVE-2022-21125.html
o https://www.suse.com/security/cve/CVE-2022-21127.html
o https://www.suse.com/security/cve/CVE-2022-21166.html
o https://www.suse.com/security/cve/CVE-2022-21180.html
o https://www.suse.com/security/cve/CVE-2022-24448.html
o https://www.suse.com/security/cve/CVE-2022-30594.html
o https://bugzilla.suse.com/1055117
o https://bugzilla.suse.com/1061840
o https://bugzilla.suse.com/1065729
o https://bugzilla.suse.com/1103269
o https://bugzilla.suse.com/1118212
o https://bugzilla.suse.com/1152472
o https://bugzilla.suse.com/1152489
o https://bugzilla.suse.com/1153274
o https://bugzilla.suse.com/1154353
o https://bugzilla.suse.com/1156395
o https://bugzilla.suse.com/1158266
o https://bugzilla.suse.com/1167773
o https://bugzilla.suse.com/1176447
o https://bugzilla.suse.com/1178134
o https://bugzilla.suse.com/1180100
o https://bugzilla.suse.com/1183405
o https://bugzilla.suse.com/1188885
o https://bugzilla.suse.com/1195612
o https://bugzilla.suse.com/1195651
o https://bugzilla.suse.com/1195826
o https://bugzilla.suse.com/1196426
o https://bugzilla.suse.com/1196478
o https://bugzilla.suse.com/1196570
o https://bugzilla.suse.com/1196840
o https://bugzilla.suse.com/1197446
o https://bugzilla.suse.com/1197472
o https://bugzilla.suse.com/1197601
o https://bugzilla.suse.com/1197675
o https://bugzilla.suse.com/1198438
o https://bugzilla.suse.com/1198534
o https://bugzilla.suse.com/1198577
o https://bugzilla.suse.com/1198971
o https://bugzilla.suse.com/1198989
o https://bugzilla.suse.com/1199035
o https://bugzilla.suse.com/1199052
o https://bugzilla.suse.com/1199063
o https://bugzilla.suse.com/1199114
o https://bugzilla.suse.com/1199314
o https://bugzilla.suse.com/1199505
o https://bugzilla.suse.com/1199507
o https://bugzilla.suse.com/1199564
o https://bugzilla.suse.com/1199626
o https://bugzilla.suse.com/1199631
o https://bugzilla.suse.com/1199650
o https://bugzilla.suse.com/1199670
o https://bugzilla.suse.com/1199839
o https://bugzilla.suse.com/1200019
o https://bugzilla.suse.com/1200045
o https://bugzilla.suse.com/1200046
o https://bugzilla.suse.com/1200192
o https://bugzilla.suse.com/1200216
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: https://auscert.org.au/gpg-key/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=WrHa
-----END PGP SIGNATURE-----