openSUSE Security Announce
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2000 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 1999 -----
- December
- November
- October
- September
- August
May 2019
- 2 participants
- 74 discussions
[security-announce] openSUSE-SU-2019:1481-1: important: Security update for lxc, lxcfs
by opensuse-security@opensuse.org 31 May '19
by opensuse-security@opensuse.org 31 May '19
31 May '19
openSUSE Security Update: Security update for lxc, lxcfs
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1481-1
Rating: important
References: #1036360 #1099239 #1122185 #1131762 #988348
#998326
Cross-References: CVE-2015-1331 CVE-2015-1334 CVE-2015-1335
CVE-2017-5985 CVE-2018-6556 CVE-2019-5736
Affected Products:
openSUSE Leap 42.3
______________________________________________________________________________
An update that fixes 6 vulnerabilities is now available.
Description:
This update for lxc, lxcfs to version 3.1.0 fixes the following issues:
Security issues fixed:
- CVE-2019-5736: Fixed a container breakout vulnerability (boo#1122185).
- CVE-2018-6556: Enable setuid bit on lxc-user-nic (boo#988348).
Non-security issues fixed:
- Update to LXC 3.1.0. The changelog is far too long to include here,
please look at https://linuxcontainers.org/. (boo#1131762)
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-1481=1
Package List:
- openSUSE Leap 42.3 (i586 x86_64):
lxcfs-3.0.3-2.1
lxcfs-debuginfo-3.0.3-2.1
lxcfs-debugsource-3.0.3-2.1
- openSUSE Leap 42.3 (x86_64):
liblxc-devel-3.1.0-24.1
liblxc1-3.1.0-24.1
liblxc1-debuginfo-3.1.0-24.1
lxc-3.1.0-24.1
lxc-debuginfo-3.1.0-24.1
lxc-debugsource-3.1.0-24.1
pam_cgfs-3.1.0-24.1
pam_cgfs-debuginfo-3.1.0-24.1
- openSUSE Leap 42.3 (noarch):
lxc-bash-completion-3.1.0-24.1
lxcfs-hooks-lxc-3.0.3-2.1
References:
https://www.suse.com/security/cve/CVE-2015-1331.html
https://www.suse.com/security/cve/CVE-2015-1334.html
https://www.suse.com/security/cve/CVE-2015-1335.html
https://www.suse.com/security/cve/CVE-2017-5985.html
https://www.suse.com/security/cve/CVE-2018-6556.html
https://www.suse.com/security/cve/CVE-2019-5736.html
https://bugzilla.suse.com/1036360
https://bugzilla.suse.com/1099239
https://bugzilla.suse.com/1122185
https://bugzilla.suse.com/1131762
https://bugzilla.suse.com/988348
https://bugzilla.suse.com/998326
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] Advance discontinuation notice for openSUSE Leap 42.3
by Marcus Meissner 31 May '19
by Marcus Meissner 31 May '19
31 May '19
Hi folks,
This is the advance discontinuation notice for openSUSE Leap 42.3.
On June 30th 2019 the openSUSE Leap 42 release series will reach its
end of life, after 4 years of lifetime (42.1 was released in fall 2015).
openSUSE Leap 42.3 will receive no further maintenance or security
updates after that date.
It is recommended for openSUSE Leap users to upgrade to the recently
released openSUSE Leap 15.1.
Deployments with software that relies on Leap 42 technology and cannot
be moved to 15 right now may consider evaluating a (commercial) SUSE
Linux Enterprise 12 SP4 subscription and migrate the workload to SUSE
Linux Enterprise. With the upcoming SP5, SUSE Linux Enterprise 12
receives maintenance and support until 2027.
Ciao, Marcus, for SUSE Security and openSUSE Maintenance
1
0
[security-announce] openSUSE-SU-2019:1479-1: important: Security update for the Linux Kernel
by opensuse-security@opensuse.org 31 May '19
by opensuse-security@opensuse.org 31 May '19
31 May '19
openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1479-1
Rating: important
References: #1050549 #1055117 #1055186 #1061840 #1063638
#1070872 #1082555 #1083647 #1085535 #1085536
#1086657 #1097584 #1106011 #1106284 #1108193
#1108937 #1111331 #1112063 #1112128 #1112178
#1113722 #1114279 #1119680 #1119843 #1120843
#1122776 #1123663 #1124839 #1127175 #1127371
#1127374 #1128415 #1128971 #1128979 #1129138
#1129693 #1129770 #1129845 #1130527 #1130567
#1130579 #1131416 #1131427 #1131438 #1131451
#1131488 #1131530 #1131574 #1131673 #1131847
#1131900 #1131934 #1132044 #1132219 #1132226
#1132369 #1132373 #1132397 #1132402 #1132403
#1132404 #1132405 #1132411 #1132412 #1132413
#1132426 #1132527 #1132531 #1132561 #1132562
#1132564 #1132618 #1132681 #1132726 #1132828
#1132894 #1133005 #1133094 #1133095 #1133149
#1133176 #1133188 #1133547 #1133668 #1133672
#1133698 #1133702 #1133769 #1133772 #1133778
#1133779 #1133780 #1133850 #1133851 #1133852
#1133897 #1134160 #1134162 #1134201 #1134202
#1134204 #1134205 #1134393 #1134459 #1134461
#1134597 #1134600 #1134651 #1134810 #1134848
#1135007 #1135008 #1135120 #1135278 #1135281
#1135309 #1135312 #1135315 #1135320 #1135323
#1135492 #1135642
Cross-References: CVE-2018-7191 CVE-2019-11085 CVE-2019-11486
CVE-2019-11811 CVE-2019-11815 CVE-2019-11833
CVE-2019-11884 CVE-2019-3882 CVE-2019-5489
CVE-2019-9500 CVE-2019-9503
Affected Products:
openSUSE Leap 15.1
______________________________________________________________________________
An update that solves 11 vulnerabilities and has 111 fixes
is now available.
Description:
The openSUSE Leap 15.1 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2018-7191: In the tun subsystem dev_get_valid_name xwas not called
before register_netdevice. This allowed local users to cause a denial of
service (NULL pointer dereference and panic) via an ioctl(TUNSETIFF)
call with a dev name containing a / character. This is similar to
CVE-2013-4343 (bnc#1135603).
- CVE-2019-11085: Insufficient input validation in Kernel Mode Driver in
Intel(R) i915 Graphics for Linux may have allowed an authenticated user
to potentially enable escalation of privilege via local access
(bnc#1135278).
- CVE-2019-11486: The Siemens R3964 line discipline driver in
drivers/tty/n_r3964.c in the Linux kernel had multiple race conditions
(bnc#1133188). It was disabled by default.
- CVE-2019-11811: There is a use-after-free upon attempted read access to
/proc/ioports after the ipmi_si module is removed, related to
drivers/char/ipmi/ipmi_si_intf.c, drivers/char/ipmi/ipmi_si_mem_io.c,
and drivers/char/ipmi/ipmi_si_port_io.c (bnc#1134397).
- CVE-2019-11815: An issue was discovered in rds_tcp_kill_sock in
net/rds/tcp.c kernel. There is a race condition leading to a
use-after-free, related to net namespace cleanup (bnc#1134537).
- CVE-2019-11833: fs/ext4/extents.c did not zero out the unused memory
region in the extent tree block, which might allow local users to obtain
sensitive information by reading uninitialized data in the filesystem
(bnc#1135281).
- CVE-2019-11884: The do_hidp_sock_ioctl function in
net/bluetooth/hidp/sock.c allowed a local user to obtain potentially
sensitive information from kernel stack memory via a HIDPCONNADD
command, because a name field may not end with a '\0' character
(bnc#1134848).
- CVE-2019-3882: A flaw was found in the vfio interface implementation
that permits violation of the user's locked memory limit. If a device is
bound to a vfio driver, such as vfio-pci, and the local attacker is
administratively granted ownership of the device, it may cause a system
memory exhaustion and thus a denial of service (DoS). (bnc#1131416
bnc#1131427).
- CVE-2019-5489: The mincore() implementation in mm/mincore.c allowed
local attackers to observe page cache access patterns of other processes
on the same system, potentially allowing sniffing of secret information.
(Fixing this affects the output of the fincore program.) Limited remote
exploitation may be possible, as demonstrated by latency differences in
accessing public files from an Apache HTTP Server (bnc#1120843).
- CVE-2019-9500: A brcmfmac heap buffer overflow in brcmf_wowl_nd_results
was fixed (bnc#1132681).
- CVE-2019-9503: Multiple brcmfmac frame validation bypasses have been
fixed (bnc#1132828).
The following non-security bugs were fixed:
- 9p: do not trust pdu content for stat item size (bsc#1051510).
- 9p locks: add mount option for lock retry interval (bsc#1051510).
- acpi: Add Hygon Dhyana support ().
- acpi: Add Hygon Dhyana support (fate#327735).
- acpi: button: reinitialize button state upon resume (bsc#1051510).
- acpiCA: AML interpreter: add region addresses in global list during
initialization (bsc#1051510).
- acpiCA: Namespace: remove address node from global list after method
termination (bsc#1051510).
- acpi, nfit: Prefer _DSM over _LSR for namespace label reads (bsc#112128)
(bsc#1132426).
- acpi: PM: Set enable_for_wake for wakeup GPEs during suspend-to-idle
(bsc#1111666).
- acpi: property: restore _DSD data subnodes GUID comment (bsc#1111666).
- acpi / SBS: Fix GPE storm on recent MacBookPro's (bsc#1051510).
- acpi / utils: Drop reference in test for device presence (bsc#1051510).
- alsa: core: Do not refer to snd_cards array directly (bsc#1051510).
- alsa: core: Fix card races between register and disconnect (bsc#1051510).
- alsa: emu10k1: Drop superfluous id-uniquification behavior (bsc#1051510).
- alsa: hda - Add two more machines to the power_save_blacklist
(bsc#1051510).
- alsa: hda/hdmi - Consider eld_valid when reporting jack event
(bsc#1051510).
- alsa: hda/hdmi - Read the pin sense from register when repolling
(bsc#1051510).
- alsa: hda: Initialize power_state field properly (bsc#1051510).
- alsa: hda/realtek - Add new Dell platform for headset mode (bsc#1051510).
- alsa: hda/realtek - add two more pin configuration sets to quirk table
(bsc#1051510).
- alsa: hda/realtek - Apply the fixup for ASUS Q325UAR (bsc#1051510).
- alsa: hda/realtek - Avoid superfluous COEF EAPD setups (bsc#1051510).
- alsa: hda/realtek - Corrected fixup for System76 Gazelle (gaze14)
(bsc#1051510).
- alsa: hda/realtek - EAPD turn on later (bsc#1051510).
- alsa: hda/realtek: Enable headset MIC of Acer TravelMate B114-21 with
ALC233 (bsc#1111666).
- alsa: hda/realtek - Fixed Dell AIO speaker noise (bsc#1051510).
- alsa: hda/realtek - Fix for Lenovo B50-70 inverted internal microphone
bug (bsc#1051510).
- alsa: hda/realtek - Fixup headphone noise via runtime suspend
(bsc#1051510).
- alsa: hda/realtek - Move to ACT_INIT state (bsc#1111666).
- alsa: hda/realtek - Support low power consumption for ALC256
(bsc#1051510).
- alsa: hda/realtek - Support low power consumption for ALC295
(bsc#1051510).
- alsa: hda - Register irq handler after the chip initialization
(bsc#1051510).
- alsa: hda - Use a macro for snd_array iteration loops (bsc#1051510).
- alsa: hdea/realtek - Headset fixup for System76 Gazelle (gaze14)
(bsc#1051510).
- alsa: info: Fix racy addition/deletion of nodes (bsc#1051510).
- alsa: line6: Avoid polluting led_* namespace (bsc#1051510).
- alsa: line6: use dynamic buffers (bsc#1051510).
- alsa: PCM: check if ops are defined before suspending PCM (bsc#1051510).
- alsa: seq: Align temporary re-locking with irqsave version (bsc#1051510).
- alsa: seq: Correct unlock sequence at snd_seq_client_ioctl_unlock()
(bsc#1051510).
- alsa: seq: Cover unsubscribe_port() in list_mutex (bsc#1051510).
- alsa: seq: Fix OOB-reads from strlcpy (bsc#1051510).
- alsa: seq: Fix race of get-subscription call vs port-delete ioctls
(bsc#1051510).
- alsa: seq: Protect in-kernel ioctl calls with mutex (bsc#1051510).
- alsa: seq: Protect racy pool manipulation from OSS sequencer
(bsc#1051510).
- alsa: seq: Remove superfluous irqsave flags (bsc#1051510).
- alsa: seq: Simplify snd_seq_kernel_client_enqueue() helper (bsc#1051510).
- alsa: timer: Check ack_list emptiness instead of bit flag (bsc#1051510).
- alsa: timer: Coding style fixes (bsc#1051510).
- alsa: timer: Make snd_timer_close() really kill pending actions
(bsc#1051510).
- alsa: timer: Make sure to clear pending ack list (bsc#1051510).
- alsa: timer: Revert active callback sync check at close (bsc#1051510).
- alsa: timer: Simplify error path in snd_timer_open() (bsc#1051510).
- alsa: timer: Unify timer callback process code (bsc#1051510).
- alsa: usb-audio: Fix a memory leak bug (bsc#1051510).
- alsa: usb-audio: Handle the error from
snd_usb_mixer_apply_create_quirk() (bsc#1051510).
- alsa: usx2y: fix a double free bug (bsc#1051510).
- appletalk: Fix compile regression (bsc#1051510).
- appletalk: Fix use-after-free in atalk_proc_exit (bsc#1051510).
- ARM: 8824/1: fix a migrating irq bug when hotplug cpu (bsc#1051510).
- ARM: 8833/1: Ensure that NEON code always compiles with Clang
(bsc#1051510).
- ARM: 8839/1: kprobe: make patch_lock a raw_spinlock_t (bsc#1051510).
- ARM: 8840/1: use a raw_spinlock_t in unwind (bsc#1051510).
- ARM: avoid Cortex-A9 livelock on tight dmb loops (bsc#1051510).
- ARM: imx6q: cpuidle: fix bug that CPU might not wake up at expected time
(bsc#1051510).
- ARM: OMAP2+: fix lack of timer interrupts on CPU1 after hotplug
(bsc#1051510).
- ARM: OMAP2+: Variable "reg" in function omap4_dsi_mux_pads() could be
uninitialized (bsc#1051510).
- ARM: pxa: ssp: unneeded to free devm_ allocated data (bsc#1051510).
- ARM: s3c24xx: Fix boolean expressions in osiris_dvs_notify (bsc#1051510).
- ARM: samsung: Limit SAMSUNG_PM_CHECK config option to non-Exynos
platforms (bsc#1051510).
- ASoC: cs4270: Set auto-increment bit for register writes (bsc#1051510).
- ASoC: fix valid stream condition (bsc#1051510).
- ASoC: fsl-asoc-card: fix object reference leaks in fsl_asoc_card_probe
(bsc#1051510).
- ASoC: fsl_esai: fix channel swap issue when stream starts (bsc#1051510).
- ASoC: fsl_esai: Fix missing break in switch statement (bsc#1051510).
- ASoC: hdmi-codec: fix S/PDIF DAI (bsc#1051510).
- ASoC: Intel: avoid Oops if DMA setup fails (bsc#1051510).
- ASoC: max98090: Fix restore of DAPM Muxes (bsc#1051510).
- ASoC: nau8810: fix the issue of widget with prefixed name (bsc#1051510).
- ASoC: nau8824: fix the issue of the widget with prefix name
(bsc#1051510).
- ASoC: RT5677-SPI: Disable 16Bit SPI Transfers (bsc#1051510).
- ASoC: samsung: odroid: Fix clock configuration for 44100 sample rate
(bsc#1051510).
- ASoC:soc-pcm:fix a codec fixup issue in TDM case (bsc#1051510).
- ASoC: stm32: fix sai driver name initialisation (bsc#1051510).
- ASoC: tlv320aic32x4: Fix Common Pins (bsc#1051510).
- ASoC: topology: free created components in tplg load error (bsc#1051510).
- ASoC: wm_adsp: Add locking to wm_adsp2_bus_error (bsc#1051510).
- assume flash part size to be 4MB, if it can't be determined
(bsc#1127371).
- at76c50x-usb: Do not register led_trigger if usb_register_driver failed
(bsc#1051510).
- ath10k: avoid possible string overflow (bsc#1051510).
- ath10k: snoc: fix unbalanced clock error handling (bsc#1111666).
- audit: fix a memleak caused by auditing load module (bsc#1051510).
- b43: shut up clang -Wuninitialized variable warning (bsc#1051510).
- backlight: lm3630a: Return 0 on success in update_status functions
(bsc#1051510).
- batman-adv: Reduce claim hash refcnt only for removed entry
(bsc#1051510).
- batman-adv: Reduce tt_global hash refcnt only for removed entry
(bsc#1051510).
- batman-adv: Reduce tt_local hash refcnt only for removed entry
(bsc#1051510).
- bcache: account size of buckets used in uuid write to
ca->meta_sectors_written (bsc#1130972).
- bcache: add a comment in super.c (bsc#1130972).
- bcache: add code comments for bset.c (bsc#1130972).
- bcache: add comment for cache_set->fill_iter (bsc#1130972).
- bcache: add identifier names to arguments of function definitions
(bsc#1130972).
- bcache: add missing SPDX header (bsc#1130972).
- bcache: add MODULE_DESCRIPTION information (bsc#1130972).
- bcache: add separate workqueue for journal_write to avoid deadlock
(bsc#1130972).
- bcache: add static const prefix to char * array declarations
(bsc#1130972).
- bcache: add sysfs_strtoul_bool() for setting bit-field variables
(bsc#1130972).
- bcache: add the missing comments for smp_mb()/smp_wmb() (bsc#1130972).
- bcache: cannot set writeback_running via sysfs if no writeback kthread
created (bsc#1130972).
- bcache: correct dirty data statistics (bsc#1130972).
- bcache: do not assign in if condition in bcache_init() (bsc#1130972).
- bcache: do not assign in if condition register_bcache() (bsc#1130972).
- bcache: do not check if debug dentry is ERR or NULL explicitly on remove
(bsc#1130972).
- bcache: do not check NULL pointer before calling kmem_cache_destroy
(bsc#1130972).
- bcache: do not clone bio in bch_data_verify (bsc#1130972).
- bcache: do not mark writeback_running too early (bsc#1130972).
- bcache: export backing_dev_name via sysfs (bsc#1130972).
- bcache: export backing_dev_uuid via sysfs (bsc#1130972).
- bcache: fix code comments style (bsc#1130972).
- bcache: fix indentation issue, remove tabs on a hunk of code
(bsc#1130972).
- bcache: fix indent by replacing blank by tabs (bsc#1130972).
- bcache: fix input integer overflow of congested threshold (bsc#1130972).
- bcache: fix input overflow to cache set io_error_limit (bsc#1130972).
- bcache: fix input overflow to cache set sysfs file io_error_halflife
(bsc#1130972).
- bcache: fix input overflow to journal_delay_ms (bsc#1130972).
- bcache: fix input overflow to sequential_cutoff (bsc#1130972).
- bcache: fix input overflow to writeback_delay (bsc#1130972).
- bcache: fix input overflow to writeback_rate_minimum (bsc#1130972).
- bcache: fix ioctl in flash device (bsc#1130972).
- bcache: fix mistaken code comments in bcache.h (bsc#1130972).
- bcache: fix mistaken comments in request.c (bsc#1130972).
- bcache: fix potential div-zero error of writeback_rate_i_term_inverse
(bsc#1130972).
- bcache: fix potential div-zero error of writeback_rate_p_term_inverse
(bsc#1130972).
- bcache: fix typo in code comments of closure_return_with_destructor()
(bsc#1130972).
- bcache: fix typo 'succesfully' to 'successfully' (bsc#1130972).
- bcache: improve sysfs_strtoul_clamp() (bsc#1130972).
- bcache: introduce force_wake_up_gc() (bsc#1130972).
- bcache: make cutoff_writeback and cutoff_writeback_sync tunable
(bsc#1130972).
- bcache: Move couple of functions to sysfs.c (bsc#1130972).
- bcache: Move couple of string arrays to sysfs.c (bsc#1130972).
- bcache: move open brace at end of function definitions to next line
(bsc#1130972).
- bcache: never writeback a discard operation (bsc#1130972).
- bcache: not use hard coded memset size in bch_cache_accounting_clear()
(bsc#1130972).
- bcache: option to automatically run gc thread after writeback
(bsc#1130972).
- bcache: panic fix for making cache device (bsc#1130972).
- bcache: Populate writeback_rate_minimum attribute (bsc#1130972).
- bcache: prefer 'help' in Kconfig (bsc#1130972).
- bcache: print number of keys in trace_bcache_journal_write (bsc#1130972).
- bcache: recal cached_dev_sectors on detach (bsc#1130972).
- bcache: remove unnecessary space before ioctl function pointer arguments
(bsc#1130972).
- bcache: remove unused bch_passthrough_cache (bsc#1130972).
- bcache: remove useless parameter of bch_debug_init() (bsc#1130972).
- bcache: Replace bch_read_string_list() by __sysfs_match_string()
(bsc#1130972).
- bcache: replace hard coded number with BUCKET_GC_GEN_MAX (bsc#1130972).
- bcache: replace '%pF' by '%pS' in seq_printf() (bsc#1130972).
- bcache: replace printk() by pr_*() routines (bsc#1130972).
- bcache: replace Symbolic permissions by octal permission numbers
(bsc#1130972).
- bcache: set writeback_percent in a flexible range (bsc#1130972).
- bcache: split combined if-condition code into separate ones
(bsc#1130972).
- bcache: stop bcache device when backing device is offline (bsc#1130972).
- bcache: stop using the deprecated get_seconds() (bsc#1130972).
- bcache: style fixes for lines over 80 characters (bsc#1130972).
- bcache: style fix to add a blank line after declarations (bsc#1130972).
- bcache: style fix to replace 'unsigned' by 'unsigned int' (bsc#1130972).
- bcache: treat stale && dirty keys as bad keys (bsc#1130972).
- bcache: trivial - remove tailing backslash in macro BTREE_FLAG
(bsc#1130972).
- bcache: update comment for bch_data_insert (bsc#1130972).
- bcache: update comment in sysfs.c (bsc#1130972).
- bcache: use MAX_CACHES_PER_SET instead of magic number 8 in
__bch_bucket_alloc_set (bsc#1130972).
- bcache: use (REQ_META|REQ_PRIO) to indicate bio for metadata
(bsc#1130972).
- bcache: use REQ_PRIO to indicate bio for metadata (bsc#1130972).
- bcache: use routines from lib/crc64.c for CRC64 calculation
(bsc#1130972).
- bcache: use sysfs_strtoul_bool() to set bit-field variables
(bsc#1130972).
- bcm2835: MMC issues (bsc#1070872).
- blkcg: Introduce blkg_root_lookup() (bsc#1131673).
- blkcg: Make blkg_root_lookup() work for queues in bypass mode
(bsc#1131673).
- blk-mq: adjust debugfs and sysfs register when updating nr_hw_queues
(bsc#1131673).
- blk-mq: Avoid that submitting a bio concurrently with device removal
triggers a crash (bsc#1131673).
- blk-mq: change gfp flags to GFP_NOIO in blk_mq_realloc_hw_ctxs
(bsc#1131673).
- blk-mq: fallback to previous nr_hw_queues when updating fails
(bsc#1131673).
- blk-mq: init hctx sched after update ctx and hctx mapping (bsc#1131673).
- blk-mq: realloc hctx when hw queue is mapped to another node
(bsc#1131673).
- blk-mq: sync the update nr_hw_queues with blk_mq_queue_tag_busy_iter
(bsc#1131673).
- block: check_events: do not bother with events if unsupported
(bsc#1110946, bsc#1119843).
- block: check_events: do not bother with events if unsupported
(bsc#1110946, bsc#1119843).
- block: disk_events: introduce event flags (bsc#1110946, bsc#1119843).
- block: disk_events: introduce event flags (bsc#1110946, bsc#1119843).
- block: do not leak memory in bio_copy_user_iov() (bsc#1135309).
- block: Ensure that a request queue is dissociated from the cgroup
controller (bsc#1131673).
- block: Fix a race between request queue removal and the block cgroup
controller (bsc#1131673).
- block: fix the return errno for direct IO (bsc#1135320).
- block: fix use-after-free on gendisk (bsc#1135312).
- block: Introduce blk_exit_queue() (bsc#1131673).
- block: kABI fixes for bio_rewind_iter() removal (bsc#1131673).
- block: remove bio_rewind_iter() (bsc#1131673).
- Bluetooth: Align minimum encryption key size for LE and BR/EDR
connections (bsc#1051510).
- Bluetooth: btusb: request wake pin with NOAUTOEN (bsc#1051510).
- Bluetooth: hci_uart: Check if socket buffer is ERR_PTR in h4_recv_buf()
(bsc#1133731).
- Bluetooth: hidp: fix buffer overflow (bsc#1051510).
- bnxt_en: Drop oversize TX packets to prevent errors
(networking-stable-19_03_07).
- bnxt_en: Improve RX consumer index validity check
(networking-stable-19_04_10).
- bnxt_en: Reset device on RX buffer errors (networking-stable-19_04_10).
- bonding: fix PACKET_ORIGDEV regression (git-fixes).
- bpf: fix use after free in bpf_evict_inode (bsc#1083647).
- brcm80211: potential NULL dereference in
brcmf_cfg80211_vndr_cmds_dcmd_handler() (bsc#1051510).
- brcmfmac: fix leak of mypkt on error return path (bsc#1111666).
- btrfs: add a helper to return a head ref (bsc#1134813).
- btrfs: Avoid possible qgroup_rsv_size overflow in
btrfs_calculate_inode_block_rsv_size (git-fixes).
- btrfs: breakout empty head cleanup to a helper (bsc#1134813).
- btrfs: delayed-ref: Introduce better documented delayed ref structures
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: delayed-ref: Use btrfs_ref to refactor
btrfs_add_delayed_data_ref() (bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: delayed-ref: Use btrfs_ref to refactor
btrfs_add_delayed_tree_ref() (bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: do not allow trimming when a fs is mounted with the nologreplay
option (bsc#1135758).
- btrfs: Do not panic when we can't find a root key (bsc#1112063).
- btrfs: extent-tree: Fix a bug that btrfs is unable to add pinned bytes
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: extent-tree: Open-code process_func in __btrfs_mod_ref
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: extent-tree: Use btrfs_ref to refactor add_pinned_bytes()
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: extent-tree: Use btrfs_ref to refactor btrfs_free_extent()
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: extent-tree: Use btrfs_ref to refactor btrfs_inc_extent_ref()
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: Factor out common delayed refs init code (bsc#1134813).
- btrfs: fix assertion failure on fsync with NO_HOLES enabled
(bsc#1131848).
- btrfs: Fix bound checking in qgroup_trace_new_subtree_blocks (git-fixes).
- btrfs: fix incorrect file size after shrinking truncate and fsync
(bsc#1130195).
- btrfs: improve performance on fsync of files with multiple hardlinks
(bsc#1123454).
- btrfs: Introduce init_delayed_ref_head (bsc#1134813).
- btrfs: move all ref head cleanup to the helper function (bsc#1134813).
- btrfs: move extent_op cleanup to a helper (bsc#1134813).
- btrfs: move ref_mod modification into the if (ref) logic (bsc#1134813).
- btrfs: Open-code add_delayed_data_ref (bsc#1134813).
- btrfs: Open-code add_delayed_tree_ref (bsc#1134813).
- btrfs: qgroup: Do not scan leaf if we're modifying reloc tree
(bsc#1063638 bsc#1128052 bsc#1108838).
- btrfs: qgroup: Move reserved data accounting from btrfs_delayed_ref_head
to btrfs_qgroup_extent_record (bsc#1134162).
- btrfs: qgroup: Remove duplicated trace points for qgroup_rsv_add/release
(bsc#1134160).
- btrfs: remove delayed_ref_node from ref_head (bsc#1134813).
- btrfs: remove WARN_ON in log_dir_items (bsc#1131847).
- btrfs: send, flush dellaloc in order to avoid data loss (bsc#1133320).
- btrfs: split delayed ref head initialization and addition (bsc#1134813).
- btrfs: track refs in a rb_tree instead of a list (bsc#1134813).
- btrfs: Use init_delayed_ref_common in add_delayed_data_ref (bsc#1134813).
- btrfs: Use init_delayed_ref_common in add_delayed_tree_ref (bsc#1134813).
- btrfs: Use init_delayed_ref_head in add_delayed_ref_head (bsc#1134813).
- cdrom: Fix race condition in cdrom_sysctl_register (bsc#1051510).
- ceph: ensure d_name stability in ceph_dentry_hash() (bsc#1134461).
- ceph: ensure d_name stability in ceph_dentry_hash() (bsc#1134461).
- ceph: fix ci->i_head_snapc leak (bsc#1122776).
- ceph: fix ci->i_head_snapc leak (bsc#1122776).
- ceph: fix use-after-free on symlink traversal (bsc#1134459).
- ceph: fix use-after-free on symlink traversal (bsc#1134459).
- ceph: only use d_name directly when parent is locked (bsc#1134460).
- ceph: only use d_name directly when parent is locked (bsc#1134460).
- cfg80211: Handle WMM rules in regulatory domain intersection
(bsc#1111666).
- cgroup: fix parsing empty mount option string (bsc#1133094).
- cifs: Do not count -ENODATA as failure for query directory (bsc#1051510).
- cifs: do not dereference smb_file_target before null check (bsc#1051510).
- cifs: Do not hide EINTR after sending network packets (bsc#1051510).
- cifs: Do not reconnect TCP session in add_credits() (bsc#1051510).
- cifs: Do not reset lease state to NONE on lease break (bsc#1051510).
- cifs: Fix adjustment of credits for MTU requests (bsc#1051510).
- cifs: Fix credit calculation for encrypted reads with errors
(bsc#1051510).
- cifs: Fix credits calculations for reads with errors (bsc#1051510).
- cifs: fix POSIX lock leak and invalid ptr deref (bsc#1114542).
- cifs: Fix possible hang during async MTU reads and writes (bsc#1051510).
- cifs: Fix potential OOB access of lock element array (bsc#1051510).
- cifs: Fix read after write for files with read caching (bsc#1051510).
- cifs: keep FileInfo handle live during oplock break (bsc#1106284,
bsc#1131565).
- clk: fractional-divider: check parent rate only if flag is set
(bsc#1051510).
- clk: rockchip: fix frac settings of GPLL clock for rk3328 (bsc#1051510).
- clk: rockchip: Fix video codec clocks on rk3288 (bsc#1051510).
- clk: rockchip: fix wrong clock definitions for rk3328 (bsc#1051510).
- clk: x86: Add system specific quirk to mark clocks as critical
(bsc#1051510).
- configfs: fix possible use-after-free in configfs_register_group
(bsc#1051510).
- cpufreq: Add Hygon Dhyana support ().
- cpufreq: Add Hygon Dhyana support (fate#327735).
- cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ ().
- cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ (fate#327735).
- cpupowerutils: bench - Fix cpu online check (bsc#1051510).
- cpu/speculation: Add 'mitigations=' cmdline option (bsc#1112178).
- crypto: arm/aes-neonbs - do not access already-freed walk.iv
(bsc#1051510).
- crypto: caam - add missing put_device() call (bsc#1129770).
- crypto: caam - fix caam_dump_sg that iterates through scatterlist
(bsc#1051510).
- crypto: caam/qi2 - fix DMA mapping of stack memory (bsc#1111666).
- crypto: caam/qi2 - fix zero-length buffer DMA mapping (bsc#1111666).
- crypto: caam/qi2 - generate hash keys in-place (bsc#1111666).
- crypto: ccm - fix incompatibility between "ccm" and "ccm_base"
(bsc#1051510).
- crypto: ccp - Do not free psp_master when PLATFORM_INIT fails
(bsc#1051510).
- crypto: chacha20poly1305 - set cra_name correctly (bsc#1051510).
- crypto: crct10dif-generic - fix use via crypto_shash_digest()
(bsc#1051510).
- crypto: crypto4xx - properly set IV after de- and encrypt (bsc#1051510).
- crypto: fips - Grammar s/options/option/, s/to/the/ (bsc#1051510).
- crypto: gcm - fix incompatibility between "gcm" and "gcm_base"
(bsc#1051510).
- crypto: pcbc - remove bogus memcpy()s with src == dest (bsc#1051510).
- crypto: sha256/arm - fix crash bug in Thumb2 build (bsc#1051510).
- crypto: sha512/arm - fix crash bug in Thumb2 build (bsc#1051510).
- crypto: skcipher - do not WARN on unprocessed data after slow walk step
(bsc#1051510).
- crypto: sun4i-ss - Fix invalid calculation of hash end (bsc#1051510).
- crypto: vmx - CTR: always increment IV as quadword (bsc#1051510).
- crypto: vmx - fix copy-paste error in CTR mode (bsc#1051510).
- crypto: x86/crct10dif-pcl - fix use via crypto_shash_digest()
(bsc#1051510).
- crypto: x86/poly1305 - fix overflow during partial reduction
(bsc#1051510).
- cxgb4: Add capability to get/set SGE Doorbell Queue Timer Tick
(bsc#1127371).
- cxgb4: Added missing break in ndo_udp_tunnel_{add/del} (bsc#1127371).
- cxgb4: Add flag tc_flower_initialized (bsc#1127371).
- cxgb4: Add new T5 PCI device id 0x50ae (bsc#1127371).
- cxgb4: Add new T5 PCI device ids 0x50af and 0x50b0 (bsc#1127371).
- cxgb4: Add new T6 PCI device ids 0x608a (bsc#1127371).
- cxgb4: add per rx-queue counter for packet errors (bsc#1127371).
- cxgb4: Add support for FW_ETH_TX_PKT_VM_WR (bsc#1127371).
- cxgb4: add support to display DCB info (bsc#1127371).
- cxgb4: Add support to read actual provisioned resources (bsc#1127371).
- cxgb4: collect ASIC LA dumps from ULP TX (bsc#1127371).
- cxgb4: collect hardware queue descriptors (bsc#1127371).
- cxgb4: collect number of free PSTRUCT page pointers (bsc#1127371).
- cxgb4: convert flower table to use rhashtable (bsc#1127371).
- cxgb4: cxgb4: use FW_PORT_ACTION_L1_CFG32 for 32 bit capability
(bsc#1127371).
- cxgb4/cxgb4vf: Add support for SGE doorbell queue timer (bsc#1127371).
- cxgb4/cxgb4vf: Fix mac_hlist initialization and free (bsc#1127374).
- cxgb4/cxgb4vf: Link management changes (bsc#1127371).
- cxgb4/cxgb4vf: Program hash region for {t4/t4vf}_change_mac()
(bsc#1127371).
- cxgb4: display number of rx and tx pages free (bsc#1127371).
- cxgb4: do not return DUPLEX_UNKNOWN when link is down (bsc#1127371).
- cxgb4: Export sge_host_page_size to ulds (bsc#1127371).
- cxgb4: fix the error path of cxgb4_uld_register() (bsc#1127371).
- cxgb4: impose mandatory VLAN usage when non-zero TAG ID (bsc#1127371).
- cxgb4: Mask out interrupts that are not enabled (bsc#1127175).
- cxgb4: move Tx/Rx free pages collection to common code (bsc#1127371).
- cxgb4: remove redundant assignment to vlan_cmd.dropnovlan_fm
(bsc#1127371).
- cxgb4: Remove SGE_HOST_PAGE_SIZE dependency on page size (bsc#1127371).
- cxgb4: remove the unneeded locks (bsc#1127371).
- cxgb4: specify IQTYPE in fw_iq_cmd (bsc#1127371).
- cxgb4: Support ethtool private flags (bsc#1127371).
- cxgb4: update supported DCB version (bsc#1127371).
- cxgb4: use new fw interface to get the VIN and smt index (bsc#1127371).
- cxgb4vf: Few more link management changes (bsc#1127374).
- cxgb4vf: fix memleak in mac_hlist initialization (bsc#1127374).
- cxgb4vf: Update port information in cxgb4vf_open() (bsc#1127374).
- dccp: do not use ipv6 header for ipv4 flow (networking-stable-19_03_28).
- dccp: Fix memleak in __feat_register_sp (bsc#1051510).
- debugfs: fix use-after-free on symlink traversal (bsc#1051510).
- device_cgroup: fix RCU imbalance in error case (bsc#1051510).
- devres: Align data[] to ARCH_KMALLOC_MINALIGN (bsc#1051510).
- Disable kgdboc failed by echo space to
/sys/module/kgdboc/parameters/kgdboc (bsc#1051510).
- dmaengine: axi-dmac: Do not check the number of frames for alignment
(bsc#1051510).
- dmaengine: imx-dma: fix warning comparison of distinct pointer types
(bsc#1051510).
- dmaengine: qcom_hidma: assign channel cookie correctly (bsc#1051510).
- dmaengine: sh: rcar-dmac: With cyclic DMA residue 0 is valid
(bsc#1051510).
- dmaengine: tegra210-dma: free dma controller in remove() (bsc#1051510).
- dmaengine: tegra: avoid overflow of byte tracking (bsc#1051510).
- dm: disable DISCARD if the underlying storage no longer supports it
(bsc#1114638).
- Drivers: hv: vmbus: Offload the handling of channels to two workqueues
(bsc#1130567).
- Drivers: hv: vmbus: Reset the channel callback in
vmbus_onoffer_rescind() (bsc#1130567).
- drm/amd/display: extending AUX SW Timeout (bsc#1111666).
- drm/amd/display: fix cursor black issue (bsc#1111666).
- drm/amd/display: If one stream full updates, full update all planes
(bsc#1111666).
- drm/amdgpu/gmc9: fix VM_L2_CNTL3 programming (bsc#1111666).
- drm/amdkfd: use init_mqd function to allocate object for hid_mqd (CI)
(bsc#1111666).
- drm: Auto-set allow_fb_modifiers when given modifiers at plane init
(bsc#1051510).
- drm/bridge: adv7511: Fix low refresh rate selection (bsc#1051510).
- drm: bridge: dw-hdmi: Fix overflow workaround for Rockchip SoCs
(bsc#1113722)
- drm/doc: Drop "content type" from the legacy kms property table
(bsc#1111666).
- drm/dp/mst: Configure no_stop_bit correctly for remote i2c xfers
(bsc#1051510).
- drm/exynos/mixer: fix MIXER shadow registry synchronisation code
(bsc#1111666).
- drm/fb-helper: dpms_legacy(): Only set on connectors in use
(bsc#1051510).
- drm/fb-helper: generic: Call drm_client_add() after setup is done
(bsc#1111666).
- drm/i915: Disable LP3 watermarks on all SNB machines (bsc#1051510).
- drm/i915: Disable tv output on i9x5gm (bsc#1086657, bsc#1133897).
- drm/i915: Downgrade Gen9 Plane WM latency error (bsc#1051510).
- drm/i915/fbc: disable framebuffer compression on GeminiLake
(bsc#1051510).
- drm/i915: Fix I915_EXEC_RING_MASK (bsc#1051510).
- drm/i915: Force 2*96 MHz cdclk on glk/cnl when audio power is enabled
(bsc#1111666).
- drm/i915/gvt: Add in context mmio 0x20D8 to gen9 mmio list (bsc#1113722)
- drm/i915/gvt: Add in context mmio 0x20D8 to gen9 mmio list (bsc#1113956)
- drm/i915/gvt: Annotate iomem usage (bsc#1051510).
- drm/i915/gvt: do not deliver a workload if its creation fails
(bsc#1051510).
- drm/i915/gvt: do not let pin count of shadow mm go negative (bsc#1113722)
- drm/i915/gvt: do not let pin count of shadow mm go negative (bsc#1113956)
- drm/i915/gvt: Fix incorrect mask of mmio 0x22028 in gen8/9 mmio list
(bnc#1113722)
- drm/i915/gvt: Prevent use-after-free in ppgtt_free_all_spt()
(bsc#1111666).
- drm/i915/gvt: Roundup fb->height into tile's height at calucation
fb->size (bsc#1111666).
- drm/i915/icl: Whitelist GEN9_SLICE_COMMON_ECO_CHICKEN1 (bsc#1111666).
- drm/imx: do not skip DP channel disable for background plane
(bsc#1051510).
- drm/mediatek: Fix an error code in mtk_hdmi_dt_parse_pdata()
(bsc#1113722)
- drm/mediatek: Fix an error code in mtk_hdmi_dt_parse_pdata()
(bsc#1113956)
- drm/mediatek: fix possible object reference leak (bsc#1051510).
- drm/meson: add size and alignment requirements for dumb buffers
(bnc#1113722)
- drm/nouveau: add DisplayPort CEC-Tunneling-over-AUX support
(bsc#1133593).
- drm/nouveau: Add NV_PRINTK_ONCE and variants (bsc#1133593).
- drm/nouveau: Add size to vbios.rom file in debugfs (bsc#1133593).
- drm/nouveau: Add strap_peek to debugfs (bsc#1133593).
- drm/nouveau/bar/tu104: initial support (bsc#1133593).
- drm/nouveau/bar/tu106: initial support (bsc#1133593).
- drm/nouveau/bios: translate additional memory types (bsc#1133593).
- drm/nouveau/bios: translate USB-C connector type (bsc#1133593).
- drm/nouveau/bios/tu104: initial support (bsc#1133593).
- drm/nouveau/bios/tu106: initial support (bsc#1133593).
- drm/nouveau/bus/tu104: initial support (bsc#1133593).
- drm/nouveau/bus/tu106: initial support (bsc#1133593).
- drm/nouveau/ce/tu104: initial support (bsc#1133593).
- drm/nouveau/ce/tu106: initial support (bsc#1133593).
- drm/nouveau: Cleanup indenting in nouveau_backlight.c (bsc#1133593).
- drm/nouveau/core: increase maximum number of nvdec instances to 3
(bsc#1133593).
- drm/nouveau/core: recognise TU102 (bsc#1133593).
- drm/nouveau/core: recognise TU104 (bsc#1133593).
- drm/nouveau/core: recognise TU106 (bsc#1133593).
- drm/nouveau/core: support multiple nvdec instances (bsc#1133593).
- drm/nouveau/devinit/gm200-: export function to upload+execute PMU/PRE_OS
(bsc#1133593).
- drm/nouveau/devinit/tu104: initial support (bsc#1133593).
- drm/nouveau/devinit/tu106: initial support (bsc#1133593).
- drm/nouveau/disp: add a way to configure scrambling/tmds for hdmi 2.0
(bsc#1133593).
- drm/nouveau/disp: add support for setting scdc parameters for high modes
(bsc#1133593).
- drm/nouveau/disp/gm200-: add scdc parameter setter (bsc#1133593).
- drm/nouveau/disp/gv100: fix name of window channels in debug output
(bsc#1133593).
- drm/nouveau/disp: keep track of high-speed state, program into clock
(bsc#1133593).
- drm/nouveau/disp: take sink support into account for exposing 594mhz
(bsc#1133593).
- drm/nouveau/disp/tu104: initial support (bsc#1133593).
- drm/nouveau/disp/tu106: initial support (bsc#1133593).
- drm/nouveau/dma/tu104: initial support (bsc#1133593).
- drm/nouveau/dma/tu106: initial support (bsc#1133593).
- drm/nouveau/drm/nouveau: Do not forget to label dp_aux devices
(bsc#1133593).
- drm/nouveau/drm/nouveau:
s/nouveau_backlight_exit/nouveau_backlight_fini/ (bsc#1133593).
- drm/nouveau/drm/nouveau: tegra: Call nouveau_drm_device_init()
(bsc#1133593).
- drm/nouveau/fault: add explicit control over fault buffer interrupts
(bsc#1133593).
- drm/nouveau/fault: remove manual mapping of fault buffers into BAR2
(bsc#1133593).
- drm/nouveau/fault: store get/put pri address in nvkm_fault_buffer
(bsc#1133593).
- drm/nouveau/fault/tu104: initial support (bsc#1133593).
- drm/nouveau/fault/tu106: initial support (bsc#1133593).
- drm/nouveau/fb/tu104: initial support (bsc#1133593).
- drm/nouveau/fb/tu106: initial support (bsc#1133593).
- drm/nouveau/fifo/gf100-: call into BAR to reset BARs after MMU fault
(bsc#1133593).
- drm/nouveau/fifo/gk104-: group pbdma functions together (bsc#1133593).
- drm/nouveau/fifo/gk104-: return channel instance in ctor args
(bsc#1133593).
- drm/nouveau/fifo/gk104-: separate runlist building from committing to hw
(bsc#1133593).
- drm/nouveau/fifo/gk104-: support enabling privileged ce functions
(bsc#1133593).
- drm/nouveau/fifo/gk104-: virtualise pbdma enable function (bsc#1133593).
- drm/nouveau/fifo/gm200-: read pbdma count more directly (bsc#1133593).
- drm/nouveau/fifo/gv100: allocate method buffer (bsc#1133593).
- drm/nouveau/fifo/gv100: return work submission token in channel ctor
args (bsc#1133593).
- drm/nouveau/fifo/tu104: initial support (bsc#1133593).
- drm/nouveau/fifo/tu106: initial support (bsc#1133593).
- drm/nouveau: Fix potential memory leak in nouveau_drm_load()
(bsc#1133593).
- drm/nouveau/fuse/tu104: initial support (bsc#1133593).
- drm/nouveau/fuse/tu106: initial support (bsc#1133593).
- drm/nouveau/gpio/tu104: initial support (bsc#1133593).
- drm/nouveau/gpio/tu106: initial support (bsc#1133593).
- drm/nouveau/i2c/tu104: initial support (bsc#1133593).
- drm/nouveau/i2c/tu106: initial support (bsc#1133593).
- drm/nouveau/ibus/tu104: initial support (bsc#1133593).
- drm/nouveau/ibus/tu106: initial support (bsc#1133593).
- drm/nouveau/imem/nv50: support pinning objects in BAR2 and returning
address (bsc#1133593).
- drm/nouveau/imem/tu104: initial support (bsc#1133593).
- drm/nouveau/imem/tu106: initial support (bsc#1133593).
- drm/nouveau/kms/nv50-: allow more flexibility with lut formats
(bsc#1133593).
- drm/nouveau/kms/tu104: initial support (bsc#1133593).
- drm/nouveau/ltc/tu104: initial support (bsc#1133593).
- drm/nouveau/ltc/tu106: initial support (bsc#1133593).
- drm/nouveau/mc/tu104: initial support (bsc#1133593).
- drm/nouveau/mc/tu106: initial support (bsc#1133593).
- drm/nouveau/mmu: add more general vmm free/node handling functions
(bsc#1133593).
- drm/nouveau/mmu/tu104: initial support (bsc#1133593).
- drm/nouveau/mmu/tu106: initial support (bsc#1133593).
- drm/nouveau: Move backlight device into nouveau_connector (bsc#1133593).
- drm/nouveau/pci/tu104: initial support (bsc#1133593).
- drm/nouveau/pci/tu106: initial support (bsc#1133593).
- drm/nouveau/pmu/tu104: initial support (bsc#1133593).
- drm/nouveau/pmu/tu106: initial support (bsc#1133593).
- drm/nouveau: Refactor nvXX_backlight_init() (bsc#1133593).
- drm/nouveau: register backlight on pascal and newer (bsc#1133593).
- drm/nouveau: remove left-over struct member (bsc#1133593).
- drm/nouveau: Remove unecessary dma_fence_ops (bsc#1133593).
- drm/nouveau: Start using new drm_dev initialization helpers
(bsc#1133593).
- drm/nouveau: Stop using drm_crtc_force_disable (bsc#1051510).
- drm/nouveau/therm/tu104: initial support (bsc#1133593).
- drm/nouveau/therm/tu106: initial support (bsc#1133593).
- drm/nouveau/tmr/tu104: initial support (bsc#1133593).
- drm/nouveau/tmr/tu106: initial support (bsc#1133593).
- drm/nouveau/top/tu104: initial support (bsc#1133593).
- drm/nouveau/top/tu106: initial support (bsc#1133593).
- drm/nouveau/volt/gf117: fix speedo readout register (bsc#1051510).
- drm/omap: hdmi4_cec: Fix CEC clock handling for PM (bsc#1111666).
- drm/panel: panel-innolux: set display off in innolux_panel_unprepare
(bsc#1111666).
- drm/pl111: Initialize clock spinlock early (bsc#1111666).
- drm: rcar-du: Fix rcar_du_crtc structure documentation (bsc#1111666).
- drm/rockchip: fix for mailbox read validation (bsc#1051510).
- drm/rockchip: fix for mailbox read validation (bsc#1111666).
- drm/rockchip: shutdown drm subsystem on shutdown (bsc#1051510).
- drm/rockchip: vop: reset scale mode when win is disabled (bsc#1113722)
- drm/sun4i: Add missing drm_atomic_helper_shutdown at driver unbind
(bsc#1113722)
- drm/sun4i: Fix component unbinding and component master deletion
(bsc#1113722)
- drm/sun4i: rgb: Change the pixel clock validation check (bnc#1113722)
- drm/sun4i: Set device driver data at bind time for use in unbind
(bsc#1113722)
- drm/sun4i: tcon top: Fix NULL/invalid pointer dereference in
sun8i_tcon_top_un/bind (bsc#1111666).
- drm/sun4i: Unbind components before releasing DRM and memory
(bsc#1113722)
- drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using
get_pages() (bsc#1111666).
- drm/tegra: hub: Fix dereference before check (bsc#1111666).
- drm/ttm: Fix bo_global and mem_global kfree error (bsc#1111666).
- drm/ttm: fix out-of-bounds read in ttm_put_pages() v2 (bsc#1111666).
- drm/ttm: Remove warning about inconsistent mapping information
(bnc#1131488)
- drm/udl: add a release method and delay modeset teardown (bsc#1085536)
- drm/vc4: Fix memory leak during gpu reset. (bsc#1113722)
- drm/vmwgfx: Remove set but not used variable 'restart' (bsc#1111666).
- dsa: mv88e6xxx: Ensure all pending interrupts are handled prior to exit
(networking-stable-19_02_20).
- dt-bindings: net: Fix a typo in the phy-mode list for ethernet bindings
(bsc#1129770).
- dwc2: gadget: Fix completed transfer size calculation in DDMA
(bsc#1051510).
- e1000e: fix cyclic resets at link up with active tx (bsc#1051510).
- e1000e: Fix -Wformat-truncation warnings (bsc#1051510).
- EDAC, amd64: Add Hygon Dhyana support ().
- EDAC, amd64: Add Hygon Dhyana support (fate#327735).
- ext4: actually request zeroing of inode table after grow (bsc#1135315).
- ext4: cleanup bh release code in ext4_ind_remove_space() (bsc#1131851).
- ext4: Do not warn when enabling DAX (bsc#1132894).
- ext4: fix ext4_show_options for file systems w/o journal (bsc#1135316).
- ext4: fix use-after-free race with debug_want_extra_isize (bsc#1135314).
- fbdev: fbmem: fix memory access if logo is bigger than the screen
(bsc#1051510).
- fix cgroup_do_mount() handling of failure exits (bsc#1133095).
- Fix kabi after "md: batch flush requests." (bsc#1119680).
- fix rtnh_ok() (git-fixes).
- Fix struct page kABI after adding atomic for ppc (bsc#1131326,
bsc#1108937).
- fm10k: Fix a potential NULL pointer dereference (bsc#1051510).
- fs: avoid fdput() after failed fdget() in vfs_dedupe_file_range()
(bsc#1132384, bsc#1132219).
- fs/nfs: Fix nfs_parse_devname to not modify it's argument (git-fixes).
- futex: Cure exit race (bsc#1050549).
- futex: Ensure that futex address is aligned in handle_futex_death()
(bsc#1050549).
- futex: Handle early deadlock return correctly (bsc#1050549).
- genetlink: Fix a memory leak on error path (networking-stable-19_03_28).
- ghes, EDAC: Fix ghes_edac registration (bsc#1133176).
- gpio: adnp: Fix testing wrong value in adnp_gpio_direction_input
(bsc#1051510).
- gpio: aspeed: fix a potential NULL pointer dereference (bsc#1051510).
- gpio: gpio-omap: fix level interrupt idling (bsc#1051510).
- gpio: of: Fix of_gpiochip_add() error path (bsc#1051510).
- gpu: ipu-v3: dp: fix CSC handling (bsc#1051510).
- gre6: use log_ecn_error module parameter in ip6_tnl_rcv() (git-fixes).
- HID: debug: fix race condition with between rdesc_show() and device
removal (bsc#1051510).
- HID: i2c-hid: Ignore input report if there's no data present on Elan
touchpanels (bsc#1133486).
- HID: input: add mapping for Assistant key (bsc#1051510).
- HID: input: add mapping for Expose/Overview key (bsc#1051510).
- HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys
(bsc#1051510).
- HID: input: add mapping for "Toggle Display" key (bsc#1051510).
- HID: intel-ish-hid: avoid binding wrong ishtp_cl_device (bsc#1051510).
- HID: intel-ish: ipc: handle PIMR before ish_wakeup also clear PISR
busy_clear bit (bsc#1051510).
- HID: logitech: check the return value of create_singlethread_workqueue
(bsc#1051510).
- hv_netvsc: Fix IP header checksum for coalesced packets
(networking-stable-19_03_07).
- hwmon: (f71805f) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwmon: (pc87427) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwmon: (vt1211) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses
(bsc#1051510).
- hwrng: virtio - Avoid repeated init of completion (bsc#1051510).
- i2c: imx: correct the method of getting private data in notifier_call
(bsc#1111666).
- i2c: Make i2c_unregister_device() NULL-aware (bsc#1108193).
- i2c: synquacer: fix enumeration of slave devices (bsc#1111666).
- ibmvnic: Enable GRO (bsc#1132227).
- ibmvnic: Fix completion structure initialization (bsc#1131659).
- ibmvnic: Fix netdev feature clobbering during a reset (bsc#1132227).
- igmp: fix incorrect unsolicit report count when join group (git-fixes).
- iio: adc: at91: disable adc channel interrupt in timeout case
(bsc#1051510).
- iio: adc: fix warning in Qualcomm PM8xxx HK/XOADC driver (bsc#1051510).
- iio: adc: xilinx: fix potential use-after-free on remove (bsc#1051510).
- iio: ad_sigma_delta: select channel when reading register (bsc#1051510).
- iio: core: fix a possible circular locking dependency (bsc#1051510).
- iio: cros_ec: Fix the maths for gyro scale calculation (bsc#1051510).
- iio: dac: mcp4725: add missing powerdown bits in store eeprom
(bsc#1051510).
- iio: Fix scan mask selection (bsc#1051510).
- iio/gyro/bmg160: Use millidegrees for temperature scale (bsc#1051510).
- iio: gyro: mpu3050: fix chip ID reading (bsc#1051510).
- inetpeer: fix uninit-value in inet_getpeer (git-fixes).
- Input: elan_i2c - add hardware ID for multiple Lenovo laptops
(bsc#1051510).
- Input: introduce KEY_ASSISTANT (bsc#1051510).
- Input: snvs_pwrkey - initialize necessary driver data before enabling
IRQ (bsc#1051510).
- Input: synaptics-rmi4 - fix possible double free (bsc#1051510).
- Input: synaptics-rmi4 - write config register values to the right offset
(bsc#1051510).
- intel_idle: add support for Jacobsville (jsc#SLE-5394).
- intel_th: msu: Fix single mode with IOMMU (bsc#1051510).
- intel_th: pci: Add Comet Lake support (bsc#1051510).
- io: accel: kxcjk1013: restore the range after resume (bsc#1051510).
- iommu/amd: Set exclusion range correctly (bsc#1130425).
- iommu/vt-d: Do not request page request irq under dmar_global_lock
(bsc#1135006).
- iommu/vt-d: Make kernel parameter igfx_off work with vIOMMU
(bsc#1135007).
- iommu/vt-d: Set intel_iommu_gfx_mapped correctly (bsc#1135008).
- ip6_tunnel: collect_md xmit: Use ip_tunnel_key's provided src address
(git-fixes).
- ip6_tunnel: Match to ARPHRD_TUNNEL6 for dev type
(networking-stable-19_04_10).
- ipconfig: Correctly initialise ic_nameservers (bsc#1051510).
- ipmi: Fix I2C client removal in the SSIF driver (bsc#1108193).
- ipmi: fix sleep-in-atomic in free_user at cleanup SRCU
user->release_barrier (bsc#1111666).
- ipmi: Prevent use-after-free in deliver_response (bsc#1111666).
- ipmi:ssif: compare block number correctly for multi-part return messages
(bsc#1051510).
- ipmi_ssif: Remove duplicate NULL check (bsc#1108193).
- ip_tunnel: Fix name string concatenate in __ip_tunnel_create()
(git-fixes).
- ipv4: Return error for RTA_VIA attribute (networking-stable-19_03_07).
- ipv6: fix cleanup ordering for ip6_mr failure (git-fixes).
- ipv6: fix cleanup ordering for pingv6 registration (git-fixes).
- ipv6: Fix dangling pointer when ipv6 fragment (git-fixes).
- ipv6: mcast: fix unsolicited report interval after receiving querys
(git-fixes).
- ipv6: propagate genlmsg_reply return code (networking-stable-19_02_24).
- ipv6: Return error for RTA_VIA attribute (networking-stable-19_03_07).
- ipv6: sit: reset ip header pointer in ipip6_rcv (git-fixes).
- ipvlan: Add the skb->mark as flow4's member to lookup route
(bsc#1051510).
- ipvlan: disallow userns cap_net_admin to change global mode/flags
(networking-stable-19_03_15).
- ipvlan: fix ipv6 outbound device (bsc#1051510).
- ipvlan: use ETH_MAX_MTU as max mtu (bsc#1051510).
- ipvs: fix buffer overflow with sync daemon and service (git-fixes).
- ipvs: fix check on xmit to non-local addresses (git-fixes).
- ipvs: fix race between ip_vs_conn_new() and ip_vs_del_dest()
(bsc#1051510).
- ipvs: fix rtnl_lock lockups caused by start_sync_thread (git-fixes).
- ipvs: Fix signed integer overflow when setsockopt timeout (bsc#1051510).
- ipvs: fix stats update from local clients (git-fixes).
- ipvs: remove IPS_NAT_MASK check to fix passive FTP (git-fixes).
- iw_cxgb4: cq/qp mask depends on bar2 pages in a host page (bsc#1127371).
- iw_cxgb4: only allow 1 flush on user qps (bsc#1051510).
- iwiwifi: fix bad monitor buffer register addresses (bsc#1129770).
- iwlwifi: fix driver operation for 5350 (bsc#1111666).
- iwlwifi: fix send hcmd timeout recovery flow (bsc#1129770).
- kABI: protect functions using struct net_generic (bsc#1129845
LTC#176252).
- kABI: protect ip_options_rcv_srr (kabi).
- kABI: protect struct mlx5_td (kabi).
- kABI: protect struct smcd_dev (bsc#1129845 LTC#176252).
- kABI: protect struct smc_ib_device (bsc#1129845 LTC#176252).
- kABI: restore icmp_send (kabi).
- kABI workaround for removed usb_interface.pm_usage_cnt field
(bsc#1051510).
- kABI workaround for snd_seq_kernel_client_enqueue() API changes
(bsc#1051510).
- kbuild: strip whitespace in cmd_record_mcount findstring (bsc#1065729).
- kcm: switch order of device registration to fix a crash (bnc#1130527).
- kernel/sysctl.c: add missing range check in do_proc_dointvec_minmax_conv
(bsc#1051510).
- kernel/sysctl.c: fix out-of-bounds access when setting file-max
(bsc#1051510).
- kernfs: do not set dentry->d_fsdata (boo#1133115).
- KEYS: always initialize keyring_index_key::desc_len (bsc#1051510).
- KEYS: user: Align the payload buffer (bsc#1051510).
- kmsg: Update message catalog to latest IBM level (2019/03/08)
(bsc#1128904 LTC#176078).
- kvm: Call kvm_arch_memslots_updated() before updating memslots
(bsc#1132563).
- kvm: Fix kABI for AMD SMAP Errata workaround (bsc#1133149).
- kvm: Fix UAF in nested posted interrupt processing (bsc#1134199).
- kvm: nVMX: Apply addr size mask to effective address for VMX
instructions (bsc#1132561).
- kvm: nVMX: Clear reserved bits of #DB exit qualification (bsc#1134200).
- kvm: nVMX: Ignore limit checks on VMX instructions using flat segments
(bsc#1132564).
- kvm: nVMX: restore host state in nested_vmx_vmexit for VMFail
(bsc#1134201).
- kvm: nVMX: Sign extend displacements of VMX instr's mem operands
(bsc#1132562).
- kvm: PPC: Book3S HV: Fix race between kvm_unmap_hva_range and MMU mode
switch (bsc#1061840).
- kvm: SVM: Workaround errata#1096 (insn_len maybe zero on SMAP violation)
(bsc#1133149).
- kvm: VMX: Compare only a single byte for VMCS' "launched" in vCPU-run
(bsc#1132555).
- kvm: VMX: Zero out *all* general purpose registers after VM-Exit
(bsc#1134202).
- kvm: x86: Always use 32-bit SMRAM save state for 32-bit kernels
(bsc#1134203).
- kvm: x86: Do not clear EFER during SMM transitions for 32-bit vCPU
(bsc#1134204).
- kvm: x86: Emulate MSR_IA32_ARCH_CAPABILITIES on AMD hosts (bsc#1114279).
- kvm: x86/mmu: Detect MMIO generation wrap in any address space
(bsc#1132570).
- kvm: x86/mmu: Do not cache MMIO accesses while memslots are in flux
(bsc#1132571).
- kvm: x86: Report STIBP on GET_SUPPORTED_CPUID (bsc#1111331).
- kvm: x86: svm: make sure NMI is injected after nmi_singlestep
(bsc#1134205).
- l2tp: cleanup l2tp_tunnel_delete calls (bsc#1051510).
- l2tp: filter out non-PPP sessions in pppol2tp_tunnel_ioctl() (git-fixes).
- l2tp: fix missing refcount drop in pppol2tp_tunnel_ioctl() (git-fixes).
- l2tp: only accept PPP sessions in pppol2tp_connect() (git-fixes).
- l2tp: prevent pppol2tp_connect() from creating kernel sockets
(git-fixes).
- l2tp: revert "l2tp: fix missing print session offset info" (bsc#1051510).
- leds: avoid races with workqueue (bsc#1051510).
- leds: pwm: silently error out on EPROBE_DEFER (bsc#1051510).
- lib: add crc64 calculation routines (bsc#1130972).
- libata: fix using DMA buffers on stack (bsc#1051510).
- lib: do not depend on linux headers being installed (bsc#1130972).
- lightnvm: if LUNs are already allocated fix return (bsc#1085535).
- linux/kernel.h: Use parentheses around argument in u64_to_user_ptr()
(bsc#1051510).
- lpfc: validate command in lpfc_sli4_scmd_to_wqidx_distr() (bsc#1129138).
- mac80211: do not attempt to rename ERR_PTR() debugfs dirs (bsc#1111666).
- mac80211: do not call driver wake_tx_queue op during reconfig
(bsc#1051510).
- mac80211: fix memory accounting with A-MSDU aggregation (bsc#1051510).
- mac80211: fix unaligned access in mesh table hash function (bsc#1051510).
- mac80211: Honor SW_CRYPTO_CONTROL for unicast keys in AP VLAN mode
(bsc#1111666).
- mac8390: Fix mmio access size probe (bsc#1051510).
- md: batch flush requests (bsc#1119680).
- md: Fix failed allocation of md_register_thread (git-fixes).
- MD: fix invalid stored role for a disk (bsc#1051510).
- md/raid1: do not clear bitmap bits on interrupted recovery (git-fixes).
- md/raid5: fix 'out of memory' during raid cache recovery (git-fixes).
- media: atmel: atmel-isc: fix INIT_WORK misplacement (bsc#1051510).
- media: cx18: update *pos correctly in cx18_read_pos() (bsc#1051510).
- media: cx23885: check allocation return (bsc#1051510).
- media: davinci-isif: avoid uninitialized variable use (bsc#1051510).
- media: davinci/vpbe: array underflow in vpbe_enum_outputs()
(bsc#1051510).
- media: ivtv: update *pos correctly in ivtv_read_pos() (bsc#1051510).
- media: mt9m111: set initial frame size other than 0x0 (bsc#1051510).
- media: mtk-jpeg: Correct return type for mem2mem buffer helpers
(bsc#1051510).
- media: mx2_emmaprp: Correct return type for mem2mem buffer helpers
(bsc#1051510).
- media: omap_vout: potential buffer overflow in vidioc_dqbuf()
(bsc#1051510).
- media: ov2659: fix unbalanced mutex_lock/unlock (bsc#1051510).
- media: pvrusb2: Prevent a buffer overflow (bsc#1129770).
- media: s5p-g2d: Correct return type for mem2mem buffer helpers
(bsc#1051510).
- media: s5p-jpeg: Correct return type for mem2mem buffer helpers
(bsc#1051510).
- media: serial_ir: Fix use-after-free in serial_ir_init_module
(bsc#1051510).
- media: sh_veu: Correct return type for mem2mem buffer helpers
(bsc#1051510).
- media: tw5864: Fix possible NULL pointer dereference in
tw5864_handle_frame (bsc#1051510).
- media: vivid: use vfree() instead of kfree() for dev->bitmap_cap
(bsc#1051510).
- media: wl128x: Fix an error code in fm_download_firmware() (bsc#1051510).
- media: wl128x: prevent two potential buffer overflows (bsc#1051510).
- mISDN: Check address length before reading address family (bsc#1051510).
- missing barriers in some of unix_sock ->addr and ->path accesses
(networking-stable-19_03_15).
- mmc: core: fix possible use after free of host (bsc#1051510).
- mmc: core: Fix tag set memory leak (bsc#1111666).
- mmc: davinci: remove extraneous __init annotation (bsc#1051510).
- mm: create non-atomic version of SetPageReserved for init use
(jsc#SLE-6647).
- mmc: sdhci: Fix data command CRC error handling (bsc#1051510).
- mmc: sdhci: Handle auto-command errors (bsc#1051510).
- mmc: sdhci: Rename SDHCI_ACMD12_ERR and SDHCI_INT_ACMD12ERR
(bsc#1051510).
- mmc: tmio_mmc_core: do not claim spurious interrupts (bsc#1051510).
- mm/debug.c: fix __dump_page when mapping->host is not set (bsc#1131934).
- mm/huge_memory: fix vmf_insert_pfn_{pmd, pud}() crash, handle unaligned
addresses (bsc#1135330).
- mm/page_isolation.c: fix a wrong flag in set_migratetype_isolate()
(bsc#1131935).
- mm/vmalloc: fix size check for remap_vmalloc_range_partial()
(bsc#1133825).
- mpls: Return error for RTA_GATEWAY attribute
(networking-stable-19_03_07).
- mt7601u: bump supported EEPROM version (bsc#1051510).
- mtd: docg3: fix a possible memory leak of mtd->name (bsc#1051510).
- mtd: docg3: Fix passing zero to 'PTR_ERR' warning in doc_probe_device
(bsc#1051510).
- mtd: nand: omap: Fix comment in platform data using wrong Kconfig symbol
(bsc#1051510).
- mtd: part: fix incorrect format specifier for an unsigned long long
(bsc#1051510).
- mtd: spi-nor: intel-spi: Avoid crossing 4K address boundary on
read/write (bsc#1129770).
- mwifiex: do not advertise IBSS features without FW support (bsc#1129770).
- mwifiex: Fix mem leak in mwifiex_tm_cmd (bsc#1051510).
- mwifiex: Make resume actually do something useful again on SDIO cards
(bsc#1111666).
- mwifiex: prevent an array overflow (bsc#1051510).
- mwl8k: Fix rate_idx underflow (bsc#1051510).
- net: Add header for usage of fls64() (networking-stable-19_02_20).
- net: Add __icmp_send helper (networking-stable-19_03_07).
- net: aquantia: fix rx checksum offload for UDP/TCP over IPv6
(networking-stable-19_03_28).
- net: avoid false positives in untrusted gso validation (git-fixes).
- net: avoid skb_warn_bad_offload on IS_ERR (git-fixes).
- net: avoid use IPCB in cipso_v4_error (networking-stable-19_03_07).
- net: bridge: add vlan_tunnel to bridge port policies (git-fixes).
- net: bridge: fix per-port af_packet sockets (git-fixes).
- net: bridge: multicast: use rcu to access port list from
br_multicast_start_querier (git-fixes).
- net: datagram: fix unbounded loop in __skb_try_recv_datagram()
(git-fixes).
- net: Do not allocate page fragments that are not skb aligned
(networking-stable-19_02_20).
- net: dsa: legacy: do not unmask port bitmaps (git-fixes).
- net: dsa: mv88e6xxx: Fix u64 statistics (networking-stable-19_03_07).
- net: ethtool: not call vzalloc for zero sized memory request
(networking-stable-19_04_10).
- netfilter: bridge: Do not sabotage nf_hook calls from an l3mdev
(git-fixes).
- netfilter: bridge: ebt_among: add missing match size checks (git-fixes).
- netfilter: bridge: ebt_among: add more missing match size checks
(git-fixes).
- netfilter: bridge: set skb transport_header before entering
NF_INET_PRE_ROUTING (git-fixes).
- netfilter: drop template ct when conntrack is skipped (git-fixes).
- netfilter: ebtables: handle string from userspace with care (git-fixes).
- netfilter: ebtables: reject non-bridge targets (git-fixes).
- netfilter: ip6t_MASQUERADE: add dependency on conntrack module
(git-fixes).
- netfilter: ipset: Missing nfnl_lock()/nfnl_unlock() is added to
ip_set_net_exit() (git-fixes).
- netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
(git-fixes).
- netfilter: nf_log: do not hold nf_log_mutex during user access
(git-fixes).
- netfilter: nf_log: fix uninit read in nf_log_proc_dostring (git-fixes).
- netfilter: nf_socket: Fix out of bounds access in
nf_sk_lookup_slow_v{4,6} (git-fixes).
- netfilter: nf_tables: can't fail after linking rule into active rule
list (git-fixes).
- netfilter: nf_tables: check msg_type before nft_trans_set(trans)
(git-fixes).
- netfilter: nf_tables: fix NULL pointer dereference on
nft_ct_helper_obj_dump() (git-fixes).
- netfilter: nf_tables: release chain in flushing set (git-fixes).
- netfilter: x_tables: avoid out-of-bounds reads in
xt_request_find_{match|target} (git-fixes).
- netfilter: x_tables: fix int overflow in xt_alloc_table_info()
(git-fixes).
- netfilter: x_tables: initialise match/target check parameter struct
(git-fixes).
- net: Fix a bug in removing queues from XPS map (git-fixes).
- net: Fix for_each_netdev_feature on Big endian
(networking-stable-19_02_20).
- net: fix IPv6 prefix route residue (networking-stable-19_02_20).
- net: fix uninit-value in __hw_addr_add_ex() (git-fixes).
- net: Fix untag for vlan packets without ethernet header (git-fixes).
- net: Fix vlan untag for bridge and vlan_dev with reorder_hdr off
(git-fixes).
- net-gro: Fix GRO flush when receiving a GSO packet
(networking-stable-19_04_10).
- net: hsr: fix memory leak in hsr_dev_finalize()
(networking-stable-19_03_15).
- net/hsr: fix possible crash in add_timer() (networking-stable-19_03_15).
- net/ibmvnic: Update carrier state after link state change (bsc#1135100).
- net/ibmvnic: Update MAC address settings after adapter reset
(bsc#1134760).
- net: initialize skb->peeked when cloning (git-fixes).
- net/ipv6: do not reinitialize ndev->cnf.addr_gen_mode on new inet6_dev
(git-fixes).
- net/ipv6: fix addrconf_sysctl_addr_gen_mode (git-fixes).
- net/ipv6: propagate net.ipv6.conf.all.addr_gen_mode to devices
(git-fixes).
- net/ipv6: reserve room for IFLA_INET6_ADDR_GEN_MODE (git-fixes).
- netlabel: fix out-of-bounds memory accesses (networking-stable-19_03_07).
- netlink: fix uninit-value in netlink_sendmsg (git-fixes).
- net/mlx5: Decrease default mr cache size (networking-stable-19_04_10).
- net/mlx5e: Add a lock on tir list (networking-stable-19_04_10).
- net/mlx5e: Do not overwrite pedit action when multiple pedit used
(networking-stable-19_02_24).
- net/mlx5e: Fix error handling when refreshing TIRs
(networking-stable-19_04_10).
- net: nfc: Fix NULL dereference on nfc_llcp_build_tlv fails
(networking-stable-19_03_07).
- net/packet: fix 4gb buffer limit due to overflow check
(networking-stable-19_02_24).
- net/packet: Set __GFP_NOWARN upon allocation in alloc_pg_vec (git-fixes).
- net: rose: fix a possible stack overflow (networking-stable-19_03_28).
- net/sched: act_sample: fix divide by zero in the traffic path
(networking-stable-19_04_10).
- net/sched: fix ->get helper of the matchall cls
(networking-stable-19_04_10).
- net_sched: fix two more memory leaks in cls_tcindex
(networking-stable-19_02_24).
- net: Set rtm_table to RT_TABLE_COMPAT for ipv6 for tables > 255
(networking-stable-19_03_15).
- net: sit: fix memory leak in sit_init_net() (networking-stable-19_03_07).
- net: sit: fix UBSAN Undefined behaviour in check_6rd
(networking-stable-19_03_15).
- net/smc: add pnet table namespace support (bsc#1129845 LTC#176252).
- net/smc: add smcd support to the pnet table (bsc#1129845 LTC#176252).
- net/smc: allow PCI IDs as ib device names in the pnet table (bsc#1129845
LTC#176252).
- net/smc: allow pnetid-less configuration (bsc#1129845 LTC#176252).
- net/smc: check for ip prefix and subnet (bsc#1134607 LTC#177518).
- net/smc: cleanup for smcr_tx_sndbuf_nonempty (bsc#1129845 LTC#176252).
- net/smc: cleanup of get vlan id (bsc#1134607 LTC#177518).
- net/smc: code cleanup smc_listen_work (bsc#1134607 LTC#177518).
- net/smc: consolidate function parameters (bsc#1134607 LTC#177518).
- net/smc: fallback to TCP after connect problems (bsc#1134607 LTC#177518).
- net/smc: fix a NULL pointer dereference (bsc#1134607 LTC#177518).
- net/smc: fix return code from FLUSH command (bsc#1134607 LTC#177518).
- net/smc: improve smc_conn_create reason codes (bsc#1134607 LTC#177518).
- net/smc: improve smc_listen_work reason codes (bsc#1134607 LTC#177518).
- net/smc: move unhash before release of clcsock (bsc#1134607 LTC#177518).
- net/smc: nonblocking connect rework (bsc#1134607 LTC#177518).
- net/smc: propagate file from SMC to TCP socket (bsc#1134607 LTC#177518).
- net/smc: rework pnet table (bsc#1129845 LTC#176252).
- net/smc: wait for pending work before clcsock release_sock (bsc#1134607
LTC#177518).
- net: socket: fix potential spectre v1 gadget in socketcall (git-fixes).
- net: socket: set sock->sk to NULL after calling proto_ops::release()
(networking-stable-19_03_07).
- net: stmmac: fix memory corruption with large MTUs
(networking-stable-19_03_28).
- net: test tailroom before appending to linear skb (git-fixes).
- net: validate untrusted gso packets without csum offload
(networking-stable-19_02_20).
- net/x25: fix a race in x25_bind() (networking-stable-19_03_15).
- net/x25: fix use-after-free in x25_device_event()
(networking-stable-19_03_15).
- net/x25: reset state in x25_connect() (networking-stable-19_03_15).
- net: xfrm: use preempt-safe this_cpu_read() in ipcomp_alloc_tfms()
(git-fixes).
- NFC: nci: Add some bounds checking in nci_hci_cmd_received()
(bsc#1051510).
- nfs: Add missing encode / decode sequence_maxsz to v4.2 operations
(git-fixes).
- nfsd4: catch some false session retries (git-fixes).
- nfsd4: fix cached replies to solo SEQUENCE compounds (git-fixes).
- nfs: Do not recoalesce on error in nfs_pageio_complete_mirror()
(git-fixes).
- nfs: Do not use page_file_mapping after removing the page (git-fixes).
- nfs: Fix an I/O request leakage in nfs_do_recoalesce (git-fixes).
- nfs: Fix a soft lockup in the delegation recovery code (git-fixes).
- nfs: Fix a typo in nfs_init_timeout_values() (git-fixes).
- nfs: Fix dentry revalidation on NFSv4 lookup (bsc#1132618).
- nfs: Fix I/O request leakages (git-fixes).
- nfs: fix mount/umount race in nlmclnt (git-fixes).
- nfs/pnfs: Bulk destroy of layouts needs to be safe w.r.t. umount
(git-fixes).
- nfsv4.1 do not free interrupted slot on open (git-fixes).
- nfsv4.1: Reinitialise sequence results before retransmitting a request
(git-fixes).
- nfsv4/flexfiles: Fix invalid deref in FF_LAYOUT_DEVID_NODE() (git-fixes).
- nl80211: Add NL80211_FLAG_CLEAR_SKB flag for other NL commands
(bsc#1051510).
- nvme: add proper discard setup for the multipath device (bsc#1114638).
- nvme-fc: use separate work queue to avoid warning (bsc#1131673).
- nvme: fix the dangerous reference of namespaces list (bsc#1131673).
- nvme: make sure ns head inherits underlying device limits (bsc#1131673).
- nvme-multipath: avoid crash on invalid subsystem cntlid enumeration
(bsc#1129273).
- nvme-multipath: avoid crash on invalid subsystem cntlid enumeration
(bsc#1130937).
- nvme-multipath: split bios with the ns_head bio_set before submitting
(bsc#1103259, bsc#1131673).
- nvme: only reconfigure discard if necessary (bsc#1114638).
- ocfs2: turn on OCFS2_FS_STATS setting(bsc#1134393) We need to turn on
OCFS2_FS_STATS kernel configuration setting, to fix bsc#1134393.
- omapfb: add missing of_node_put after of_device_is_available
(bsc#1051510).
- openvswitch: add seqadj extension when NAT is used (bsc#1051510).
- openvswitch: fix flow actions reallocation (bsc#1051510).
- overflow: Fix -Wtype-limits compilation warnings (bsc#1111666).
- packet: fix reserve calculation (git-fixes).
- packet: in packet_snd start writing at link layer allocation (git-fixes).
- packet: refine ring v3 block size test to hold one frame (git-fixes).
- packet: reset network header if packet shorter than ll reserved space
(git-fixes).
- packets: Always register packet sk in the same order
(networking-stable-19_03_28).
- packet: validate msg_namelen in send directly (git-fixes).
- PCI: Add function 1 DMA alias quirk for Marvell 9170 SATA controller
(bsc#1051510).
- PCI: designware-ep: Read-only registers need DBI_RO_WR_EN to be writable
(bsc#1051510).
- PCI: Init PCIe feature bits for managed host bridge alloc (bsc#1111666).
- PCI: Mark AMD Stoney Radeon R7 GPU ATS as broken (bsc#1051510).
- PCI: Mark Atheros AR9462 to avoid bus reset (bsc#1051510).
- PCI: pciehp: Convert to threaded IRQ (bsc#1133005).
- PCI: pciehp: Ignore Link State Changes after powering off a slot
(bsc#1133005).
- PCI: pciehp: Tolerate Presence Detect hardwired to zero (bsc#1133016).
- perf tools: Add Hygon Dhyana support ().
- perf tools: Add Hygon Dhyana support (fate#327735).
- perf/x86/amd: Add event map for AMD Family 17h (bsc#1134223).
- perf/x86/amd: Update generic hardware cache events for Family 17h
(bsc#1134223).
- phy: sun4i-usb: Make sure to disable PHY0 passby for peripheral mode
(bsc#1051510).
- phy: sun4i-usb: Support set_mode to USB_HOST for non-OTG PHYs
(bsc#1051510).
- platform/x86: alienware-wmi: printing the wrong error code (bsc#1051510).
- platform/x86: dell-rbtn: Add missing #include (bsc#1051510).
- platform/x86: intel_pmc_ipc: adding error handling (bsc#1051510).
- platform/x86: intel_punit_ipc: Revert "Fix resource ioremap warning"
(bsc#1051510).
- platform/x86: pmc_atom: Drop __initconst on dmi table (bsc#1051510).
- platform/x86: sony-laptop: Fix unintentional fall-through (bsc#1051510).
- powerpc64/ftrace: Include ftrace.h needed for enable/disable calls
(bsc#1088804, git-fixes).
- powerpc/64s: Fix logic when handling unknown CPU features (bsc#1055117).
- powerpc/64s: Fix page table fragment refcount race vs speculative
references (bsc#1131326, bsc#1108937).
- powerpc: avoid -mno-sched-epilog on GCC 4.9 and newer (bsc#1065729).
- powerpc: consolidate -mno-sched-epilog into FTRACE flags (bsc#1065729).
- powerpc: Fix 32-bit KVM-PR lockup and host crash with MacOS guest
(bsc#1061840).
- powerpc/hugetlb: Handle mmap_min_addr correctly in get_unmapped_area
callback (bsc#1131900).
- powerpc/kvm: Save and restore host AMR/IAMR/UAMOR (bsc#1061840).
- powerpc/mm: Add missing tracepoint for tlbie (bsc#1055117, git-fixes).
- powerpc/mm: Check secondary hash page table (bsc#1065729).
- powerpc/mm: Fix page table dump to work on Radix (bsc#1055186,
fate#323286, git-fixes).
- powerpc/mm: Fix page table dump to work on Radix (bsc#1055186,
git-fixes).
- powerpc/mm/hash: Handle mmap_min_addr correctly in get_unmapped_area
topdown search (bsc#1131900).
- powerpc/mm/radix: Display if mappings are exec or not (bsc#1055186,
fate#323286, git-fixes).
- powerpc/mm/radix: Display if mappings are exec or not (bsc#1055186,
git-fixes).
- powerpc/mm/radix: Prettify mapped memory range print out (bsc#1055186,
fate#323286, git-fixes).
- powerpc/mm/radix: Prettify mapped memory range print out (bsc#1055186,
git-fixes).
- powerpc/numa: document topology_updates_enabled, disable by default
(bsc#1133584).
- powerpc/numa: improve control of topology updates (bsc#1133584).
- powerpc/perf: Fix unit_sel/cache_sel checks (bsc#1053043).
- powerpc/perf: Remove l2 bus events from HW cache event array
(bsc#1053043).
- powerpc/powernv/cpuidle: Init all present cpus for deep states
(bsc#1055121).
- powerpc/powernv: Do not reprogram SLW image on every KVM guest
entry/exit (bsc#1061840).
- powerpc/powernv/ioda2: Remove redundant free of TCE pages (bsc#1061840).
- powerpc/powernv/ioda: Allocate indirect TCE levels of cached userspace
addresses on demand (bsc#1061840).
- powerpc/powernv/ioda: Fix locked_vm counting for memory used by IOMMU
tables (bsc#1061840).
- powerpc/powernv: Make opal log only readable by root (bsc#1065729).
- powerpc/powernv: Remove never used pnv_power9_force_smt4 (bsc#1061840).
- powerpc/speculation: Support 'mitigations=' cmdline option (bsc#1112178).
- powerpc/vdso32: fix CLOCK_MONOTONIC on PPC64 (bsc#1131587).
- powerpc/vdso64: Fix CLOCK_MONOTONIC inconsistencies across Y2038
(bsc#1131587).
- power: supply: axp20x_usb_power: Fix typo in VBUS current limit macros
(bsc#1051510).
- power: supply: axp288_charger: Fix unchecked return value (bsc#1051510).
- proc/kcore: do not bounds check against address 0 (bsc#1051510).
- proc: revalidate kernel thread inodes to root:root (bsc#1051510).
- proc/sysctl: fix return error for proc_doulongvec_minmax() (bsc#1051510).
- pwm: Fix deadlock warning when removing PWM device (bsc#1051510).
- pwm: meson: Consider 128 a valid pre-divider (bsc#1051510).
- pwm: meson: Do not disable PWM when setting duty repeatedly
(bsc#1051510).
- pwm: meson: Use the spin-lock only to protect register modifications
(bsc#1051510).
- pwm: tiehrpwm: Update shadow register for disabling PWMs (bsc#1051510).
- qla2xxx: allow irqbalance control in non-MQ mode (bsc#1128971).
- qla2xxx: allow irqbalance control in non-MQ mode (bsc#1128979).
- qla2xxx: always allocate qla_tgt_wq (bsc#1131451).
- qmi_wwan: add Olicard 600 (bsc#1051510).
- qmi_wwan: Add support for Quectel EG12/EM12 (networking-stable-19_03_07).
- raid10: It's wrong to add len to sector_nr in raid10 reshape twice
(git-fixes).
- RAS/CEC: Check the correct variable in the debugfs error handling
(bsc#1085535).
- ravb: Decrease TxFIFO depth of Q3 and Q2 to one
(networking-stable-19_03_15).
- rdma/cxgb4: Add support for 64Byte cqes (bsc#1127371).
- rdma/cxgb4: Add support for kernel mode SRQ's (bsc#1127371).
- rdma/cxgb4: Add support for srq functions & structs (bsc#1127371).
- rdma/cxgb4: fix some info leaks (bsc#1127371).
- rdma/cxgb4: Make c4iw_poll_cq_one() easier to analyze (bsc#1127371).
- rdma/cxgb4: Remove a set-but-not-used variable (bsc#1127371).
- rdma/iw_cxgb4: Drop __GFP_NOFAIL (bsc#1127371).
- rdma/smc: Replace ib_query_gid with rdma_get_gid_attr (bsc#1131530
LTC#176717).
- rds: fix refcount bug in rds_sock_addref (git-fixes).
- rds: tcp: atomically purge entries from rds_tcp_conn_list during netns
delete (git-fixes).
- Re-enable nouveau for PCI device 10de:1cbb (bsc#1133593).
- Re-export snd_cards for kABI compatibility (bsc#1051510).
- regulator: tps65086: Fix tps65086_ldoa1_ranges for selector 0xB
(bsc#1051510).
- Revert "alsa: seq: Protect in-kernel ioctl calls with mutex"
(bsc#1051510).
- Revert "block: unexport DISK_EVENT_MEDIA_CHANGE for legacy/fringe
drivers" (bsc#1110946, bsc#1119843).
- Revert "block: unexport DISK_EVENT_MEDIA_CHANGE for legacy/fringe
drivers" (bsc#1110946, bsc#1119843).
- Revert "drm/sun4i: rgb: Change the pixel clock validation check
(bnc#1113722)" The patch seems buggy, breaks the build for armv7hl/pae
config.
- Revert "ide: unexport DISK_EVENT_MEDIA_CHANGE for ide-gd and ide-cd"
(bsc#1110946).
- Revert "ide: unexport DISK_EVENT_MEDIA_CHANGE for ide-gd and ide-cd"
(bsc#1110946, bsc#1119843).
- Revert "tty: pty: Fix race condition between release_one_tty and
pty_write" (bsc#1051510).
- ring-buffer: Check if memory is available before allocation
(bsc#1132531).
- rt2x00: do not increment sequence number while re-transmitting
(bsc#1051510).
- rtlwifi: rtl8723ae: Fix missing break in switch statement (bsc#1051510).
- rxrpc: Do not release call mutex on error pointer (git-fixes).
- rxrpc: Do not treat call aborts as conn aborts (git-fixes).
- rxrpc: Fix client call queueing, waiting for channel
(networking-stable-19_03_15).
- rxrpc: Fix error reception on AF_INET6 sockets (git-fixes).
- rxrpc: Fix transport sockopts to get IPv4 errors on an IPv6 socket
(git-fixes).
- rxrpc: Fix Tx ring annotation after initial Tx failure (git-fixes).
- s390/dasd: fix panic for failed online processing (bsc#1132589).
- s390/pkey: move pckmo subfunction available checks away from module init
(bsc#1128544).
- s390/qdio: clear intparm during shutdown (bsc#1134597 LTC#177516).
- s390/speculation: Support 'mitigations=' cmdline option (bsc#1112178).
- sc16is7xx: missing unregister/delete driver on error in sc16is7xx_init()
(bsc#1051510).
- sc16is7xx: move label 'err_spi' to correct section (bsc#1051510).
- sc16is7xx: put err_spi and err_i2c into correct #ifdef (bsc#1051510).
- scripts/git_sort/git_sort.py: remove old SCSI git branches
- scripts: override locale from environment when running recordmcount.pl
(bsc#1134354).
- scsi: libsas: allocate sense buffer for bsg queue (bsc#1131467).
- scsi: qla2xxx: Add new FC-NVMe enable BIT to enable FC-NVMe feature
(bsc#1130579).
- scsi: qla2xxx: Fix panic in qla_dfs_tgt_counters_show (bsc#1132044).
- scsi: smartpqi: add H3C controller IDs (bsc#1133547).
- scsi: smartpqi: add h3c ssid (bsc#1133547).
- scsi: smartpqi: add no_write_same for logical volumes (bsc#1133547).
- scsi: smartpqi: add ofa support (bsc#1133547).
- scsi: smartpqi: Add retries for device reset (bsc#1133547).
- scsi: smartpqi: add smp_utils support (bsc#1133547).
- scsi: smartpqi: add spdx (bsc#1133547).
- scsi: smartpqi: add support for huawei controllers (bsc#1133547).
- scsi: smartpqi: add support for PQI Config Table handshake (bsc#1133547).
- scsi: smartpqi: add sysfs attributes (bsc#1133547).
- scsi: smartpqi: allow for larger raid maps (bsc#1133547).
- scsi: smartpqi: bump driver version (bsc#1133547).
- scsi: smartpqi: bump driver version (bsc#1133547).
- scsi: smartpqi: call pqi_free_interrupts() in pqi_shutdown()
(bsc#1133547).
- scsi: smartpqi: check for null device pointers (bsc#1133547).
- scsi: smartpqi: correct host serial num for ssa (bsc#1133547).
- scsi: smartpqi: correct lun reset issues (bsc#1133547).
- scsi: smartpqi: correct volume status (bsc#1133547).
- scsi: smartpqi: do not offline disks for transient did no connect
conditions (bsc#1133547).
- scsi: smartpqi: enhance numa node detection (bsc#1133547).
- scsi: smartpqi: fix build warnings (bsc#1133547).
- scsi: smartpqi: fix disk name mount point (bsc#1133547).
- scsi: smartpqi: fully convert to the generic DMA API (bsc#1133547).
- scsi: smartpqi: increase fw status register read timeout (bsc#1133547).
- scsi: smartpqi: increase LUN reset timeout (bsc#1133547).
- scsi: smartpqi_init: fix boolean expression in pqi_device_remove_start
(bsc#1133547).
- scsi: smartpqi: refactor sending controller raid requests (bsc#1133547).
- scsi: smartpqi: Reporting 'logical unit failure' (bsc#1133547).
- scsi: smartpqi: turn off lun data caching for ptraid (bsc#1133547).
- scsi: smartpqi: update copyright (bsc#1133547).
- scsi: smartpqi: update driver version (bsc#1133547).
- scsi: smartpqi: wake up drives after os resumes from suspend
(bsc#1133547).
- sctp: call gso_reset_checksum when computing checksum in
sctp_gso_segment (networking-stable-19_02_24).
- sctp: fix identification of new acks for SFR-CACC (git-fixes).
- sctp: get sctphdr by offset in sctp_compute_cksum
(networking-stable-19_03_28).
- sctp: initialize _pad of sockaddr_in before copying to user memory
(networking-stable-19_04_10).
- sctp: only update outstanding_bytes for transmitted queue when doing
prsctp_prune (git-fixes).
- sctp: set frag_point in sctp_setsockopt_maxseg correctly` (git-fixes).
- selinux: use kernel linux/socket.h for genheaders and mdp (bsc#1134810).
- serial: 8250_pxa: honor the port number from devicetree (bsc#1051510).
- serial: ar933x_uart: Fix build failure with disabled console
(bsc#1051510).
- serial: uartps: console_setup() can't be placed to init section
(bsc#1051510).
- sit: check if IPv6 enabled before calling ip6_err_gen_icmpv6_unreach()
(networking-stable-19_02_24).
- soc/fsl/qe: Fix an error code in qe_pin_request() (bsc#1051510).
- SoC: imx-sgtl5000: add missing put_device() (bsc#1051510).
- soc: qcom: gsbi: Fix error handling in gsbi_probe() (bsc#1051510).
- soc/tegra: fuse: Fix illegal free of IO base address (bsc#1051510).
- soc/tegra: pmc: Drop locking from tegra_powergate_is_powered()
(bsc#1051510).
- spi: a3700: Clear DATA_OUT when performing a read (bsc#1051510).
- spi: Add missing pm_runtime_put_noidle() after failed get (bsc#1111666).
- spi: bcm2835aux: fix driver to not allow 65535 (=-1) cs-gpios
(bsc#1051510).
- spi: bcm2835aux: setup gpio-cs to output and correct level during setup
(bsc#1051510).
- spi: bcm2835aux: warn in dmesg that native cs is not really supported
(bsc#1051510).
- spi-mem: fix kernel-doc for spi_mem_dirmap_{read|write}() (bsc#1111666).
- spi: Micrel eth switch: declare missing of table (bsc#1051510).
- spi: rspi: Fix sequencer reset during initialization (bsc#1051510).
- spi: ST ST95HF NFC: declare missing of table (bsc#1051510).
- ssb: Fix possible NULL pointer dereference in ssb_host_pcmcia_exit
(bsc#1051510).
- staging: comedi: ni_usb6501: Fix possible double-free of ->usb_rx_buf
(bsc#1051510).
- staging: comedi: ni_usb6501: Fix use of uninitialized mutex
(bsc#1051510).
- staging: comedi: vmk80xx: Fix possible double-free of ->usb_rx_buf
(bsc#1051510).
- staging: comedi: vmk80xx: Fix use of uninitialized semaphore
(bsc#1051510).
- staging: iio: ad7192: Fix ad7193 channel address (bsc#1051510).
- staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc
(bsc#1051510).
- staging: rtl8712: uninitialized memory in read_bbreg_hdl() (bsc#1051510).
- staging: rtlwifi: Fix potential NULL pointer dereference of kzalloc
(bsc#1111666).
- staging: rtlwifi: rtl8822b: fix to avoid potential NULL pointer
dereference (bsc#1111666).
- staging: vt6655: Fix interrupt race condition on device start up
(bsc#1051510).
- staging: vt6655: Remove vif check from vnt_interrupt (bsc#1051510).
- stm class: Fix an endless loop in channel allocation (bsc#1051510).
- stm class: Fix channel free in stm output free path (bsc#1051510).
- stm class: Prevent division by zero (bsc#1051510).
- sunrpc: fix 4 more call sites that were using stack memory with a
scatterlist (git-fixes).
- supported.conf: Add openvswitch to kernel-default-base (bsc#1124839).
- supported.conf: Add openvswitch to kernel-default-base (bsc#1124839).
- supported.conf: dw_mmc-bluefield is not needed in kernel-default-base
(bsc#1131574).
- svm/avic: Fix invalidate logical APIC id entry (bsc#1132726).
- svm: Fix AVIC DFR and LDR handling (bsc#1132558).
- sysctl: handle overflow for file-max (bsc#1051510).
- tcp: do not use ipv6 header for ipv4 flow (networking-stable-19_03_28).
- tcp: Ensure DCTCP reacts to losses (networking-stable-19_04_10).
- tcp: fix TCP_REPAIR_QUEUE bound checking (git-fixes).
- tcp: purge write queue in tcp_connect_init() (git-fixes).
- tcp: tcp_v4_err() should be more careful (networking-stable-19_02_20).
- team: set slave to promisc if team is already in promisc mode
(bsc#1051510).
- testing: nvdimm: provide SZ_4G constant (bsc#1132982).
- thermal: cpu_cooling: Actually trace CPU load in
thermal_power_cpu_get_power (bsc#1051510).
- thermal/int340x_thermal: Add additional UUIDs (bsc#1051510).
- thermal/int340x_thermal: fix mode setting (bsc#1051510).
- thunderx: eliminate extra calls to put_page() for pages held for
recycling (networking-stable-19_03_28).
- thunderx: enable page recycling for non-XDP case
(networking-stable-19_03_28).
- tipc: fix race condition causing hung sendto
(networking-stable-19_03_07).
- tools/cpupower: Add Hygon Dhyana support ().
- tools/cpupower: Add Hygon Dhyana support (fate#327735).
- tools lib traceevent: Fix missing equality check for strcmp
(bsc#1129770).
- tpm: Fix the type of the return value in calc_tpm2_event_size()
(bsc#1082555).
- tracing: Fix a memory leak by early error exit in trace_pid_write()
(bsc#1133702).
- tracing: Fix buffer_ref pipe ops (bsc#1133698).
- tracing/hrtimer: Fix tracing bugs by taking all clock bases and modes
into account (bsc#1132527).
- tty: increase the default flip buffer limit to 2*640K (bsc#1051510).
- tty: pty: Fix race condition between release_one_tty and pty_write
(bsc#1051510).
- tty: serial_core, add ->install (bnc#1129693).
- tty: vt.c: Fix TIOCL_BLANKSCREEN console blanking if blankinterval == 0
(bsc#1051510).
- tun: add a missing rcu_read_unlock() in error path
(networking-stable-19_03_28).
- tun: fix blocking read (networking-stable-19_03_07).
- tun: properly test for IFF_UP (networking-stable-19_03_28).
- tun: remove unnecessary memory barrier (networking-stable-19_03_07).
- uas: fix alignment of scatter/gather segments (bsc#1129770).
- ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour
(bsc#1135323).
- Update config files. Debug kernel is not supported (bsc#1135492).
- Update config files: disable CONFIG_IDE for ppc64le
- usb: cdc-acm: fix unthrottle races (bsc#1051510).
- usb: chipidea: Grab the (legacy) USB PHY by phandle first (bsc#1051510).
- usb: core: Fix bug caused by duplicate interface PM usage counter
(bsc#1051510).
- usb: core: Fix unterminated string returned by usb_string()
(bsc#1051510).
- usb: dwc3: Fix default lpm_nyet_threshold value (bsc#1051510).
- usb: f_fs: Avoid crash due to out-of-scope stack ptr access
(bsc#1051510).
- usb: gadget: net2272: Fix net2272_dequeue() (bsc#1051510).
- usb: gadget: net2280: Fix net2280_dequeue() (bsc#1051510).
- usb: gadget: net2280: Fix overrun of OUT messages (bsc#1051510).
- usb: serial: cp210x: fix GPIO in autosuspend (bsc#1120902).
- usb: serial: f81232: fix interrupt worker not stop (bsc#1051510).
- usb: serial: fix unthrottle races (bsc#1051510).
- usb-storage: Set virt_boundary_mask to avoid SG overflows (bsc#1051510).
- usb: u132-hcd: fix resource leak (bsc#1051510).
- usb: usb251xb: fix to avoid potential NULL pointer dereference
(bsc#1051510).
- usb: usbip: fix isoc packet num validation in get_pipe (bsc#1051510).
- usb: w1 ds2490: Fix bug caused by improper use of altsetting array
(bsc#1051510).
- usb: yurex: Fix protection fault after device removal (bsc#1051510).
- vfio/mdev: Avoid release parent reference during error path
(bsc#1051510).
- vfio/mdev: Fix aborting mdev child device removal if one fails
(bsc#1051510).
- vfio_pci: Enable memory accesses before calling pci_map_rom
(bsc#1051510).
- vfio/pci: use correct format characters (bsc#1051510).
- vfs: allow dedupe of user owned read-only files (bsc#1133778,
bsc#1132219).
- vfs: avoid problematic remapping requests into partial EOF block
(bsc#1133850, bsc#1132219).
- vfs: dedupe: extract helper for a single dedup (bsc#1133769,
bsc#1132219).
- vfs: dedupe should return EPERM if permission is not granted
(bsc#1133779, bsc#1132219).
- vfs: exit early from zero length remap operations (bsc#1132411,
bsc#1132219).
- vfs: export vfs_dedupe_file_range_one() to modules (bsc#1133772,
bsc#1132219).
- vfs: limit size of dedupe (bsc#1132397, bsc#1132219).
- vfs: rename clone_verify_area to remap_verify_area (bsc#1133852,
bsc#1132219).
- vfs: skip zero-length dedupe requests (bsc#1133851, bsc#1132219).
- vfs: swap names of {do,vfs}_clone_file_range() (bsc#1133774,
bsc#1132219).
- vfs: vfs_clone_file_prep_inodes should return EINVAL for a clone from
beyond EOF (bsc#1133780, bsc#1132219).
- vhost/vsock: fix reset orphans race with close timeout (bsc#1051510).
- virtio-blk: limit number of hw queues by nr_cpu_ids (bsc#1051510).
- virtio: Honour 'may_reduce_num' in vring_create_virtqueue (bsc#1051510).
- virtio_pci: fix a NULL pointer reference in vp_del_vqs (bsc#1051510).
- vrf: check accept_source_route on the original netdevice
(networking-stable-19_04_10).
- vsock/virtio: fix kernel panic after device hot-unplug (bsc#1051510).
- vsock/virtio: fix kernel panic from virtio_transport_reset_no_sock
(bsc#1051510).
- vsock/virtio: Initialize core virtio vsock before registering the driver
(bsc#1051510).
- vsock/virtio: reset connected sockets on device removal (bsc#1051510).
- vt: always call notifier with the console lock held (bsc#1051510).
- vxlan: Do not call gro_cells_destroy() before device is unregistered
(networking-stable-19_03_28).
- vxlan: test dev->flags & IFF_UP before calling netif_rx()
(networking-stable-19_02_20).
- wil6210: check null pointer in _wil_cfg80211_merge_extra_ies
(bsc#1051510).
- wlcore: Fix memory leak in case wl12xx_fetch_firmware failure
(bsc#1051510).
- x86/alternative: Init ideal_nops for Hygon Dhyana (fate#327735).
- x86/amd_nb: Check vendor in AMD-only functions (fate#327735).
- x86/apic: Add Hygon Dhyana support (fate#327735).
- x86/bugs: Add Hygon Dhyana to the respective mitigation machinery
(fate#327735).
- x86/cpu: Create Hygon Dhyana architecture support file (fate#327735).
- x86/cpu: Get cache info and setup cache cpumap for Hygon Dhyana ().
- x86/cpu: Get cache info and setup cache cpumap for Hygon Dhyana
(fate#327735).
- x86/cpu/mtrr: Support TOP_MEM2 and get MTRR number (fate#327735).
- x86/cpu: Sanitize FAM6_ATOM naming (bsc#1111331).
- x86/events: Add Hygon Dhyana support to PMU infrastructure
(fate#327735).
- x86/kvm: Add Hygon Dhyana support to KVM (fate#327735).
- x86/kvm/hyper-v: avoid spurious pending stimer on vCPU init
(bsc#1132572).
- x86/mce: Add Hygon Dhyana support to the MCA infrastructure
(fate#327735).
- x86/MCE/AMD, EDAC/mce_amd: Add new error descriptions for some SMCA bank
types (bsc#1128415).
- x86/MCE/AMD, EDAC/mce_amd: Add new McaTypes for CS, PSP, and SMU units
(bsc#1128415).
- x86/MCE/AMD, EDAC/mce_amd: Add new MP5, NBIO, and PCIE SMCA bank types
(bsc#1128415).
- x86/mce/AMD, EDAC/mce_amd: Enumerate Reserved SMCA bank type
(bsc#1128415).
- x86/mce/AMD: Pass the bank number to smca_get_bank_type() (bsc#1128415).
- x86/mce: Do not disable MCA banks when offlining a CPU on AMD
(fate#327735).
- x86/MCE: Fix kABI for new AMD bank names (bsc#1128415).
- x86/mce: Handle varying MCA bank counts (bsc#1128415).
- x86/msr-index: Cleanup bit defines (bsc#1111331).
- x86/PCI: Fixup RTIT_BAR of Intel Denverton Trace Hub (bsc#1120318).
- x86/pci, x86/amd_nb: Add Hygon Dhyana support to PCI and northbridge
(fate#327735).
- x86/perf/amd: Remove need to check "running" bit in NMI handler
(bsc#1131438).
- x86/perf/amd: Resolve NMI latency issues for active PMCs (bsc#1131438).
- x86/perf/amd: Resolve race condition when disabling PMC (bsc#1131438).
- x86/smpboot: Do not use BSP INIT delay and MWAIT to idle on Dhyana
(fate#327735).
- x86/speculation/mds: Fix documentation typo (bsc#1135642).
- x86/speculation: Prevent deadlock on ssb_state::lock (bsc#1114279).
- x86/speculation: Support 'mitigations=' cmdline option (bsc#1112178).
- x86/tsc: Force inlining of cyc2ns bits (bsc#1052904).
- x86/xen: Add Hygon Dhyana support to Xen (fate#327735).
- xen-netback: do not populate the hash cache on XenBus disconnect
(networking-stable-19_03_07).
- xen-netback: fix occasional leak of grant ref mappings under memory
pressure (networking-stable-19_03_07).
- xen: Prevent buffer overflow in privcmd ioctl (bsc#1065600).
- xfrm6: avoid potential infinite loop in _decode_session6() (git-fixes).
- xfrm6: call kfree_skb when skb is toobig (git-fixes).
- xfrm: do not call rcu_read_unlock when afinfo is NULL in xfrm_get_tos
(git-fixes).
- xfrm: Fix ESN sequence number handling for IPsec GSO packets (git-fixes).
- xfrm: fix missing dst_release() after policy blocking lbcast and
multicast (git-fixes).
- xfrm: fix 'passing zero to ERR_PTR()' warning (git-fixes).
- xfrm: fix rcu_read_unlock usage in xfrm_local_error (git-fixes).
- xfrm: Fix stack-out-of-bounds read on socket policy lookup (git-fixes).
- xfrm: fix xfrm_do_migrate() with AEAD e.g(AES-GCM) (git-fixes).
- xfrm: reset crypto_done when iterating over multiple input xfrms
(git-fixes).
- xfrm: reset transport header back to network header after all input
transforms ahave been applied (git-fixes).
- xfrm: Return error on unknown encap_type in init_state (git-fixes).
- xfrm_user: prevent leaking 2 bytes of kernel memory (git-fixes).
- xfrm: Validate address prefix lengths in the xfrm selector (git-fixes).
- xfs: add log item pinning error injection tag (bsc#1114427).
- xfs: add the ability to join a held buffer to a defer_ops (bsc#1133674).
- xfs: allow xfs_lock_two_inodes to take different EXCL/SHARED modes
(bsc#1132370, bsc#1132219).
- xfs: buffer lru reference count error injection tag (bsc#1114427).
- xfs: call xfs_qm_dqattach before performing reflink operations
(bsc#1132368, bsc#1132219).
- xfs: cap the length of deduplication requests (bsc#1132373, bsc#1132219).
- xfs: check _btree_check_block value (bsc#1123663).
- xfs: clean up xfs_reflink_remap_blocks call site (bsc#1132413,
bsc#1132219).
- xfs: convert drop_writes to use the errortag mechanism (bsc#1114427).
- xfs: create block pointer check functions (bsc#1123663).
- xfs: create inode pointer verifiers (bsc#1114427).
- xfs: detect and fix bad summary counts at mount (bsc#1114427).
- xfs: export _inobt_btrec_to_irec and _ialloc_cluster_alignment for scrub
(bsc#1114427).
- xfs: export various function for the online scrubber (bsc#1123663).
- xfs: expose errortag knobs via sysfs (bsc#1114427).
- xfs: fix data corruption w/ unaligned dedupe ranges (bsc#1132405,
bsc#1132219).
- xfs: fix data corruption w/ unaligned reflink ranges (bsc#1132407,
bsc#1132219).
- xfs: fix pagecache truncation prior to reflink (bsc#1132412,
bsc#1132219).
- xfs: fix reporting supported extra file attributes for statx()
(bsc#1133529).
- xfs: fix unused variable warning in xfs_buf_set_ref() (bsc#1114427).
- xfs: flush removing page cache in xfs_reflink_remap_prep (bsc#1132414,
bsc#1132219).
- xfs: force summary counter recalc at next mount (bsc#1114427).
- xfs: hold xfs_buf locked between shortform->leaf conversion and the
addition of an attribute (bsc#1133675).
- xfs: kill meaningless variable 'zero' (bsc#1106011).
- xfs: make errortag a per-mountpoint structure (bsc#1123663).
- xfs: move error injection tags into their own file (bsc#1114427).
- xfs: only grab shared inode locks for source file during reflink
(bsc#1132372, bsc#1132219).
- xfs: prepare xfs_break_layouts() for another layout type (bsc#1106011).
- xfs: prepare xfs_break_layouts() to be called with XFS_MMAPLOCK_EXCL
(bsc#1106011).
- xfs: refactor btree block header checking functions (bsc#1123663).
- xfs: refactor btree pointer checks (bsc#1123663).
- xfs: refactor clonerange preparation into a separate helper
(bsc#1132402, bsc#1132219).
- xfs: refactor unmount record write (bsc#1114427).
- xfs: refactor xfs_trans_roll (bsc#1133667).
- xfs: reflink find shared should take a transaction (bsc#1132226,
bsc#1132219).
- xfs: reflink should break pnfs leases before sharing blocks
(bsc#1132369, bsc#1132219).
- xfs: remove dest file's post-eof preallocations before reflinking
(bsc#1132365, bsc#1132219).
- xfs: remove the ip argument to xfs_defer_finish (bsc#1133672).
- xfs: remove unneeded parameter from XFS_TEST_ERROR (bsc#1123663).
- xfs: remove xfs_zero_range (bsc#1106011).
- xfs: rename MAXPATHLEN to XFS_SYMLINK_MAXLEN (bsc#1123663).
- xfs: rename xfs_defer_join to xfs_defer_ijoin (bsc#1133668).
- xfs: replace log_badcrc_factor knob with error injection tag
(bsc#1114427).
- xfs: sanity-check the unused space before trying to use it (bsc#1123663).
- xfs: update ctime and remove suid before cloning files (bsc#1132404,
bsc#1132219).
- xfs: zero posteof blocks when cloning above eof (bsc#1132403,
bsc#1132219).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1479=1
Package List:
- openSUSE Leap 15.1 (noarch):
kernel-devel-4.12.14-lp151.28.4.1
kernel-docs-4.12.14-lp151.28.4.1
kernel-docs-html-4.12.14-lp151.28.4.1
kernel-macros-4.12.14-lp151.28.4.1
kernel-source-4.12.14-lp151.28.4.1
kernel-source-vanilla-4.12.14-lp151.28.4.1
- openSUSE Leap 15.1 (x86_64):
kernel-debug-4.12.14-lp151.28.4.1
kernel-debug-base-4.12.14-lp151.28.4.1
kernel-debug-base-debuginfo-4.12.14-lp151.28.4.1
kernel-debug-debuginfo-4.12.14-lp151.28.4.1
kernel-debug-debugsource-4.12.14-lp151.28.4.1
kernel-debug-devel-4.12.14-lp151.28.4.1
kernel-debug-devel-debuginfo-4.12.14-lp151.28.4.1
kernel-default-4.12.14-lp151.28.4.1
kernel-default-base-4.12.14-lp151.28.4.1
kernel-default-base-debuginfo-4.12.14-lp151.28.4.1
kernel-default-debuginfo-4.12.14-lp151.28.4.1
kernel-default-debugsource-4.12.14-lp151.28.4.1
kernel-default-devel-4.12.14-lp151.28.4.1
kernel-default-devel-debuginfo-4.12.14-lp151.28.4.1
kernel-kvmsmall-4.12.14-lp151.28.4.1
kernel-kvmsmall-base-4.12.14-lp151.28.4.1
kernel-kvmsmall-base-debuginfo-4.12.14-lp151.28.4.1
kernel-kvmsmall-debuginfo-4.12.14-lp151.28.4.1
kernel-kvmsmall-debugsource-4.12.14-lp151.28.4.1
kernel-kvmsmall-devel-4.12.14-lp151.28.4.1
kernel-kvmsmall-devel-debuginfo-4.12.14-lp151.28.4.1
kernel-obs-build-4.12.14-lp151.28.4.1
kernel-obs-build-debugsource-4.12.14-lp151.28.4.1
kernel-obs-qa-4.12.14-lp151.28.4.1
kernel-syms-4.12.14-lp151.28.4.1
kernel-vanilla-4.12.14-lp151.28.4.1
kernel-vanilla-base-4.12.14-lp151.28.4.1
kernel-vanilla-base-debuginfo-4.12.14-lp151.28.4.1
kernel-vanilla-debuginfo-4.12.14-lp151.28.4.1
kernel-vanilla-debugsource-4.12.14-lp151.28.4.1
kernel-vanilla-devel-4.12.14-lp151.28.4.1
kernel-vanilla-devel-debuginfo-4.12.14-lp151.28.4.1
References:
https://www.suse.com/security/cve/CVE-2018-7191.html
https://www.suse.com/security/cve/CVE-2019-11085.html
https://www.suse.com/security/cve/CVE-2019-11486.html
https://www.suse.com/security/cve/CVE-2019-11811.html
https://www.suse.com/security/cve/CVE-2019-11815.html
https://www.suse.com/security/cve/CVE-2019-11833.html
https://www.suse.com/security/cve/CVE-2019-11884.html
https://www.suse.com/security/cve/CVE-2019-3882.html
https://www.suse.com/security/cve/CVE-2019-5489.html
https://www.suse.com/security/cve/CVE-2019-9500.html
https://www.suse.com/security/cve/CVE-2019-9503.html
https://bugzilla.suse.com/1050549
https://bugzilla.suse.com/1055117
https://bugzilla.suse.com/1055186
https://bugzilla.suse.com/1061840
https://bugzilla.suse.com/1063638
https://bugzilla.suse.com/1070872
https://bugzilla.suse.com/1082555
https://bugzilla.suse.com/1083647
https://bugzilla.suse.com/1085535
https://bugzilla.suse.com/1085536
https://bugzilla.suse.com/1086657
https://bugzilla.suse.com/1097584
https://bugzilla.suse.com/1106011
https://bugzilla.suse.com/1106284
https://bugzilla.suse.com/1108193
https://bugzilla.suse.com/1108937
https://bugzilla.suse.com/1111331
https://bugzilla.suse.com/1112063
https://bugzilla.suse.com/1112128
https://bugzilla.suse.com/1112178
https://bugzilla.suse.com/1113722
https://bugzilla.suse.com/1114279
https://bugzilla.suse.com/1119680
https://bugzilla.suse.com/1119843
https://bugzilla.suse.com/1120843
https://bugzilla.suse.com/1122776
https://bugzilla.suse.com/1123663
https://bugzilla.suse.com/1124839
https://bugzilla.suse.com/1127175
https://bugzilla.suse.com/1127371
https://bugzilla.suse.com/1127374
https://bugzilla.suse.com/1128415
https://bugzilla.suse.com/1128971
https://bugzilla.suse.com/1128979
https://bugzilla.suse.com/1129138
https://bugzilla.suse.com/1129693
https://bugzilla.suse.com/1129770
https://bugzilla.suse.com/1129845
https://bugzilla.suse.com/1130527
https://bugzilla.suse.com/1130567
https://bugzilla.suse.com/1130579
https://bugzilla.suse.com/1131416
https://bugzilla.suse.com/1131427
https://bugzilla.suse.com/1131438
https://bugzilla.suse.com/1131451
https://bugzilla.suse.com/1131488
https://bugzilla.suse.com/1131530
https://bugzilla.suse.com/1131574
https://bugzilla.suse.com/1131673
https://bugzilla.suse.com/1131847
https://bugzilla.suse.com/1131900
https://bugzilla.suse.com/1131934
https://bugzilla.suse.com/1132044
https://bugzilla.suse.com/1132219
https://bugzilla.suse.com/1132226
https://bugzilla.suse.com/1132369
https://bugzilla.suse.com/1132373
https://bugzilla.suse.com/1132397
https://bugzilla.suse.com/1132402
https://bugzilla.suse.com/1132403
https://bugzilla.suse.com/1132404
https://bugzilla.suse.com/1132405
https://bugzilla.suse.com/1132411
https://bugzilla.suse.com/1132412
https://bugzilla.suse.com/1132413
https://bugzilla.suse.com/1132426
https://bugzilla.suse.com/1132527
https://bugzilla.suse.com/1132531
https://bugzilla.suse.com/1132561
https://bugzilla.suse.com/1132562
https://bugzilla.suse.com/1132564
https://bugzilla.suse.com/1132618
https://bugzilla.suse.com/1132681
https://bugzilla.suse.com/1132726
https://bugzilla.suse.com/1132828
https://bugzilla.suse.com/1132894
https://bugzilla.suse.com/1133005
https://bugzilla.suse.com/1133094
https://bugzilla.suse.com/1133095
https://bugzilla.suse.com/1133149
https://bugzilla.suse.com/1133176
https://bugzilla.suse.com/1133188
https://bugzilla.suse.com/1133547
https://bugzilla.suse.com/1133668
https://bugzilla.suse.com/1133672
https://bugzilla.suse.com/1133698
https://bugzilla.suse.com/1133702
https://bugzilla.suse.com/1133769
https://bugzilla.suse.com/1133772
https://bugzilla.suse.com/1133778
https://bugzilla.suse.com/1133779
https://bugzilla.suse.com/1133780
https://bugzilla.suse.com/1133850
https://bugzilla.suse.com/1133851
https://bugzilla.suse.com/1133852
https://bugzilla.suse.com/1133897
https://bugzilla.suse.com/1134160
https://bugzilla.suse.com/1134162
https://bugzilla.suse.com/1134201
https://bugzilla.suse.com/1134202
https://bugzilla.suse.com/1134204
https://bugzilla.suse.com/1134205
https://bugzilla.suse.com/1134393
https://bugzilla.suse.com/1134459
https://bugzilla.suse.com/1134461
https://bugzilla.suse.com/1134597
https://bugzilla.suse.com/1134600
https://bugzilla.suse.com/1134651
https://bugzilla.suse.com/1134810
https://bugzilla.suse.com/1134848
https://bugzilla.suse.com/1135007
https://bugzilla.suse.com/1135008
https://bugzilla.suse.com/1135120
https://bugzilla.suse.com/1135278
https://bugzilla.suse.com/1135281
https://bugzilla.suse.com/1135309
https://bugzilla.suse.com/1135312
https://bugzilla.suse.com/1135315
https://bugzilla.suse.com/1135320
https://bugzilla.suse.com/1135323
https://bugzilla.suse.com/1135492
https://bugzilla.suse.com/1135642
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1475-1: Security update for libu2f-host
by opensuse-security@opensuse.org 30 May '19
by opensuse-security@opensuse.org 30 May '19
30 May '19
openSUSE Security Update: Security update for libu2f-host
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1475-1
Rating: low
References: #1124781
Cross-References: CVE-2018-20340
Affected Products:
openSUSE Leap 15.1
openSUSE Leap 15.0
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for libu2f-host fixes the following issues:
Security issue fixed:
- CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer
overflow with a custom made malicious USB device (bsc#1124781).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1475=1
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1475=1
Package List:
- openSUSE Leap 15.1 (x86_64):
libu2f-host-debuginfo-1.1.6-lp151.2.3.1
libu2f-host-debugsource-1.1.6-lp151.2.3.1
libu2f-host-devel-1.1.6-lp151.2.3.1
libu2f-host-doc-1.1.6-lp151.2.3.1
libu2f-host0-1.1.6-lp151.2.3.1
libu2f-host0-debuginfo-1.1.6-lp151.2.3.1
u2f-host-1.1.6-lp151.2.3.1
u2f-host-debuginfo-1.1.6-lp151.2.3.1
- openSUSE Leap 15.0 (x86_64):
libu2f-host-debuginfo-1.1.6-lp150.7.1
libu2f-host-debugsource-1.1.6-lp150.7.1
libu2f-host-devel-1.1.6-lp150.7.1
libu2f-host-doc-1.1.6-lp150.7.1
libu2f-host0-1.1.6-lp150.7.1
libu2f-host0-debuginfo-1.1.6-lp150.7.1
u2f-host-1.1.6-lp150.7.1
u2f-host-debuginfo-1.1.6-lp150.7.1
References:
https://www.suse.com/security/cve/CVE-2018-20340.html
https://bugzilla.suse.com/1124781
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1476-1: moderate: Security update for bluez
by opensuse-security@opensuse.org 30 May '19
by opensuse-security@opensuse.org 30 May '19
30 May '19
openSUSE Security Update: Security update for bluez
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1476-1
Rating: moderate
References: #1013708 #1013712 #1013893 #1015171
Cross-References: CVE-2016-9797 CVE-2016-9798 CVE-2016-9802
CVE-2016-9917
Affected Products:
openSUSE Leap 15.1
openSUSE Leap 15.0
______________________________________________________________________________
An update that fixes four vulnerabilities is now available.
Description:
This update for bluez fixes the following issues:
Security issues fixed:
- CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708).
- CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712).
- CVE-2016-9917: Fixed a heap-based buffer overflow in read_n()
(bsc#1015171).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1476=1
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1476=1
Package List:
- openSUSE Leap 15.1 (i586 x86_64):
bluez-5.48-lp151.8.3.1
bluez-cups-5.48-lp151.8.3.1
bluez-cups-debuginfo-5.48-lp151.8.3.1
bluez-debuginfo-5.48-lp151.8.3.1
bluez-debugsource-5.48-lp151.8.3.1
bluez-devel-5.48-lp151.8.3.1
bluez-test-5.48-lp151.8.3.1
bluez-test-debuginfo-5.48-lp151.8.3.1
libbluetooth3-5.48-lp151.8.3.1
libbluetooth3-debuginfo-5.48-lp151.8.3.1
- openSUSE Leap 15.1 (x86_64):
bluez-devel-32bit-5.48-lp151.8.3.1
libbluetooth3-32bit-5.48-lp151.8.3.1
libbluetooth3-32bit-debuginfo-5.48-lp151.8.3.1
- openSUSE Leap 15.1 (noarch):
bluez-auto-enable-devices-5.48-lp151.8.3.1
- openSUSE Leap 15.0 (i586 x86_64):
bluez-5.48-lp150.4.13.1
bluez-cups-5.48-lp150.4.13.1
bluez-cups-debuginfo-5.48-lp150.4.13.1
bluez-debuginfo-5.48-lp150.4.13.1
bluez-debugsource-5.48-lp150.4.13.1
bluez-devel-5.48-lp150.4.13.1
bluez-test-5.48-lp150.4.13.1
bluez-test-debuginfo-5.48-lp150.4.13.1
libbluetooth3-5.48-lp150.4.13.1
libbluetooth3-debuginfo-5.48-lp150.4.13.1
- openSUSE Leap 15.0 (x86_64):
bluez-devel-32bit-5.48-lp150.4.13.1
libbluetooth3-32bit-5.48-lp150.4.13.1
libbluetooth3-32bit-debuginfo-5.48-lp150.4.13.1
- openSUSE Leap 15.0 (noarch):
bluez-auto-enable-devices-5.48-lp150.4.13.1
References:
https://www.suse.com/security/cve/CVE-2016-9797.html
https://www.suse.com/security/cve/CVE-2016-9798.html
https://www.suse.com/security/cve/CVE-2016-9802.html
https://www.suse.com/security/cve/CVE-2016-9917.html
https://bugzilla.suse.com/1013708
https://bugzilla.suse.com/1013712
https://bugzilla.suse.com/1013893
https://bugzilla.suse.com/1015171
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1477-1: important: Security update for gnutls
by opensuse-security@opensuse.org 30 May '19
by opensuse-security@opensuse.org 30 May '19
30 May '19
openSUSE Security Update: Security update for gnutls
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1477-1
Rating: important
References: #1118087 #1134856
Cross-References: CVE-2018-16868
Affected Products:
openSUSE Leap 15.1
openSUSE Leap 15.0
______________________________________________________________________________
An update that solves one vulnerability and has one errata
is now available.
Description:
This update for gnutls fixes the following issues:
Security issue fixed:
- CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS#1
v1.5 verification (bsc#1118087).
Non-security issue fixed:
- Explicitly require libnettle 3.4.1 to prevent missing symbol errors
(bsc#1134856).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1477=1
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1477=1
Package List:
- openSUSE Leap 15.1 (i586 x86_64):
gnutls-3.6.7-lp151.2.3.1
gnutls-debuginfo-3.6.7-lp151.2.3.1
gnutls-debugsource-3.6.7-lp151.2.3.1
gnutls-guile-3.6.7-lp151.2.3.1
gnutls-guile-debuginfo-3.6.7-lp151.2.3.1
libgnutls-dane-devel-3.6.7-lp151.2.3.1
libgnutls-dane0-3.6.7-lp151.2.3.1
libgnutls-dane0-debuginfo-3.6.7-lp151.2.3.1
libgnutls-devel-3.6.7-lp151.2.3.1
libgnutls30-3.6.7-lp151.2.3.1
libgnutls30-debuginfo-3.6.7-lp151.2.3.1
libgnutlsxx-devel-3.6.7-lp151.2.3.1
libgnutlsxx28-3.6.7-lp151.2.3.1
libgnutlsxx28-debuginfo-3.6.7-lp151.2.3.1
- openSUSE Leap 15.1 (x86_64):
libgnutls-devel-32bit-3.6.7-lp151.2.3.1
libgnutls30-32bit-3.6.7-lp151.2.3.1
libgnutls30-32bit-debuginfo-3.6.7-lp151.2.3.1
- openSUSE Leap 15.0 (i586 x86_64):
gnutls-3.6.7-lp150.12.1
gnutls-debuginfo-3.6.7-lp150.12.1
gnutls-debugsource-3.6.7-lp150.12.1
gnutls-guile-3.6.7-lp150.12.1
gnutls-guile-debuginfo-3.6.7-lp150.12.1
libgnutls-dane-devel-3.6.7-lp150.12.1
libgnutls-dane0-3.6.7-lp150.12.1
libgnutls-dane0-debuginfo-3.6.7-lp150.12.1
libgnutls-devel-3.6.7-lp150.12.1
libgnutls30-3.6.7-lp150.12.1
libgnutls30-debuginfo-3.6.7-lp150.12.1
libgnutlsxx-devel-3.6.7-lp150.12.1
libgnutlsxx28-3.6.7-lp150.12.1
libgnutlsxx28-debuginfo-3.6.7-lp150.12.1
- openSUSE Leap 15.0 (x86_64):
libgnutls-devel-32bit-3.6.7-lp150.12.1
libgnutls30-32bit-3.6.7-lp150.12.1
libgnutls30-32bit-debuginfo-3.6.7-lp150.12.1
References:
https://www.suse.com/security/cve/CVE-2018-16868.html
https://bugzilla.suse.com/1118087
https://bugzilla.suse.com/1134856
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1462-1: moderate: Security update for nmap
by opensuse-security@opensuse.org 28 May '19
by opensuse-security@opensuse.org 28 May '19
28 May '19
openSUSE Security Update: Security update for nmap
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1462-1
Rating: moderate
References: #1104139 #1133512
Cross-References: CVE-2018-15173
Affected Products:
openSUSE Leap 15.1
openSUSE Leap 15.0
______________________________________________________________________________
An update that solves one vulnerability and has one errata
is now available.
Description:
This update for nmap fixes the following issues:
Security issue fixed:
- CVE-2018-15173: Fixed a remote denial of service attack via a crafted
TCP-based service (bsc#1104139).
Non-security issue fixed:
- Add missing runtime dependency python-xml which prevented zenmap from
starting (bsc#1133512).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1462=1
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1462=1
Package List:
- openSUSE Leap 15.1 (x86_64):
ncat-7.70-lp151.3.3.1
ncat-debuginfo-7.70-lp151.3.3.1
ndiff-7.70-lp151.3.3.1
nmap-7.70-lp151.3.3.1
nmap-debuginfo-7.70-lp151.3.3.1
nmap-debugsource-7.70-lp151.3.3.1
nping-7.70-lp151.3.3.1
nping-debuginfo-7.70-lp151.3.3.1
zenmap-7.70-lp151.3.3.1
- openSUSE Leap 15.0 (x86_64):
ncat-7.70-lp150.2.3.1
ncat-debuginfo-7.70-lp150.2.3.1
ndiff-7.70-lp150.2.3.1
nmap-7.70-lp150.2.3.1
nmap-debuginfo-7.70-lp150.2.3.1
nmap-debugsource-7.70-lp150.2.3.1
nping-7.70-lp150.2.3.1
nping-debuginfo-7.70-lp150.2.3.1
zenmap-7.70-lp150.2.3.1
References:
https://www.suse.com/security/cve/CVE-2018-15173.html
https://bugzilla.suse.com/1104139
https://bugzilla.suse.com/1133512
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1468-1: important: Security update for ucode-intel
by opensuse-security@opensuse.org 28 May '19
by opensuse-security@opensuse.org 28 May '19
28 May '19
openSUSE Security Update: Security update for ucode-intel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1468-1
Rating: important
References: #1111331
Cross-References: CVE-2018-12126 CVE-2018-12127 CVE-2018-12130
CVE-2019-11091
Affected Products:
openSUSE Leap 15.0
______________________________________________________________________________
An update that fixes four vulnerabilities is now available.
Description:
This update for ucode-intel fixes the following issues:
The Intel CPU Microcode was updated to the official QSR 2019.1 Microcode
release (bsc#1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127
CVE-2019-11091)
---- new platforms ---------------------------------------- VLV
C0 6-37-8/02 00000838 Atom Z series VLV C0
6-37-8/0C 00000838 Celeron N2xxx, Pentium N35xx VLV
D0 6-37-9/0F 0000090c Atom E38xx CHV C0
6-4c-3/01 00000368 Atom X series CHV D0
6-4c-4/01 00000411 Atom X series
Readded missing in last update:
BDX-ML B0/M0/R0 6-4f-1/ef 0b00002e->00000036 Xeon E5/E7 v4; Core
i7-69xx/68xx
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1468=1
Package List:
- openSUSE Leap 15.0 (x86_64):
ucode-intel-20190514-lp150.2.21.1
References:
https://www.suse.com/security/cve/CVE-2018-12126.html
https://www.suse.com/security/cve/CVE-2018-12127.html
https://www.suse.com/security/cve/CVE-2018-12130.html
https://www.suse.com/security/cve/CVE-2019-11091.html
https://bugzilla.suse.com/1111331
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1459-1: moderate: Security update for graphviz
by opensuse-security@opensuse.org 28 May '19
by opensuse-security@opensuse.org 28 May '19
28 May '19
openSUSE Security Update: Security update for graphviz
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1459-1
Rating: moderate
References: #1132091
Cross-References: CVE-2019-11023
Affected Products:
openSUSE Leap 15.0
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for graphviz fixes the following issues:
Security issue fixed:
- CVE-2019-11023: Fixed a denial of service vulnerability, which was
caused by a NULL pointer dereference in agroot() (bsc#1132091).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1459=1
Package List:
- openSUSE Leap 15.0 (i586 x86_64):
graphviz-2.40.1-lp150.5.3.1
graphviz-addons-debuginfo-2.40.1-lp150.5.3.1
graphviz-addons-debugsource-2.40.1-lp150.5.3.1
graphviz-debuginfo-2.40.1-lp150.5.3.1
graphviz-debugsource-2.40.1-lp150.5.3.1
graphviz-devel-2.40.1-lp150.5.3.1
graphviz-doc-2.40.1-lp150.5.3.1
graphviz-gd-2.40.1-lp150.5.3.1
graphviz-gd-debuginfo-2.40.1-lp150.5.3.1
graphviz-gnome-2.40.1-lp150.5.3.1
graphviz-gnome-debuginfo-2.40.1-lp150.5.3.1
graphviz-guile-2.40.1-lp150.5.3.1
graphviz-guile-debuginfo-2.40.1-lp150.5.3.1
graphviz-gvedit-2.40.1-lp150.5.3.1
graphviz-gvedit-debuginfo-2.40.1-lp150.5.3.1
graphviz-java-2.40.1-lp150.5.3.1
graphviz-java-debuginfo-2.40.1-lp150.5.3.1
graphviz-lua-2.40.1-lp150.5.3.1
graphviz-lua-debuginfo-2.40.1-lp150.5.3.1
graphviz-perl-2.40.1-lp150.5.3.1
graphviz-perl-debuginfo-2.40.1-lp150.5.3.1
graphviz-php-2.40.1-lp150.5.3.1
graphviz-php-debuginfo-2.40.1-lp150.5.3.1
graphviz-plugins-core-2.40.1-lp150.5.3.1
graphviz-plugins-core-debuginfo-2.40.1-lp150.5.3.1
graphviz-python-2.40.1-lp150.5.3.1
graphviz-python-debuginfo-2.40.1-lp150.5.3.1
graphviz-ruby-2.40.1-lp150.5.3.1
graphviz-ruby-debuginfo-2.40.1-lp150.5.3.1
graphviz-smyrna-2.40.1-lp150.5.3.1
graphviz-smyrna-debuginfo-2.40.1-lp150.5.3.1
graphviz-tcl-2.40.1-lp150.5.3.1
graphviz-tcl-debuginfo-2.40.1-lp150.5.3.1
libgraphviz6-2.40.1-lp150.5.3.1
libgraphviz6-debuginfo-2.40.1-lp150.5.3.1
References:
https://www.suse.com/security/cve/CVE-2019-11023.html
https://bugzilla.suse.com/1132091
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2019:1455-1: Security update for transfig
by opensuse-security@opensuse.org 27 May '19
by opensuse-security@opensuse.org 27 May '19
27 May '19
openSUSE Security Update: Security update for transfig
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:1455-1
Rating: low
References: #1106531
Cross-References: CVE-2018-16140
Affected Products:
openSUSE Leap 15.1
openSUSE Leap 15.0
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for transfig fixes the following issues:
Security issue fixed:
- CVE-2018-16140: Fixed a buffer underwrite vulnerability in get_line() in
read.c, which allowed an attacker to write prior to the beginning of the
buffer via specially crafted .fig file (bsc#1106531)
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1455=1
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1455=1
Package List:
- openSUSE Leap 15.1 (x86_64):
transfig-3.2.6a-lp151.4.3.1
transfig-debuginfo-3.2.6a-lp151.4.3.1
transfig-debugsource-3.2.6a-lp151.4.3.1
- openSUSE Leap 15.0 (x86_64):
transfig-3.2.6a-lp150.3.3.2
transfig-debuginfo-3.2.6a-lp150.3.3.2
transfig-debugsource-3.2.6a-lp150.3.3.2
References:
https://www.suse.com/security/cve/CVE-2018-16140.html
https://bugzilla.suse.com/1106531
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0