openSUSE Security Announce
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2000 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 1999 -----
- December
- November
- October
- September
- August
January 2021
- 1 participants
- 87 discussions
openSUSE-SU-2021:0075-1: important: Security update for the Linux Kernel
by opensuse-security@opensuse.org 16 Jan '21
by opensuse-security@opensuse.org 16 Jan '21
16 Jan '21
openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0075-1
Rating: important
References: #1040855 #1044120 #1044767 #1055117 #1065729
#1094840 #1109695 #1112178 #1115431 #1129770
#1138374 #1139944 #1144912 #1152457 #1163727
#1164780 #1168952 #1171078 #1172145 #1172538
#1172694 #1174784 #1176558 #1176559 #1176846
#1176956 #1177666 #1178049 #1178270 #1178372
#1178401 #1178590 #1178634 #1178762 #1178900
#1179014 #1179015 #1179045 #1179082 #1179107
#1179142 #1179204 #1179444 #1179508 #1179509
#1179520 #1179575 #1179578 #1179601 #1179663
#1179670 #1179671 #1179672 #1179673 #1179711
#1179713 #1179714 #1179715 #1179716 #1179722
#1179723 #1179724 #1179745 #1179810 #1179888
#1179895 #1179896 #1179960 #1179963 #1180027
#1180029 #1180031 #1180052 #1180086 #1180117
#1180258 #1180506 #1180559 #1180676
Cross-References: CVE-2019-20934 CVE-2020-0444 CVE-2020-0465
CVE-2020-0466 CVE-2020-11668 CVE-2020-25639
CVE-2020-27068 CVE-2020-27777 CVE-2020-27786
CVE-2020-27825 CVE-2020-28374 CVE-2020-29568
CVE-2020-29569 CVE-2020-29660 CVE-2020-29661
CVE-2020-36158 CVE-2020-4788
Affected Products:
openSUSE Leap 15.1
______________________________________________________________________________
An update that solves 17 vulnerabilities and has 62 fixes
is now available.
Description:
The openSUSE Leap 15.1 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2020-29568: An issue was discovered in Xen through 4.14.x. Some OSes
(such as Linux, FreeBSD, and NetBSD) are processing watch events using a
single thread. If the events are received faster than the thread is able
to handle, they will get queued. As the queue is unbounded, a guest may
be able to trigger an OOM in the backend. All systems with a FreeBSD,
Linux, or NetBSD (any version) dom0 are vulnerable (bnc#1179508).
- CVE-2020-29569: The Linux kernel PV block backend expects the kernel
thread handler to reset ring->xenblkd to NULL when stopped. However, the
handler may not have time to run if the frontend quickly toggles between
the states connect and disconnect. As a consequence, the block backend
may re-use a pointer after it was freed. A misbehaving guest can trigger
a dom0 crash by continuously connecting / disconnecting a block
frontend. Privilege escalation and information leaks cannot be ruled
out. This only affects systems with a Linux blkback (bnc#1179509).
- CVE-2020-25639: Bail out of nouveau_channel_new if channel init fails
(bsc#1176846).
- CVE-2020-28374: In drivers/target/target_core_xcopy.c insufficient
identifier checking in the LIO SCSI target code can be used by remote
attackers to read or write files via directory traversal in an XCOPY
request, aka CID-2896c93811e3. For example, an attack can occur over a
network if the attacker has access to one iSCSI LUN. The attacker gains
control over file access because I/O operations are proxied via an
attacker-selected backstore (bnc#1178372 1180676).
- CVE-2020-36158: mwifiex_cmd_802_11_ad_hoc_start in
drivers/net/wireless/marvell/mwifiex/join.c might allow remote attackers
to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332
(bnc#1180559).
- CVE-2020-27825: A use-after-free flaw was found in
kernel/trace/ring_buffer.c. There was a race problem in trace_open and
resize of cpu buffer running parallely on different cpus, may cause a
denial of service problem (DOS). This flaw could even allow a local
attacker with special user privilege to a kernel information leak threat
(bnc#1179960).
- CVE-2020-0466: In do_epoll_ctl and ep_loop_check_proc of eventpoll.c,
there is a possible use after free due to a logic error. This could lead
to local escalation of privilege with no additional execution privileges
needed. User interaction is not needed for exploitation (bnc#1180031).
- CVE-2020-27068: In the nl80211_policy policy of nl80211.c, there is a
possible out of bounds read due to a missing bounds check. This could
lead to local information disclosure with System execution privileges
needed. User interaction is not required for exploitation (bnc#1180086).
- CVE-2020-0465: In various methods of hid-multitouch.c, there is a
possible out of bounds write due to a missing bounds check. This could
lead to local escalation of privilege with no additional execution
privileges needed. User interaction is not needed for exploitation
(bnc#1180029).
- CVE-2020-0444: In audit_free_lsm_field of auditfilter.c, there is a
possible bad kfree due to a logic error in audit_data_to_entry. This
could lead to local escalation of privilege with no additional execution
privileges needed. User interaction is not needed for exploitation
(bnc#1180027).
- CVE-2020-29660: A locking inconsistency issue was discovered in the tty
subsystem of the Linux kernel drivers/tty/tty_io.c and
drivers/tty/tty_jobctrl.c may have allowed a read-after-free attack
against TIOCGSID, aka CID-c8bcd9c5be24 (bnc#1179745).
- CVE-2020-29661: A locking issue was discovered in the tty subsystem of
the Linux kernel drivers/tty/tty_jobctrl.c allowed a use-after-free
attack against TIOCSPGRP, aka CID-54ffccbf053b (bnc#1179745).
- CVE-2020-27777: A flaw was found in the way RTAS handled memory accesses
in userspace to kernel communication. On a locked down (usually due to
Secure Boot) guest system running on top of PowerVM or KVM hypervisors
(pseries platform) a root like local user could use this flaw to further
increase their privileges to that of a running kernel (bnc#1179107).
- CVE-2020-11668: In the Linux kernel before 5.6.1,
drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB
driver) mishandled invalid descriptors, aka CID-a246b4d54770
(bnc#1168952).
- CVE-2019-20934: An issue was discovered in the Linux kernel On NUMA
systems, the Linux fair scheduler has a use-after-free in
show_numa_stats() because NUMA fault statistics are inappropriately
freed, aka CID-16d51a590a8c (bnc#1179663).
- CVE-2020-27786: A flaw was found in the Linux kernels implementation of
MIDI, where an attacker with a local account and the permissions to
issue an ioctl commands to midi devices, could trigger a use-after-free.
A write to this specific memory while freed and before use could cause
the flow of execution to change and possibly allow for memory corruption
or privilege escalation (bnc#1179601).
- CVE-2020-4788: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could
allow a local user to obtain sensitive information from the data in the
L1 cache under extenuating circumstances. IBM X-Force ID: 189296
(bnc#1177666).
The following non-security bugs were fixed:
- ACPI: PNP: compare the string length in the matching_id() (git-fixes).
- ACPICA: Disassembler: create buffer fields in ACPI_PARSE_LOAD_PASS1
(git-fixes).
- ACPICA: Do not increment operation_region reference counts for field
units (git-fixes).
- ALSA: ca0106: fix error code handling (git-fixes).
- ALSA: ctl: allow TLV read operation for callback type of element in
locked case (git-fixes).
- ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A
PRO (git-fixes).
- ALSA: hda/ca0132 - Change Input Source enum strings (git-fixes).
- ALSA: hda/ca0132 - Fix AE-5 rear headphone pincfg (git-fixes).
- ALSA: hda/generic: Add option to enforce preferred_dacs pairs
(git-fixes).
- ALSA: hda/hdmi: always check pin power status in i915 pin fixup
(git-fixes).
- ALSA: hda/realtek - Add new codec supported for ALC897 (git-fixes).
- ALSA: hda/realtek - Couldn't detect Mic if booting with headset plugged
(git-fixes).
- ALSA: hda/realtek - Enable headset mic of ASUS Q524UQK with ALC255
(git-fixes).
- ALSA: hda/realtek: Add mute LED quirk to yet another HP x360 model
(git-fixes).
- ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220)
(git-fixes).
- ALSA: hda/realtek: Enable front panel headset LED on Lenovo ThinkStation
P520 (git-fixes).
- ALSA: hda/realtek: Enable headset of ASUS UX482EG & B9400CEA with ALC294
(git-fixes).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (git-fixes).
- ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table
(git-fixes).
- ALSA: hda: Fix potential race in unsol event handler (git-fixes).
- ALSA: hda: Fix regressions on clear and reconfig sysfs (git-fixes).
- ALSA: info: Drop WARN_ON() from buffer NULL sanity check (git-fixes).
- ALSA: isa/wavefront: prevent out of bounds write in ioctl (git-fixes).
- ALSA: line6: Perform sanity check for each URB creation (git-fixes).
- ALSA: pcm: Clear the full allocated memory at hw_params (git-fixes).
- ALSA: pcm: oss: Fix a few more UBSAN fixes (git-fixes).
- ALSA: pcm: oss: Fix potential out-of-bounds shift (git-fixes).
- ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check
(git-fixes).
- ALSA: timer: Limit max amount of slave instances (git-fixes).
- ALSA: usb-audio: Add delay quirk for H570e USB headsets (git-fixes).
- ALSA: usb-audio: Add delay quirk for all Logitech USB devices
(git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for MODX (git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Qu-16 (git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2 (git-fixes).
- ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Alpha
S (git-fixes).
- ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Flight
S (git-fixes).
- ALSA: usb-audio: Disable sample read check if firmware does not give
back (git-fixes).
- ALSA: usb-audio: Fix OOB access of mixer element list (git-fixes).
- ALSA: usb-audio: Fix control 'access overflow' errors from chmap
(git-fixes).
- ALSA: usb-audio: Fix potential out-of-bounds shift (git-fixes).
- ALSA: usb-audio: Fix race against the error recovery URB submission
(git-fixes).
- ALSA: usb-audio: US16x08: fix value count for level meters (git-fixes).
- ALSA: usb-audio: add quirk for Denon DCD-1500RE (git-fixes).
- ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) (git-fixes).
- ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas devices
(git-fixes).
- ASoC: arizona: Fix a wrong free in wm8997_probe (git-fixes).
- ASoC: cx2072x: Fix doubly definitions of Playback and Capture streams
(git-fixes).
- ASoC: fsl_asrc_dma: Fix dma_chan leak when config DMA channel failed
(git-fixes).
- ASoC: jz4740-i2s: add missed checks for clk_get() (git-fixes).
- ASoC: pcm3168a: The codec does not support S32_LE (git-fixes).
- ASoC: pcm: DRAIN support reactivation (git-fixes).
- ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile (git-fixes).
- ASoC: sti: fix possible sleep-in-atomic (git-fixes).
- ASoC: wm8904: fix regcache handling (git-fixes).
- ASoC: wm8998: Fix PM disable depth imbalance on error (git-fixes).
- ASoC: wm_adsp: Do not generate kcontrols without READ flags (git-fixes).
- ASoC: wm_adsp: remove "ctl" from list on error in
wm_adsp_create_control() (git-fixes).
- Avoid a GCC warning about "/*" within a comment.
- Bluetooth: Fix advertising duplicated flags (git-fixes).
- Bluetooth: Fix null pointer dereference in hci_event_packet()
(git-fixes).
- Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt()
(git-fixes).
- Bluetooth: add a mutex lock to avoid UAF in do_enale_set (git-fixes).
- Bluetooth: btusb: Fix detection of some fake CSR controllers with a
bcdDevice val of 0x0134 (git-fixes).
- Drop a backported uvcvideo patch that caused a regression (bsc#1180117)
Also blacklisting the commit
- EDAC/amd64: Fix PCI component registration (bsc#1112178).
- HID: Add another Primax PIXART OEM mouse quirk (git-fixes).
- HID: Fix slab-out-of-bounds read in hid_field_extract (bsc#1180052).
- HID: Improve Windows Precision Touchpad detection (git-fixes).
- HID: apple: Disable Fn-key key-re-mapping on clone keyboards (git-fixes).
- HID: core: Correctly handle ReportSize being zero (git-fixes).
- HID: core: check whether Usage Page item is after Usage ID items
(git-fixes).
- HID: cypress: Support Varmilo Keyboards' media hotkeys (git-fixes).
- HID: hid-sensor-hub: Fix issue with devices with no report ID
(git-fixes).
- HID: intel-ish-hid: fix wrong error handling in ishtp_cl_alloc_tx_ring()
(git-fixes).
- HID: logitech-hidpp: Silence intermittent get_battery_capacity errors
(git-fixes).
- HSI: omap_ssi: Do not jump to free ID in ssi_add_controller()
(git-fixes).
- Input: ads7846 - fix integer overflow on Rt calculation (git-fixes).
- Input: ads7846 - fix race that causes missing releases (git-fixes).
- Input: ads7846 - fix unaligned access on 7845 (git-fixes).
- Input: atmel_mxt_ts - disable IRQ across suspend (git-fixes).
- Input: cm109 - do not stomp on control URB (git-fixes).
- Input: cros_ec_keyb - send 'scancodes' in addition to key events
(git-fixes).
- Input: cyapa_gen6 - fix out-of-bounds stack access (git-fixes).
- Input: goodix - add upside-down quirk for Teclast X98 Pro tablet
(git-fixes).
- Input: i8042 - add Acer laptops to the i8042 reset list (git-fixes).
- Input: i8042 - add ByteSpeed touchpad to noloop table (git-fixes).
- Input: i8042 - add Entroware Proteus EL07R4 to nomux and reset lists
(git-fixes).
- Input: i8042 - allow insmod to succeed on devices without an i8042
controller (git-fixes).
- Input: i8042 - fix error return code in i8042_setup_aux() (git-fixes).
- Input: omap4-keypad - fix runtime PM error handling (git-fixes).
- Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen
(git-fixes).
- Input: trackpoint - add new trackpoint variant IDs (git-fixes).
- Input: trackpoint - enable Synaptics trackpoints (git-fixes).
- Input: xpad - support Ardwiino Controllers (git-fixes).
- KVM: x86: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits
(bsc#1112178).
- NFC: st95hf: Fix memleak in st95hf_in_send_cmd (git-fixes).
- NFS: fix nfs_path in case of a rename retry (git-fixes).
- NFSD: Add missing NFSv2 .pc_func methods (git-fixes).
- NFSv4.2: fix client's attribute cache management for copy_file_range
(git-fixes).
- NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag
(git-fixes).
- PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges (git-fixes).
- PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge
(git-fixes).
- PCI: Do not disable decoding when mmio_always_on is set (git-fixes).
- PCI: Fix pci_slot_release() NULL pointer dereference (git-fixes).
- PM / hibernate: memory_bm_find_bit(): Tighten node optimisation
(git-fixes).
- PM: ACPI: Output correct message on target power state (git-fixes).
- PM: hibernate: Freeze kernel threads in software_resume() (git-fixes).
- PM: hibernate: remove the bogus call to get_gendisk() in
software_resume() (git-fixes).
- Revert "ACPI / resources: Use AE_CTRL_TERMINATE to terminate resources
walks" (git-fixes).
- Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI
X570-A PRO" (git-fixes).
- Revert "PM / devfreq: Modify the device name as devfreq(X) for sysfs"
(git-fixes).
- Revert "device property: Keep secondary firmware node secondary by type"
(git-fixes).
- Revert "platform/x86: wmi: Destroy on cleanup rather than unregister"
(git-fixes).
- Revert "powerpc/pseries/hotplug-cpu: Remove double free in error path"
(bsc#1065729).
- Revert "serial: amba-pl011: Make sure we initialize the port.lock
spinlock" (git-fixes).
- SMB3: Honor 'handletimeout' flag for multiuser mounts (bsc#1176558).
- SMB3: Honor 'posix' flag for multiuser mounts (bsc#1176559).
- SMB3: Honor lease disabling for multiuser mounts (git-fixes).
- SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment()
(git-fixes).
- SUNRPC: The RDMA back channel mustn't disappear while requests are
outstanding (git-fixes).
- USB: Fix: Do not skip endpoint descriptors with maxpacket=0 (git-fixes).
- USB: Skip endpoints with 0 maxpacket length (git-fixes).
- USB: UAS: introduce a quirk to set no_write_same (git-fixes).
- USB: add RESET_RESUME quirk for Snapscan 1212 (git-fixes).
- USB: dummy-hcd: Fix uninitialized array use in init() (git-fixes).
- USB: gadget: f_acm: add support for SuperSpeed Plus (git-fixes).
- USB: gadget: f_midi: setup SuperSpeed Plus descriptors (git-fixes).
- USB: gadget: f_rndis: fix bitrate for SuperSpeed and above (git-fixes).
- USB: gadget: legacy: fix return error code in acm_ms_bind() (git-fixes).
- USB: ldusb: use unsigned size format specifiers (git-fixes).
- USB: serial: ch341: add new Product ID for CH341A (git-fixes).
- USB: serial: ch341: sort device-id entries (git-fixes).
- USB: serial: digi_acceleport: clean up modem-control handling
(git-fixes).
- USB: serial: digi_acceleport: clean up set_termios (git-fixes).
- USB: serial: digi_acceleport: fix write-wakeup deadlocks (git-fixes).
- USB: serial: digi_acceleport: remove in_interrupt() usage.
- USB: serial: digi_acceleport: remove redundant assignment to pointer
priv (git-fixes).
- USB: serial: digi_acceleport: rename tty flag variable (git-fixes).
- USB: serial: digi_acceleport: use irqsave() in USB's complete callback
(git-fixes).
- USB: serial: iuu_phoenix: fix DMA from stack (git-fixes).
- USB: serial: keyspan_pda: fix dropped unthrottle interrupts (git-fixes).
- USB: serial: keyspan_pda: fix stalled writes (git-fixes).
- USB: serial: keyspan_pda: fix tx-unthrottle use-after-free (git-fixes).
- USB: serial: keyspan_pda: fix write deadlock (git-fixes).
- USB: serial: keyspan_pda: fix write unthrottling (git-fixes).
- USB: serial: keyspan_pda: fix write-wakeup use-after-free (git-fixes).
- USB: serial: kl5kusb105: fix memleak on open (git-fixes).
- USB: serial: mos7720: fix parallel-port state restore (git-fixes).
- USB: serial: option: add Fibocom NL668 variants (git-fixes).
- USB: serial: option: add interface-number sanity check to flag handling
(git-fixes).
- USB: serial: option: add support for Thales Cinterion EXS82 (git-fixes).
- USB: serial: option: fix Quectel BG96 matching (git-fixes).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk
set (git-fixes).
- USB: yurex: fix control-URB timeout handling (git-fixes).
- ata/libata: Fix usage of page address by page_address in
ata_scsi_mode_select_xlat function (git-fixes).
- ath10k: Fix an error handling path (git-fixes).
- ath10k: Release some resources in an error handling path (git-fixes).
- ath10k: Remove msdu from idr when management pkt send fails (git-fixes).
- ath10k: fix backtrace on coredump (git-fixes).
- ath10k: fix get invalid tx rate for Mesh metric (git-fixes).
- ath10k: fix offchannel tx failure when no ath10k_mac_tx_frm_has_freq
(git-fixes).
- ath6kl: fix enum-conversion warning (git-fixes).
- ath9k_htc: Discard undersized packets (git-fixes).
- ath9k_htc: Modify byte order for an error message (git-fixes).
- ath9k_htc: Silence undersized packet warnings (git-fixes).
- ath9k_htc: Use appropriate rs_datalen type (git-fixes).
- backlight: lp855x: Ensure regulators are disabled on probe failure
(git-fixes).
- btmrvl: Fix firmware filename for sd8997 chipset (bsc#1172694).
- btrfs: fix use-after-free on readahead extent after failure to create it
(bsc#1179963).
- btrfs: qgroup: do not commit transaction when we already hold the handle
(bsc#1178634).
- btrfs: qgroup: do not try to wait flushing if we're already holding a
transaction (bsc#1179575).
- btrfs: remove a BUG_ON() from merge_reloc_roots() (bsc#1174784).
- bus: fsl-mc: fix error return code in fsl_mc_object_allocate()
(git-fixes).
- can: mcp251x: add error check when wq alloc failed (git-fixes).
- can: softing: softing_netdev_open(): fix error handling (git-fixes).
- cfg80211: initialize rekey_data (git-fixes).
- cfg80211: regulatory: Fix inconsistent format argument (git-fixes).
- cifs: add NULL check for ses->tcon_ipc (bsc#1178270).
- cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956).
- cifs: fix check of tcon dfs in smb1 (bsc#1178270).
- cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944).
- cirrus: cs89x0: remove set but not used variable 'lp' (git-fixes).
- cirrus: cs89x0: use devm_platform_ioremap_resource() to simplify code
(git-fixes).
- clk: at91: usb: continue if clk_hw_round_rate() return zero (git-fixes).
- clk: mvebu: a3700: fix the XTAL MODE pin to MPP1_9 (git-fixes).
- clk: qcom: Allow constant ratio freq tables for rcg (git-fixes).
- clk: qcom: msm8916: Fix the address location of pll->config_reg
(git-fixes).
- clk: s2mps11: Fix a resource leak in error handling paths in the probe
function (git-fixes).
- clk: samsung: exynos5433: Add IGNORE_UNUSED flag to sclk_i2s1
(git-fixes).
- clk: sunxi-ng: Make sure divider tables have sentinel (git-fixes).
- clk: tegra: Fix Tegra PMC clock out parents (git-fixes).
- clk: tegra: Fix duplicated SE clock entry (git-fixes).
- clk: ti: Fix memleak in ti_fapll_synth_setup (git-fixes).
- clk: ti: composite: fix memory leak (git-fixes).
- clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call (git-fixes).
- clocksource/drivers/asm9260: Add a check for of_clk_get (git-fixes).
- coredump: fix core_pattern parse error (git-fixes).
- cpufreq: highbank: Add missing MODULE_DEVICE_TABLE (git-fixes).
- cpufreq: loongson1: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: scpi: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: st: Add missing MODULE_DEVICE_TABLE (git-fixes).
- crypto: af_alg - avoid undefined behavior accessing salg_name
(git-fixes).
- crypto: omap-aes - Fix PM disable depth imbalance in omap_aes_probe
(git-fixes).
- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() (git-fixes).
- crypto: talitos - Fix return type of current_desc_hdr() (git-fixes).
- cw1200: fix missing destroy_workqueue() on error in cw1200_init_common
(git-fixes).
- dmaengine: xilinx_dma: check dma_async_device_register return value
(git-fixes).
- dmaengine: xilinx_dma: fix mixed_enum_type coverity warning (git-fixes).
- docs: Fix reST markup when linking to sections (git-fixes).
- drivers: base: Fix NULL pointer exception in __platform_driver_probe()
if a driver developer is foolish (git-fixes).
- drivers: soc: ti: knav_qmss_queue: Fix error return code in
knav_queue_probe (git-fixes).
- drm/amd/display: remove useless if/else (git-fixes).
- drm/amdgpu: fix build_coefficients() argument (git-fixes).
- drm/dp_aux_dev: check aux_dev before use in
drm_dp_aux_dev_get_by_minor() (git-fixes).
- drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[]
(bsc#1129770)
- drm/gma500: fix double free of gma_connector (git-fixes).
- drm/meson: dw-hdmi: Register a callback to disable the regulator
(git-fixes).
- drm/msm/dpu: Add newline to printks (git-fixes).
- drm/msm/dsi_phy_10nm: implement PHY disabling (git-fixes).
- drm/omap: dmm_tiler: fix return error code in omap_dmm_probe()
(git-fixes).
- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS (git-fixes).
- epoll: Keep a reference on files added to the check list (bsc#1180031).
- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove() (git-fixes).
- ext4: correctly report "not supported" for {usr,grp}jquota when
!CONFIG_QUOTA (bsc#1179672).
- ext4: fix bogus warning in ext4_update_dx_flag() (bsc#1179716).
- ext4: fix error handling code in add_new_gdb (bsc#1179722).
- ext4: fix invalid inode checksum (bsc#1179723).
- ext4: fix leaking sysfs kobject after failed mount (bsc#1179670).
- ext4: limit entries returned when counting fsmap records (bsc#1179671).
- ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
(bsc#1179673).
- extcon: max77693: Fix modalias string (git-fixes).
- fbcon: Fix user font detection test at fbcon_resize(). (bsc#1112178)
- fbcon: Remove the superfluous break (bsc#1129770)
- firmware: qcom: scm: Ensure 'a0' status code is treated as signed
(git-fixes).
- fix regression in "epoll: Keep a reference on files added to the check
list" (bsc#1180031, git-fixes).
- forcedeth: use per cpu to collect xmit/recv statistics (git-fixes).
- fs: Do not invalidate page buffers in block_write_full_page()
(bsc#1179711).
- geneve: change from tx_error to tx_dropped on missing metadata
(git-fixes).
- genirq/irqdomain: Add an irq_create_mapping_affinity() function
(bsc#1065729).
- gpio: arizona: handle pm_runtime_get_sync failure case (git-fixes).
- gpio: gpio-grgpio: fix possible sleep-in-atomic-context bugs in
grgpio_irq_map/unmap() (git-fixes).
- gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP (git-fixes).
- gpio: max77620: Fixup debounce delays (git-fixes).
- gpio: max77620: Use correct unit for debounce times (git-fixes).
- gpio: mpc8xxx: Add platform device to gpiochip->parent (git-fixes).
- gpio: mvebu: fix potential user-after-free on probe (git-fixes).
- gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism
(git-fixes).
- gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288
model (git-fixes).
- gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288
model (git-fixes).
- gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk
(git-fixes).
- gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option
(git-fixes).
- gpiolib: acpi: Turn dmi_system_id table into a generic quirk table
(git-fixes).
- gpiolib: fix up emulated open drain outputs (git-fixes).
- hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow (git-fixes).
- hwmon: (jc42) Fix name to have no illegal characters (git-fixes).
- i2c: algo: pca: Reapply i2c bus settings after reset (git-fixes).
- i2c: i801: Fix resume bug (git-fixes).
- i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets
(git-fixes).
- i2c: pxa: clear all master action bits in i2c_pxa_stop_message()
(git-fixes).
- i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output (git-fixes).
- i2c: qup: Fix error return code in qup_i2c_bam_schedule_desc()
(git-fixes).
- ibmvnic: add some debugs (bsc#1179896 ltc#190255).
- ibmvnic: avoid memset null scrq msgs (bsc#1044767 ltc#155231 git-fixes).
- ibmvnic: continue fatal error reset after passive init (bsc#1171078
ltc#184239 git-fixes).
- ibmvnic: delay next reset if hard reset fails (bsc#1094840 ltc#167098
git-fixes).
- ibmvnic: enhance resetting status check during module exit (bsc#1065729).
- ibmvnic: fix NULL pointer dereference in reset_sub_crq_queues
(bsc#1040855 ltc#155067 git-fixes).
- ibmvnic: fix call_netdevice_notifiers in do_reset (bsc#1115431
ltc#171853 git-fixes).
- ibmvnic: fix: NULL pointer dereference (bsc#1044767 ltc#155231
git-fixes).
- ibmvnic: notify peers when failover and migration happen (bsc#1044120
ltc#155423 git-fixes).
- ibmvnic: restore adapter state on failed reset (bsc#1152457 ltc#174432
git-fixes).
- iio: adc: max1027: Reset the device at probe time (git-fixes).
- iio: adc: rockchip_saradc: fix missing clk_disable_unprepare() on error
in rockchip_saradc_resume (git-fixes).
- iio: bmp280: fix compensation of humidity (git-fixes).
- iio: buffer: Fix demux update (git-fixes).
- iio: dac: ad5592r: fix unbalanced mutex unlocks in ad5592r_read_raw()
(git-fixes).
- iio: fix center temperature of bmc150-accel-core (git-fixes).
- iio: humidity: hdc100x: fix IIO_HUMIDITYRELATIVE channel reporting
(git-fixes).
- iio: light: bh1750: Resolve compiler warning and make code more readable
(git-fixes).
- iio: srf04: fix wrong limitation in distance measuring (git-fixes).
- iio:imu:bmi160: Fix too large a buffer (git-fixes).
- iio:pressure:mpl3115: Force alignment of buffer (git-fixes).
- inet_ecn: Fix endianness of checksum update when setting ECT(1)
(git-fixes).
- ipw2x00: Fix -Wcast-function-type (git-fixes).
- irqchip/alpine-msi: Fix freeing of interrupts on allocation error path
(git-fixes).
- iwlwifi: mvm: fix kernel panic in case of assert during CSA (git-fixes).
- iwlwifi: mvm: fix unaligned read of rx_pkt_status (git-fixes).
- iwlwifi: pcie: limit memory read spin time (git-fixes).
- kABI fix for g2d (git-fixes).
- kABI workaround for HD-audio generic parser (git-fixes).
- kABI workaround for dsa/b53 changes (git-fixes).
- kABI workaround for net/ipvlan changes (git-fixes).
- kABI: ath10k: move a new structure member to the end (git-fixes).
- kABI: genirq: add back irq_create_mapping (bsc#1065729).
- kernel-source.spec: Fix build with rpm 4.16 (boo#1179015).
- kernel-{binary,source}.spec.in: do not create loop symlinks (bsc#1179082)
- kgdb: Fix spurious true from in_dbg_master() (git-fixes).
- mac80211: Check port authorization in the ieee80211_tx_dequeue() case
(git-fixes).
- mac80211: allow rx of mesh eapol frames with default rx key (git-fixes).
- mac80211: do not set set TDLS STA bandwidth wider than possible
(git-fixes).
- mac80211: fix authentication with iwlwifi/mvm (git-fixes).
- mac80211: fix use of skb payload instead of header (git-fixes).
- mac80211: mesh: fix mesh_pathtbl_init() error path (git-fixes).
- matroxfb: avoid -Warray-bounds warning (git-fixes).
- md-cluster: fix rmmod issue when md_cluster convert bitmap to none
(bsc#1163727).
- md-cluster: fix safemode_delay value when converting to clustered bitmap
(bsc#1163727).
- md-cluster: fix wild pointer of unlock_all_bitmaps() (bsc#1163727).
- md/bitmap: fix memory leak of temporary bitmap (bsc#1163727).
- md/bitmap: md_bitmap_get_counter returns wrong blocks (bsc#1163727).
- md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks (bsc#1163727).
- md/cluster: block reshape with remote resync job (bsc#1163727).
- md/cluster: fix deadlock when node is doing resync job (bsc#1163727).
- md/raid5: fix oops during stripe resizing (git-fixes).
- media: am437x-vpfe: Setting STD to current value is not an error
(git-fixes).
- media: cec-funcs.h: add status_req checks (git-fixes).
- media: cx88: Fix some error handling path in 'cx8800_initdev()'
(git-fixes).
- media: gp8psk: initialize stats at power control logic (git-fixes).
- media: gspca: Fix memory leak in probe (git-fixes).
- media: i2c: mt9v032: fix enum mbus codes and frame sizes (git-fixes).
- media: i2c: ov2659: Fix missing 720p register config (git-fixes).
- media: i2c: ov2659: fix s_stream return value (git-fixes).
- media: msi2500: assign SPI bus number dynamically (git-fixes).
- media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes).
- media: mtk-vcodec: add missing put_device() call in
mtk_vcodec_release_dec_pm() (git-fixes).
- media: platform: add missing put_device() call in mtk_jpeg_probe() and
mtk_jpeg_remove() (git-patches).
- media: pvrusb2: Fix oops on tear-down when radio support is not present
(git-fixes).
- media: s5p-g2d: Fix a memory leak in an error handling path in
'g2d_probe()' (git-fixes).
- media: saa7146: fix array overflow in vidioc_s_audio() (git-fixes).
- media: si470x-i2c: add missed operations in remove (git-fixes).
- media: siano: fix memory leak of debugfs members in smsdvb_hotplug
(git-fixes).
- media: solo6x10: fix missing snd_card_free in error handling case
(git-fixes).
- media: sti: bdisp: fix a possible sleep-in-atomic-context bug in
bdisp_device_run() (git-fixes).
- media: sunxi-cir: ensure IR is handled when it is continuous (git-fixes).
- media: ti-vpe: vpe: Make sure YUYV is set as default format (git-fixes).
- media: ti-vpe: vpe: ensure buffers are cleaned up properly in abort
cases (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure about frame sequence
number (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid
sizeimage (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure causing a kernel panic
(git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid pixel
format (git-fixes).
- media: uvcvideo: Set media controller entity functions (git-fixes).
- media: uvcvideo: Silence shift-out-of-bounds warning (git-fixes).
- media: v4l2-async: Fix trivial documentation typo (git-fixes).
- media: v4l2-core: fix touch support in v4l_g_fmt (git-fixes).
- media: v4l2-device.h: Explicitly compare grp{id,mask} to zero in
v4l2_device macros (git-fixes).
- mei: bus: do not clean driver pointer (git-fixes).
- mei: protect mei_cl_mtu from null dereference (git-fixes).
- memstick: fix a double-free bug in memstick_check (git-fixes).
- memstick: r592: Fix error return in r592_probe() (git-fixes).
- mfd: rt5033: Fix errorneous defines (git-fixes).
- mfd: wm8994: Fix driver operation if loaded as modules (git-fixes).
- misc: vmw_vmci: fix kernel info-leak by initializing dbells in
vmci_ctx_get_chkpt_doorbells() (git-fixes).
- mm,memory_failure: always pin the page in madvise_inject_error
(bsc#1180258).
- mm/userfaultfd: do not access vma->vm_mm after calling
handle_userfault() (bsc#1179204).
- mm: do not wake kswapd prematurely when watermark boosting is disabled
(git fixes (mm/vmscan)).
- mwifiex: fix mwifiex_shutdown_sw() causing sw reset failure (git-fixes).
- net/smc: fix valid DMBE buffer sizes (git-fixes).
- net/x25: prevent a couple of overflows (bsc#1178590).
- net: aquantia: Fix aq_vec_isr_legacy() return value (git-fixes).
- net: aquantia: fix LRO with FCS error (git-fixes).
- net: bcmgenet: reapply manual settings to the PHY (git-fixes).
- net: broadcom/bcmsysport: Fix signedness in bcm_sysport_probe()
(git-fixes).
- net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan()
(git-fixes).
- net: dsa: b53: Ensure the default VID is untagged (git-fixes).
- net: dsa: b53: Fix default VLAN ID (git-fixes).
- net: dsa: b53: Properly account for VLAN filtering (git-fixes).
- net: dsa: bcm_sf2: Do not assume DSA master supports WoL (git-fixes).
- net: dsa: bcm_sf2: potential array overflow in bcm_sf2_sw_suspend()
(git-fixes).
- net: dsa: qca8k: remove leftover phy accessors (git-fixes).
- net: ethernet: stmmac: Fix signedness bug in ipq806x_gmac_of_parse()
(git-fixes).
- net: ethernet: ti: cpsw: clear all entries when delete vid (git-fixes).
- net: ethernet: ti: cpsw: fix runtime_pm while add/kill vlan (git-fixes).
- net: hisilicon: Fix signedness bug in hix5hd2_dev_probe() (git-fixes).
- net: macb: add missing barriers when reading descriptors (git-fixes).
- net: macb: fix dropped RX frames due to a race (git-fixes).
- net: macb: fix error format in dev_err() (git-fixes).
- net: macb: fix random memory corruption on RX with 64-bit DMA
(git-fixes). - blacklist.conf:
- net: pasemi: fix an use-after-free in pasemi_mac_phy_init() (git-fixes).
- net: phy: Avoid multiple suspends (git-fixes).
- net: phy: micrel: Discern KSZ8051 and KSZ8795 PHYs (git-fixes).
- net: phy: micrel: make sure the factory test bit is cleared (git-fixes).
- net: qca_spi: Move reset_count to struct qcaspi (git-fixes).
- net: seeq: Fix the function used to release some memory in an error
handling path (git-fixes).
- net: sh_eth: fix a missing check of of_get_phy_mode (git-fixes).
- net: sonic: replace dev_kfree_skb in sonic_send_packet (git-fixes).
- net: sonic: return NETDEV_TX_OK if failed to map buffer (git-fixes).
- net: stmmac: Fix reception of Broadcom switches tags (git-fixes).
- net: stmmac: dwmac-meson8b: Fix signedness bug in probe (git-fixes).
- net: stmmac: fix csr_clk can't be zero issue (git-fixes).
- net: stmmac: fix length of PTP clock's name string (git-fixes).
- net: stmmac: gmac4+: Not all Unicast addresses may be available
(git-fixes).
- net: usb: sr9800: fix uninitialized local variable (git-fixes).
- net:ethernet:aquantia: Extra spinlocks removed (git-fixes).
- nfc: s3fwrn5: Release the nfc firmware (git-fixes).
- nfc: s3fwrn5: add missing release on skb in s3fwrn5_recv_frame
(git-fixes).
- ocfs2: fix unbalanced locking (bsc#1180506).
- ocfs2: initialize ip_next_orphan (bsc#1179724).
- orinoco: Move context allocation after processing the skb (git-fixes).
- pNFS/flexfiles: Fix list corruption if the mirror count changes
(git-fixes).
- parport: load lowlevel driver if ports not found (git-fixes).
- phy: Revert toggling reset changes (git-fixes).
- pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler()
(git-fixes).
- pinctrl: amd: fix npins for uart0 in kerncz_groups (git-fixes).
- pinctrl: amd: remove debounce filter setting in IRQ type setting
(git-fixes).
- pinctrl: baytrail: Avoid clearing debounce value when turning it off
(git-fixes).
- pinctrl: falcon: add missing put_device() call in pinctrl_falcon_probe()
(git-fixes).
- pinctrl: merrifield: Set default bias in case no particular value given
(git-fixes).
- pinctrl: sh-pfc: sh7734: Fix duplicate TCLK1_B (git-fixes).
- platform/x86: acer-wmi: add automatic keyboard background light toggle
key as KEY_LIGHTS_TOGGLE (git-fixes).
- platform/x86: dell-smbios-base: Fix error return code in
dell_smbios_init (git-fixes).
- platform/x86: mlx-platform: Fix item counter assignment for MSN2700,
MSN24xx systems (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from MSN274x platform
configuration (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from default platform
configuration (git-fixes).
- platform/x86: mlx-platform: remove an unused variable (git-fixes).
- power: supply: bq24190_charger: fix reference leak (git-fixes).
- power: supply: bq27xxx_battery: Silence deferred-probe error (git-fixes).
- powerpc/64: Set up a kernel stack for secondaries before cpu_restore()
(bsc#1065729).
- powerpc/64s/pseries: Fix hash tlbiel_all_isa300 for guest kernels
(bsc#1179888 ltc#190253).
- powerpc/64s: Fix hash ISA v3.0 TLBIEL instruction generation
(bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253).
- powerpc/pci: Fix broken INTx configuration via OF (bsc#1172145
ltc#184630).
- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145
ltc#184630).
- powerpc/pci: Remove legacy debug code (bsc#1172145 ltc#184630 git-fixes).
- powerpc/pci: Use of_irq_parse_and_map_pci() helper (bsc#1172145
ltc#184630).
- powerpc/perf: Add generic compat mode pmu driver (bsc#1178900
ltc#189284).
- powerpc/perf: Fix crash with is_sier_available when pmu is not set
(bsc#1179578 ltc#189313).
- powerpc/perf: Fix crashes with generic_compat_pmu & BHRB (bsc#1178900
ltc#189284 git-fixes).
- powerpc/perf: init pmu from core-book3s (bsc#1178900 ltc#189284).
- powerpc/pseries/hibernation: remove redundant cacheinfo update
(bsc#1138374 ltc#178199 git-fixes).
- powerpc/pseries: Pass MSI affinity to irq_create_mapping() (bsc#1065729).
- powerpc/smp: Add __init to init_big_cores() (bsc#1109695 ltc#171067
git-fixes).
- powerpc/xmon: Change printk() to pr_cont() (bsc#1065729).
- powerpc: Convert to using %pOF instead of full_name (bsc#1172145
ltc#184630).
- powerpc: Fix incorrect stw{, ux, u, x} instructions in __set_pte_at
(bsc#1065729).
- ppp: remove the PPPIOCDETACH ioctl (git-fixes).
- pwm: lp3943: Dynamically allocate PWM chip base (git-fixes).
- quota: clear padding in v2r1_mem2diskdqb() (bsc#1179714).
- radeon: insert 10ms sleep in dce5_crtc_load_lut (git-fixes).
- ravb: Fix use-after-free ravb_tstamp_skb (git-fixes).
- regmap: Remove duplicate `type` field from regmap `regcache_sync` trace
event (git-fixes).
- regmap: debugfs: check count when read regmap file (git-fixes).
- regmap: dev_get_regmap_match(): fix string comparison (git-fixes).
- regulator: max8907: Fix the usage of uninitialized variable in
max8907_regulator_probe() (git-fixes).
- regulator: pfuze100-regulator: Variable "val" in
pfuze100_regulator_probe() could be uninitialized (git-fixes).
- regulator: ti-abb: Fix timeout in
ti_abb_wait_txdone/ti_abb_clear_all_txdone (git-fixes).
- reiserfs: Fix oops during mount (bsc#1179715).
- reiserfs: Initialize inode keys properly (bsc#1179713).
- remoteproc: Fix wrong rvring index computation (git-fixes).
- rfkill: Fix incorrect check to avoid NULL pointer dereference
(git-fixes).
- rpm/kernel-binary.spec.in: avoid using barewords (bsc#1179014)
- rpm/kernel-binary.spec.in: avoid using more barewords (bsc#1179014)
- rpm/kernel-binary.spec.in: use grep -E instead of egrep (bsc#1179045)
- rpm/kernel-obs-build.spec.in: Add -q option to modprobe calls
(bsc#1178401)
- rpm/kernel-{source,binary}.spec: do not include ghost symlinks
(boo#1179082).
- rtc: 88pm860x: fix possible race condition (git-fixes).
- rtc: hym8563: enable wakeup when applicable (git-fixes).
- rtl8xxxu: fix RTL8723BU connection failure issue after warm reboot
(git-fixes).
- rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt() (git-fixes).
- s390/bpf: Fix multiple tail calls (git-fixes).
- s390/cpuinfo: show processor physical address (git-fixes).
- s390/cpum_sf.c: fix file permission for cpum_sfb_size (git-fixes).
- s390/dasd: fix hanging device offline processing (bsc#1144912).
- s390/dasd: fix null pointer dereference for ERP requests (git-fixes).
- s390/pci: fix CPU address in MSI for directed IRQ (git-fixes).
- s390/qeth: fix af_iucv notification race (git-fixes).
- s390/qeth: fix tear down of async TX buffers (git-fixes).
- s390/qeth: make af_iucv TX notification call more robust (git-fixes).
- s390/stp: add locking to sysfs functions (git-fixes).
- s390/zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl (git-fixes).
- scripts/lib/SUSE/MyBS.pm: properly close prjconf Macros: section
- scsi: Remove unneeded break statements (bsc#1164780).
- scsi: core: Fix VPD LUN ID designator priorities (bsc#1178049,
git-fixes).
- scsi: lpfc: Add FDMI Vendor MIB support (bsc#1164780).
- scsi: lpfc: Convert SCSI I/O completions to SLI-3 and SLI-4 handlers
(bsc#1164780).
- scsi: lpfc: Convert SCSI path to use common I/O submission path
(bsc#1164780).
- scsi: lpfc: Convert abort handling to SLI-3 and SLI-4 handlers
(bsc#1164780).
- scsi: lpfc: Correct null ndlp reference on routine exit (bsc#1164780).
- scsi: lpfc: Drop nodelist reference on error in lpfc_gen_req()
(bsc#1164780).
- scsi: lpfc: Enable common send_io interface for SCSI and NVMe
(bsc#1164780).
- scsi: lpfc: Enable common wqe_template support for both SCSI and NVMe
(bsc#1164780).
- scsi: lpfc: Enlarge max_sectors in scsi host templates (bsc#1164780).
- scsi: lpfc: Extend the RDF FPIN Registration descriptor for additional
events (bsc#1164780).
- scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery
(bsc#1164780).
- scsi: lpfc: Fix NPIV Fabric Node reference counting (bsc#1164780).
- scsi: lpfc: Fix NPIV discovery and Fabric Node detection (bsc#1164780).
- scsi: lpfc: Fix duplicate wq_create_version check (bsc#1164780).
- scsi: lpfc: Fix fall-through warnings for Clang (bsc#1164780).
- scsi: lpfc: Fix invalid sleeping context in lpfc_sli4_nvmet_alloc()
(bsc#1164780).
- scsi: lpfc: Fix memory leak on lcb_context (bsc#1164780).
- scsi: lpfc: Fix missing prototype for lpfc_nvmet_prep_abort_wqe()
(bsc#1164780).
- scsi: lpfc: Fix missing prototype warning for lpfc_fdmi_vendor_attr_mi()
(bsc#1164780).
- scsi: lpfc: Fix pointer defereference before it is null checked issue
(bsc#1164780).
- scsi: lpfc: Fix refcounting around SCSI and NVMe transport APIs
(bsc#1164780).
- scsi: lpfc: Fix removal of SCSI transport device get and put on dev
structure (bsc#1164780).
- scsi: lpfc: Fix scheduling call while in softirq context in
lpfc_unreg_rpi (bsc#1164780).
- scsi: lpfc: Fix set but not used warnings from Rework remote port lock
handling (bsc#1164780).
- scsi: lpfc: Fix set but unused variables in lpfc_dev_loss_tmo_handler()
(bsc#1164780).
- scsi: lpfc: Fix spelling mistake "Cant" -> "Can't" (bsc#1164780).
- scsi: lpfc: Fix variable 'vport' set but not used in
lpfc_sli4_abts_err_handler() (bsc#1164780).
- scsi: lpfc: Refactor WQE structure definitions for common use
(bsc#1164780).
- scsi: lpfc: Reject CT request for MIB commands (bsc#1164780).
- scsi: lpfc: Remove dead code on second !ndlp check (bsc#1164780).
- scsi: lpfc: Remove ndlp when a PLOGI/ADISC/PRLI/REG_RPI ultimately fails
(bsc#1164780).
- scsi: lpfc: Remove set but not used 'qp' (bsc#1164780).
- scsi: lpfc: Remove unneeded variable 'status' in
lpfc_fcp_cpu_map_store() (bsc#1164780).
- scsi: lpfc: Removed unused macros in lpfc_attr.c (bsc#1164780).
- scsi: lpfc: Rework locations of ndlp reference taking (bsc#1164780).
- scsi: lpfc: Rework remote port lock handling (bsc#1164780).
- scsi: lpfc: Rework remote port ref counting and node freeing
(bsc#1164780).
- scsi: lpfc: Unsolicited ELS leaves node in incorrect state while
dropping it (bsc#1164780).
- scsi: lpfc: Update changed file copyrights for 2020 (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.4 (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.5 (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.6 (bsc#1164780).
- scsi: lpfc: Use generic power management (bsc#1164780).
- scsi: lpfc: lpfc_attr: Demote kernel-doc format for redefined functions
(bsc#1164780).
- scsi: lpfc: lpfc_attr: Fix-up a bunch of kernel-doc misdemeanours
(bsc#1164780).
- scsi: lpfc: lpfc_debugfs: Fix a couple of function documentation issues
(bsc#1164780).
- scsi: lpfc: lpfc_scsi: Fix a whole host of kernel-doc issues
(bsc#1164780).
- scsi: qla2xxx: Change post del message from debug level to log level
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: qla2xxx: Do not check for fw_started while posting NVMe command
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Do not consume srb greedily (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix FW initialization error on big endian machines
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix N2N and NVMe connect retry failure (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix compilation issue in PPC systems (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix crash during driver load on big endian machines
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix device loss on 4G and older HBAs (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix flash update in 28XX adapters on big endian machines
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix return of uninitialized value in rval (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix the call trace for flush workqueue (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Handle aborts correctly for port undergoing deletion
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Handle incorrect entry_type entries (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: If fcport is undergoing deletion complete I/O with retry
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Initialize variable in qla8044_poll_reg() (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Limit interrupt vectors to number of CPUs (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Move sess cmd list/lock to driver (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove in_interrupt() from qla82xx-specific code
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove in_interrupt() from qla83xx-specific code
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove trailing semicolon in macro definition
(bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Return EBUSY on fcport deletion (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: qla2xxx: Tear down session if FW say it is down (bsc#1172538
bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Update version to 10.02.00.104-k (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: qla2xxx: Use constant when it is known (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: qla2xxx: remove incorrect sparse #ifdef (bsc#1172538 bsc#1179142
bsc#1179810).
- scsi: storvsc: Fix error return in storvsc_probe() (git-fixes).
- scsi: target: tcm_qla2xxx: Remove BUG_ON(in_interrupt()) (bsc#1172538
bsc#1179142 bsc#1179810).
- serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access
(git-fixes).
- serial: 8250_pci: Add Realtek 816a and 816b (git-fixes).
- serial: amba-pl011: Make sure we initialize the port.lock spinlock
(git-fixes).
- serial: ar933x_uart: set UART_CS_{RX,TX}_READY_ORIDE (git-fixes).
- serial: txx9: add missing platform_driver_unregister() on error in
serial_txx9_init (git-fixes).
- serial_core: Check for port state when tty is in error state (git-fixes).
- soc/tegra: fuse: Fix index bug in get_process_id (git-fixes).
- soc: imx: gpc: fix power up sequencing (git-fixes).
- soc: mediatek: Check if power domains can be powered on at boot time
(git-fixes).
- soc: qcom: smp2p: Safely acquire spinlock without IRQs (git-fixes).
- soc: ti: Fix reference imbalance in knav_dma_probe (git-fixes).
- soc: ti: knav_qmss: fix reference leak in knav_queue_probe (git-fixes).
- spi: Add call to spi_slave_abort() function when spidev driver is
released (git-fixes).
- spi: Fix memory leak on splited transfers (git-fixes).
- spi: bcm63xx-hsspi: fix missing clk_disable_unprepare() on error in
bcm63xx_hsspi_resume (git-fixes).
- spi: davinci: Fix use-after-free on unbind (git-fixes).
- spi: dw: Enable interrupts in accordance with DMA xfer mode (git-fixes).
- spi: dw: Fix Rx-only DMA transfers (git-fixes).
- spi: dw: Return any value retrieved from the dma_transfer callback
(git-fixes).
- spi: img-spfi: fix potential double release (git-fixes).
- spi: img-spfi: fix reference leak in img_spfi_resume (git-fixes).
- spi: pic32: Do not leak DMA channels in probe error path (git-fixes).
- spi: pxa2xx: Add missed security checks (git-fixes).
- spi: spi-cavium-thunderx: Add missing pci_release_regions() (git-fixes).
- spi: spi-loopback-test: Fix out-of-bounds read (git-fixes).
- spi: spi-mem: Fix passing zero to 'PTR_ERR' warning (git-fixes).
- spi: spi-mem: fix reference leak in spi_mem_access_start (git-fixes).
- spi: spi-ti-qspi: fix reference leak in ti_qspi_setup (git-fixes).
- spi: spidev: fix a potential use-after-free in spidev_release()
(git-fixes).
- spi: st-ssc4: Fix unbalanced pm_runtime_disable() in probe error path
(git-fixes).
- spi: st-ssc4: add missed pm_runtime_disable (git-fixes).
- spi: tegra114: fix reference leak in tegra spi ops (git-fixes).
- spi: tegra20-sflash: fix reference leak in tegra_sflash_resume
(git-fixes).
- spi: tegra20-slink: add missed clk_unprepare (git-fixes).
- spi: tegra20-slink: fix reference leak in slink ops of tegra20
(git-fixes).
- splice: only read in as much information as there is pipe buffer space
(bsc#1179520).
- staging: comedi: check validity of wMaxPacketSize of usb endpoints found
(git-fixes).
- staging: comedi: gsc_hpdi: check dma_alloc_coherent() return value
(git-fixes).
- staging: comedi: mf6x4: Fix AI end-of-conversion detection (git-fixes).
- staging: olpc_dcon: Do not call platform_device_unregister() in
dcon_probe() (git-fixes).
- staging: olpc_dcon: add a missing dependency (git-fixes).
- staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21
(git-fixes).
- staging: rtl8188eu: Add device id for MERCUSYS MW150US v2 (git-fixes).
- staging: rtl8188eu: fix possible null dereference (git-fixes).
- staging: rtl8192u: fix multiple memory leaks on error path (git-fixes).
- staging: vt6656: set usb_set_intfdata on driver fail (git-fixes).
- staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb()
(git-fixes).
- staging: wlan-ng: properly check endpoint types (git-fixes).
- sunrpc: fixed rollback in rpc_gssd_dummy_populate() (git-fixes).
- thunderbolt: Use 32-bit writes when writing ring producer/consumer
(git-fixes).
- timer: Fix wheel index calculation on last level (git fixes)
- timer: Prevent base->clk from moving backward (git-fixes)
- tty: Fix ->pgrp locking in tiocspgrp() (git-fixes).
- tty: always relink the port (git-fixes).
- tty: link tty and port before configuring it as console (git-fixes).
- tty: synclink_gt: Adjust indentation in several functions (git-fixes).
- tty: synclinkmp: Adjust indentation in several functions (git-fixes).
- tty:serial:mvebu-uart:fix a wrong return (git-fixes).
- uapi/if_ether.h: move __UAPI_DEF_ETHHDR libc define (git-fixes).
- uapi/if_ether.h: prevent redefinition of struct ethhdr (git-fixes).
- usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag to imx6ul
(git-fixes).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (git-fixes).
- usb: dwc2: Fix IN FIFO allocation (git-fixes).
- usb: dwc3: remove the call trace of USBx_GFLADJ (git-fixes).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access completion
(git-fixes).
- usb: ehci-omap: Fix PM disable depth umbalance in ehci_hcd_omap_probe
(git-fixes).
- usb: fsl: Check memory resource before releasing it (git-fixes).
- usb: gadget: composite: Fix possible double free memory bug (git-fixes).
- usb: gadget: configfs: Fix missing spin_lock_init() (git-fixes).
- usb: gadget: configfs: Preserve function ordering after bind failure
(git-fixes).
- usb: gadget: configfs: fix concurrent issue between composite APIs
(git-fixes).
- usb: gadget: f_fs: Use local copy of descriptors for userspace copy
(git-fixes).
- usb: gadget: f_uac2: reset wMaxPacketSize (git-fixes).
- usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags (git-fixes).
- usb: gadget: fix wrong endpoint desc (git-fixes).
- usb: gadget: goku_udc: fix potential crashes in probe (git-fixes).
- usb: gadget: net2280: fix memory leak on probe error handling paths
(git-fixes).
- usb: gadget: select CONFIG_CRC32 (git-fixes).
- usb: gadget: serial: fix Tx stall after buffer overflow (git-fixes).
- usb: gadget: udc: fix possible sleep-in-atomic-context bugs in
gr_probe() (git-fixes).
- usb: gadget: udc: gr_udc: fix memleak on error handling path in
gr_ep_init() (git-fixes).
- usb: hso: Fix debug compile warning on sparc32 (git-fixes).
- usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue
(git-fixes).
- usb: oxu210hp-hcd: Fix memory leak in oxu_create (git-fixes).
- usb: usbfs: Suppress problematic bind and unbind uevents (git-fixes).
- usblp: poison URBs upon disconnect (git-fixes).
- usbnet: ipheth: fix connectivity with iOS 14 (git-fixes).
- video: fbdev: neofb: fix memory leak in neo_scan_monitor() (git-fixes).
- vt: Reject zero-sized screen buffer size (git-fixes).
- vt: do not hardcode the mem allocation upper bound (git-fixes).
- wan: ds26522: select CONFIG_BITREVERSE (git-fixes).
- watchdog: coh901327: add COMMON_CLK dependency (git-fixes).
- watchdog: da9062: No need to ping manually before setting timeout
(git-fixes).
- watchdog: da9062: do not ping the hw during stop() (git-fixes).
- watchdog: qcom: Avoid context switch in restart handler (git-fixes).
- watchdog: sirfsoc: Add missing dependency on HAS_IOMEM (git-fixes).
- wil6210: select CONFIG_CRC32 (git-fixes).
- wimax: fix duplicate initializer warning (git-fixes).
- wireless: Use linux/stddef.h instead of stddef.h (git-fixes).
- wireless: Use offsetof instead of custom macro (git-fixes).
- x86/apic: Fix integer overflow on 10 bit left shift of cpu_khz
(bsc#1112178).
- x86/i8259: Use printk_deferred() to prevent deadlock (bsc#1112178).
- x86/insn-eval: Use new for_each_insn_prefix() macro to loop over
prefixes bytes (bsc#1112178).
- x86/mm/ident_map: Check for errors from ident_pud_init() (bsc#1112178).
- x86/mm/mem_encrypt: Fix definition of PMD_FLAGS_DEC_WP (bsc#1112178).
- x86/mm/numa: Remove uninitialized_var() usage (bsc#1112178).
- x86/mm: Fix leak of pmd ptlock (bsc#1112178).
- x86/mtrr: Correct the range check before performing MTRR type lookups
(bsc#1112178).
- x86/resctrl: Add necessary kernfs_put() calls to prevent refcount leak
(bsc#1112178).
- x86/resctrl: Do not move a task to the same resource group (bsc#1112178).
- x86/resctrl: Fix incorrect local bandwidth when mba_sc is enabled
(bsc#1112178).
- x86/resctrl: Remove superfluous kernfs_get() calls to prevent refcount
leak (bsc#1112178).
- x86/resctrl: Remove unused struct mbm_state::chunks_bw (bsc#1112178).
- x86/resctrl: Use an IPI instead of task_work_add() to update PQR_ASSOC
MSR (bsc#1112178).
- x86/speculation: Fix prctl() when spectre_v2_user={seccomp,prctl},ibpb
(bsc#1112178).
- x86/tracing: Introduce a static key for exception tracing (bsc#1179895).
- x86/traps: Simplify pagefault tracing logic (bsc#1179895).
- x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
(bsc#1112178).
- xhci: Give USB2 ports time to enter U3 in bus suspend (git-fixes).
- xprtrdma: fix incorrect header size calculations (git-fixes).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2021-75=1
Package List:
- openSUSE Leap 15.1 (noarch):
kernel-devel-4.12.14-lp151.28.91.1
kernel-docs-4.12.14-lp151.28.91.1
kernel-docs-html-4.12.14-lp151.28.91.1
kernel-macros-4.12.14-lp151.28.91.1
kernel-source-4.12.14-lp151.28.91.1
kernel-source-vanilla-4.12.14-lp151.28.91.1
- openSUSE Leap 15.1 (x86_64):
kernel-debug-4.12.14-lp151.28.91.1
kernel-debug-base-4.12.14-lp151.28.91.1
kernel-debug-base-debuginfo-4.12.14-lp151.28.91.1
kernel-debug-debuginfo-4.12.14-lp151.28.91.1
kernel-debug-debugsource-4.12.14-lp151.28.91.1
kernel-debug-devel-4.12.14-lp151.28.91.1
kernel-debug-devel-debuginfo-4.12.14-lp151.28.91.1
kernel-default-4.12.14-lp151.28.91.1
kernel-default-base-4.12.14-lp151.28.91.1
kernel-default-base-debuginfo-4.12.14-lp151.28.91.1
kernel-default-debuginfo-4.12.14-lp151.28.91.1
kernel-default-debugsource-4.12.14-lp151.28.91.1
kernel-default-devel-4.12.14-lp151.28.91.1
kernel-default-devel-debuginfo-4.12.14-lp151.28.91.1
kernel-kvmsmall-4.12.14-lp151.28.91.1
kernel-kvmsmall-base-4.12.14-lp151.28.91.1
kernel-kvmsmall-base-debuginfo-4.12.14-lp151.28.91.1
kernel-kvmsmall-debuginfo-4.12.14-lp151.28.91.1
kernel-kvmsmall-debugsource-4.12.14-lp151.28.91.1
kernel-kvmsmall-devel-4.12.14-lp151.28.91.1
kernel-kvmsmall-devel-debuginfo-4.12.14-lp151.28.91.1
kernel-obs-build-4.12.14-lp151.28.91.1
kernel-obs-build-debugsource-4.12.14-lp151.28.91.1
kernel-obs-qa-4.12.14-lp151.28.91.1
kernel-syms-4.12.14-lp151.28.91.1
kernel-vanilla-4.12.14-lp151.28.91.1
kernel-vanilla-base-4.12.14-lp151.28.91.1
kernel-vanilla-base-debuginfo-4.12.14-lp151.28.91.1
kernel-vanilla-debuginfo-4.12.14-lp151.28.91.1
kernel-vanilla-debugsource-4.12.14-lp151.28.91.1
kernel-vanilla-devel-4.12.14-lp151.28.91.1
kernel-vanilla-devel-debuginfo-4.12.14-lp151.28.91.1
References:
https://www.suse.com/security/cve/CVE-2019-20934.html
https://www.suse.com/security/cve/CVE-2020-0444.html
https://www.suse.com/security/cve/CVE-2020-0465.html
https://www.suse.com/security/cve/CVE-2020-0466.html
https://www.suse.com/security/cve/CVE-2020-11668.html
https://www.suse.com/security/cve/CVE-2020-25639.html
https://www.suse.com/security/cve/CVE-2020-27068.html
https://www.suse.com/security/cve/CVE-2020-27777.html
https://www.suse.com/security/cve/CVE-2020-27786.html
https://www.suse.com/security/cve/CVE-2020-27825.html
https://www.suse.com/security/cve/CVE-2020-28374.html
https://www.suse.com/security/cve/CVE-2020-29568.html
https://www.suse.com/security/cve/CVE-2020-29569.html
https://www.suse.com/security/cve/CVE-2020-29660.html
https://www.suse.com/security/cve/CVE-2020-29661.html
https://www.suse.com/security/cve/CVE-2020-36158.html
https://www.suse.com/security/cve/CVE-2020-4788.html
https://bugzilla.suse.com/1040855
https://bugzilla.suse.com/1044120
https://bugzilla.suse.com/1044767
https://bugzilla.suse.com/1055117
https://bugzilla.suse.com/1065729
https://bugzilla.suse.com/1094840
https://bugzilla.suse.com/1109695
https://bugzilla.suse.com/1112178
https://bugzilla.suse.com/1115431
https://bugzilla.suse.com/1129770
https://bugzilla.suse.com/1138374
https://bugzilla.suse.com/1139944
https://bugzilla.suse.com/1144912
https://bugzilla.suse.com/1152457
https://bugzilla.suse.com/1163727
https://bugzilla.suse.com/1164780
https://bugzilla.suse.com/1168952
https://bugzilla.suse.com/1171078
https://bugzilla.suse.com/1172145
https://bugzilla.suse.com/1172538
https://bugzilla.suse.com/1172694
https://bugzilla.suse.com/1174784
https://bugzilla.suse.com/1176558
https://bugzilla.suse.com/1176559
https://bugzilla.suse.com/1176846
https://bugzilla.suse.com/1176956
https://bugzilla.suse.com/1177666
https://bugzilla.suse.com/1178049
https://bugzilla.suse.com/1178270
https://bugzilla.suse.com/1178372
https://bugzilla.suse.com/1178401
https://bugzilla.suse.com/1178590
https://bugzilla.suse.com/1178634
https://bugzilla.suse.com/1178762
https://bugzilla.suse.com/1178900
https://bugzilla.suse.com/1179014
https://bugzilla.suse.com/1179015
https://bugzilla.suse.com/1179045
https://bugzilla.suse.com/1179082
https://bugzilla.suse.com/1179107
https://bugzilla.suse.com/1179142
https://bugzilla.suse.com/1179204
https://bugzilla.suse.com/1179444
https://bugzilla.suse.com/1179508
https://bugzilla.suse.com/1179509
https://bugzilla.suse.com/1179520
https://bugzilla.suse.com/1179575
https://bugzilla.suse.com/1179578
https://bugzilla.suse.com/1179601
https://bugzilla.suse.com/1179663
https://bugzilla.suse.com/1179670
https://bugzilla.suse.com/1179671
https://bugzilla.suse.com/1179672
https://bugzilla.suse.com/1179673
https://bugzilla.suse.com/1179711
https://bugzilla.suse.com/1179713
https://bugzilla.suse.com/1179714
https://bugzilla.suse.com/1179715
https://bugzilla.suse.com/1179716
https://bugzilla.suse.com/1179722
https://bugzilla.suse.com/1179723
https://bugzilla.suse.com/1179724
https://bugzilla.suse.com/1179745
https://bugzilla.suse.com/1179810
https://bugzilla.suse.com/1179888
https://bugzilla.suse.com/1179895
https://bugzilla.suse.com/1179896
https://bugzilla.suse.com/1179960
https://bugzilla.suse.com/1179963
https://bugzilla.suse.com/1180027
https://bugzilla.suse.com/1180029
https://bugzilla.suse.com/1180031
https://bugzilla.suse.com/1180052
https://bugzilla.suse.com/1180086
https://bugzilla.suse.com/1180117
https://bugzilla.suse.com/1180258
https://bugzilla.suse.com/1180506
https://bugzilla.suse.com/1180559
https://bugzilla.suse.com/1180676
1
0
openSUSE-SU-2021:0072-1: important: Security update for dovecot23
by opensuse-security@opensuse.org 16 Jan '21
by opensuse-security@opensuse.org 16 Jan '21
16 Jan '21
openSUSE Security Update: Security update for dovecot23
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0072-1
Rating: important
References: #1174920 #1180405 #1180406
Cross-References: CVE-2020-12100 CVE-2020-24386 CVE-2020-25275
Affected Products:
openSUSE Leap 15.1
______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
Description:
This update for dovecot23 fixes the following issues:
Security issues fixed:
- CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME
parts (bsc#1174920).
- CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users
to access other users' emails (bsc#1180405).
- CVE-2020-25275: Fixed a crash when the 10000th MIME part was
message/rfc822 (bsc#1180406).
Non-security issues fixed:
- Pigeonhole was updated to version 0.5.11.
- Dovecot was updated to version 2.3.11.3.
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2021-72=1
Package List:
- openSUSE Leap 15.1 (x86_64):
dovecot23-2.3.11.3-lp151.2.15.1
dovecot23-backend-mysql-2.3.11.3-lp151.2.15.1
dovecot23-backend-mysql-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-backend-pgsql-2.3.11.3-lp151.2.15.1
dovecot23-backend-pgsql-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-backend-sqlite-2.3.11.3-lp151.2.15.1
dovecot23-backend-sqlite-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-debugsource-2.3.11.3-lp151.2.15.1
dovecot23-devel-2.3.11.3-lp151.2.15.1
dovecot23-fts-2.3.11.3-lp151.2.15.1
dovecot23-fts-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-fts-lucene-2.3.11.3-lp151.2.15.1
dovecot23-fts-lucene-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-fts-solr-2.3.11.3-lp151.2.15.1
dovecot23-fts-solr-debuginfo-2.3.11.3-lp151.2.15.1
dovecot23-fts-squat-2.3.11.3-lp151.2.15.1
dovecot23-fts-squat-debuginfo-2.3.11.3-lp151.2.15.1
References:
https://www.suse.com/security/cve/CVE-2020-12100.html
https://www.suse.com/security/cve/CVE-2020-24386.html
https://www.suse.com/security/cve/CVE-2020-25275.html
https://bugzilla.suse.com/1174920
https://bugzilla.suse.com/1180405
https://bugzilla.suse.com/1180406
1
0
openSUSE-SU-2021:0066-1: moderate: Security update for nodejs14
by opensuse-security@opensuse.org 15 Jan '21
by opensuse-security@opensuse.org 15 Jan '21
15 Jan '21
openSUSE Security Update: Security update for nodejs14
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0066-1
Rating: moderate
References: #1178882 #1180553 #1180554
Cross-References: CVE-2020-8265 CVE-2020-8277 CVE-2020-8287
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
Description:
This update for nodejs14 fixes the following issues:
- New upstream LTS version 14.15.4:
* CVE-2020-8265: use-after-free in TLSWrap (High) bug in TLS
implementation. When writing to a TLS enabled socket,
node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly
allocated WriteWrap object as first argument. If the DoWrite method
does not return an error, this object is passed back to the caller as
part of a StreamWriteResult structure. This may be exploited to
corrupt memory leading to a Denial of Service or potentially other
exploits (bsc#1180553)
* CVE-2020-8287: HTTP Request Smuggling allow two copies of a header
field in a http request. For example, two Transfer-Encoding header
fields. In this case Node.js identifies the first header field and
ignores the second. This can lead to HTTP Request Smuggling
(https://cwe.mitre.org/data/definitions/444.html) (bsc#1180554)
- New upstream LTS version 14.15.3:
* deps:
+ upgrade npm to 6.14.9
+ update acorn to v8.0.4
* http2: check write not scheduled in scope destructor
* stream: fix regression on duplex end
- New upstream LTS version 14.15.1:
* deps: Denial of Service through DNS request (High). A Node.js
application that allows an attacker to trigger a DNS request for a
host of their choice could trigger a Denial of Service by getting the
application to resolve a DNS record with a larger number of responses
(bsc#1178882, CVE-2020-8277)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-66=1
Package List:
- openSUSE Leap 15.2 (noarch):
nodejs14-docs-14.15.4-lp152.5.1
- openSUSE Leap 15.2 (x86_64):
nodejs14-14.15.4-lp152.5.1
nodejs14-debuginfo-14.15.4-lp152.5.1
nodejs14-debugsource-14.15.4-lp152.5.1
nodejs14-devel-14.15.4-lp152.5.1
npm14-14.15.4-lp152.5.1
References:
https://www.suse.com/security/cve/CVE-2020-8265.html
https://www.suse.com/security/cve/CVE-2020-8277.html
https://www.suse.com/security/cve/CVE-2020-8287.html
https://bugzilla.suse.com/1178882
https://bugzilla.suse.com/1180553
https://bugzilla.suse.com/1180554
1
0
openSUSE-SU-2021:0065-1: moderate: Security update for nodejs10
by opensuse-security@opensuse.org 15 Jan '21
by opensuse-security@opensuse.org 15 Jan '21
15 Jan '21
openSUSE Security Update: Security update for nodejs10
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0065-1
Rating: moderate
References: #1179491 #1180553 #1180554
Cross-References: CVE-2020-1971 CVE-2020-8265 CVE-2020-8287
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
Description:
This update for nodejs10 fixes the following issues:
- New upstream LTS version 10.23.1:
* CVE-2020-8265: use-after-free in TLSWrap (High) bug in TLS
implementation. When writing to a TLS enabled socket,
node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly
allocated WriteWrap object as first argument. If the DoWrite method
does not return an error, this object is passed back to the caller as
part of a StreamWriteResult structure. This may be exploited to
corrupt memory leading to a Denial of Service or potentially other
exploits (bsc#1180553)
* CVE-2020-8287: HTTP Request Smuggling allow two copies of a header
field in a http request. For example, two Transfer-Encoding header
fields. In this case Node.js identifies the first header field and
ignores the second. This can lead to HTTP Request Smuggling
(https://cwe.mitre.org/data/definitions/444.html) (bsc#1180554)
* CVE-2020-1971: OpenSSL - EDIPARTYNAME NULL pointer de-reference (High)
This is a vulnerability in OpenSSL which may be exploited through
Node.js. (bsc#1179491)
- New upstream LTS version 10.23.0:
* deps: upgrade npm to 6.14.8
* n-api:
+ create N-API version 7
+ expose napi_build_version variable
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-65=1
Package List:
- openSUSE Leap 15.2 (i586 x86_64):
nodejs10-10.23.1-lp152.2.9.1
nodejs10-debuginfo-10.23.1-lp152.2.9.1
nodejs10-debugsource-10.23.1-lp152.2.9.1
nodejs10-devel-10.23.1-lp152.2.9.1
npm10-10.23.1-lp152.2.9.1
- openSUSE Leap 15.2 (noarch):
nodejs10-docs-10.23.1-lp152.2.9.1
References:
https://www.suse.com/security/cve/CVE-2020-1971.html
https://www.suse.com/security/cve/CVE-2020-8265.html
https://www.suse.com/security/cve/CVE-2020-8287.html
https://bugzilla.suse.com/1179491
https://bugzilla.suse.com/1180553
https://bugzilla.suse.com/1180554
1
0
openSUSE-SU-2021:0064-1: moderate: Security update for nodejs12
by opensuse-security@opensuse.org 15 Jan '21
by opensuse-security@opensuse.org 15 Jan '21
15 Jan '21
openSUSE Security Update: Security update for nodejs12
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0064-1
Rating: moderate
References: #1178882 #1179491 #1180553 #1180554
Cross-References: CVE-2020-1971 CVE-2020-8265 CVE-2020-8277
CVE-2020-8287
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that fixes four vulnerabilities is now available.
Description:
This update for nodejs12 fixes the following issues:
- New upstream LTS version 12.20.1:
* CVE-2020-8265: use-after-free in TLSWrap (High) bug in TLS
implementation. When writing to a TLS enabled socket,
node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly
allocated WriteWrap object as first argument. If the DoWrite method
does not return an error, this object is passed back to the caller as
part of a StreamWriteResult structure. This may be exploited to
corrupt memory leading to a Denial of Service or potentially other
exploits (bsc#1180553)
* CVE-2020-8287: HTTP Request Smuggling allow two copies of a header
field in a http request. For example, two Transfer-Encoding header
fields. In this case Node.js identifies the first header field and
ignores the second. This can lead to HTTP Request Smuggling
(https://cwe.mitre.org/data/definitions/444.html) (bsc#1180554)
* CVE-2020-1971: OpenSSL - EDIPARTYNAME NULL pointer de-reference (High)
This is a vulnerability in OpenSSL which may be exploited through
Node.js. (bsc#1179491)
- New upstream LTS version 12.20.0:
* deps:
+ update llhttp '2.1.2' -> '2.1.3'
+ update uv '1.39.0' -> '1.40.0'
+ update uvwasi '0.0.10' -> '0.0.11'
* fs: add .ref() and .unref() methods to watcher classes
* http: added scheduling option to http agent
* module:
+ exports pattern support
+ named exports for CJS via static analysis
* n-api: add more property defaults (gh#35214)
- New upstream LTS version 12.19.1:
* deps: Denial of Service through DNS request (High). A Node.js
application that allows an attacker to trigger a DNS request for a
host of their choice could trigger a Denial of Service by getting the
application to resolve a DNS record with a larger number of responses
(bsc#1178882, CVE-2020-8277)
- New upstream LTS version 12.19.0:
* crypto: add randomInt function
* deps:
+ upgrade to libuv 1.39.0
+ deps: upgrade npm to 6.14.7
+ deps: upgrade to libuv 1.38.1
* doc: deprecate process.umask() with no arguments
* module:
+ package "imports" field
+ module: deprecate module.parent
* n-api: create N-API version 7
* zlib: switch to lazy init for zlib streams
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-64=1
Package List:
- openSUSE Leap 15.2 (x86_64):
nodejs12-12.20.1-lp152.3.9.1
nodejs12-debuginfo-12.20.1-lp152.3.9.1
nodejs12-debugsource-12.20.1-lp152.3.9.1
nodejs12-devel-12.20.1-lp152.3.9.1
npm12-12.20.1-lp152.3.9.1
- openSUSE Leap 15.2 (noarch):
nodejs12-docs-12.20.1-lp152.3.9.1
References:
https://www.suse.com/security/cve/CVE-2020-1971.html
https://www.suse.com/security/cve/CVE-2020-8265.html
https://www.suse.com/security/cve/CVE-2020-8277.html
https://www.suse.com/security/cve/CVE-2020-8287.html
https://bugzilla.suse.com/1178882
https://bugzilla.suse.com/1179491
https://bugzilla.suse.com/1180553
https://bugzilla.suse.com/1180554
1
0
openSUSE-SU-2021:0063-1: important: Security update for MozillaFirefox
by opensuse-security@opensuse.org 15 Jan '21
by opensuse-security@opensuse.org 15 Jan '21
15 Jan '21
openSUSE Security Update: Security update for MozillaFirefox
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0063-1
Rating: important
References: #1180623
Cross-References: CVE-2020-16044
Affected Products:
openSUSE Leap 15.1
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for MozillaFirefox fixes the following issues:
- Firefox Extended Support Release 78.6.1 ESR
* Fixed: Critical security issue MFSA 2021-01 (bsc#1180623)
* CVE-2020-16044 Use-after-free write when handling a malicious
COOKIE-ECHO SCTP chunk
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.1:
zypper in -t patch openSUSE-2021-63=1
Package List:
- openSUSE Leap 15.1 (x86_64):
MozillaFirefox-78.6.1-lp151.2.85.1
MozillaFirefox-branding-upstream-78.6.1-lp151.2.85.1
MozillaFirefox-buildsymbols-78.6.1-lp151.2.85.1
MozillaFirefox-debuginfo-78.6.1-lp151.2.85.1
MozillaFirefox-debugsource-78.6.1-lp151.2.85.1
MozillaFirefox-devel-78.6.1-lp151.2.85.1
MozillaFirefox-translations-common-78.6.1-lp151.2.85.1
MozillaFirefox-translations-other-78.6.1-lp151.2.85.1
References:
https://www.suse.com/security/cve/CVE-2020-16044.html
https://bugzilla.suse.com/1180623
1
0
openSUSE-SU-2021:0060-1: important: Security update for the Linux Kernel
by opensuse-security@opensuse.org 15 Jan '21
by opensuse-security@opensuse.org 15 Jan '21
15 Jan '21
openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0060-1
Rating: important
References: #1040855 #1044120 #1044767 #1055117 #1065729
#1094840 #1109695 #1115431 #1138374 #1139944
#1149032 #1152457 #1152472 #1152489 #1155518
#1156315 #1156395 #1158775 #1161099 #1163727
#1165933 #1168952 #1171000 #1171078 #1171688
#1172145 #1172733 #1174486 #1175079 #1175389
#1175480 #1175995 #1176396 #1176846 #1176942
#1176956 #1177326 #1177500 #1177666 #1177679
#1177733 #1178049 #1178203 #1178270 #1178372
#1178590 #1178612 #1178634 #1178660 #1178756
#1178780 #1179107 #1179204 #1179419 #1179434
#1179435 #1179519 #1179575 #1179578 #1179601
#1179604 #1179639 #1179652 #1179656 #1179670
#1179671 #1179672 #1179673 #1179675 #1179676
#1179677 #1179678 #1179679 #1179680 #1179681
#1179682 #1179683 #1179684 #1179685 #1179687
#1179688 #1179689 #1179690 #1179703 #1179704
#1179707 #1179709 #1179710 #1179711 #1179712
#1179713 #1179714 #1179715 #1179716 #1179745
#1179763 #1179878 #1179888 #1179892 #1179896
#1179960 #1179963 #1180027 #1180029 #1180031
#1180052 #1180056 #1180086 #1180117 #1180258
#1180261 #1180506 #1180541 #1180559 #1180566
#1180773
Cross-References: CVE-2020-0444 CVE-2020-0465 CVE-2020-0466
CVE-2020-11668 CVE-2020-25639 CVE-2020-27068
CVE-2020-27777 CVE-2020-27786 CVE-2020-27825
CVE-2020-27830 CVE-2020-27835 CVE-2020-28374
CVE-2020-29370 CVE-2020-29373 CVE-2020-29660
CVE-2020-29661 CVE-2020-36158
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that solves 17 vulnerabilities and has 99 fixes
is now available.
Description:
The openSUSE Leap 15.2 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2020-27835: A use after free in the Linux kernel infiniband hfi1
driver was found in the way user calls Ioctl after open dev file and
fork. A local user could use this flaw to crash the system (bnc#1179878).
- CVE-2020-25639: Fixed a NULL pointer dereference via nouveau ioctl
(bnc#1176846).
- CVE-2020-28374: In drivers/target/target_core_xcopy.c insufficient
identifier checking in the LIO SCSI target code can be used by remote
attackers to read or write files via directory traversal in an XCOPY
request, aka CID-2896c93811e3. For example, an attack can occur over a
network if the attacker has access to one iSCSI LUN. The attacker gains
control over file access because I/O operations are proxied via an
attacker-selected backstore (bnc#1178372).
- CVE-2020-36158: mwifiex_cmd_802_11_ad_hoc_start in
drivers/net/wireless/marvell/mwifiex/join.c might have allowed remote
attackers to execute arbitrary code via a long SSID value, aka
CID-5c455c5ab332 (bnc#1180559).
- CVE-2020-27825: A use-after-free flaw was found in
kernel/trace/ring_buffer.c. There was a race problem in trace_open and
resize of cpu buffer running parallely on different cpus, may cause a
denial of service problem (DOS). This flaw could even allow a local
attacker with special user privilege to a kernel information leak threat
(bnc#1179960).
- CVE-2020-0466: In do_epoll_ctl and ep_loop_check_proc of eventpoll.c,
there is a possible use after free due to a logic error. This could lead
to local escalation of privilege with no additional execution privileges
needed. User interaction is not needed for exploitation (bnc#1180031).
- CVE-2020-27068: In the nl80211_policy policy of nl80211.c, there is a
possible out of bounds read due to a missing bounds check. This could
lead to local information disclosure with System execution privileges
needed. User interaction is not required for exploitation (bnc#1180086).
- CVE-2020-0444: In audit_free_lsm_field of auditfilter.c, there is a
possible bad kfree due to a logic error in audit_data_to_entry. This
could lead to local escalation of privilege with no additional execution
privileges needed. User interaction is not needed for exploitation
(bnc#1180027).
- CVE-2020-0465: In various methods of hid-multitouch.c, there is a
possible out of bounds write due to a missing bounds check. This could
lead to local escalation of privilege with no additional execution
privileges needed. User interaction is not needed for exploitation
(bnc#1180029).
- CVE-2020-29661: A locking issue was discovered in the tty subsystem of
the Linux kernel drivers/tty/tty_jobctrl.c allowed a use-after-free
attack against TIOCSPGRP, aka CID-54ffccbf053b (bnc#1179745).
- CVE-2020-29660: A locking inconsistency issue was discovered in the tty
subsystem of the Linux kernel drivers/tty/tty_io.c and
drivers/tty/tty_jobctrl.c may have allowed a read-after-free attack
against TIOCGSID, aka CID-c8bcd9c5be24 (bnc#1179745).
- CVE-2020-27777: A flaw was found in the way RTAS handled memory accesses
in userspace to kernel communication. On a locked down (usually due to
Secure Boot) guest system running on top of PowerVM or KVM hypervisors
(pseries platform) a root like local user could use this flaw to further
increase their privileges to that of a running kernel (bnc#1179107).
- CVE-2020-29373: An issue was discovered in fs/io_uring.c in the Linux
kernel It unsafely handles the root directory during path lookups, and
thus a process inside a mount namespace can escape to unintended
filesystem locations, aka CID-ff002b30181d (bnc#1179434).
- CVE-2020-11668: drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink
camera USB driver) mishandled invalid descriptors, aka CID-a246b4d54770
(bnc#1168952).
- CVE-2020-27830: Fixed a NULL-ptr deref bug in spk_ttyio_receive_buf2
(bnc#1179656).
- CVE-2020-29370: An issue was discovered in kmem_cache_alloc_bulk in
mm/slub.c. The slowpath lacks the required TID increment, aka
CID-fd4d9c7d0c71 (bnc#1179435).
- CVE-2020-27786: A flaw was found in the Linux kernels implementation of
MIDI, where an attacker with a local account and the permissions to
issue an ioctl commands to midi devices, could trigger a use-after-free.
A write to this specific memory while freed and before use could cause
the flow of execution to change and possibly allow for memory corruption
or privilege escalation (bnc#1179601).
The following non-security bugs were fixed:
- ACPI: APEI: Kick the memory_failure() queue for synchronous errors
(jsc#SLE-16610).
- ACPI: PNP: compare the string length in the matching_id() (git-fixes).
- ALSA/hda: apply jack fixup for the Acer Veriton N4640G/N6640G/N2510G
(git-fixes).
- ALSA: core: memalloc: add page alignment for iram (git-fixes).
- ALSA: hda/ca0132 - Change Input Source enum strings (git-fixes).
- ALSA: hda/ca0132 - Fix AE-5 rear headphone pincfg (git-fixes).
- ALSA: hda/conexant: add a new hda codec CX11970 (git-fixes).
- ALSA: hda/generic: Add option to enforce preferred_dacs pairs
(git-fixes).
- ALSA: hda/hdmi: always print pin NIDs as hexadecimal (git-fixes).
- ALSA: hda/hdmi: packet buffer index must be set before reading value
(git-fixes).
- ALSA: hda/proc - print DP-MST connections (git-fixes).
- ALSA: hda/realtek - Add new codec supported for ALC897 (git-fixes).
- ALSA: hda/realtek - Add supported for more Lenovo ALC285 Headset Button
(git-fixes).
- ALSA: hda/realtek - Enable headset mic of ASUS Q524UQK with ALC255
(git-fixes).
- ALSA: hda/realtek - Enable headset mic of ASUS X430UN with ALC256
(git-fixes).
- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
(git-fixes).
- ALSA: hda/realtek - Fixed Dell AIO wrong sound tone (git-fixes).
- ALSA: hda/realtek - Modify Dell platform name (git-fixes).
- ALSA: hda/realtek - Supported Dell fixed type headset (git-fixes).
- ALSA: hda/realtek: Add mute LED quirk for more HP laptops (git-fixes).
- ALSA: hda/realtek: Add mute LED quirk to yet another HP x360 model
(git-fixes).
- ALSA: hda/realtek: Add quirk for MSI-GP73 (git-fixes).
- ALSA: hda/realtek: Add two "Intel Reference board" SSID in the ALC256
(git-fixes).
- ALSA: hda/realtek: Apply jack fixup for Quanta NL3 (git-fixes).
- ALSA: hda/realtek: Enable headset of ASUS UX482EG & B9400CEA with ALC294
(git-fixes).
- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook 850 G7
(git-fixes).
- ALSA: hda/realtek: Fix bass speaker DAC assignment on Asus Zephyrus G14
(git-fixes).
- ALSA: hda/realtek: Remove dummy lineout on Acer TravelMate P648/P658
(git-fixes).
- ALSA: hda/realtek: make bass spk volume adjustable on a yoga laptop
(git-fixes).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (git-fixes).
- ALSA: hda: Fix regressions on clear and reconfig sysfs (git-fixes).
- ALSA: pcm: Clear the full allocated memory at hw_params (git-fixes).
- ALSA: pcm: oss: Fix a few more UBSAN fixes (git-fixes).
- ALSA: pcm: oss: Fix potential out-of-bounds shift (git-fixes).
- ALSA: rawmidi: Access runtime->avail always in spinlock (git-fixes).
- ALSA: seq: remove useless function (git-fixes).
- ALSA: usb-audio: Add VID to support native DSD reproduction on FiiO
devices (git-fixes).
- ALSA: usb-audio: Add generic implicit fb parsing (bsc#1178203).
- ALSA: usb-audio: Add hw constraint for implicit fb sync (bsc#1178203).
- ALSA: usb-audio: Add implicit fb support for Steinberg UR22 (git-fixes).
- ALSA: usb-audio: Add implicit_fb module option (bsc#1178203).
- ALSA: usb-audio: Add quirk for BOSS AD-10 (git-fixes).
- ALSA: usb-audio: Add quirk for Pioneer DJ DDJ-SR2 (git-fixes).
- ALSA: usb-audio: Add quirk for RC-505 (git-fixes).
- ALSA: usb-audio: Add snd_usb_get_endpoint() helper (bsc#1178203).
- ALSA: usb-audio: Add snd_usb_get_host_interface() helper (bsc#1178203).
- ALSA: usb-audio: Add support for Pioneer DJ DDJ-RR controller
(git-fixes).
- ALSA: usb-audio: Always set up the parameters after resume (bsc#1178203).
- ALSA: usb-audio: Avoid doubly initialization for implicit fb
(bsc#1178203).
- ALSA: usb-audio: Check implicit feedback EP generically for UAC2
(bsc#1178203).
- ALSA: usb-audio: Check valid altsetting at parsing rates for UAC2/3
(bsc#1178203).
- ALSA: usb-audio: Constify audioformat pointer references (bsc#1178203).
- ALSA: usb-audio: Convert to the common vmalloc memalloc (bsc#1178203).
- ALSA: usb-audio: Correct wrongly matching entries with audio class
(bsc#1178203).
- ALSA: usb-audio: Create endpoint objects at parsing phase (bsc#1178203).
- ALSA: usb-audio: Disable sample read check if firmware does not give
back (git-fixes).
- ALSA: usb-audio: Do not call usb_set_interface() at trigger callback
(bsc#1178203).
- ALSA: usb-audio: Do not set altsetting before initializing sample rate
(bsc#1178203).
- ALSA: usb-audio: Drop debug.h (bsc#1178203).
- ALSA: usb-audio: Drop keep_interface flag again (bsc#1178203).
- ALSA: usb-audio: Drop unneeded snd_usb_substream fields (bsc#1178203).
- ALSA: usb-audio: Factor out the implicit feedback quirk code
(bsc#1178203).
- ALSA: usb-audio: Fix EP matching for continuous rates (bsc#1178203).
- ALSA: usb-audio: Fix MOTU M-Series quirks (bsc#1178203).
- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks (git-fixes).
- ALSA: usb-audio: Fix control 'access overflow' errors from chmap
(git-fixes).
- ALSA: usb-audio: Fix possible stall of implicit fb packet ring-buffer
(bsc#1178203).
- ALSA: usb-audio: Fix potential out-of-bounds shift (git-fixes).
- ALSA: usb-audio: Fix quirks for other BOSS devices (bsc#1178203).
- ALSA: usb-audio: Handle discrete rates properly in hw constraints
(bsc#1178203).
- ALSA: usb-audio: Improve some debug prints (bsc#1178203).
- ALSA: usb-audio: Move device rename and profile quirks to an internal
table (bsc#1178203).
- ALSA: usb-audio: Move snd_usb_autoresume() call out of setup_hw_info()
(bsc#1178203).
- ALSA: usb-audio: Pass snd_usb_audio object to quirk functions
(bsc#1178203).
- ALSA: usb-audio: Properly match with audio interface class (bsc#1178203).
- ALSA: usb-audio: Quirk for BOSS GT-001 (bsc#1178203).
- ALSA: usb-audio: Refactor endpoint management (bsc#1178203).
- ALSA: usb-audio: Refactoring endpoint URB deactivation (bsc#1178203).
- ALSA: usb-audio: Replace slave/master terms (bsc#1178203).
- ALSA: usb-audio: Set and clear sync EP link properly (bsc#1178203).
- ALSA: usb-audio: Set callbacks via snd_usb_endpoint_set_callback()
(bsc#1178203).
- ALSA: usb-audio: Show sync endpoint information in proc outputs
(bsc#1178203).
- ALSA: usb-audio: Simplify hw_params rules (bsc#1178203).
- ALSA: usb-audio: Simplify quirk entries with a macro (bsc#1178203).
- ALSA: usb-audio: Simplify rate_min/max and rates set up (bsc#1178203).
- ALSA: usb-audio: Simplify snd_usb_init_pitch() arguments (bsc#1178203).
- ALSA: usb-audio: Simplify snd_usb_init_sample_rate() arguments
(bsc#1178203).
- ALSA: usb-audio: Stop both endpoints properly at error (bsc#1178203).
- ALSA: usb-audio: Support PCM sync_stop (bsc#1178203).
- ALSA: usb-audio: Track implicit fb sync endpoint in audioformat list
(bsc#1178203).
- ALSA: usb-audio: US16x08: fix value count for level meters (git-fixes).
- ALSA: usb-audio: Unify the code for the next packet size calculation
(bsc#1178203).
- ALSA: usb-audio: Use ALC1220-VB-DT mapping for ASUS ROG Strix TRX40 mobo
(bsc#1178203).
- ALSA: usb-audio: Use atomic_t for endpoint use_count (bsc#1178203).
- ALSA: usb-audio: Use managed buffer allocation (bsc#1178203).
- ALSA: usb-audio: Use unsigned char for iface and altsettings fields
(bsc#1178203).
- ALSA: usb-audio: workaround for iface reset issue (bsc#1178203).
- ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 Detachable quirks
(git-fixes).
- ASoC: SOF: control: fix size checks for ext_bytes control .get()
(git-fixes).
- ASoC: amd: change clk_get() to devm_clk_get() and add missed checks
(git-fixes).
- ASoC: arizona: Fix a wrong free in wm8997_probe (git-fixes).
- ASoC: cx2072x: Fix doubly definitions of Playback and Capture streams
(git-fixes).
- ASoC: jz4740-i2s: add missed checks for clk_get() (git-fixes).
- ASoC: meson: fix COMPILE_TEST error (git-fixes).
- ASoC: pcm: DRAIN support reactivation (git-fixes).
- ASoC: sun4i-i2s: Fix lrck_period computation for I2S justified mode
(git-fixes).
- ASoC: tegra20-spdif: remove "default m" (git-fixes).
- ASoC: ti: davinci-mcasp: remove always zero of
davinci_mcasp_get_dt_params (git-fixes).
- ASoC: wm8998: Fix PM disable depth imbalance on error (git-fixes).
- ASoC: wm_adsp: fix error return code in wm_adsp_load() (git-fixes).
- ASoC: wm_adsp: remove "ctl" from list on error in
wm_adsp_create_control() (git-fixes).
- Bluetooth: Fix null pointer dereference in hci_event_packet()
(git-fixes).
- Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt()
(git-fixes).
- Bluetooth: btmtksdio: Add the missed release_firmware() in
mtk_setup_firmware() (git-fixes).
- Bluetooth: btusb: Add the missed release_firmware() in
btusb_mtk_setup_firmware() (git-fixes).
- Bluetooth: hci_h5: close serdev device and free hu in h5_close
(git-fixes).
- Bluetooth: hci_h5: fix memory leak in h5_close (git-fixes).
- Drop a backported uvcvideo patch that caused a regression (bsc#1180117)
Also blacklisting the commit
- EDAC/amd64: Do not load on family 0x15, model 0x13 (bsc#1179763).
- EDAC/amd64: Fix PCI component registration (bsc#1152489).
- EDAC/i10nm: Use readl() to access MMIO registers (bsc#1152489).
- EDAC/mce_amd: Use struct cpuinfo_x86.cpu_die_id for AMD NodeId
(bsc#1152489).
- HID: Add Logitech Dinovo Edge battery quirk (git-fixes).
- HID: add HID_QUIRK_INCREMENT_USAGE_ON_DUPLICATE for Gamevice devices
(git-fixes).
- HID: add support for Sega Saturn (git-fixes).
- HID: cypress: Support Varmilo Keyboards' media hotkeys (git-fixes).
- HID: hid-sensor-hub: Fix issue with devices with no report ID
(git-fixes).
- HID: i2c-hid: add Vero K147 to descriptor override (git-fixes).
- HID: ite: Replace ABS_MISC 120/121 events with touchpad on/off
keypresses (git-fixes).
- HID: logitech-hidpp: Add HIDPP_CONSUMER_VENDOR_KEYS quirk for the Dinovo
Edge (git-fixes).
- HID: uclogic: Add ID for Trust Flex Design Tablet (git-fixes).
- HMAT: Register memory-side cache after parsing (bsc#1178660).
- HMAT: Skip publishing target info for nodes with no online memory
(bsc#1178660).
- HSI: omap_ssi: Do not jump to free ID in ssi_add_controller()
(git-fixes).
- IB/hfi1: Remove kobj from hfi1_devdata (bsc#1179878).
- IB/hfi1: Remove module parameter for KDETH qpns (bsc#1179878).
- IB/isert: Fix unaligned immediate-data handling (bsc#1152489)
- IB/mlx4: Add and improve logging (bsc#1152489)
- IB/mlx4: Add support for MRA (bsc#1152489)
- IB/mlx4: Adjust delayed work when a dup is observed (bsc#1152489)
- IB/mlx4: Fix starvation in paravirt mux/demux (bsc#1152489)
- IB/mthca: fix return value of error branch in mthca_init_cq()
(bsc#1152489)
- IB/rdmavt: Fix sizeof mismatch (bsc#1152489)
- IB/srpt: Fix memory leak in srpt_add_one (bsc#1152489)
- IB/uverbs: Set IOVA on IB MR in uverbs layer (bsc#1152489)
- Input: ads7846 - fix integer overflow on Rt calculation (git-fixes).
- Input: ads7846 - fix race that causes missing releases (git-fixes).
- Input: ads7846 - fix unaligned access on 7845 (git-fixes).
- Input: cm109 - do not stomp on control URB (git-fixes).
- Input: cros_ec_keyb - send 'scancodes' in addition to key events
(git-fixes).
- Input: cyapa_gen6 - fix out-of-bounds stack access (git-fixes).
- Input: goodix - add upside-down quirk for Teclast X98 Pro tablet
(git-fixes).
- Input: i8042 - add Acer laptops to the i8042 reset list (git-fixes).
- Input: i8042 - add ByteSpeed touchpad to noloop table (git-fixes).
- Input: i8042 - allow insmod to succeed on devices without an i8042
controller (git-fixes).
- Input: i8042 - fix error return code in i8042_setup_aux() (git-fixes).
- Input: omap4-keypad - fix runtime PM error handling (git-fixes).
- Input: xpad - support Ardwiino Controllers (git-fixes).
- KVM: PPC: Book3S HV: XIVE: Fix possible oops when accessing ESB page
(bsc#1156395).
- Move "btrfs: qgroup: do not try to wait flushing if we're already
holding a transaction (bsc#1179575)." to sorted section
- Move upstreamed USB-audio patches into sorted section
- PCI: Fix overflow in command-line resource alignment requests
(git-fixes).
- PCI: Fix pci_slot_release() NULL pointer dereference (git-fixes).
- PCI: brcmstb: Initialize "tmp" before use (git-fixes).
- PCI: iproc: Fix out-of-bound array accesses (git-fixes).
- RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel()
(bsc#1152489)
- RDMA/bnxt_re: Do not add user qps to flushlist (bsc#1152489)
- RDMA/bnxt_re: Fix sizeof mismatch for allocation of pbl_tbl.
(bsc#1152489)
- RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued()
(bsc#1152489)
- RDMA/core: Fix reported speed and width (bsc#1152489)
- RDMA/core: Fix return error value in _ib_modify_qp() to negative
(bsc#1152489)
- RDMA/core: Free DIM memory in error unwind (bsc#1152489)
- RDMA/core: Stop DIM before destroying CQ (bsc#1152489)
- RDMA/counter: Allow manually bind QPs with different pids to same
counter (bsc#1152489)
- RDMA/counter: Only bind user QPs in auto mode (bsc#1152489)
- RDMA/hns: Add check for the validity of sl configuration (bsc#1152489)
- RDMA/hns: Bugfix for memory window mtpt configuration (bsc#1152489)
- RDMA/hns: Correct typo of hns_roce_create_cq() (bsc#1152489)
- RDMA/hns: Fix missing sq_sig_type when querying QP (bsc#1152489)
- RDMA/hns: Set the unsupported wr opcode (bsc#1152489)
- RDMA/ipoib: Set rtnl_link_ops for ipoib interfaces (bsc#1152489)
- RDMA/mlx5: Disable IB_DEVICE_MEM_MGT_EXTENSIONS if IB_WR_REG_MR can't
work (bsc#1152489)
- RDMA/netlink: Remove CAP_NET_RAW check when dump a raw QP (bsc#1152489)
- RDMA/pvrdma: Fix missing kfree() in pvrdma_register_device()
(bsc#1152489)
- RDMA/qedr: Endianness warnings cleanup (bsc#1152489)
- RDMA/qedr: Fix doorbell setting (bsc#1152489)
- RDMA/qedr: Fix iWARP active mtu display (bsc#1152489)
- RDMA/qedr: Fix inline size returned for iWARP (bsc#1152489)
- RDMA/qedr: Fix memory leak in iWARP CM (bsc#1152489)
- RDMA/qedr: Fix qp structure memory leak (bsc#1152489)
- RDMA/qedr: Fix resource leak in qedr_create_qp (bsc#1152489)
- RDMA/qedr: Fix use of uninitialized field (bsc#1152489)
- RDMA/qedr: SRQ's bug fixes (bsc#1152489)
- RDMA/rxe: Drop pointless checks in rxe_init_ports (bsc#1152489)
- RDMA/rxe: Fix memleak in rxe_mem_init_user (bsc#1152489)
- RDMA/rxe: Fix skb lifetime in rxe_rcv_mcast_pkt() (bsc#1152489)
- RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars
(bsc#1152489)
- RDMA/rxe: Handle skb_clone() failure in rxe_recv.c (bsc#1152489)
- RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send
queue (bsc#1152489)
- RDMA/rxe: Remove unused rxe_mem_map_pages (bsc#1152489)
- RDMA/rxe: Return void from rxe_init_port_param() (bsc#1152489)
- RDMA/rxe: Return void from rxe_mem_init_dma() (bsc#1152489)
- RDMA/rxe: Skip dgid check in loopback mode (bsc#1152489)
- RDMA/srpt: Fix typo in srpt_unregister_mad_agent docstring (bsc#1152489)
- RDMA/umem: Fix ib_umem_find_best_pgsz() for mappings that cross a page
boundary (bsc#1152489)
- RDMA/umem: Prevent small pages from being returned by
ib_umem_find_best_pgsz() (bsc#1152489)
- Re-import the upstream uvcvideo fix; one more fix will be added later
(bsc#1180117)
- Revert "ACPI / resources: Use AE_CTRL_TERMINATE to terminate resources
walks" (git-fixes).
- Revert "ceph: allow rename operation under different quota realms"
(bsc#1180541).
- Revert "geneve: pull IP header before ECN decapsulation" (git-fixes).
- Revert "i2c: i2c-qcom-geni: Fix DMA transfer race" (git-fixes).
- Revert "platform/x86: wmi: Destroy on cleanup rather than unregister"
(git-fixes).
- Revert "powerpc/pseries/hotplug-cpu: Remove double free in error path"
(bsc#1065729).
- USB: UAS: introduce a quirk to set no_write_same (git-fixes).
- USB: add RESET_RESUME quirk for Snapscan 1212 (git-fixes).
- USB: dummy-hcd: Fix uninitialized array use in init() (git-fixes).
- USB: gadget: f_acm: add support for SuperSpeed Plus (git-fixes).
- USB: gadget: f_midi: setup SuperSpeed Plus descriptors (git-fixes).
- USB: gadget: f_rndis: fix bitrate for SuperSpeed and above (git-fixes).
- USB: gadget: legacy: fix return error code in acm_ms_bind() (git-fixes).
- USB: quirks: Add USB_QUIRK_DISCONNECT_SUSPEND quirk for Lenovo A630Z TIO
built-in usb-audio card (git-fixes).
- USB: serial: ch341: add new Product ID for CH341A (git-fixes).
- USB: serial: ch341: sort device-id entries (git-fixes).
- USB: serial: digi_acceleport: fix write-wakeup deadlocks (git-fixes).
- USB: serial: iuu_phoenix: fix DMA from stack (git-fixes).
- USB: serial: keyspan_pda: fix dropped unthrottle interrupts (git-fixes).
- USB: serial: keyspan_pda: fix stalled writes (git-fixes).
- USB: serial: keyspan_pda: fix tx-unthrottle use-after-free (git-fixes).
- USB: serial: keyspan_pda: fix write deadlock (git-fixes).
- USB: serial: keyspan_pda: fix write unthrottling (git-fixes).
- USB: serial: keyspan_pda: fix write-wakeup use-after-free (git-fixes).
- USB: serial: kl5kusb105: fix memleak on open (git-fixes).
- USB: serial: kl5kusb105: fix memleak on open (git-fixes).
- USB: serial: mos7720: fix parallel-port state restore (git-fixes).
- USB: serial: option: add Fibocom NL668 variants (git-fixes).
- USB: serial: option: add interface-number sanity check to flag handling
(git-fixes).
- USB: serial: option: add support for Thales Cinterion EXS82 (git-fixes).
- USB: serial: option: fix Quectel BG96 matching (git-fixes).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk
set (git-fixes).
- USB: yurex: fix control-URB timeout handling (git-fixes).
- arm64: acpi: Make apei_claim_sea() synchronise with APEI's irq work
(jsc#SLE-16610).
- arm64: mm: Fix ARCH_LOW_ADDRESS_LIMIT when !CONFIG_ZONE_DMA (git-fixes).
- ath10k: Fix an error handling path (git-fixes).
- ath10k: Release some resources in an error handling path (git-fixes).
- ath6kl: fix enum-conversion warning (git-fixes).
- batman-adv: Consider fragmentation for needed_headroom (git-fixes).
- batman-adv: Do not always reallocate the fragmentation skb head
(git-fixes).
- batman-adv: Reserve needed_*room for fragments (git-fixes).
- bitmap: remove unused function declaration (git-fixes).
- blk-mq-blk-mq-provide-forced-completion-method.patch:
(bsc#1175995,jsc#SLE-15608,bsc#1178756).
- blk-mq: Remove 'running from the wrong CPU' warning (bsc#1174486).
- block: return status code in blk_mq_end_request() (bsc#1171000,
bsc#1165933).
- bpf: Fix bpf_put_raw_tracepoint()'s use of __module_address()
(git-fixes).
- btrfs: add missing check for nocow and compression inode flags
(bsc#1178780).
- btrfs: allow btrfs_truncate_block() to fallback to nocow for data space
reservation (bsc#1161099).
- btrfs: delete duplicated words + other fixes in comments (bsc#1180566).
- btrfs: do not commit logs and transactions during link and rename
operations (bsc#1180566).
- btrfs: do not take the log_mutex of the subvolume when pinning the log
(bsc#1180566).
- btrfs: fix missing delalloc new bit for new delalloc ranges
(bsc#1180773).
- btrfs: fix readahead hang and use-after-free after removing a device
(bsc#1179963).
- btrfs: fix use-after-free on readahead extent after failure to create it
(bsc#1179963).
- btrfs: make btrfs_dirty_pages take btrfs_inode (bsc#1180773).
- btrfs: make btrfs_set_extent_delalloc take btrfs_inode (bsc#1180773).
- btrfs: qgroup: do not commit transaction when we already hold the handle
(bsc#1178634).
- btrfs: qgroup: do not try to wait flushing if we're already holding a
transaction (bsc#1179575).
- bus/fsl_mc: Do not rely on caller to provide non NULL mc_io (git-fixes).
- bus: fsl-mc: fix error return code in fsl_mc_object_allocate()
(git-fixes).
- can: c_can: c_can_power_up(): fix error handling (git-fixes).
- can: sja1000: sja1000_err(): do not count arbitration lose as an error
(git-fixes).
- can: softing: softing_netdev_open(): fix error handling (git-fixes).
- can: sun4i_can: sun4i_can_err(): do not count arbitration lose as an
error (git-fixes).
- cfg80211: initialize rekey_data (git-fixes).
- cifs: Fix an error pointer dereference in cifs_mount() (bsc#1178270).
- cifs: add NULL check for ses->tcon_ipc (bsc#1178270).
- cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956).
- cifs: do not share tcons with DFS (bsc#1178270).
- cifs: document and cleanup dfs mount (bsc#1178270).
- cifs: ensure correct super block for DFS reconnect (bsc#1178270).
- cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270).
- cifs: fix check of tcon dfs in smb1 (bsc#1178270).
- cifs: fix double free error on share and prefix (bsc#1178270).
- cifs: fix leaked reference on requeued write (bsc#1178270).
- cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944).
- cifs: fix uninitialised lease_key in open_shroot() (bsc#1178270).
- cifs: get rid of unused parameter in reconn_setup_dfs_targets()
(bsc#1178270).
- cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect
(bsc#1178270).
- cifs: handle empty list of targets in cifs_reconnect() (bsc#1178270).
- cifs: handle hostnames that resolve to same ip in failover (bsc#1178270).
- cifs: merge __{cifs,smb2}_reconnect[_tcon]() into cifs_tree_connect()
(bsc#1178270).
- cifs: only update prefix path of DFS links in cifs_tree_connect()
(bsc#1178270).
- cifs: reduce number of referral requests in DFS link lookups
(bsc#1178270).
- cifs: rename reconn_inval_dfs_target() (bsc#1178270).
- cifs: set up next DFS target before generic_ip_connect() (bsc#1178270).
- clk: at91: sam9x60: remove atmel,osc-bypass support (git-fixes).
- clk: ingenic: Fix divider calculation with div tables (git-fixes).
- clk: mediatek: Make mtk_clk_register_mux() a static function (git-fixes).
- clk: mvebu: a3700: fix the XTAL MODE pin to MPP1_9 (git-fixes).
- clk: renesas: r9a06g032: Drop __packed for portability (git-fixes).
- clk: s2mps11: Fix a resource leak in error handling paths in the probe
function (git-fixes).
- clk: sunxi-ng: Make sure divider tables have sentinel (git-fixes).
- clk: tegra: Do not return 0 on failure (git-fixes).
- clk: tegra: Fix duplicated SE clock entry (git-fixes).
- clk: ti: Fix memleak in ti_fapll_synth_setup (git-fixes).
- clocksource/drivers/arm_arch_timer: Correct fault programming of
CNTKCTL_EL1.EVNTI (git-fixes).
- clocksource/drivers/arm_arch_timer: Use stable count reader in erratum
sne (git-fixes).
- clocksource/drivers/cadence_ttc: Fix memory leak in
ttc_setup_clockevent() (git-fixes).
- clocksource/drivers/orion: Add missing clk_disable_unprepare() on error
path (git-fixes).
- compiler_attributes.h: Add 'fallthrough' pseudo keyword for switch/case
use (bsc#1178203).
- coredump: fix core_pattern parse error (git-fixes).
- cpufreq: ap806: Add missing MODULE_DEVICE_TABLE (git-fixes).
- cpufreq: highbank: Add missing MODULE_DEVICE_TABLE (git-fixes).
- cpufreq: loongson1: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: mediatek: Add missing MODULE_DEVICE_TABLE (git-fixes).
- cpufreq: scpi: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: st: Add missing MODULE_DEVICE_TABLE (git-fixes).
- cpufreq: vexpress-spc: Add missing MODULE_ALIAS (git-fixes).
- crypto: af_alg - avoid undefined behavior accessing salg_name
(git-fixes).
- crypto: atmel-i2c - select CONFIG_BITREVERSE (git-fixes).
- crypto: crypto4xx - Replace bitwise OR with logical OR in
crypto4xx_build_pd (git-fixes).
- crypto: ecdh - avoid buffer overflow in ecdh_set_secret() (git-fixes).
- crypto: ecdh - avoid unaligned accesses in ecdh_set_secret() (git-fixes).
- crypto: inside-secure - Fix sizeof() mismatch (git-fixes).
- crypto: omap-aes - Fix PM disable depth imbalance in omap_aes_probe
(git-fixes).
- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() (git-fixes).
- crypto: sun4i-ss - add the A33 variant of SS (git-fixes).
- crypto: talitos - Endianess in current_desc_hdr() (git-fixes).
- crypto: talitos - Fix return type of current_desc_hdr() (git-fixes).
- cw1200: fix missing destroy_workqueue() on error in cw1200_init_common
(git-fixes).
- dmaengine: at_hdmac: Substitute kzalloc with kmalloc (git-fixes).
- dmaengine: at_hdmac: add missing kfree() call in at_dma_xlate()
(git-fixes).
- dmaengine: at_hdmac: add missing put_device() call in at_dma_xlate()
(git-fixes).
- dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk()
(git-fixes).
- dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the error
handling path of the probe function (git-fixes).
- dmaengine: mv_xor_v2: Fix error return code in mv_xor_v2_probe()
(git-fixes).
- dmaengine: xilinx_dma: check dma_async_device_register return value
(git-fixes).
- dmaengine: xilinx_dma: fix incompatible param warning in _child_probe()
(git-fixes).
- dmaengine: xilinx_dma: fix mixed_enum_type coverity warning (git-fixes).
- drivers: soc: ti: knav_qmss_queue: Fix error return code in
knav_queue_probe (git-fixes).
- drm/amd/display: Fix wrong return value in dm_update_plane_state()
(bsc#1152489)
- drm/amdgpu: pass NULL pointer instead of 0 (bsc#1152489) Backporting
changes: * context fixes
- drm/crc-debugfs: Fix memleak in crc_control_write (bsc#1152472)
- drm/gma500: fix error check (bsc#1152472) Backporting changes: *
context fixes
- drm/i915/gem: Avoid implicit vmap for highmem on x86-32 (bsc#1152489)
Backporting changes: * context fixes
- drm/i915: Fix sha_text population code (bsc#1152489) Backporting
changes: * context fixes * adapted I/O functions to old driver
- drm/imx: tve remove extraneous type qualifier (bsc#1152489)
- drm/mediatek: Add exception handing in mtk_drm_probe() if component
(bsc#1152472)
- drm/mediatek: Add missing put_device() call in (bsc#1152472)
- drm/mediatek: Add missing put_device() call in mtk_drm_kms_init()
(bsc#1152472) Backporting changes: * context fixes * adapted to
function layout
- drm/msm: Avoid div-by-zero in dpu_crtc_atomic_check() (bsc#1152489)
- drm/msm: Drop debug print in _dpu_crtc_setup_lm_bounds() (bsc#1152489)
Backporting changes: * context fixes
- drm/panfrost: Ensure GPU quirks are always initialised (bsc#1152489)
- drm/panfrost: increase readl_relaxed_poll_timeout values (bsc#1152472)
Backporting changes: * context fixes
- drm/radeon: Prefer lower feedback dividers (bsc#1152489)
- drm/sun4i: sun8i-csc: Secondary CSC register correction (bsc#1152489)
- drm/vc4/vc4_hdmi: fill ASoC card owner (bsc#1152489)
- drm/vc4: crtc: Rework a bit the CRTC state code (bsc#1152472)
Backporting changes: * context fixes
- drm/vc4: hdmi: Avoid sleeping in atomic context (bsc#1152489)
Backporting changes: * context fixes
- drm/vkms: fix xrgb on compute crc (bsc#1152472) Backporting changes: *
changed filename from vkms_composer.c to vkms_crc.c * context fixes
- drm: mxsfb: Remove fbdev leftovers (bsc#1152472) Backporting changes: *
context fixes
- drm: mxsfb: check framebuffer pitch (bsc#1152472) Backporting changes:
* context fixes
- drm: panel: Fix bpc for OrtusTech COM43H4M85ULC panel (bsc#1152489)
- drm: panel: Fix bus format for OrtusTech COM43H4M85ULC panel
(bsc#1152472) Backporting changes: * context fixes
- drm: rcar-du: Put reference to VSP device (bsc#1152489)
- epoll: Keep a reference on files added to the check list (bsc#1180031).
- ethtool: fix error handling in ethtool_phys_id (git-fixes).
- ext4: correctly report "not supported" for {usr,grp}jquota when
!CONFIG_QUOTA (bsc#1179672).
- ext4: fix bogus warning in ext4_update_dx_flag() (bsc#1179716).
- ext4: fix leaking sysfs kobject after failed mount (bsc#1179670).
- ext4: limit entries returned when counting fsmap records (bsc#1179671).
- ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
(bsc#1179673).
- extcon: max77693: Fix modalias string (git-fixes).
- fail_function: Remove a redundant mutex unlock (bsc#1149032).
- fbcon: Remove the superfluous break (bsc#1152472)
- firmware: arm_sdei: Document the motivation behind these set_fs() calls
(jsc#SLE-16610).
- fix regression in "epoll: Keep a reference on files added to the check
list" (bsc#1180031, git-fixes).
- fs/minix: check return value of sb_getblk() (bsc#1179676).
- fs/minix: do not allow getting deleted inodes (bsc#1179677).
- fs/minix: fix block limit check for V1 filesystems (bsc#1179680).
- fs/minix: reject too-large maximum file size (bsc#1179678).
- fs/minix: remove expected error message in block_to_path() (bsc#1179681).
- fs/minix: set s_maxbytes correctly (bsc#1179679).
- fs/ufs: avoid potential u32 multiplication overflow (bsc#1179682).
- fs: Do not invalidate page buffers in block_write_full_page()
(bsc#1179711).
- ftrace: Fix updating FTRACE_FL_TRAMP (git-fixes).
- geneve: pull IP header before ECN decapsulation (git-fixes).
- genirq/irqdomain: Add an irq_create_mapping_affinity() function
(bsc#1065729).
- genirq/matrix: Deal with the sillyness of for_each_cpu() on UP
(bsc#1156315).
- gpio: mvebu: fix potential user-after-free on probe (git-fixes).
- gpio: mvebu: update Armada XP per-CPU comment (git-fixes).
- i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly
terminated (git-fixes).
- i2c: qup: Fix error return code in qup_i2c_bam_schedule_desc()
(git-fixes).
- i2c: sprd: use a specific timeout to avoid system hang up issue
(git-fixes).
- i3c master: fix missing destroy_workqueue() on error in
i3c_master_register (git-fixes).
- ibmvnic: add some debugs (bsc#1179896 ltc#190255).
- ibmvnic: avoid memset null scrq msgs (bsc#1044767 ltc#155231 git-fixes).
- ibmvnic: continue fatal error reset after passive init (bsc#1171078
ltc#184239 git-fixes).
- ibmvnic: delay next reset if hard reset fails (bsc#1094840 ltc#167098
git-fixes).
- ibmvnic: enhance resetting status check during module exit (bsc#1065729).
- ibmvnic: fix NULL pointer dereference in reset_sub_crq_queues
(bsc#1040855 ltc#155067 git-fixes).
- ibmvnic: fix call_netdevice_notifiers in do_reset (bsc#1115431
ltc#171853 git-fixes).
- ibmvnic: fix: NULL pointer dereference (bsc#1044767 ltc#155231
git-fixes).
- ibmvnic: notify peers when failover and migration happen (bsc#1044120
ltc#155423 git-fixes).
- ibmvnic: restore adapter state on failed reset (bsc#1152457 ltc#174432
git-fixes).
- iio: adc: rockchip_saradc: fix missing clk_disable_unprepare() on error
in rockchip_saradc_resume (git-fixes).
- iio: buffer: Fix demux update (git-fixes).
- iio:adc:ti-ads124s08: Fix alignment and data leak issues (git-fixes).
- iio:adc:ti-ads124s08: Fix buffer being too long (git-fixes).
- iio:imu:bmi160: Fix too large a buffer (git-fixes).
- iio:light:rpr0521: Fix timestamp alignment and prevent data leak
(git-fixes).
- iio:light:st_uvis25: Fix timestamp alignment and prevent data leak
(git-fixes).
- iio:magnetometer:mag3110: Fix alignment and data leak issues (git-fixes).
- iio:pressure:mpl3115: Force alignment of buffer (git-fixes).
- inet_ecn: Fix endianness of checksum update when setting ECT(1)
(git-fixes).
- iomap: Clear page error before beginning a write (bsc#1179683).
- iomap: Mark read blocks uptodate in write_begin (bsc#1179684).
- iomap: Set all uptodate bits for an Uptodate page (bsc#1179685).
- iommu-amd-Increase-interrupt-remapping-table-limit-t.patch:
(bsc#1179652).
- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs (bsc#1179652).
- iwlwifi: mvm: fix kernel panic in case of assert during CSA (git-fixes).
- iwlwifi: mvm: hook up missing RX handlers (git-fixes).
- iwlwifi: pcie: add one missing entry for AX210 (git-fixes).
- iwlwifi: pcie: limit memory read spin time (git-fixes).
- jbd2: fix up sparse warnings in checkpoint code (bsc#1179707).
- kABI workaround for HD-audio generic parser (git-fixes).
- kABI workaround for USB audio driver (bsc#1178203).
- kABI: genirq: add back irq_create_mapping (bsc#1065729).
- kdb: Fix pager search for multi-line strings (git-fixes).
- kernel/cpu: add arch override for clear_tasks_mm_cpumask() mm handling
(bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253).
- kgdb: Drop malformed kernel doc comment (git-fixes).
- lan743x: fix for potential NULL pointer dereference with bare card
(git-fixes).
- lib/string: remove unnecessary #undefs (git-fixes).
- libfs: fix error cast of negative value in simple_attr_write()
(bsc#1179709).
- locking/percpu-rwsem: Use this_cpu_{inc,dec}() for read_count
(bsc#1149032).
- mac80211: do not set set TDLS STA bandwidth wider than possible
(git-fixes).
- mac80211: mesh: fix mesh_pathtbl_init() error path (git-fixes).
- md-cluster: fix rmmod issue when md_cluster convert bitmap to none
(bsc#1163727).
- md-cluster: fix safemode_delay value when converting to clustered bitmap
(bsc#1163727).
- md-cluster: fix wild pointer of unlock_all_bitmaps() (bsc#1163727).
- md/bitmap: fix memory leak of temporary bitmap (bsc#1163727).
- md/bitmap: md_bitmap_get_counter returns wrong blocks (bsc#1163727).
- md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks (bsc#1163727).
- md/cluster: block reshape with remote resync job (bsc#1163727).
- md/cluster: fix deadlock when node is doing resync job (bsc#1163727).
- media: gp8psk: initialize stats at power control logic (git-fixes).
- media: gspca: Fix memory leak in probe (git-fixes).
- media: imx214: Fix stop streaming (git-fixes).
- media: ipu3-cio2: Make the field on subdev format V4L2_FIELD_NONE
(git-fixes).
- media: ipu3-cio2: Remove traces of returned buffers (git-fixes).
- media: ipu3-cio2: Return actual subdev format (git-fixes).
- media: ipu3-cio2: Serialise access to pad format (git-fixes).
- media: ipu3-cio2: Validate mbus format in setting subdev format
(git-fixes).
- media: max2175: fix max2175_set_csm_mode() error code (git-fixes).
- media: msi2500: assign SPI bus number dynamically (git-fixes).
- media: mtk-vcodec: add missing put_device() call in
mtk_vcodec_init_dec_pm() (git-fixes).
- media: mtk-vcodec: add missing put_device() call in
mtk_vcodec_init_enc_pm() (git-fixes).
- media: mtk-vcodec: add missing put_device() call in
mtk_vcodec_release_dec_pm() (git-fixes).
- media: saa7146: fix array overflow in vidioc_s_audio() (git-fixes).
- media: siano: fix memory leak of debugfs members in smsdvb_hotplug
(git-fixes).
- media: solo6x10: fix missing snd_card_free in error handling case
(git-fixes).
- media: sunxi-cir: ensure IR is handled when it is continuous (git-fixes).
- media: tm6000: Fix sizeof() mismatches (git-fixes).
- media: uvcvideo: Accept invalid bFormatIndex and bFrameIndex values
(bsc#1180117).
- memstick: fix a double-free bug in memstick_check (git-fixes).
- memstick: r592: Fix error return in r592_probe() (git-fixes).
- mfd: rt5033: Fix errorneous defines (git-fixes).
- misc: vmw_vmci: fix kernel info-leak by initializing dbells in
vmci_ctx_get_chkpt_doorbells() (git-fixes).
- mm,memory_failure: always pin the page in madvise_inject_error
(bsc#1180258).
- mm/error_inject: Fix allow_error_inject function signatures
(bsc#1179710).
- mm/memory-failure: Add memory_failure_queue_kick() (jsc#SLE-16610).
- mm/memory_hotplug: shrink zones when offlining memory (bsc#1177679).
- mm/userfaultfd: do not access vma->vm_mm after calling
handle_userfault() (bsc#1179204).
- mm: memcg: fix memcg reclaim soft lockup (VM Functionality, bsc#1180056).
- mmc: block: Fixup condition for CMD13 polling for RPMB requests
(git-fixes).
- mmc: pxamci: Fix error return code in pxamci_probe (git-fixes).
- mtd: rawnand: gpmi: Fix the random DMA timeout issue (git-fixes).
- mtd: rawnand: gpmi: fix reference count leak in gpmi ops (git-fixes).
- mtd: rawnand: meson: Fix a resource leak in init (git-fixes).
- mtd: rawnand: meson: fix meson_nfc_dma_buffer_release() arguments
(git-fixes).
- mtd: rawnand: qcom: Fix DMA sync on FLASH_STATUS register read
(git-fixes).
- mtd: spinand: Fix OOB read (git-fixes).
- mwifiex: fix mwifiex_shutdown_sw() causing sw reset failure (git-fixes).
- net/x25: prevent a couple of overflows (bsc#1178590).
- net: sctp: Rename fallthrough label to unhandled (bsc#1178203).
- nfc: s3fwrn5: Release the nfc firmware (git-fixes).
- nvme-fabrics: allow to queue requests for live queues (git-fixes).
- nvme-fabrics: do not check state NVME_CTRL_NEW for request acceptance
(bsc#1179519).
- nvme-fc: avoid calling _nvme_fc_abort_outstanding_ios from interrupt
context (bsc#1177326).
- nvme-fc: cancel async events before freeing event struct (git-fixes).
- nvme-fc: eliminate terminate_io use by nvme_fc_error_recovery
(bsc#1177326).
- nvme-fc: fix error loop in create_hw_io_queues (git-fixes).
- nvme-fc: fix io timeout to abort I/O (bsc#1177326).
- nvme-fc: remove err_work work item (bsc#1177326).
- nvme-fc: remove nvme_fc_terminate_io() (bsc#1177326).
- nvme-fc: shorten reconnect delay if possible for FC (git-fixes).
- nvme-fc: track error_recovery while connecting (bsc#1177326).
- nvme-fc: wait for queues to freeze before calling (git-fixes).
- nvme-force-complete-cancelled-requests.patch:
(bsc#1175995,bsc#1178756,jsc#SLE-15608). Without this we can end up with
a series of nvme QID timeouts, regardless of filesystem when fstests is
used or any error injection mechanism is used. Without this fix, we end
up with 9 failures on xfs, but due to its generic nature, will likely
end up with other failures on other filesystems. This does not allow a
clean slate reliable fstests run. This fixes that issue. Through code
inspection I found these changes were already present on SLE15-SP3 but
not on SLE15-SP2.
- nvme-multipath: fix bogus request queue reference put (bsc#1175389).
- nvme-multipath: fix deadlock between ana_work and scan_work (git-fixes).
- nvme-multipath: fix deadlock due to head->lock (git-fixes).
- nvme-pci: properly print controller address (git-fixes).
- nvme-rdma: avoid race between time out and tear down (bsc#1179519).
- nvme-rdma: avoid repeated request completion (bsc#1179519).
- nvme-rdma: cancel async events before freeing event struct (git-fixes).
- nvme-rdma: fix controller reset hang during traffic (bsc#1179519).
- nvme-rdma: fix reset hang if controller died in the middle of a reset
(bsc#1179519).
- nvme-rdma: fix timeout handler (bsc#1179519).
- nvme-rdma: handle unexpected nvme completion data length (bsc#1178612).
- nvme-rdma: serialize controller teardown sequences (bsc#1179519).
- nvme-tcp: avoid race between time out and tear down (bsc#1179519).
- nvme-tcp: avoid repeated request completion (bsc#1179519).
- nvme-tcp: avoid scheduling io_work if we are already polling
(bsc#1179519).
- nvme-tcp: break from io_work loop if recv failed (bsc#1179519).
- nvme-tcp: cancel async events before freeing event struct (git-fixes).
- nvme-tcp: do not poll a non-live queue (bsc#1179519).
- nvme-tcp: fix controller reset hang during traffic (bsc#1179519).
- nvme-tcp: fix possible crash in recv error flow (bsc#1179519).
- nvme-tcp: fix possible leakage during error flow (git-fixes).
- nvme-tcp: fix reset hang if controller died in the middle of a reset
(bsc#1179519).
- nvme-tcp: fix timeout handler (bsc#1179519).
- nvme-tcp: have queue prod/cons send list become a llist (bsc#1179519).
- nvme-tcp: leverage request plugging (bsc#1179519).
- nvme-tcp: move send failure to nvme_tcp_try_send (bsc#1179519).
- nvme-tcp: optimize network stack with setting msg flags (bsc#1179519).
- nvme-tcp: optimize queue io_cpu assignment for multiple queue
(git-fixes).
- nvme-tcp: serialize controller teardown sequences (bsc#1179519).
- nvme-tcp: set MSG_SENDPAGE_NOTLAST with MSG_MORE when we have
(bsc#1179519).
- nvme-tcp: try to send request in queue_rq context (bsc#1179519).
- nvme-tcp: use bh_lock in data_ready (bsc#1179519).
- nvme: Revert: Fix controller creation races with teardown (git-fixes).
- nvme: do not protect ns mutation with ns->head->lock (git-fixes).
- nvme: have nvme_wait_freeze_timeout return if it timed out (bsc#1179519).
- nvme: introduce nvme_sync_io_queues (bsc#1179519).
- nvmet-fc: fix missing check for no hostport struct (bsc#1176942).
- nvmet-tcp: fix maxh2cdata icresp parameter (bsc#1179892).
- ocfs2: fix unbalanced locking (bsc#1180506).
- orinoco: Move context allocation after processing the skb (git-fixes).
- pinctrl: amd: remove debounce filter setting in IRQ type setting
(git-fixes).
- pinctrl: aspeed: Fix GPIO requests on pass-through banks (git-fixes).
- pinctrl: baytrail: Avoid clearing debounce value when turning it off
(git-fixes).
- pinctrl: falcon: add missing put_device() call in pinctrl_falcon_probe()
(git-fixes).
- pinctrl: merrifield: Set default bias in case no particular value given
(git-fixes).
- platform/chrome: cros_ec_spi: Do not overwrite spi::mode (git-fixes).
- platform/x86: acer-wmi: add automatic keyboard background light toggle
key as KEY_LIGHTS_TOGGLE (git-fixes).
- platform/x86: dell-smbios-base: Fix error return code in
dell_smbios_init (git-fixes).
- platform/x86: intel-vbtn: Allow switch events on Acer Switch Alpha 12
(git-fixes).
- platform/x86: intel-vbtn: Support for tablet mode on HP Pavilion 13 x360
PC (git-fixes).
- platform/x86: mlx-platform: Fix item counter assignment for MSN2700,
MSN24xx systems (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from MSN274x platform
configuration (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from default platform
configuration (git-fixes).
- platform/x86: mlx-platform: remove an unused variable (git-fixes).
- platform/x86: thinkpad_acpi: Add BAT1 is primary battery quirk for
Thinkpad Yoga 11e 4th gen (git-fixes).
- platform/x86: thinkpad_acpi: Do not report SW_TABLET_MODE on Yoga 11e
(git-fixes).
- platform/x86: touchscreen_dmi: Add info for the Irbis TW118 tablet
(git-fixes).
- power: supply: axp288_charger: Fix HP Pavilion x2 10 DMI matching
(git-fixes).
- power: supply: bq24190_charger: fix reference leak (git-fixes).
- powerpc/64: Set up a kernel stack for secondaries before cpu_restore()
(bsc#1065729).
- powerpc/64s/powernv: Fix memory corruption when saving SLB entries on
MCE (jsc#SLE-9246 git-fixes).
- powerpc/64s/pseries: Fix hash tlbiel_all_isa300 for guest kernels
(bsc#1179888 ltc#190253).
- powerpc/64s: Fix allnoconfig build since uaccess flush (bsc#1177666
git-fixes).
- powerpc/64s: Fix hash ISA v3.0 TLBIEL instruction generation
(bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253).
- powerpc/64s: Trim offlined CPUs from mm_cpumasks (bsc#1055117 ltc#159753
git-fixes bsc#1179888 ltc#190253).
- powerpc/bitops: Fix possible undefined behaviour with fls() and fls64()
(bsc#1156395).
- powerpc/eeh_cache: Fix a possible debugfs deadlock (bsc#1156395).
- powerpc/numa: Fix a regression on memoryless node 0 (bsc#1179639
ltc#189002).
- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145
ltc#184630).
- powerpc/perf: Fix crash with is_sier_available when pmu is not set
(bsc#1179578 ltc#189313).
- powerpc/pseries/hibernation: remove redundant cacheinfo update
(bsc#1138374 ltc#178199 git-fixes).
- powerpc/pseries: Pass MSI affinity to irq_create_mapping() (bsc#1065729).
- powerpc/smp: Add __init to init_big_cores() (bsc#1109695 ltc#171067
git-fixes).
- powerpc/xmon: Change printk() to pr_cont() (bsc#1065729).
- powerpc: Avoid broken GCC __attribute__((optimize)) (bsc#1156395).
- powerpc: Fix incorrect stw{, ux, u, x} instructions in __set_pte_at
(bsc#1065729).
- pwm: lp3943: Dynamically allocate PWM chip base (git-fixes).
- pwm: zx: Add missing cleanup in error path (git-fixes).
- qede: Notify qedr when mtu has changed (bsc#1152489)
- qtnfmac: fix error return code in qtnf_pcie_probe() (git-fixes).
- quota: clear padding in v2r1_mem2diskdqb() (bsc#1179714).
- r8169: work around power-saving bug on some chip versions (git-fixes).
- regmap: Remove duplicate `type` field from regmap `regcache_sync` trace
event (git-fixes).
- regmap: debugfs: Fix a memory leak when calling regmap_attach_dev
(git-fixes).
- regmap: debugfs: Fix a reversed if statement in regmap_debugfs_init()
(git-fixes).
- regulator: axp20x: Fix DLDO2 voltage control register mask for AXP22x
(git-fixes).
- regulator: mcp16502: add linear_min_sel (git-fixes).
- reiserfs: Fix oops during mount (bsc#1179715).
- reiserfs: Initialize inode keys properly (bsc#1179713).
- remoteproc: q6v5-mss: fix error handling in q6v5_pds_enable (git-fixes).
- remoteproc: qcom: Fix potential NULL dereference in adsp_init_mmio()
(git-fixes).
- remoteproc: qcom: fix reference leak in adsp_start (git-fixes).
- rsi: fix error return code in rsi_reset_card() (git-fixes).
- rtc: ep93xx: Fix NULL pointer dereference in ep93xx_rtc_read_time
(git-fixes).
- rtc: hym8563: enable wakeup when applicable (git-fixes).
- rtc: pl031: fix resource leak in pl031_probe (git-fixes).
- rtc: sun6i: Fix memleak in sun6i_rtc_clk_init (git-fixes).
- rtw88: debug: Fix uninitialized memory in debugfs code (git-fixes).
- s390/cpuinfo: show processor physical address (git-fixes).
- s390/pci: fix CPU address in MSI for directed IRQ (git-fixes).
- s390/qeth: delay draining the TX buffers (git-fixes).
- s390/qeth: fix af_iucv notification race (git-fixes).
- s390/qeth: fix tear down of async TX buffers (git-fixes).
- s390/qeth: make af_iucv TX notification call more robust (bsc#1179604
LTC#190151).
- s390: add 3f program exception handler (git-fixes).
- samples/bpf: Remove unused test_ipip.sh (bsc#1155518).
- samples: bpf: Refactor test_cgrp2_sock2 program with libbpf
(bsc#1155518).
- sched/fair: Check for idle core in wake_affine (git fixes (sched)).
- sched/fair: Fix overutilized update in enqueue_task_fair() (git-fixes)
- sched/fair: Fix race between runtime distribution and (git-fixes)
- sched/fair: Fix wrong cpu selecting from isolated domain (git-fixes)
- sched/fair: Refill bandwidth before scaling (git-fixes)
- sched: correct SD_flags returned by tl->sd_flags() (git-fixes)
- scsi: Remove unneeded break statements (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: core: Fix VPD LUN ID designator priorities (bsc#1178049).
- scsi: core: Return BLK_STS_AGAIN for ALUA transitioning (bsc#1165933,
bsc#1171000).
- scsi: fnic: Avoid looping in TRANS ETH on unload (bsc#1175079).
- scsi: fnic: Change shost_printk() to FNIC_FCS_DBG() (bsc#1175079).
- scsi: fnic: Change shost_printk() to FNIC_MAIN_DBG() (bsc#1175079).
- scsi: fnic: Set scsi_set_resid() only for underflow (bsc#1175079).
- scsi: fnic: Validate io_req before others (bsc#1175079).
- scsi: lpfc: Add FDMI Vendor MIB support (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Convert SCSI I/O completions to SLI-3 and SLI-4 handlers
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Convert SCSI path to use common I/O submission path
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Convert abort handling to SLI-3 and SLI-4 handlers
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Correct null ndlp reference on routine exit (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Drop nodelist reference on error in lpfc_gen_req()
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Enable common send_io interface for SCSI and NVMe
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Enable common wqe_template support for both SCSI and NVMe
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Enlarge max_sectors in scsi host templates (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Extend the RDF FPIN Registration descriptor for additional
events (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix NPIV Fabric Node reference counting (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix NPIV discovery and Fabric Node detection (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix duplicate wq_create_version check (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix fall-through warnings for Clang (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix initial FLOGI failure due to BBSCN not supported
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix invalid sleeping context in lpfc_sli4_nvmet_alloc()
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix memory leak on lcb_context (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix missing prototype for lpfc_nvmet_prep_abort_wqe()
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix missing prototype warning for lpfc_fdmi_vendor_attr_mi()
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix pointer defereference before it is null checked issue
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix refcounting around SCSI and NVMe transport APIs
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix removal of SCSI transport device get and put on dev
structure (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix scheduling call while in softirq context in
lpfc_unreg_rpi (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix set but not used warnings from Rework remote port lock
handling (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix set but unused variables in lpfc_dev_loss_tmo_handler()
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix spelling mistake "Cant" -> "Can't" (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Fix variable 'vport' set but not used in
lpfc_sli4_abts_err_handler() (bsc#1175480 bsc#1176396 bsc#1176942
bsc#1177500).
- scsi: lpfc: Re-fix use after free in lpfc_rq_buf_free() (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Refactor WQE structure definitions for common use
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Reject CT request for MIB commands (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Remove dead code on second !ndlp check (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Remove ndlp when a PLOGI/ADISC/PRLI/REG_RPI ultimately fails
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Remove set but not used 'qp' (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Remove unneeded variable 'status' in
lpfc_fcp_cpu_map_store() (bsc#1175480 bsc#1176396 bsc#1176942
bsc#1177500).
- scsi: lpfc: Removed unused macros in lpfc_attr.c (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Rework locations of ndlp reference taking (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Rework remote port lock handling (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Rework remote port ref counting and node freeing
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Unsolicited ELS leaves node in incorrect state while
dropping it (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Update changed file copyrights for 2020 (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: Update lpfc version to 12.8.0.4 (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Update lpfc version to 12.8.0.5 (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Update lpfc version to 12.8.0.6 (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: Use generic power management (bsc#1175480 bsc#1176396
bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_attr: Demote kernel-doc format for redefined functions
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_attr: Fix-up a bunch of kernel-doc misdemeanours
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_bsg: Provide correct documentation for a bunch of
functions (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_debugfs: Fix a couple of function documentation issues
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_nvme: Fix some kernel-doc related issues (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_nvme: Remove unused variable 'phba' (bsc#1175480
bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_nvmet: Fix-up some formatting and doc-rot issues
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: lpfc: lpfc_scsi: Fix a whole host of kernel-doc issues
(bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500).
- scsi: mpt3sas: A small correction in _base_process_reply_queue
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Add bypass_dirty_port_flag parameter (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Add functions to check if any cmd is outstanding on
Target and LUN (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Add module parameter multipath_on_hba (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Allocate memory for hba_port objects (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Bump driver version to 35.101.00.00 (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Cancel the running work during host reset (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Capture IOC data for debugging purposes (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Define hba_port structure (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Detect tampered Aero and Sea adapters (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Disable DIF when prot_mask set to zero (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Do not call disable_irq from IRQ poll handler
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Do not change the DMA coherent mask after allocations
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Dump system registers for debugging (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Fix double free warnings (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Fix error returns in BRM_status_show (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Fix memset() in non-RDPQ mode (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Fix reply queue count in non RDPQ mode (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Fix set but unused variable (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Fix sync irqs (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Fix unlock imbalance (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Get device objects using sas_address & portID
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Get sas_device objects using device's rphy
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Handle RDPQ DMA allocation in same 4G region
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Handle vSES vphy object during HBA reset (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Handling HBA vSES device (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Memset config_cmds.reply buffer with zeros
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Postprocessing of target and LUN reset (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Remove NULL check before freeing function (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Remove pci-dma-compat wrapper API (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Remove superfluous memset() (jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Rename and export interrupt mask/unmask functions
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Rename function name is_MSB_are_same (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Separate out RDPQ allocation to new function
(jsc#SLE-16914, bsc#1177733).
- scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Update driver version to 35.100.00.00 (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Update hba_port objects after host reset (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Update hba_port's sas_address & phy_mask (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Update mpt3sas version to 33.101.00.00 (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: Use true, false for ioc->use_32bit_dma (jsc#SLE-16914,
bsc#1177733).
- scsi: mpt3sas: use true,false for bool variables (jsc#SLE-16914,
bsc#1177733).
- scsi: qla2xxx: Change post del message from debug level to log level
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Do not check for fw_started while posting NVMe command
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Do not consume srb greedily (bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Fix FW initialization error on big endian machines
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Fix N2N and NVMe connect retry failure (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Fix compilation issue in PPC systems (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Fix crash during driver load on big endian machines
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Fix device loss on 4G and older HBAs (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Fix flash update in 28XX adapters on big endian machines
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Fix return of uninitialized value in rval (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Fix the call trace for flush workqueue (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Handle aborts correctly for port undergoing deletion
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Handle incorrect entry_type entries (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: If fcport is undergoing deletion complete I/O with retry
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Initialize variable in qla8044_poll_reg() (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Limit interrupt vectors to number of CPUs (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Move sess cmd list/lock to driver (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Remove in_interrupt() from qla82xx-specific code
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Remove in_interrupt() from qla83xx-specific code
(bsc#1171688 bsc#1172733).
- scsi: qla2xxx: Return EBUSY on fcport deletion (bsc#1171688
bsc#1172733). Replace
patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch with upstream
version.
- scsi: qla2xxx: Tear down session if FW say it is down (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Update version to 10.02.00.104-k (bsc#1171688
bsc#1172733).
- scsi: qla2xxx: Use constant when it is known (bsc#1171688 bsc#1172733).
Refresh: - patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch
- scsi: qla2xxx: remove incorrect sparse #ifdef (bsc#1171688 bsc#1172733).
- scsi: storvsc: Fix error return in storvsc_probe() (git-fixes).
- scsi: target: tcm_qla2xxx: Remove BUG_ON(in_interrupt()) (bsc#1171688
bsc#1172733).
- scsi_dh_alua: return BLK_STS_AGAIN for ALUA transitioning state
(bsc#1165933, bsc#1171000).
- scsi_dh_alua: set 'transitioning' state on unit attention (bsc#1171000,
bsc#1165933).
- selftest/bpf: Add missed ip6ip6 test back (bsc#1155518).
- selftests/bpf/test_offload.py: Reset ethtool features after failed
setting (bsc#1155518).
- selftests/bpf: Fix invalid use of strncat in test_sockmap (bsc#1155518).
- selftests/bpf: Print reason when a tester could not run a program
(bsc#1155518).
- serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access
(git-fixes).
- serial_core: Check for port state when tty is in error state (git-fixes).
- slimbus: qcom-ngd-ctrl: Avoid sending power requests without QMI
(git-fixes).
- soc/tegra: fuse: Fix index bug in get_process_id (git-fixes).
- soc: amlogic: canvas: add missing put_device() call in
meson_canvas_get() (git-fixes).
- soc: fsl: dpio: Get the cpumask through cpumask_of(cpu) (git-fixes).
- soc: mediatek: Check if power domains can be powered on at boot time
(git-fixes).
- soc: qcom: geni: More properly switch to DMA mode (git-fixes).
- soc: qcom: smp2p: Safely acquire spinlock without IRQs (git-fixes).
- soc: renesas: rmobile-sysc: Fix some leaks in rmobile_init_pm_domains()
(git-fixes).
- soc: ti: Fix reference imbalance in knav_dma_probe (git-fixes).
- soc: ti: knav_qmss: fix reference leak in knav_queue_probe (git-fixes).
- speakup: fix uninitialized flush_lock (git-fixes).
- spi: atmel-quadspi: Disable clock in probe error path (git-fixes).
- spi: atmel-quadspi: Fix AHB memory accesses (git-fixes).
- spi: bcm63xx-hsspi: fix missing clk_disable_unprepare() on error in
bcm63xx_hsspi_resume (git-fixes).
- spi: davinci: Fix use-after-free on unbind (git-fixes).
- spi: fix resource leak for drivers without .remove callback (git-fixes).
- spi: img-spfi: fix reference leak in img_spfi_resume (git-fixes).
- spi: mt7621: Disable clock in probe error path (git-fixes).
- spi: mt7621: fix missing clk_disable_unprepare() on error in
mt7621_spi_probe (git-fixes).
- spi: mxs: fix reference leak in mxs_spi_probe (git-fixes).
- spi: pic32: Do not leak DMA channels in probe error path (git-fixes).
- spi: spi-mem: Fix passing zero to 'PTR_ERR' warning (git-fixes).
- spi: spi-mem: fix reference leak in spi_mem_access_start (git-fixes).
- spi: spi-nxp-fspi: fix fspi panic by unexpected interrupts (git-fixes).
- spi: spi-ti-qspi: fix reference leak in ti_qspi_setup (git-fixes).
- spi: sprd: fix reference leak in sprd_spi_remove (git-fixes).
- spi: st-ssc4: Fix unbalanced pm_runtime_disable() in probe error path
(git-fixes).
- spi: stm32: FIFO threshold level - fix align packet size (git-fixes).
- spi: stm32: fix reference leak in stm32_spi_resume (git-fixes).
- spi: synquacer: Disable clock in probe error path (git-fixes).
- spi: tegra114: fix reference leak in tegra spi ops (git-fixes).
- spi: tegra20-sflash: fix reference leak in tegra_sflash_resume
(git-fixes).
- spi: tegra20-slink: fix reference leak in slink ops of tegra20
(git-fixes).
- staging: comedi: mf6x4: Fix AI end-of-conversion detection (git-fixes).
- staging: mt7621-dma: Fix a resource leak in an error handling path
(git-fixes).
- staging: olpc_dcon: Do not call platform_device_unregister() in
dcon_probe() (git-fixes).
- staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb()
(git-fixes).
- swiotlb: fix "x86: Do not panic if can not alloc buffer for swiotlb"
(git-fixes).
- swiotlb: using SIZE_MAX needs limits.h included (git-fixes).
- thunderbolt: Fix use-after-free in remove_unplugged_switch() (git-fixes).
- tty: Fix ->pgrp locking in tiocspgrp() (git-fixes).
- tty: Fix ->session locking (bsc#1179745).
- ubifs: Do not parse authentication mount options in remount process
(bsc#1179688).
- ubifs: Fix a memleak after dumping authentication mount options
(bsc#1179687).
- ubifs: Fix wrong orphan node deletion in ubifs_jnl_update|rename
(bsc#1179675).
- ubifs: dent: Fix some potential memory leaks while iterating entries
(bsc#1179703).
- ubifs: journal: Make sure to not dirty twice for auth nodes
(bsc#1179704).
- ubifs: mount_ubifs: Release authentication resource in error handling
path (bsc#1179689).
- ubifs: xattr: Fix some potential memory leaks while iterating entries
(bsc#1179690).
- udf: Fix memory leak when mounting (bsc#1179712).
- usb/max3421: fix return error code in max3421_probe() (git-fixes).
- usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag to imx6ul
(git-fixes).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (git-fixes).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access completion
(git-fixes).
- usb: ehci-omap: Fix PM disable depth umbalance in ehci_hcd_omap_probe
(git-fixes).
- usb: gadget: configfs: Preserve function ordering after bind failure
(git-fixes).
- usb: gadget: f_fs: Re-use SS descriptors for SuperSpeedPlus (git-fixes).
- usb: gadget: f_fs: Use local copy of descriptors for userspace copy
(git-fixes).
- usb: gadget: f_uac2: reset wMaxPacketSize (git-fixes).
- usb: gadget: select CONFIG_CRC32 (git-fixes).
- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
(git-fixes).
- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe()
(git-fixes).
- usb: mtu3: fix memory corruption in mtu3_debugfs_regset() (git-fixes).
- usb: oxu210hp-hcd: Fix memory leak in oxu_create (git-fixes).
- usb: usbip: vhci_hcd: protect shift size (git-fixes).
- usbnet: ipheth: fix connectivity with iOS 14 (git-fixes).
- video: fbdev: radeon: Fix memleak in radeonfb_pci_register (bsc#1152472)
- video: fbdev: sis: fix null ptr dereference (bsc#1152472)
- wan: ds26522: select CONFIG_BITREVERSE (git-fixes).
- watchdog: Fix potential dereferencing of null pointer (git-fixes).
- watchdog: armada_37xx: Add missing dependency on HAS_IOMEM (git-fixes).
- watchdog: coh901327: add COMMON_CLK dependency (git-fixes).
- watchdog: qcom: Avoid context switch in restart handler (git-fixes).
- watchdog: sirfsoc: Add missing dependency on HAS_IOMEM (git-fixes).
- watchdog: sprd: change to use usleep_range() instead of busy loop
(git-fixes).
- watchdog: sprd: check busy bit before new loading rather than after that
(git-fixes).
- watchdog: sprd: remove watchdog disable from resume fail path
(git-fixes).
- wil6210: select CONFIG_CRC32 (git-fixes).
- wimax: fix duplicate initializer warning (git-fixes).
- x86/CPU/AMD: Remove amd_get_nb_id() (bsc#1152489).
- x86/CPU/AMD: Save AMD NodeId as cpu_die_id (bsc#1152489).
- x86/apic/vector: Fix ordering in vector assignment (bsc#1156315).
- x86/ima: use correct identifier for SetupMode variable (bsc#1152489).
- x86/insn-eval: Use new for_each_insn_prefix() macro to loop over
prefixes bytes (bsc#1152489).
- x86/mce: Do not overwrite no_way_out if mce_end() fails (bsc#1152489).
- x86/mm/ident_map: Check for errors from ident_pud_init() (bsc#1152489).
- x86/mm/mem_encrypt: Fix definition of PMD_FLAGS_DEC_WP (bsc#1152489).
- x86/mm/numa: Remove uninitialized_var() usage (bsc#1152489).
- x86/mm: Fix leak of pmd ptlock (bsc#1152489).
- x86/mtrr: Correct the range check before performing MTRR type lookups
(bsc#1152489).
- x86/resctrl: Add necessary kernfs_put() calls to prevent refcount leak
(bsc#1152489).
- x86/resctrl: Do not move a task to the same resource group (bsc#1152489).
- x86/resctrl: Fix AMD L3 QOS CDP enable/disable (bsc#1152489).
- x86/resctrl: Fix incorrect local bandwidth when mba_sc is enabled
(bsc#1152489).
- x86/resctrl: Remove superfluous kernfs_get() calls to prevent refcount
leak (bsc#1152489).
- x86/resctrl: Remove unused struct mbm_state::chunks_bw (bsc#1152489).
- x86/resctrl: Use an IPI instead of task_work_add() to update PQR_ASSOC
MSR (bsc#1152489).
- x86/speculation: Fix prctl() when spectre_v2_user={seccomp,prctl},ibpb
(bsc#1152489).
- x86/topology: Set cpu_die_id only if DIE_TYPE found (bsc#1152489).
- x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
(bsc#1152489).
- xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP
(git-fixes).
- xhci: Give USB2 ports time to enter U3 in bus suspend (git-fixes).
Special Instructions and Notes:
Please reboot the system after installing this update.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-60=1
Package List:
- openSUSE Leap 15.2 (noarch):
kernel-devel-5.3.18-lp152.60.1
kernel-docs-5.3.18-lp152.60.1
kernel-docs-html-5.3.18-lp152.60.1
kernel-macros-5.3.18-lp152.60.1
kernel-source-5.3.18-lp152.60.1
kernel-source-vanilla-5.3.18-lp152.60.1
- openSUSE Leap 15.2 (x86_64):
kernel-debug-5.3.18-lp152.60.1
kernel-debug-debuginfo-5.3.18-lp152.60.1
kernel-debug-debugsource-5.3.18-lp152.60.1
kernel-debug-devel-5.3.18-lp152.60.1
kernel-debug-devel-debuginfo-5.3.18-lp152.60.1
kernel-default-5.3.18-lp152.60.1
kernel-default-debuginfo-5.3.18-lp152.60.1
kernel-default-debugsource-5.3.18-lp152.60.1
kernel-default-devel-5.3.18-lp152.60.1
kernel-default-devel-debuginfo-5.3.18-lp152.60.1
kernel-kvmsmall-5.3.18-lp152.60.1
kernel-kvmsmall-debuginfo-5.3.18-lp152.60.1
kernel-kvmsmall-debugsource-5.3.18-lp152.60.1
kernel-kvmsmall-devel-5.3.18-lp152.60.1
kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.60.1
kernel-obs-build-5.3.18-lp152.60.1
kernel-obs-build-debugsource-5.3.18-lp152.60.1
kernel-obs-qa-5.3.18-lp152.60.1
kernel-preempt-5.3.18-lp152.60.1
kernel-preempt-debuginfo-5.3.18-lp152.60.1
kernel-preempt-debugsource-5.3.18-lp152.60.1
kernel-preempt-devel-5.3.18-lp152.60.1
kernel-preempt-devel-debuginfo-5.3.18-lp152.60.1
kernel-syms-5.3.18-lp152.60.1
References:
https://www.suse.com/security/cve/CVE-2020-0444.html
https://www.suse.com/security/cve/CVE-2020-0465.html
https://www.suse.com/security/cve/CVE-2020-0466.html
https://www.suse.com/security/cve/CVE-2020-11668.html
https://www.suse.com/security/cve/CVE-2020-25639.html
https://www.suse.com/security/cve/CVE-2020-27068.html
https://www.suse.com/security/cve/CVE-2020-27777.html
https://www.suse.com/security/cve/CVE-2020-27786.html
https://www.suse.com/security/cve/CVE-2020-27825.html
https://www.suse.com/security/cve/CVE-2020-27830.html
https://www.suse.com/security/cve/CVE-2020-27835.html
https://www.suse.com/security/cve/CVE-2020-28374.html
https://www.suse.com/security/cve/CVE-2020-29370.html
https://www.suse.com/security/cve/CVE-2020-29373.html
https://www.suse.com/security/cve/CVE-2020-29660.html
https://www.suse.com/security/cve/CVE-2020-29661.html
https://www.suse.com/security/cve/CVE-2020-36158.html
https://bugzilla.suse.com/1040855
https://bugzilla.suse.com/1044120
https://bugzilla.suse.com/1044767
https://bugzilla.suse.com/1055117
https://bugzilla.suse.com/1065729
https://bugzilla.suse.com/1094840
https://bugzilla.suse.com/1109695
https://bugzilla.suse.com/1115431
https://bugzilla.suse.com/1138374
https://bugzilla.suse.com/1139944
https://bugzilla.suse.com/1149032
https://bugzilla.suse.com/1152457
https://bugzilla.suse.com/1152472
https://bugzilla.suse.com/1152489
https://bugzilla.suse.com/1155518
https://bugzilla.suse.com/1156315
https://bugzilla.suse.com/1156395
https://bugzilla.suse.com/1158775
https://bugzilla.suse.com/1161099
https://bugzilla.suse.com/1163727
https://bugzilla.suse.com/1165933
https://bugzilla.suse.com/1168952
https://bugzilla.suse.com/1171000
https://bugzilla.suse.com/1171078
https://bugzilla.suse.com/1171688
https://bugzilla.suse.com/1172145
https://bugzilla.suse.com/1172733
https://bugzilla.suse.com/1174486
https://bugzilla.suse.com/1175079
https://bugzilla.suse.com/1175389
https://bugzilla.suse.com/1175480
https://bugzilla.suse.com/1175995
https://bugzilla.suse.com/1176396
https://bugzilla.suse.com/1176846
https://bugzilla.suse.com/1176942
https://bugzilla.suse.com/1176956
https://bugzilla.suse.com/1177326
https://bugzilla.suse.com/1177500
https://bugzilla.suse.com/1177666
https://bugzilla.suse.com/1177679
https://bugzilla.suse.com/1177733
https://bugzilla.suse.com/1178049
https://bugzilla.suse.com/1178203
https://bugzilla.suse.com/1178270
https://bugzilla.suse.com/1178372
https://bugzilla.suse.com/1178590
https://bugzilla.suse.com/1178612
https://bugzilla.suse.com/1178634
https://bugzilla.suse.com/1178660
https://bugzilla.suse.com/1178756
https://bugzilla.suse.com/1178780
https://bugzilla.suse.com/1179107
https://bugzilla.suse.com/1179204
https://bugzilla.suse.com/1179419
https://bugzilla.suse.com/1179434
https://bugzilla.suse.com/1179435
https://bugzilla.suse.com/1179519
https://bugzilla.suse.com/1179575
https://bugzilla.suse.com/1179578
https://bugzilla.suse.com/1179601
https://bugzilla.suse.com/1179604
https://bugzilla.suse.com/1179639
https://bugzilla.suse.com/1179652
https://bugzilla.suse.com/1179656
https://bugzilla.suse.com/1179670
https://bugzilla.suse.com/1179671
https://bugzilla.suse.com/1179672
https://bugzilla.suse.com/1179673
https://bugzilla.suse.com/1179675
https://bugzilla.suse.com/1179676
https://bugzilla.suse.com/1179677
https://bugzilla.suse.com/1179678
https://bugzilla.suse.com/1179679
https://bugzilla.suse.com/1179680
https://bugzilla.suse.com/1179681
https://bugzilla.suse.com/1179682
https://bugzilla.suse.com/1179683
https://bugzilla.suse.com/1179684
https://bugzilla.suse.com/1179685
https://bugzilla.suse.com/1179687
https://bugzilla.suse.com/1179688
https://bugzilla.suse.com/1179689
https://bugzilla.suse.com/1179690
https://bugzilla.suse.com/1179703
https://bugzilla.suse.com/1179704
https://bugzilla.suse.com/1179707
https://bugzilla.suse.com/1179709
https://bugzilla.suse.com/1179710
https://bugzilla.suse.com/1179711
https://bugzilla.suse.com/1179712
https://bugzilla.suse.com/1179713
https://bugzilla.suse.com/1179714
https://bugzilla.suse.com/1179715
https://bugzilla.suse.com/1179716
https://bugzilla.suse.com/1179745
https://bugzilla.suse.com/1179763
https://bugzilla.suse.com/1179878
https://bugzilla.suse.com/1179888
https://bugzilla.suse.com/1179892
https://bugzilla.suse.com/1179896
https://bugzilla.suse.com/1179960
https://bugzilla.suse.com/1179963
https://bugzilla.suse.com/1180027
https://bugzilla.suse.com/1180029
https://bugzilla.suse.com/1180031
https://bugzilla.suse.com/1180052
https://bugzilla.suse.com/1180056
https://bugzilla.suse.com/1180086
https://bugzilla.suse.com/1180117
https://bugzilla.suse.com/1180258
https://bugzilla.suse.com/1180261
https://bugzilla.suse.com/1180506
https://bugzilla.suse.com/1180541
https://bugzilla.suse.com/1180559
https://bugzilla.suse.com/1180566
https://bugzilla.suse.com/1180773
1
0
openSUSE-SU-2021:0058-1: moderate: Security update for cobbler
by opensuse-security@opensuse.org 14 Jan '21
by opensuse-security@opensuse.org 14 Jan '21
14 Jan '21
openSUSE Security Update: Security update for cobbler
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0058-1
Rating: moderate
References: #1020376 #1029276 #1048183 #1074594 #1075014
#1081714 #1081739 #1090205 #1097733 #1101670
#1104189 #1104190 #1104287 #1105440 #1105442
#1113747 #1128754 #1128926 #1130658 #1134588
#1149075 #1151875 #1156574 #1159010 #1169207
#1169553 #1169779 #1170462 #660126 #671212
#672471 #682665 #687891 #695955 #714618 #722443
#722445 #757062 #763610 #783671 #790545 #796773
#811025 #812948 #842699 #846580 #869371 #884051
#924118 #952844 #956264 #966622 #966841 #967523
#968406 #969538 #969541 #973413 #973418 #976826
#980577 #984998 #986978 #988889
Cross-References: CVE-2011-4953 CVE-2012-2395 CVE-2017-1000469
CVE-2018-1000225 CVE-2018-1000226 CVE-2018-10931
Affected Products:
openSUSE Backports SLE-15-SP2
______________________________________________________________________________
An update that solves 6 vulnerabilities and has 58 fixes is
now available.
Description:
This update for cobbler fixes the following issues:
- Add cobbler-tests subpackage for unit testing for openSUSE/SLE
- Adds LoadModule definitions for openSUSE/SLE
- Switch to new refactored auth module.
- use systemctl to restart cobblerd on logfile rotation (boo#1169207)
Mainline logrotate conf file uses already /sbin/service instead of
outdated: /etc/init.d/cobblerd
- Fix cobbler sync for DHCP or DNS (boo#1169553) Fixed mainline by commit
2d6cfe42da
- Signatures file now uses "default_autoinstall" which fixes import
problem happening with some distributions (boo#1159010)
- Fix for kernel and initrd detection (boo#1159010)
- New:
* For the distro there is now a parameter remote_boot_initrd and
remote_boot_kernel ()
* For the profile there is now a parameter filename for DHCP. (#2280)
* Signatures for ESXi 6 and 7 (#2308)
* The hardlink command is now detected more dynamically and thus more
error resistant (#2297)
* HTTPBoot will now work in some cases out of the bug. (#2295)
* Additional DNS query for a case where the wrong record was queried in
the nsupdate system case (#2285)
- Changes:
* Enabled a lot of tests, removed some and implemented new. (#2202)
* Removed not used files from the codebase. (#2302)
* Exchanged mkisofs to xorrisofs. (#2296)
* Removed duplicate code. (#2224)
* Removed unreachable code. (#2223)
* Snippet creation and deletion now works again via xmlrpc. (#2244)
* Replace createrepo with createrepo_c. (#2266)
* Enable Kerberos through having a case sensitive users.conf. (#2272)
- Bugfixes:
* General various Bugfixes (#2331, )
* Makefile usage and commands. (#2344, #2304)
* Fix the dhcp template. (#2314)
* Creation of the management classes and gPXE. (#2310)
* Fix the scm_track module. (#2275, #2279)
* Fix passing the netdevice parameter correctly to the linuxrc. (#2263)
* powerstatus from cobbler now works thanks to a wrapper for ipmitool.
(#2267)
* In case the LDAP is used for auth, it now works with ADs. (#2274)
* Fix passthru authentication. (#2271)
- Other:
* Add Codecov. (#2229)
* Documentation updates. (#2333, #2326, #2305, #2249, #2268)
* Buildprocess:
* Recreation and cleanup of Grub2. (#2278)
* Fix small errors for openSUSE Leap. (#2233)
* Fix rpmlint errors. (#2237)
* Maximum compatibility for debbuild package creation. (#2255, #2292,
#2242, #2300)
* Fixes related to our CI Pipeline (#2254, #2269)
* Internal Code cleanup (#2273, #2270)
- Breaking Changes:
* Hash handling in users.digest file. (#2299)
- Updated to version 3.1.1.
* Introduce new packaging from upstream
* Changelog see below
- New:
* We are now having a cross-distro specfile which can be build in the
OBS (#2220) - before rewritten it was improved by #2144 & #2174
* Grub Submenu for net-booting machines (#2217)
* Building the Cent-OS RPMs in Docker (#2190 #2189)
* Reintroduced manpage build in setup.py (#2185)
* mgmt_parameters are now passed to the dhcp template (#2182)
* Using the standard Pyhton3 logger instead of a custom one (#2160 #2139
#2151)
* Script for converting the settings file from 3.0.0 to 3.0.1 (#2154)
* Docs now inside the repo instead of cobbler.github.io and improved
with sphinx (#2117)
- Changes:
* The default tftpboot directory is now /var/lib/tftpboot instead of
previously /srv/tftpboot (#2220)
* Distro signatures were adjusted where necessary (#2219 #2134)
* Removed requirements.txt and placed the requirements in setup.py
(#2204)
* Display only entries in grub which are from the same arch (#2191 #2216)
* Change the name of the cobbler manpage form cobbler-cli to cobbler
back and move it to section 8 (#2188 #2186)
- Bugfixes:
* Incremented Version to 3.1.1 from 3.0.1
* S390 Support was cleaned up (#2207 #2178)
* PowerPC Support was cleaned up (#2178)
* Added a missing import while importing a distro with cobbler import
(#2201)
* Fixed a case where a stacktrace would be produced so pass none instead
(#2203)
* Rename of suse_kopts_textmode_overwrite to kops_overwrite to utils
(#2143 #2200)
* Fix rsync subprocess call (#2199 #2179)
* Fixed an error where the template rendering did not work (#2176)
* Fixed some cobbler import errors (#2172)
* Wrong shebang in various scripts (#2148)
* Fix some imports which fixes errors introduced by the remodularization
(#2150 #2153)
- Other:
* Issue Templates for Github (#2187)
- Update to latest git HEAD code base This version (from mainline so for
quite a while already) also includes fixes for "boo#1149075" and
boo#1151875
- Fix for cobbler import and buildiso (boo#1156574)
- Adjusted manpage creation (needs sphinx as BuildRequires)
- Fix cobbler sync for dhcp and dns enabled due to latest module renaming
patches
- Update to latest git HEAD
- Fixes permission denied in apache2 context when trying to write
cobbler log
- Fixes a bad import in import_signature (item)
- Fixes bad shebang bash path in mkgrub.sh (used in post section)
- Now track Github master branch WARNING: This release contains breaking
changes for your settings file!
* Notable changes:
- Now using standard python logger
- Updated dhcpd.template
- Removed fix_shebang.patch: now in upstream.
- added -s parameter to fdupes call to prevent hardlink across partititons
- Update to latest v3.0.0 cobbler release
- Add previouly added patch: exclude_get-loaders_command.patch to the list
of patches to apply.
- Fix log file world readable (as suggested by Matthias Gerstner) and
change file attributes via attr in spec file
- Do not allow get-loaders command (download of third party provided
network boot loaders we do not trust)
- Mainline fixes: 3172d1df9b9cc8 Add missing help text in
redhat_management_key field c8f5490e507a72 Set default interface if
cobbler system add has no
--interface= param 31a1aa31d26c4a Remove apache IfVersion
tags from apache configs
- Integrated fixes that came in from mainline from other products (to calm
down obs regression checker): CVE-2011-4953, fate#312397, boo#660126,
boo#671212, boo#672471, boo#682665 boo#687891, boo#695955, boo#722443,
boo#722445, boo#757062, boo#763610 boo#783671, boo#790545, boo#796773,
boo#811025, boo#812948, boo#842699 boo#846580, boo#869371, boo#884051,
boo#976826, boo#984998 Some older bugs need boo# references as well:
boo#660126, boo#671212, boo#672471, boo#682665 boo#687891, boo#695955,
boo#722443, boo#722445, boo#757062, boo#763610 boo#783671, boo#790545,
boo#796773, boo#811025, boo#812948, boo#842699 boo#846580, boo#869371,
boo#884051
- Fix for redhat_management_key not being listed as a choice during
profile rename (boo#1134588)
- Added:
* rhn-mngmnt-key-field-fix.diff
- Fixes distribution detection in setup.py for SLESo
- Added:
* changes-detection-to-distro-like-for-suse-distributions.diff
- Moving to pytest and adding Docker test integration
- Added:
* add-docker-integration-testing.diff
* refactor-unittest-to-pytest.diff
- Additional compatability changes for old Koan versions.
- Modified:
* renamed-methods-alias-part2.patch
- Old Koan versions not only need method aliases, but also need compatible
responses
- Added:
* renamed-methods-alias-part2.patch
- Add the redhat_managment_* fields again to enable templating in SUMA.
- Added:
* revert-redhat-management-removal.patch
- Changes return of last_modified_time RPC to float
- Added:
* changes-return-to-float.diff
- provide old name aliases for all renamed methods:
- get_distro_for_koan => get_distro_as_rendered
- get_profile_for_koan => get_profile_as_rendered
- get_system_for_koan => get_system_as_rendered
- get_repo_for_koan => get_repo_as_rendered
- get_image_for_koan => get_image_as_rendered
- get_mgmtclass_for_koan => get_mgmtclass_as_rendered
- get_package_for_koan => get_package_as_rendered
- get_file_for_koan => get_file_as_rendered
- Renamed: get_system_for_koan.patch => renamed-methods-alias.patch
- provide renamed method "get_system_for_koan" under old name for old
clients.
- Added:
* get_system_for_koan.patch
- Bring back power_system method in the XML-RPC API
- Changed lanplus option to lanplus=true in fence_ipmitool.template
- Added:
* power_system_xmlrpc_api.patch
- Changed:
* fence_ipmitool.template
- Disables nsupdate_enabled by default
- Added:
* disable_nsupdate_enabled_by_default.diff
- Fixes issue in distribution detection with "lower" function call.
- Modified:
* remodeled-distro-detection.diff
- Adds imporoved distribution detection. Since now all base products get
detected correctly, we no longer need the SUSE Manager patch.
- Added:
* remodeled-distro-detection.diff
- fix grub directory layout
- Added:
* create-system-directory-at-the-correct-place.patch
- fix HTTP status code of XMLRPC service
- Added:
* fix-http-status-code.patch
- touch /etc/genders when it not exists (boo#1128926)
- Add patches to fix logging
- Added:
* return-the-name-of-the-unknown-method.patch
* call-with-logger-where-possible.patch
- Switching version schema from 3.0 to 3.0.0
- Fixes case where distribution detection returns None (boo#1130658)
- Added:
* fixes-distro-none-case.diff
- Removes newline from token, which caused authentication error
(boo#1128754)
- Added:
* remove-newline-from-token.diff
- Added a patch which fixes an exception when login in with a non-root
user.
- Added:
* fix-login-error.patch
- Added a patch which fixes an exception when login in with a non-root
user.
- Added:
* fix-login-error.patch
- Remove patch merged at upstream:
* 0001-return-token-as-string.patch
- change grub2-x86_64-efi dependency to Recommends
- grub2-i386pc is not really required. Changed to recommended to allow
building for architectures other than x86_64
- Use cdrtools starting with SLE-15 and Leap-15 again. (boo#1081739)
- Update cobbler loaders server hostname (boo#980577)
- Update outdated apache config (boo#956264)
- Replace builddate with changelog date to fix build-compare (boo#969538)
- LOCKFILE usage removed on openSUSE (boo#714618)
- Power management subsystem completely re-worked to prevent
command-injection (CVE-2012-2395)
- Removed patch merged at upstream:
* cobblerd_needs_apache2_service_started.patch
- Checking bug fixes of released products are in latest develop pkg:
- remove fix-nameserver-search.fix; bug is invalid (boo#1029276)
-> not needed anymore
- fix cobbler yaboot handling (boo#968406, boo#966622)
-> no yaboot support anymore
- support UEFI boot with cobbler generated tftp tree (boo#1020376)
-> upstream
- Enabling PXE grub2 support for PowerPC (boo#986978)
-> We have grub2 support for ppc64le
- (boo#1048183) fix missing args and location for xen
-> is in
- no koan support anymore: boo#969541, boo#924118, boo#967523
- not installed (boo#966841) works.
- These still have to be looked at: SUSE system as systemd only
(boo#952844) handle list value for kernel options correctly (boo#973413)
entry in pxe menu (boo#988889)
- This still has to be switched off (at least in internal cobbler
versions): Disabling 'get-loaders' command and 'check' fixed. boo#973418
- Add explicity require to tftp, so it is used for both SLE and openSUSE
(originally from jgonzalez(a)suse.com)
- Moved Recommends according to spec_cleaner
- Require latest apache2-mod_wsgi-python3 package This fixes interface to
http://localhost/cblr/svc/...
- Use latest github cobbler/cobbler master branch in _service file
- cobblerd_needs_apache2_service_started.patch reverted, that is mainline
now:
- Only recommend grub2-arm and grub2-ppc packages or we might not be able
to build on factory where arm/ppc might not be built
- Remove genders package requires. A genders file is generated, but we do
not need/use the genders package.
- Update to latest cobbler version 3.0 mainline git HEAD version and
remove already integrated or not needed anymore patches.
- Serial console support added, did some testing already Things should
start to work as expected
- Add general grub2 support
- Put mkgrub.* into mkgrub.sh
- Add git date and commit to version string for now
- Add grub2 mkimage scripts: mkgrub.i386-pc mkgrub.powerpc-ieee1275
mkgrub.x86_64-efi mkgrub.arm64-efi and generate grub executables with
them in the %post section
- build server wants explicite package in BuildRequires; use tftp
- require tftp(server) instead of atftp
- cleanup: cobbler is noarch, so arch specific requires do not make sense
- SLES15 is using /etc/os-release instead of /etc/SuSE-release, use this
one for checking also
- add sles15 distro profile (boo#1090205)
- fix signature for SLES15 (boo#1075014)
- fix signature for SLES15 (boo#1075014)
- fix koan wait parameter initialization
- Fix koan shebang
- Escape shell parameters provided by the user for the reposync action
(CVE-2017-1000469) (boo#1074594)
- detect if there is already another instance of "cobbler sync" running
and exit with failure if so (boo#1081714)
- do not try to hardlink to a symlink. The result will be a dangling
symlink in the general case (boo#1097733)
- fix service restart after logrotate for cobblerd (boo#1113747)
- rotate cobbler logs at higher frequency to prevent disk fillup
(boo#1113747)
- Forbid exposure of private methods in the API (CVE-2018-10931)
(CVE-2018-1000225) (boo#1104287) (boo#1104189) (boo#1105442)
- Check access token when calling 'modify_setting' API endpoint
(boo#1104190) (boo#1105440) (CVE-2018-1000226)
This update was imported from the openSUSE:Leap:15.2:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Backports SLE-15-SP2:
zypper in -t patch openSUSE-2021-58=1
Package List:
- openSUSE Backports SLE-15-SP2 (noarch):
cobbler-3.1.2-bp152.4.3.1
cobbler-tests-3.1.2-bp152.4.3.1
cobbler-web-3.1.2-bp152.4.3.1
References:
https://www.suse.com/security/cve/CVE-2011-4953.html
https://www.suse.com/security/cve/CVE-2012-2395.html
https://www.suse.com/security/cve/CVE-2017-1000469.html
https://www.suse.com/security/cve/CVE-2018-1000225.html
https://www.suse.com/security/cve/CVE-2018-1000226.html
https://www.suse.com/security/cve/CVE-2018-10931.html
https://bugzilla.suse.com/1020376
https://bugzilla.suse.com/1029276
https://bugzilla.suse.com/1048183
https://bugzilla.suse.com/1074594
https://bugzilla.suse.com/1075014
https://bugzilla.suse.com/1081714
https://bugzilla.suse.com/1081739
https://bugzilla.suse.com/1090205
https://bugzilla.suse.com/1097733
https://bugzilla.suse.com/1101670
https://bugzilla.suse.com/1104189
https://bugzilla.suse.com/1104190
https://bugzilla.suse.com/1104287
https://bugzilla.suse.com/1105440
https://bugzilla.suse.com/1105442
https://bugzilla.suse.com/1113747
https://bugzilla.suse.com/1128754
https://bugzilla.suse.com/1128926
https://bugzilla.suse.com/1130658
https://bugzilla.suse.com/1134588
https://bugzilla.suse.com/1149075
https://bugzilla.suse.com/1151875
https://bugzilla.suse.com/1156574
https://bugzilla.suse.com/1159010
https://bugzilla.suse.com/1169207
https://bugzilla.suse.com/1169553
https://bugzilla.suse.com/1169779
https://bugzilla.suse.com/1170462
https://bugzilla.suse.com/660126
https://bugzilla.suse.com/671212
https://bugzilla.suse.com/672471
https://bugzilla.suse.com/682665
https://bugzilla.suse.com/687891
https://bugzilla.suse.com/695955
https://bugzilla.suse.com/714618
https://bugzilla.suse.com/722443
https://bugzilla.suse.com/722445
https://bugzilla.suse.com/757062
https://bugzilla.suse.com/763610
https://bugzilla.suse.com/783671
https://bugzilla.suse.com/790545
https://bugzilla.suse.com/796773
https://bugzilla.suse.com/811025
https://bugzilla.suse.com/812948
https://bugzilla.suse.com/842699
https://bugzilla.suse.com/846580
https://bugzilla.suse.com/869371
https://bugzilla.suse.com/884051
https://bugzilla.suse.com/924118
https://bugzilla.suse.com/952844
https://bugzilla.suse.com/956264
https://bugzilla.suse.com/966622
https://bugzilla.suse.com/966841
https://bugzilla.suse.com/967523
https://bugzilla.suse.com/968406
https://bugzilla.suse.com/969538
https://bugzilla.suse.com/969541
https://bugzilla.suse.com/973413
https://bugzilla.suse.com/973418
https://bugzilla.suse.com/976826
https://bugzilla.suse.com/980577
https://bugzilla.suse.com/984998
https://bugzilla.suse.com/986978
https://bugzilla.suse.com/988889
1
0
openSUSE-SU-2021:0059-1: moderate: Security update for libzypp, zypper
by opensuse-security@opensuse.org 14 Jan '21
by opensuse-security@opensuse.org 14 Jan '21
14 Jan '21
openSUSE Security Update: Security update for libzypp, zypper
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0059-1
Rating: moderate
References: #1050625 #1174016 #1177238 #1177275 #1177427
#1177583 #1178910 #1178966 #1179083 #1179222
#1179415 #1179909
Cross-References: CVE-2017-9271
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that solves one vulnerability and has 11 fixes is
now available.
Description:
This update for libzypp, zypper fixes the following issues:
Update zypper to version 1.14.41
Update libzypp to 17.25.4
- CVE-2017-9271: Fixed information leak in the log file (bsc#1050625
bsc#1177583)
- RepoManager: Force refresh if repo url has changed (bsc#1174016)
- RepoManager: Carefully tidy up the caches. Remove non-directory entries.
(bsc#1178966)
- RepoInfo: ignore legacy type= in a .repo file and let RepoManager probe
(bsc#1177427).
- RpmDb: If no database exists use the _dbpath configured in rpm. Still
makes sure a compat symlink at /var/lib/rpm exists in case the
configures _dbpath is elsewhere. (bsc#1178910)
- Fixed update of gpg keys with elongated expire date (bsc#179222)
- needreboot: remove udev from the list (bsc#1179083)
- Fix lsof monitoring (bsc#1179909)
yast-installation was updated to 4.2.48:
- Do not cleanup the libzypp cache when the system has low memory,
incomplete cache confuses libzypp later (bsc#1179415)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-59=1
Package List:
- openSUSE Leap 15.2 (i586 x86_64):
libzypp-17.25.5-lp152.2.16.1
libzypp-debuginfo-17.25.5-lp152.2.16.1
libzypp-debugsource-17.25.5-lp152.2.16.1
libzypp-devel-17.25.5-lp152.2.16.1
libzypp-devel-doc-17.25.5-lp152.2.16.1
zypper-1.14.41-lp152.2.12.1
zypper-debuginfo-1.14.41-lp152.2.12.1
zypper-debugsource-1.14.41-lp152.2.12.1
- openSUSE Leap 15.2 (noarch):
yast2-installation-4.2.48-lp152.2.12.1
zypper-aptitude-1.14.41-lp152.2.12.1
zypper-log-1.14.41-lp152.2.12.1
zypper-needs-restarting-1.14.41-lp152.2.12.1
References:
https://www.suse.com/security/cve/CVE-2017-9271.html
https://bugzilla.suse.com/1050625
https://bugzilla.suse.com/1174016
https://bugzilla.suse.com/1177238
https://bugzilla.suse.com/1177275
https://bugzilla.suse.com/1177427
https://bugzilla.suse.com/1177583
https://bugzilla.suse.com/1178910
https://bugzilla.suse.com/1178966
https://bugzilla.suse.com/1179083
https://bugzilla.suse.com/1179222
https://bugzilla.suse.com/1179415
https://bugzilla.suse.com/1179909
1
0
openSUSE-SU-2021:0054-1: important: Security update for hawk2
by opensuse-security@opensuse.org 13 Jan '21
by opensuse-security@opensuse.org 13 Jan '21
13 Jan '21
openSUSE Security Update: Security update for hawk2
______________________________________________________________________________
Announcement ID: openSUSE-SU-2021:0054-1
Rating: important
References: #1179998
Cross-References: CVE-2020-35458
Affected Products:
openSUSE Leap 15.2
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for hawk2 fixes the following security issue:
- CVE-2020-35458: Fixed an insufficient input handler that could have led
to remote code execution (bsc#1179998).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-54=1
Package List:
- openSUSE Leap 15.2 (x86_64):
hawk2-2.3.0+git.1603969748.10468582-lp152.2.9.1
hawk2-debuginfo-2.3.0+git.1603969748.10468582-lp152.2.9.1
hawk2-debugsource-2.3.0+git.1603969748.10468582-lp152.2.9.1
References:
https://www.suse.com/security/cve/CVE-2020-35458.html
https://bugzilla.suse.com/1179998
1
0