Sicherheit: Mehrere Probleme in Linux
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in Linux
ID: SUSE-SU-2020:0599-1
Distribution: SUSE
Plattformen: SUSE Linux Enterprise Real Time Extension 12-SP4
Datum: Do, 5. März 2020, 23:53
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19066
Applikationen: Linux


SUSE Security Update: Security update for the Linux Kernel

Announcement ID: SUSE-SU-2020:0599-1
Rating: moderate
References: #1046303 #1050244 #1051510 #1051858 #1065600
#1065729 #1071995 #1078248 #1083647 #1085030
#1086301 #1086313 #1086314 #1089644 #1090888
#1104427 #1108043 #1113722 #1114279 #1115026
#1117169 #1120853 #1127371 #1134973 #1138039
#1140948 #1141054 #1142095 #1143959 #1144333
#1146519 #1146544 #1151548 #1151900 #1151910
#1151927 #1152631 #1153811 #1153917 #1154043
#1154058 #1154355 #1155331 #1155334 #1155689
#1155897 #1155921 #1156258 #1156259 #1156286
#1156462 #1156471 #1157038 #1157042 #1157070
#1157143 #1157145 #1157155 #1157157 #1157158
#1157162 #1157169 #1157171 #1157173 #1157178
#1157180 #1157182 #1157183 #1157184 #1157191
#1157193 #1157197 #1157298 #1157303 #1157307
#1157324 #1157333 #1157424 #1157463 #1157499
#1157678 #1157692 #1157698 #1157778 #1157853
#1157908 #1158013 #1158021 #1158026 #1158049
#1158063 #1158064 #1158065 #1158066 #1158067
#1158068 #1158082 #1158094 #1158132 #1158381
#1158394 #1158398 #1158407 #1158410 #1158413
#1158417 #1158427 #1158445 #1158533 #1158637
#1158638 #1158639 #1158640 #1158641 #1158643
#1158644 #1158645 #1158646 #1158647 #1158649
#1158651 #1158652 #1158819 #1158823 #1158824
#1158827 #1158834 #1158893 #1158900 #1158903
#1158904 #1158954 #1159024 #1159028 #1159297
#1159394 #1159483 #1159484 #1159569 #1159588
#1159841 #1159908 #1159909 #1159910 #1159911
#1159955 #1160195 #1160210 #1160211 #1160433
#1160442 #1160476 #1160560 #1160755 #1160756
#1160784 #1160787 #1160802 #1160803 #1160804
#1160917 #1160966 #1161087 #1161514 #1161518
#1161522 #1161523 #1161549 #1161552 #1161674
#1161875 #1161931 #1161933 #1161934 #1161935
#1161936 #1161937 #1162028 #1162067
Cross-References: CVE-2019-14615 CVE-2019-14895 CVE-2019-14896
CVE-2019-14897 CVE-2019-14901 CVE-2019-15213
CVE-2019-16994 CVE-2019-18660 CVE-2019-18683
CVE-2019-18808 CVE-2019-18809 CVE-2019-19036
CVE-2019-19045 CVE-2019-19049 CVE-2019-19051
CVE-2019-19052 CVE-2019-19054 CVE-2019-19056
CVE-2019-19057 CVE-2019-19058 CVE-2019-19060
CVE-2019-19062 CVE-2019-19063 CVE-2019-19065
CVE-2019-19066 CVE-2019-19067 CVE-2019-19068
CVE-2019-19073 CVE-2019-19074 CVE-2019-19075
CVE-2019-19077 CVE-2019-19227 CVE-2019-19318
CVE-2019-19319 CVE-2019-19332 CVE-2019-19338
CVE-2019-19447 CVE-2019-19523 CVE-2019-19524
CVE-2019-19525 CVE-2019-19526 CVE-2019-19527
CVE-2019-19528 CVE-2019-19529 CVE-2019-19530
CVE-2019-19531 CVE-2019-19532 CVE-2019-19533
CVE-2019-19534 CVE-2019-19535 CVE-2019-19536
CVE-2019-19537 CVE-2019-19543 CVE-2019-19767
CVE-2019-19965 CVE-2019-19966 CVE-2019-20054
CVE-2019-20095 CVE-2019-20096 CVE-2020-7053

Affected Products:
SUSE Linux Enterprise Real Time Extension 12-SP4

An update that solves 60 vulnerabilities and has 119 fixes
is now available.


The SUSE Linux Enterprise 12 SP4 real-time kernel was updated to receive
various security and bugfixes.

The following security bugs were fixed:

- CVE-2019-14615: An information disclosure vulnerability existed due to
insufficient control flow in certain data structures for some Intel(R)
Processors (bnc#1160195).
- CVE-2019-14895: A heap-based buffer overflow was discovered in the
Marvell WiFi driver. The flaw could occur when the station attempts a
connection negotiation during the handling of the remote devices country
settings. This could allow the remote device to cause a denial of
service or possibly execute arbitrary code (bnc#1157158).
- CVE-2019-14896: A heap overflow was found in the add_ie_rates() function
of the Marvell Wifi Driver (bsc#1157157).
- CVE-2019-14897: A stack overflow was found in the
lbs_ibss_join_existing() function of the Marvell Wifi Driver
- CVE-2019-14901: A heap overflow flaw was found in the Marvell WiFi
driver. The vulnerability allowed a remote attacker to cause a system
crash, resulting in a denial of service, or execute arbitrary code
- CVE-2019-15213: A use-after-free bug caused by a malicious USB device
was found in drivers/media/usb/dvb-usb/dvb-usb-init.c (bsc#1146544).
- CVE-2019-16994: A memory leak existed in sit_init_net() in
net/ipv6/sit.c which might have caused denial of service, aka
CID-07f12b26e21a (bnc#1161523).
- CVE-2019-18660: An information disclosure bug occured because the
Spectre-RSB mitigation were not in place for all applicable CPUs, aka
CID-39e72bf96f58 (bnc#1157038).
- CVE-2019-18683: Multiple race conditions were discovered in
drivers/media/platform/vivid. It was exploitable for privilege
escalation if local users had access to /dev/video0, but only if the
driver happened to be loaded. At least one of these race conditions led
to a use-after-free (bnc#1155897).
- CVE-2019-18808: A memory leak in drivers/crypto/ccp/ccp-ops.c allowed
attackers to cause a denial of service (memory consumption), aka
CID-128c66429247 (bnc#1156259).
- CVE-2019-18809: A memory leak in drivers/media/usb/dvb-usb/af9005.c
allowed attackers to cause a denial of service (memory consumption), aka
CID-2289adbfa559 (bnc#1156258).
- CVE-2019-19036: An issue discovered in btrfs_root_node in
fs/btrfs/ctree.c allowed a NULL pointer dereference because
rcu_dereference(root->node) can be zero (bnc#1157692).
- CVE-2019-19045: A memory leak in
drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers to
cause a denial of service (memory consumption) by triggering
mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7 (bnc#1161522).
- CVE-2019-19051: A memory leak in drivers/net/wimax/i2400m/op-rfkill.c
allowed attackers to cause a denial of service (memory consumption), aka
CID-6f3ef5c25cc7 (bnc#1159024).
- CVE-2019-19052: A memory leak in drivers/net/can/usb/gs_usb.c allowed
attackers to cause a denial of service (memory consumption), aka
CID-fb5be6a7b486 (bnc#1157324).
- CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in
drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a
denial of service (memory consumption) by triggering kfifo_alloc()
failures, aka CID-a7b2df76b42b (bnc#1161518).
- CVE-2019-19056: A memory leak in
drivers/net/wireless/marvell/mwifiex/pcie.c allowed attackers to cause a
denial of service (memory consumption), aka CID-db8fd2cde932
- CVE-2019-19057: Two memory leaks in
drivers/net/wireless/marvell/mwifiex/pcie.c allowed attackers to cause a
denial of service (memory consumption), aka CID-d10dcb615c8e
(bnc#1157193 bsc#1157197).
- CVE-2019-19058: A memory leak in
drivers/net/wireless/intel/iwlwifi/fw/dbg.c allowed attackers to cause a
denial of service (memory consumption), aka CID-b4b814fec1a5
- CVE-2019-19060: A memory leak in drivers/iio/imu/adis_buffer.c allowed
attackers to cause a denial of service (memory consumption), aka
CID-ab612b1daf41 (bnc#1157178).
- CVE-2019-19062: A memory leak in crypto/crypto_user_base.c allowed
attackers to cause a denial of service (memory consumption), aka
CID-ffdde5932042 (bnc#1157333).
- CVE-2019-19063: Two memory leaks in
drivers/net/wireless/realtek/rtlwifi/usb.c allowed attackers to cause a
denial of service (memory consumption), aka CID-3f9361695113
- CVE-2019-19065: A memory leak in drivers/infiniband/hw/hfi1/sdma.c
allowed attackers to cause a denial of service (memory consumption), aka
CID-34b3be18a04e (bnc#1157191).
- CVE-2019-19066: A memory leak in drivers/scsi/bfa/bfad_attr.c allowed
attackers to cause a denial of service (memory consumption), aka
CID-0e62395da2bd (bnc#1157303).
- CVE-2019-19067: There were four unlikely memory leaks in the
acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c
- CVE-2019-19068: A memory leak in
drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c allowed attackers
to cause a denial of service (memory consumption), aka CID-a2cdd07488e6
- CVE-2019-19073: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c
allowed attackers to cause a denial of service (memory consumption), aka
CID-853acf7caf10 (bnc#1157070).
- CVE-2019-19074: A memory leak in drivers/net/wireless/ath/ath9k/wmi.c
allowed attackers to cause a denial of service (memory consumption), aka
CID-728c1e2a05e4 (bnc#1157143).
- CVE-2019-19075: A memory leak in drivers/net/ieee802154/ca8210.c allowed
attackers to cause a denial of service (memory consumption) by
triggering ca8210_get_platform_data() failures, aka CID-6402939ec86e
- CVE-2019-19077: A memory leak in
drivers/infiniband/hw/bnxt_re/ib_verbs.c allowed attackers to cause a
denial of service (memory consumption), aka CID-4a9d46a9fe14
- CVE-2019-19227: In the AppleTalk subsystem there was a potential NULL
pointer dereference because register_snap_client may return NULL. This
could have led to denial of service, aka CID-9804501fa122 (bnc#1157678).
- CVE-2019-19318: Mounting a crafted btrfs image twice could have caused a
use-after-free (bnc#1158026).
- CVE-2019-19319: A slab-out-of-bounds write access could have occured
when setxattr was called after mounting of a specially crafted ext4
image (bnc#1158021).
- CVE-2019-19332: An out-of-bounds memory write issue was found in the way
the KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2)
to get CPUID features emulated by the KVM hypervisor. A user or process
able to access the '/dev/kvm' device could have used this flaw to
the system (bnc#1158827).
- CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing
some operations, and unmounting could have led to a use-after-free in
fs/ext4/super.c (bnc#1158819).
- CVE-2019-19523: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/usb/misc/adutux.c driver, aka
CID-44efc269db79 (bsc#1158823).
- CVE-2019-19524: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/input/ff-memless.c driver, aka
CID-fa3a5a1880c9 (bsc#1158413).
- CVE-2019-19525: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka
CID-7fd25e6fc035 (bsc#1158417).
- CVE-2019-19526: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/nfc/pn533/usb.c driver, aka
CID-6af3aa57a098 (bsc#1158893).
- CVE-2019-19527: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka
CID-9c09b214f30e (bsc#1158900).
- CVE-2019-19528: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka
CID-edc4746f253d (bsc#1158407).
- CVE-2019-19529: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/net/can/usb/mcba_usb.c driver, aka
CID-4d6636498c41 (bnc#1158381).
- CVE-2019-19530: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka
CID-c52873e5a1ef (bsc#1158410).
- CVE-2019-19531: There was a use-after-free bug that can be caused by a
malicious USB device in the drivers/usb/misc/yurex.c driver, aka
CID-fc05481b2fca (bsc#1158445).
- CVE-2019-19532: There were multiple out-of-bounds write bugs that can be
caused by a malicious USB HID device, aka CID-d9d4b1e46d95 (bsc#1158824).
- CVE-2019-19533: There was an info-leak bug that can be caused by a
malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c
driver, aka CID-a10feaf8c464 (bsc#1158834).
- CVE-2019-19534: There was an info-leak bug that can be caused by a
malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c
driver, aka CID-f7a1337f0d29 (bsc#1158398).
- CVE-2019-19535: There was an info-leak bug that can be caused by a
malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c
driver, aka CID-30a8beeb3042 (bsc#1158903).
- CVE-2019-19536: There was an info-leak bug that can be caused by a
malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c
driver, aka CID-ead16e53c2f0 (bsc#1158394).
- CVE-2019-19537: There was a race condition bug that can be caused by a
malicious USB device in the USB character device driver layer, aka
CID-303911cfc5b9 (bsc#1158904).
- CVE-2019-19543: There was a use-after-free in serial_ir_init_module() in
drivers/media/rc/serial_ir.c (bnc#1158427).
- CVE-2019-19767: There were multiple use-after-free errors in
__ext4_expand_extra_isize and ext4_xattr_set_entry, related to
fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163 (bnc#1159297).
- CVE-2019-19965: There was a NULL pointer dereference in
drivers/scsi/libsas/sas_discover.c because of mishandling of port
disconnection during discovery, related to a PHY down race condition,
aka CID-f70267f379b5 (bnc#1159911).
- CVE-2019-19966: There was a use-after-free in cpia2_exit() in
drivers/media/usb/cpia2/cpia2_v4l.c that could have caused a denial of
service, aka CID-dea37a972655 (bnc#1159841).
- CVE-2019-20054: There was a NULL pointer dereference in
drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka
CID-23da9588037e (bnc#1159910).
- CVE-2019-20095: Several memory leaks were found in
drivers/net/wireless/marvell/mwifiex/cfg80211.c, aka CID-003b686ace82
- CVE-2019-20096: There was a memory leak in __feat_register_sp() in
net/dccp/feat.c, aka CID-1d3ff0950e2b (bnc#1159908).
- CVE-2020-7053: There was a use-after-free (write) in the
i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka
CID-7dc40713618c (bnc#1160966).
- CVE-2019-19338: There was an incomplete fix for an issue with
Transactional Synchronisation Extensions in the KVM code (bsc#1158954).
- CVE-2019-19049: There was an unlikely memory leak in unittest_data_add

The following non-security bugs were fixed:

- ACPI / APEI: Do not wait to serialise with oops messages when panic()ing
- ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask
- ACPI / LPSS: Ignore acpi_device_fix_up_power() return value
- ACPI / SBS: Fix rare oops when removing modules (bsc#1051510).
- ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data()
- ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion()
- ACPI: OSL: only free map once in osl.c (bsc#1051510).
- ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 (bsc#1051510).
- ACPICA: Never run _REG on system_memory and system_IO (bsc#1051510).
- ACPICA: Use %d for signed int print formatting instead of %u
- af_packet: set defaule value for tmo (bsc#1051510).
- ALSA: 6fire: Drop the dead code (git-fixes).
- ALSA: control: remove useless assignment in .info callback of PCM chmap
element (git-fixes).
- ALSA: cs4236: fix error return comparison of an unsigned integer
- ALSA: echoaudio: simplify get_audio_levels (bsc#1051510).
- ALSA: fireface: fix return value in error path of isochronous resources
reservation (bsc#1051510).
- ALSA: firewire-motu: Correct a typo in the clock proc string (git-fixes).
- ALSA: hda - Add docking station support for Lenovo Thinkpad T420s
- ALSA: hda - Add mute led support for HP ProBook 645 G4 (git-fixes).
- ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes).
- ALSA: hda - Fix pending unsol events at shutdown (git-fixes).
- ALSA: hda/analog - Minor optimization for SPDIF mux connections
- ALSA: hda/ca0132 - Avoid endless loop (git-fixes).
- ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes).
- ALSA: hda/ca0132 - Keep power on during processing DSP response
- ALSA: hda/hdmi - Add new pci ids for AMD GPU display audio (git-fixes).
- ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes).
- ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510).
- ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510).
- ALSA: hda/hdmi - fix vgaswitcheroo detection for AMD (git-fixes).
- ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510).
- ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236
- ALSA: hda/realtek - Line-out jack does not work on a Dell AIO
- ALSA: hda/realtek - Move some alc236 pintbls to fallback table
- ALSA: hda/realtek - Move some alc256 pintbls to fallback table
- ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).
- ALSA: i2c/cs8427: Fix int to char conversion (bsc#1051510).
- ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code
- ALSA: intel8x0m: Register irq handler after register initializations
- ALSA: oxfw: fix return value in error path of isochronous resources
reservation (bsc#1051510).
- ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes).
- ALSA: pcm: oss: Avoid potential buffer overflows (git-fixes).
- ALSA: pcm: signedness bug in snd_pcm_plug_alloc() (bsc#1051510).
- ALSA: seq: Do error checks at creating system ports (bsc#1051510).
- ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510).
- ALSA: sh: Fix compile warning wrt const (git-fixes).
- ALSA: usb-audio: Fix Focusrite Scarlett 6i6 gen1 - input handling
- ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510).
- ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510).
- apparmor: fix unsigned len comparison with less than zero (git-fixes).
- appledisplay: fix error handling in the scheduled work (git-fixes).
- ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510).
- ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510).
- ASoC: compress: fix unsigned integer overflow check (bsc#1051510).
- ASoC: cs4349: Use PM ops 'cs4349_runtime_pm' (bsc#1051510).
- ASoC: davinci-mcasp: Handle return value of devm_kasprintf (stable
- ASoC: davinci: Kill BUG_ON() usage (stable 4.14.y).
- ASoC: dpcm: Properly initialise hw->rate_max (bsc#1051510).
- ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation
- ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report
- ASoC: kirkwood: fix external clock probe defer (git-fixes).
- ASoC: msm8916-wcd-analog: Fix RX1 selection in RDAC2 MUX (git-fixes).
- ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1
- ASoC: sgtl5000: avoid division by zero if lo_vag is zero (bsc#1051510).
- ASoC: tegra_sgtl5000: fix device_node refcounting (bsc#1051510).
- ASoC: tlv320aic31xx: Handle inverted BCLK in non-DSP modes (stable
- ASoC: tlv320dac31xx: mark expected switch fall-through (stable 4.14.y).
- ASoC: wm8962: fix lambda value (git-fixes).
- ata: ep93xx: Use proper enums for directions (bsc#1051510).
- ath10k: fix fw crash by moving chip reset after napi disabled
- ath10k: fix kernel panic by moving pci flush after napi_disable
- ath10k: fix vdev-start timeout on error (bsc#1051510).
- ath10k: limit available channels via DT ieee80211-freq-limit
- ath10k: wmi: disable softirq's while calling ieee80211_rx
- ath6kl: Fix off by one error in scan completion (bsc#1051510).
- ath9k: add back support for using active monitor interfaces for tx99
- ath9k: Fix a locking bug in ath9k_add_interface() (bsc#1051510).
- ath9k: fix reporting calculated new FFT upper max (bsc#1051510).
- ath9k: fix storage endpoint lookup (git-fixes).
- ath9k: fix tx99 with monitor mode interface (bsc#1051510).
- ath9k_hw: fix uninitialized variable data (bsc#1051510).
- atl1e: checking the status of atl1e_write_phy_reg (bsc#1051510).
- audit: Allow auditd to set pid to 0 to end auditing (bsc#1158094).
- ax88172a: fix information leak on short answers (bsc#1051510).
- backlight: lm3639: Unconditionally call led_classdev_unregister
- batman-adv: Fix DAT candidate selection on little endian systems
- bcma: remove set but not used variable 'sizel' (git-fixes).
- Bluetooth: btusb: fix PM leak in error case of setup (bsc#1051510).
- Bluetooth: delete a stray unlock (bsc#1051510).
- Bluetooth: Fix invalid-free in bcsp_close() (git-fixes).
- Bluetooth: Fix memory leak in hci_connect_le_scan (bsc#1051510).
- Bluetooth: hci_bcm: Handle specific unknown packets after firmware
loading (bsc#1051510).
- Bluetooth: hci_core: fix init for HCI_USER_CHANNEL (bsc#1051510).
- Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS
- bonding: fix active-backup transition after link failure (git-fixes).
- bonding: fix slave stuck in BOND_LINK_FAIL state
- bonding: fix state transition issue in link monitoring
- bpf: Make use of probe_user_write in probe write helper (bsc#1083647).
- brcmfmac: fix full timeout waiting for action frame on-channel tx
- brcmfmac: fix interface sanity check (git-fixes).
- brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes).
- brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes).
- brcmfmac: reduce timeout for action frame scan (bsc#1051510).
- brcmsmac: AP mode: update beacon when TIM changes (bsc#1051510).
- brcmsmac: never log "tid x is not agg'able" by default
- btrfs: abort transaction after failed inode updates in create_subvol
- btrfs: add missing extents release on file extent cluster relocation
error (bsc#1159483).
- btrfs: avoid fallback to transaction commit during fsync of files with
holes (bsc#1159569).
- btrfs: dev-replace: remove warning for unknown return codes when
finished (dependency for bsc#1162067).
- btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934).
- btrfs: Ensure we trim ranges across block group boundary (bsc#1151910).
- btrfs: fix block group remaining RO forever after error during device
replace (bsc#1160442).
- btrfs: fix infinite loop during nocow writeback due to race
- btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433).
- btrfs: fix missing data checksums after replaying a log tree
- btrfs: fix negative subv_writers counter and data space leak after
buffered write (bsc#1160802).
- btrfs: fix removal logic of the tree mod log that leads to
use-after-free issues (bsc#1160803).
- btrfs: fix selftests failure due to uninitialized i_mode in test inodes
(Fix for dependency of bsc#1157692).
- btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937).
- btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973).
- btrfs: inode: Verify inode mode to avoid NULL pointer dereference
(dependency for bsc#1157692).
- btrfs: make tree checker detect checksum items with overlapping ranges
- btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it
(dependency for bsc#1157692).
- btrfs: record all roots for rename exchange on a subvol (bsc#1161933).
- btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588).
- btrfs: scrub: Require mandatory block group RO for dev-replace
- btrfs: simplify inode locking for RWF_NOWAIT (git-fixes).
- btrfs: skip log replay on orphaned roots (bsc#1161935).
- btrfs: tree-checker: Check chunk item at tree block read time
(dependency for bsc#1157692).
- btrfs: tree-checker: Check level for leaves and nodes (dependency for
- btrfs: tree-checker: Enhance chunk checker to validate chunk profile
(dependency for bsc#1157692).
- btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency
of bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in block_group_err (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_block_group_item
(dependency for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_extent_data_item
(dependency for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for
- btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for
- btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for
- btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for
- btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency
for bsc#1157692).
- btrfs: tree-checker: get fs_info from eb in generic_err (dependency for
- btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN
instead of EIO (dependency for bsc#1157692).
- btrfs: tree-checker: Make chunk item checker messages more readable
(dependency for bsc#1157692).
- btrfs: tree-checker: Verify dev item (dependency for bsc#1157692).
- btrfs: tree-checker: Verify inode item (dependency for bsc#1157692).
- btrfs: volumes: Use more straightforward way to calculate map length
- can, slip: Protect tty->disc_data in write_wakeup and close with RCU
- can: can_dropped_invalid_skb(): ensure an initialized headroom in
outgoing CAN sk_buffs (bsc#1051510).
- can: c_can: c_can_poll(): only read status register after status IRQ
- can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open
- can: gs_usb: gs_usb_probe(): use descriptors of current altsetting
- can: mcba_usb: fix use-after-free on disconnect (git-fixes).
- can: mscan: mscan_rx_poll(): fix rx path lockup when returning from
polling to irq mode (bsc#1051510).
- can: peak_usb: fix a potential out-of-sync while decoding packets
- can: peak_usb: fix slab info leak (git-fixes).
- can: peak_usb: report bus recovery as well (bsc#1051510).
- can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error
- can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on
error (bsc#1051510).
- can: rx-offload: can_rx_offload_offload_one(): do not increase the
skb_queue beyond skb_queue_len_max (git-fixes).
- can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors
on queue overflow or OOM (bsc#1051510).
- can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to
propagate error value in case of errors (bsc#1051510).
- can: rx-offload: can_rx_offload_queue_sorted(): fix error handling,
avoid skb mem leak (git-fixes).
- can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid
skb mem leak (git-fixes).
- can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510).
- can: usb_8dev: fix use-after-free on disconnect (git-fixes).
- CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10).
- ceph: add missing check in d_revalidate snapdir handling (bsc#1157183).
- ceph: do not try to handle hashed dentries in non-O_CREAT atomic_open
- ceph: fix use-after-free in __ceph_remove_cap() (bsc#1154058).
- ceph: just skip unrecognized info in ceph_reply_info_extra (bsc#1157182).
- cfg80211/mac80211: make ieee80211_send_layer2_update a public function
- cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set
- cfg80211: call disconnect_wk when AP stops (bsc#1051510).
- cfg80211: check for set_wiphy_params (bsc#1051510).
- cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510).
- cfg80211: Prevent regulatory restore during STA disconnect in concurrent
interfaces (bsc#1051510).
- cgroup,writeback: do not switch wbs immediately on dead wbs if the memcg
is dead (bsc#1158645).
- cgroup: pids: use atomic64_t for pids->limit (bsc#1161514).
- cifs: add a helper to find an existing readable handle to a file
(bsc#1144333, bsc#1154355).
- cifs: add support for flock (bsc#1144333).
- cifs: avoid using MID 0xFFFF (bsc#1144333, bsc#1154355).
- cifs: Close cached root handle only if it had a lease (bsc#1144333).
- cifs: Close open handle after interrupted close (bsc#1144333).
- cifs: close the shared root handle on tree disconnect (bsc#1144333).
- cifs: create a helper to find a writeable handle by path name
(bsc#1144333, bsc#1154355).
- cifs: Do not miss cancelled OPEN responses (bsc#1144333).
- cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs
(bsc#1144333, bsc#1154355).
- cifs: Fix lookup of root ses in DFS referral cache (bsc#1144333).
- cifs: fix max ea value size (bsc#1144333, bsc#1154355).
- cifs: Fix memory allocation in __smb2_handle_cancelled_cmd()
- cifs: Fix missed free operations (bsc#1144333, bsc#1154355).
- cifs: Fix mount options set in automount (bsc#1144333).
- cifs: Fix NULL pointer dereference in mid callback (bsc#1144333).
- cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks
- cifs: Fix oplock handling for SMB 2.1+ protocols (bsc#1144333,
- cifs: Fix potential softlockups while refreshing DFS cache (bsc#1144333).
- cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333).
- cifs: Fix retry mid list corruption on reconnects (bsc#1144333,
- cifs: Fix SMB2 oplock break processing (bsc#1144333, bsc#1154355).
- cifs: Fix use after free of file info structures (bsc#1144333,
- cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1144333).
- cifs: Force reval dentry if LOOKUP_REVAL flag is set (bsc#1144333,
- cifs: Force revalidate inode when dentry is stale (bsc#1144333,
- cifs: Gracefully handle QueryInfo errors during open (bsc#1144333,
- cifs: move cifsFileInfo_put logic into a work-queue (bsc#1144333,
- cifs: prepare SMB2_Flush to be usable in compounds (bsc#1144333,
- cifs: Properly process SMB3 lease breaks (bsc#1144333).
- cifs: remove set but not used variables 'cinode' and
- cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333).
- cifs: set domainName when a domain-key is used in multiuser
(bsc#1144333, bsc#1154355).
- cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a
(bsc#1144333, bsc#1154355).
- cifs: use existing handle for compound_op(OP_SET_INFO) when possible
(bsc#1144333, bsc#1154355).
- cifs: Use kzfree() to zero out the password (bsc#1144333, bsc#1154355).
- clk: at91: avoid sleeping early (git-fixes).
- clk: Do not try to enable critical clocks if prepare failed
- clk: pxa: fix one of the pxa RTC clocks (bsc#1051510).
- clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510).
- clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510).
- clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering
- clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510).
- clk: samsung: exynos5420: Preserve CPU clocks configuration during
suspend/resume (bsc#1051510).
- clk: samsung: exynos5420: Preserve PLL configuration during
suspend/resume (git-fixes).
- clk: samsung: Use clk_hw API for calling clk framework from clk
notifiers (bsc#1051510).
- clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 (git-fixes).
- clk: sunxi: sun9i-mmc: Implement reset callback for reset controls
- clocksource/drivers/sh_cmt: Fix clocksource width for 32-bit machines
- clocksource/drivers/sh_cmt: Fixup for 64-bit machines (bsc#1051510).
- compat_ioctl: handle SIOCOUTQNSD (bsc#1051510).
- component: fix loop condition to call unbind() if bind() fails
- configfs_register_group() shouldn't be (and isn't) called in
parts (bsc#1051510).
- copy/pasted "Recommends:" instead of "Provides:",
"Obsoletes:" and
- Cover up kABI breakage due to DH key verification (bsc#1155331).
- cpufreq/pasemi: fix use-after-free in pas_cpufreq_cpu_init()
- cpufreq: intel_pstate: Register when ACPI PCCH is present (bsc#1051510).
- cpufreq: powernv: fix stack bloat and hard limit on number of CPUs
- cpufreq: Skip cpufreq resume if it's not suspended (bsc#1051510).
- cpufreq: ti-cpufreq: add missing of_node_put() (bsc#1051510).
- cpupower : Fix cpupower working when cpu0 is offline (bsc#1051510).
- cpupower : frequency-set -r option misses the last cpu in related cpu
list (bsc#1051510).
- cpupower: Fix coredump on VMWare (bsc#1051510).
- crypto: af_alg - cast ki_complete ternary op to int (bsc#1051510).
- crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510).
- crypto: api - Check spawn->alg under lock in crypto_drop_spawn
- crypto: atmel-sha - fix error handling when setting hmac key
- crypto: ccp - fix uninitialized list head (bsc#1051510).
- crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510).
- crypto: crypto4xx - fix double-free in crypto4xx_destroy_sdr
- crypto: dh - add public key verification test (bsc#1155331).
- crypto: dh - fix calculating encoded key size (bsc#1155331).
- crypto: dh - fix memory leak (bsc#1155331).
- crypto: dh - update test for public key verification (bsc#1155331).
- crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334).
- crypto: ecdh - add public key verification test (bsc#1155331).
- crypto: ecdh - fix big endian bug in ECC library (bsc#1051510).
- crypto: ecdh - fix typo of P-192 b value (bsc#1155331).
- crypto: fix a memory leak in rsa-kcs1pad's encryption mode
- crypto: geode-aes - switch to skcipher for cbc(aes) fallback
- crypto: mxc-scc - fix build warnings on ARM64 (bsc#1051510).
- crypto: mxs-dcp - Fix AES issues (bsc#1051510).
- crypto: mxs-dcp - Fix SHA null hashes and output length (bsc#1051510).
- crypto: mxs-dcp - make symbols 'sha1_null_hash' and
static (bsc#1051510).
- crypto: pcrypt - Do not clear MAY_SLEEP flag in original request
- crypto: picoxcell - adjust the position of tasklet_init and fix missed
tasklet_kill (bsc#1051510).
- crypto: s5p-sss: Fix Fix argument list alignment (bsc#1051510).
- crypto: tgr192 - remove unneeded semicolon (bsc#1051510).
- cw1200: Fix a signedness bug in cw1200_load_firmware() (bsc#1051510).
- cxgb4: fix panic when attaching to ULD fail (networking-stable-19_11_05).
- cxgb4: request the TX CIDX updates to status page (bsc#1127371).
- dccp: do not leak jiffies on the wire (networking-stable-19_11_05).
- dlm: do not leak kernel pointer to userspace (bsc#1051510).
- dlm: fix invalid free (bsc#1051510).
- dma-buf: Fix memory leak in sync_file_merge() (git-fixes).
- dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510).
- dmaengine: coh901318: Fix a double-lock bug (bsc#1051510).
- dmaengine: coh901318: Remove unused variable (bsc#1051510).
- dmaengine: dma-jz4780: Do not depend on MACH_JZ4780 (bsc#1051510).
- dmaengine: dma-jz4780: Further residue status fix (bsc#1051510).
- dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction
- dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510).
- dmaengine: imx-sdma: fix use-after-free on probe error path
- dmaengine: rcar-dmac: set scatter/gather max segment size (bsc#1051510).
- dmaengine: timb_dma: Use proper enum in td_prep_slave_sg (bsc#1051510).
- docs: move protection-keys.rst to the core-api book (bsc#1078248).
- Documentation: debugfs: Document debugfs helper for unsigned long values
- Documentation: x86: convert protection-keys.txt to reST (bsc#1078248).
- drivers/base/memory.c: cache blocks in radix tree to accelerate lookup
(bsc#1159955 ltc#182993).
- drivers/base/platform.c: kmemleak ignore a known leak (bsc#1051510).
- drivers/regulator: fix a missing check of return value (bsc#1051510).
- drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1114279)
- drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510).
- drm/etnaviv: fix dumping of iommuv2 (bsc#1113722)
- drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510).
- drm/i810: Prevent underflow in ioctl (bsc#1114279)
- drm/i915: Add missing include file <linux/math64.h> (bsc#1051510).
- drm/i915: Fix pid leak with banned clients (bsc#1114279)
- drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510).
- drm/omap: fix max fclk divider for omap36xx (bsc#1113722)
- drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)
- drm/radeon: fix bad DMA from INTERRUPT_CNTL2 (git-fixes).
- drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279)
- drm/radeon: fix si_enable_smc_cac() failed issue (bsc#1113722)
- drm/rockchip: Round up _before_ giving to the clock framework
- drm: limit to INT_MAX in create_blob ioctl (bsc#1051510).
- drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510).
- drm: panel-lvds: Potential Oops in probe error handling (bsc#1114279)
- e1000e: Add support for Comet Lake (bsc#1158533).
- e1000e: Add support for Tiger Lake (bsc#1158533).
- e1000e: Drop unnecessary __E1000_DOWN bit twiddling (bsc#1158049).
- e1000e: Increase pause and refresh time (bsc#1158533).
- e1000e: Use dev_get_drvdata where possible (bsc#1158049).
- e1000e: Use rtnl_lock to prevent race conditions between net and pci/pm
- e100: Fix passing zero to 'PTR_ERR' warning in
- ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable
- ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable
- EDAC/ghes: Fix locking and memory barrier issues (bsc#1114279).
EDAC/ghes: Do not warn when incrementing refcount on 0 (bsc#1114279).
- EDAC/ghes: Fix Use after free in ghes_edac remove path (bsc#1114279).
- exit: panic before exit_mm() on global init exit (bsc#1161549).
- ext4: fix punch hole for inline_data file systems (bsc#1158640).
- ext4: update direct I/O read lock pattern for IOCB_NOWAIT (bsc#1158639).
- extcon: cht-wc: Return from default case to avoid warnings (bsc#1051510).
- extcon: max8997: Fix lack of path setting in USB device mode
- fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() (bsc#1051510).
- fbdev: sbuslib: use checked version of put_user() (bsc#1051510).
- fjes: fix missed check in fjes_acpi_add (bsc#1051510).
- fs: cifs: Fix atime update check vs mtime (bsc#1144333).
- ftrace: Avoid potential division by zero in function profiler
- ftrace: Introduce PERMANENT ftrace_ops flag (bsc#1120853).
- genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510).
- genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510).
- gpio: Fix error message on out-of-range GPIO in lookup table
- gpio: mpc8xxx: Do not overwrite default irq_set_type callback
- gpio: syscon: Fix possible NULL ptr usage (bsc#1051510).
- gpiolib: acpi: Add Terra Pad 1061 to the
run_edge_events_on_boot_blacklist (bsc#1051510).
- gsmi: Fix bug in append_to_eventlog sysfs handler (bsc#1051510).
- HID: Add ASUS T100CHI keyboard dock battery quirks (bsc#1051510).
- HID: Add quirk for Microsoft PIXART OEM mouse (bsc#1051510).
- HID: asus: Add T100CHI bluetooth keyboard dock special keys mapping
- HID: doc: fix wrong data structure reference for UHID_OUTPUT
- HID: Fix assumption that devices have inputs (git-fixes).
- HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510).
- HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510).
- HID: intel-ish-hid: fixes incorrect error handling (bsc#1051510).
- HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510).
- HID: wacom: generic: Treat serial number and related fields as unsigned
- hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510).
- hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros (bsc#1051510).
- hwmon: (pwm-fan) Silence error on probe deferral (bsc#1051510).
- hwrng: omap - Fix RNG wait loop timeout (bsc#1051510).
- hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not
idled (bsc#1051510).
- hwrng: stm32 - fix unbalanced pm_runtime_enable (bsc#1051510).
- hypfs: Fix error number left in struct pointer member (bsc#1051510).
- i2c: imx: do not print error message on probe defer (bsc#1051510).
- ibmveth: Detect unsupported packets before sending to the hypervisor
(bsc#1159484 ltc#182983).
- ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).
- ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).
- ibmvnic: Fix completion structure initialization (bsc#1155689
- ibmvnic: Fix completion structure initialization (bsc#1155689
- ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).
- ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).
- ibmvnic: Terminate waiting device threads after loss of service
(bsc#1155689 ltc#182047).
- ibmvnic: Terminate waiting device threads after loss of service
(bsc#1155689 ltc#182047).
- idr: Fix idr_alloc_u32 on 32-bit systems (bsc#1051510).
- iio: adc: max9611: explicitly cast gain_selectors (bsc#1051510).
- iio: adc: max9611: Fix too short conversion time delay (bsc#1051510).
- iio: adc: stm32-adc: fix stopping dma (git-fixes).
- iio: buffer: align the size of scan bytes to size of the largest element
- iio: dac: mcp4922: fix error handling in mcp4922_write_raw (bsc#1051510).
- iio: imu: adis16480: assign bias value only if operation succeeded
- iio: imu: adis16480: make sure provided frequency is positive
- iio: imu: adis: assign read val in debugfs hook only if op successful
- iio: imu: adis: assign value only if return code zero in read funcs
- include/linux/bitrev.h: fix constant bitrev (bsc#1114279).
- inet: protect against too small mtu values (networking-stable-19_12_16).
- inet: stop leaking jiffies on the wire (networking-stable-19_11_05).
- init: add arch_call_rest_init to allow stack switching (jsc#SLE-11179).
- Input: aiptek - fix endpoint sanity check (bsc#1051510).
- Input: cyttsp4_core - fix use after free bug (bsc#1051510).
- Input: ff-memless - kill timer in destroy() (bsc#1051510).
- Input: goodix - add upside-down quirk for Teclast X89 tablet
- Input: gtco - fix endpoint sanity check (bsc#1051510).
- Input: keyspan-remote - fix control-message timeouts (bsc#1051510).
- Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510).
- Input: pm8xxx-vib - fix handling of separate enable register
- Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510).
- Input: silead - try firmware reload after unsuccessful resume
- Input: st1232 - set INPUT_PROP_DIRECT property (bsc#1051510).
- Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register
- Input: sur40 - fix interface sanity checks (bsc#1051510).
- Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510).
- Input: synaptics-rmi4 - clear IRQ enables for F54 (bsc#1051510).
- Input: synaptics-rmi4 - destroy F54 poller workqueue when removing
- Input: synaptics-rmi4 - disable the relative position IRQ in the F12
driver (bsc#1051510).
- Input: synaptics-rmi4 - do not consume more data than we have (F11, F12)
- Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers
- Input: synaptics-rmi4 - fix video buffer size (git-fixes).
- Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510).
- intel_th: Fix a double put_device() in error path (git-fixes).
- iomap: Fix pipe page leakage during splicing (bsc#1158651).
- iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros
- iommu/vt-d: Unlink device if failed to add to group (bsc#1160756).
- iommu: Remove device link to group on failure (bsc#1160755).
- ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address
- ipv4: Fix table id reference in fib_sync_down_addr
- ipv4: Return -ENETUNREACH if we can't create route but saddr is valid
- iwlegacy: ensure loop counter addr does not wrap and cause an infinite
loop (git-fixes).
- iwlwifi: api: annotate compressed BA notif array sizes (bsc#1051510).
- iwlwifi: check kasprintf() return value (bsc#1051510).
- iwlwifi: mvm: avoid sending too many BARs (bsc#1051510).
- iwlwifi: mvm: do not send keys when entering D3 (bsc#1051510).
- iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510).
- iwlwifi: mvm: synchronize TID queue removal (bsc#1051510).
- kABI workaround for ath10k last_wmi_vdev_start_status field
- kABI workaround for can/skb.h inclusion (bsc#1051510).
- kABI workaround for struct mwifiex_power_cfg change (bsc#1051510).
- kABI: add _q suffix to exports that take struct dh (bsc#1155331).
- kABI: Fix for "KVM: x86: Introduce vcpu->arch.xsaves_enabled"
- kABI: protect struct sctp_ep_common (kabi).
- kernel/trace: Fix do not unregister tracepoints when register
sched_migrate_task fail (bsc#1160787).
- kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510).
- kexec: bail out upon SIGKILL when allocating memory (git-fixes).
- KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl
- KVM: s390: Test for bad access register and size at the start of
S390_MEM_OP (git-fixes).
- KVM: SVM: Guard against DEACTIVATE when performing WBINVD/DF_FLUSH
- KVM: SVM: Serialize access to the SEV ASID bitmap (bsc#1114279).
- KVM: VMX: Consider PID.PIR to determine if vCPU has pending interrupts
- KVM: VMX: Fix conditions for guest IA32_XSS support (bsc#1158065).
- KVM: x86/mmu: Take slots_lock when using kvm_mmu_zap_all_fast()
- KVM: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD
- KVM: x86: Introduce vcpu->arch.xsaves_enabled (bsc#1158066).
- KVM: x86: Remove a spurious export of a static function (bsc#1158954).
- leds: Allow to call led_classdev_unregister() unconditionally
- leds: class: ensure workqueue is initialized before setting brightness
- liquidio: fix race condition in instruction completion processing
- livepatch: Allow to distinguish different version of system state
changes (bsc#1071995).
- livepatch: Basic API to track system state changes (bsc#1071995 ).
- livepatch: Keep replaced patches until post_patch callback is called
- livepatch: Selftests of the API for tracking system state changes
- livepatch: Simplify stack trace retrieval (jsc#SLE-11179).
- loop: add ioctl for changing logical block size (bsc#1108043).
- loop: fix no-unmap write-zeroes request behavior (bsc#1158637).
- mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED (bsc#1051510).
- mac80211: Do not send Layer 2 Update frame before authorization
- mac80211: fix station inactive_time shortly after boot (bsc#1051510).
- mac80211: minstrel: fix CCK rate group streams value (bsc#1051510).
- mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode
- macvlan: do not assume mac_header is set in macvlan_broadcast()
- macvlan: schedule bc_work even if error (bsc#1051510).
- macvlan: use skb_reset_mac_header() in macvlan_queue_xmit()
- mailbox: mailbox-test: fix null pointer if no mmio (bsc#1051510).
- mailbox: reset txdone_method TXDONE_BY_POLL if client knows_txdone
- media: au0828: Fix incorrect error messages (bsc#1051510).
- media: bdisp: fix memleak on release (git-fixes).
- media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510).
- media: cec: report Vendor ID after initialization (bsc#1051510).
- media: cxusb: detect cxusb_ctrl_msg error in query (bsc#1051510).
- media: davinci: Fix implicit enum conversion warning (bsc#1051510).
- media: exynos4-is: Fix recursive locking in isp_video_release()
- media: fix: media: pci: meye: validate offset to avoid arbitrary access
- media: flexcop-usb: ensure -EIO is returned on error condition
- media: imon: invalid dereference in imon_touch_event (bsc#1051510).
- media: isif: fix a NULL pointer dereference bug (bsc#1051510).
- media: ov6650: Fix control handler not freed on init error (git-fixes).
- media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init()
- media: pulse8-cec: return 0 when invalidating the logical address
- media: pxa_camera: Fix check for pdev->dev.of_node (bsc#1051510).
- media: radio: wl1273: fix interrupt masking on release (git-fixes).
- media: stkwebcam: Bugfix for wrong return values (bsc#1051510).
- media: ti-vpe: vpe: Fix Motion Vector vpdma stride (git-fixes).
- media: usbvision: Fix races among open, close, and disconnect
- media: uvcvideo: Fix error path in control parsing failure (git-fixes).
- media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE (bsc#1051510).
- media: vim2m: Fix abort issue (git-fixes).
- media: vivid: Set vid_cap_streaming and vid_out_streaming to true
- mei: bus: prefix device names on bus with the bus name (bsc#1051510).
- mei: fix modalias documentation (git-fixes).
- mei: samples: fix a signedness bug in amt_host_if_call() (bsc#1051510).
- mfd: intel-lpss: Add default I2C device properties for Gemini Lake
- mfd: max8997: Enale irq-wakeup unconditionally (bsc#1051510).
- mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values
- mfd: palmas: Assign the right powerhold mask for tps65917 (git-fixes).
- mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable
- mISDN: Fix type of switch control variable in ctrl_teimanager
- missing escaping of backslashes in macro expansions Fixes: f3b74b0ae86b
("rpm/kernel-subpackage-spec: Unify dependency handling.") Fixes:
3fd22e219f77 ("rpm/kernel-subpackage-spec: Fix empty Recommends tag
- mlx5: add parameter to disable enhanced IPoIB (bsc#1142095)
- mm, memory_hotplug: do not clear numa_node association after hot_remove
- mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()
(git fixes (mm/gup)).
- mm/compaction.c: clear total_{migrate,free}_scanned before scanning a
new zone (git fixes (mm/compaction)).
- mm/debug.c: PageAnon() is true for PageKsm() pages (git fixes
- mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock
- mm: memory_hotplug: use put_device() if device_register fail
(bsc#1159955 ltc#182993).
- mmc: core: fix wl1251 sdio quirks (git-fixes).
- mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of
pandora_wl1251_init_card (git-fixes).
- mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready
fail (bsc#1051510).
- mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510).
- mmc: sdhci-of-at91: fix quirk2 overwrite (git-fixes).
- mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510).
- mmc: sdhci-of-esdhc: Revert "mmc: sdhci-of-esdhc: add erratum A-009204
support" (bsc#1051510).
- mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510).
- mmc: sdio: fix wl1251 vendor id (git-fixes).
- mmc: tegra: fix SDR50 tuning override (bsc#1051510).
- moduleparam: fix parameter description mismatch (bsc#1051510).
- mt7601u: fix bbp version check in mt7601u_wait_bbp_ready (bsc#1051510).
- mtd: spear_smi: Fix Write Burst mode (bsc#1051510).
- mtd: spi-nor: fix silent truncation in spi_nor_read() (bsc#1051510).
- mwifiex: debugfs: correct histogram spacing, formatting (bsc#1051510).
- mwifiex: drop most magic numbers from
mwifiex_process_tdls_action_frame() (git-fixes).
- mwifiex: Fix NL80211_TX_POWER_LIMITED (bsc#1051510).
- mwifiex: fix potential NULL dereference and use after free (bsc#1051510).
- nbd: prevent memory leak (bsc#1158638).
- net/ibmvnic: Fix typo in retry check (bsc#1155689 ltc#182047).
- net/ibmvnic: Ignore H_FUNCTION return from H_EOI to tolerate XIVE mode
(bsc#1089644, ltc#166495, ltc#165544, git-fixes).
- net/mlx4_core: Dynamically set guaranteed amount of counters per VF
- net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25).
- net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303).
- net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget
- net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25).
- net/mlx5e: Fix SFF 8472 eeprom length (git-fixes).
- net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858).
- net/sched: act_pedit: fix WARN() in the traffic path
- net/smc: avoid fallback in case of non-blocking connect (git-fixes).
- net/smc: fix closing of fallback SMC sockets (git-fixes).
- net/smc: Fix error path in smc_init (git-fixes).
- net/smc: fix ethernet interface refcounting (git-fixes).
- net/smc: fix refcounting for non-blocking connect() (git-fixes).
- net/smc: keep vlan_id for SMC-R in smc_listen_work() (git-fixes).
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
- net: add skb_queue_empty_lockless() (networking-stable-19_11_05).
- net: annotate accesses to sk->sk_incoming_cpu
- net: annotate lockless accesses to sk->sk_napi_id
- net: avoid potential infinite loop in tc_ctl_action()
- net: bcmgenet: Fix RGMII_MODE_EN value for GENET v1/2/3
- net: bcmgenet: reset 40nm EPHY on energy detect
- net: bcmgenet: Set phydev->dev_flags only for internal PHYs
- net: bridge: deny dev_set_mac_address() when unregistering
- net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes).
- net: dsa: b53: Do not clear existing mirrored port mask
- net: dsa: bcm_sf2: Fix IMP setup for port different than 8
- net: dsa: fix switch tree list (networking-stable-19_11_05).
- net: ethernet: ftgmac100: Fix DMA coherency issue with SW checksum
- net: ethernet: octeon_mgmt: Account for second possible VLAN header
- net: ethernet: ti: cpsw: fix extra rx interrupt
- net: fix data-race in neigh_event_send() (networking-stable-19_11_10).
- net: fix sk_page_frag() recursion from memory reclaim
- net: hisilicon: Fix ping latency when deal with high throughput
- net: phy: at803x: Change error to EINVAL for invalid MAC (bsc#1051510).
- net: phy: broadcom: Use strlcpy() for ethtool::get_strings (bsc#1051510).
- net: phy: Check against net_device being NULL (bsc#1051510).
- net: phy: dp83867: Set up RGMII TX delay (bsc#1051510).
- net: phy: Fix not to call phy_resume() if PHY is not attached
- net: phy: Fix the register offsets in Broadcom iProc mdio mux driver
- net: phy: fixed_phy: Fix fixed_phy not checking GPIO (bsc#1051510).
- net: phy: marvell: clear wol event before setting it (bsc#1051510).
- net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1051510).
- net: phy: meson-gxl: check phy_write return value (bsc#1051510).
- net: phy: micrel: Use strlcpy() for ethtool::get_strings (bsc#1051510).
- net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32
- net: phy: mscc: read 'vsc8531,vddmac' as an u32 (bsc#1051510).
- net: phy: xgene: disable clk on error paths (bsc#1051510).
- net: phy: xgmiitorgmii: Check phy_driver ready before accessing
- net: phy: xgmiitorgmii: Check read_status results (bsc#1051510).
- net: phy: xgmiitorgmii: Support generic PHY status read (bsc#1051510).
- net: psample: fix skb_over_panic (networking-stable-19_12_03).
- net: rtnetlink: prevent underflows in do_setvfinfo()
- net: sched: fix `tc -s class show` no bstats on class with nolock
subqueues (networking-stable-19_12_03).
- net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow
- net: usb: lan78xx: limit size of local TSO packets (bsc#1051510).
- net: usb: qmi_wwan: add support for DW5821e with eSIM support
- net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules
- net: use skb_queue_empty_lockless() in busy poll contexts
- net: use skb_queue_empty_lockless() in poll() handlers
- net: wireless: ti: remove local VENDOR_ID and DEVICE_ID definitions
- net: wireless: ti: wl1251 use new SDIO_VENDOR_ID_TI_WL1251 definition
- net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol()
- netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes).
- netns: fix GFP flags in rtnl_net_notifyid() (networking-stable-19_11_05).
- nfc: fdp: fix incorrect free object (networking-stable-19_11_10).
- nfc: netlink: fix double device reference drop (git-fixes).
- nfc: nxp-nci: Fix NULL pointer dereference after I2C communication error
- nfc: pn533: fix bulk-message timeout (bsc#1051510).
- nfc: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes).
- nfc: port100: handle command failure cleanly (git-fixes).
- nfc: st21nfca: fix double free (networking-stable-19_11_10).
- nl80211: Fix a GET_KEY reply attribute (bsc#1051510).
- ocfs2: fix panic due to ocfs2_wq is null (bsc#1158644).
- ocfs2: fix passing zero to 'PTR_ERR' warning (bsc#1158649).
- openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info()
- openvswitch: fix flow command message size (git-fixes).
- openvswitch: remove another BUG_ON() (networking-stable-19_12_03).
- openvswitch: support asymmetric conntrack (networking-stable-19_12_16).
- orinoco_usb: fix interface sanity check (git-fixes).
- padata: use smp_mb in padata_reorder to avoid orphaned padata jobs
- PCI/ACPI: Correct error message for ASPM disabling (bsc#1051510).
- PCI/MSI: Fix incorrect MSI-X masking on resume (bsc#1051510).
- PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity()
- PCI/PME: Fix possible use-after-free on remove (git-fixes).
- PCI/PTM: Remove spurious "d" from granularity message
- PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 (bsc#1051510).
- PCI: dwc: Fix find_next_bit() usage (bsc#1051510).
- PCI: Fix Intel ACS quirk UPDCR register address (bsc#1051510).
- PCI: rcar: Fix missing MACCTLR register setting in initialization
sequence (bsc#1051510).
- PCI: sysfs: Ignore lockdep for remove attribute (git-fixes).
- PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30
- phy: phy-twl4030-usb: fix denied runtime access (git-fixes).
- pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args
call (git-fixes).
- pinctrl: at91: do not use the same irqchip with multiple gpiochips
- pinctrl: cherryview: Allocate IRQ chip dynamic (git-fixes).
- pinctrl: lewisburg: Update pin list according to v1.1v6 (bsc#1051510).
- pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT
- pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues (bsc#1051510).
- pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510).
- pinctrl: samsung: Fix device node refcount leaks in init code
- pinctrl: samsung: Fix device node refcount leaks in S3C24xx wakeup
controller init (bsc#1051510).
- pinctrl: samsung: Fix device node refcount leaks in S3C64xx wakeup
controller init (bsc#1051510).
- pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()'
- pinctrl: xway: fix gpio-hog related boot issues (bsc#1051510).
- pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD
- pktcdvd: remove warning on attempting to register non-passthrough dev
- platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0
- platform/x86: hp-wmi: Fix ACPI errors caused by passing 0 as input size
- platform/x86: hp-wmi: Fix ACPI errors caused by too small buffer
- platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes
- platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI
table (bsc#1051510).
- PM / AVS: SmartReflex: NULL check before some freeing functions is not
needed (bsc#1051510).
- PM / devfreq: Check NULL governor in available_governors_show
- PM / devfreq: exynos-bus: Correct clock enable sequence (bsc#1051510).
- PM / devfreq: Lock devfreq in trans_stat_show (git-fixes).
- PM / devfreq: passive: fix compiler warning (bsc#1051510).
- PM / devfreq: passive: Use non-devm notifiers (bsc#1051510).
- PM / Domains: Deal with multiple states but no governor in genpd
- PM / hibernate: Check the success of generating md5 digest before
hibernation (bsc#1051510).
- power: reset: at91-poweroff: do not procede if at91_shdwc is allocated
- power: supply: ab8500_fg: silence uninitialized variable warnings
- power: supply: twl4030_charger: disable eoc interrupt on linear charge
- power: supply: twl4030_charger: fix charging current out-of-bounds
- powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729).
- powerpc/book3s64/hash: Use secondary hash for bolted mapping if the
primary is full (bsc#1157778 ltc#182520).
- powerpc/bpf: Fix tail call implementation (bsc#1157698).
- powerpc/irq: fix stack overflow verification (bsc#1065729).
- powerpc/livepatch: return -ERRNO values in
save_stack_trace_tsk_reliable() (bsc#1071995 bsc#1161875).
- powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729).
- powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729).
- powerpc/powernv: Disable native PCIe port management (bsc#1065729).
- powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028
- powerpc/pseries/mobility: notify network peers after migration
(bsc#1152631 ltc#181798).
- powerpc/pseries: Do not fail hash page table insert for bolted mapping
(bsc#1157778 ltc#182520).
- powerpc/pseries: Do not opencode HPTE_V_BOLTED (bsc#1157778 ltc#182520).
- powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init()
- powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729).
- powerpc/tools: Do not quote $objdump in scripts (bsc#1065729).
- powerpc/xive: Discard ESB load value when interrupt is invalid
- powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts
- powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges
>4GB (bnc#1151927 5.3.17).
- powerpc: Allow flush_icache_range to work across ranges >4GB
(bnc#1151927 5.3.17).
- powerpc: Fix vDSO clock_getres() (bsc#1065729).
- ppdev: fix PPGETTIME/PPSETTIME ioctls (bsc#1051510).
- ppp: Adjust indentation into ppp_async_input (git-fixes).
- prevent active file list thrashing due to refault detection (VM
Performance, bsc#1156286).
- printk: Export console_printk (bsc#1071995).
- pwm: bcm-iproc: Prevent unloading the driver module while in use
- pwm: Clear chip_data in pwm_put() (bsc#1051510).
- pwm: clps711x: Fix period calculation (bsc#1051510).
- pwm: lpss: Only set update bit if we are actually changing the settings
- qede: Disable hardware gro when xdp prog is installed (bsc#1086314
bsc#1086313 bsc#1086301 ).
- qede: fix NULL pointer deref in __qede_remove()
- r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2
- r8152: add missing endpoint sanity check (bsc#1051510).
- random: move FIPS continuous test to output functions (bsc#1155334).
- RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244).
- RDMA/hns: Prevent memory leaks of eq->buf_list (bsc#1104427 ).
- README.BRANCH: removing myself from the maintainer list
- regulator: ab8500: Remove AB8505 USB regulator (bsc#1051510).
- regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id
- regulator: rn5t618: fix module aliases (bsc#1051510).
- regulator: tps65910: fix a missing check of return value (bsc#1051510).
- remoteproc: Check for NULL firmwares in sysfs interface (git-fixes).
- reset: fix of_reset_simple_xlate kerneldoc comment (bsc#1051510).
- reset: Fix potential use-after-free in __of_reset_control_get()
- reset: fix reset_control_get_exclusive kerneldoc comment (bsc#1051510).
- reset: fix reset_control_ops kerneldoc comment (bsc#1051510).
- resource: fix locking in find_next_iomem_res() (bsc#1114279).
- Revert "ath10k: fix DMA related firmware crashes on multiple
- Revert "Input: synaptics-rmi4 - do not increment rmiaddr for SMBus
transfers" (bsc#1051510).
- Revert "mmc: sdhci: Fix incorrect switch to HS mode"
- rpm/kernel-binary.spec.in: add COMPRESS_VMLINUX (bnc#1155921) Let
COMPRESS_VMLINUX determine the compression used for vmlinux. By default
(historically), it is gz.
- rpm/kernel-source.spec.in: Fix dependency of kernel-devel (bsc#1154043)
- rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends
(bsc#1143959) For reducing the dependency on kernel-firmware in sub
- rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959)
- rpm/kernel-subpackage-spec: fix kernel-default-base build There were
some issues with recent changes to subpackage dependencies handling:
- rpm/kernel-subpackage-spec: Unify dependency handling.
- rpm/modules.fips: update module list (bsc#1157853)
- rsi_91x_usb: fix interface sanity check (git-fixes).
- rt2800: remove errornous duplicate condition (git-fixes).
- rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510).
- rtc: max8997: Fix the returned value in case of error in
'max8997_rtc_read_alarm()' (bsc#1051510).
- rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510).
- rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510).
- rtc: s35390a: Change buf's type to u8 in s35390a_init (bsc#1051510).
- rtl8187: Fix warning generated when strncpy() destination length matches
the sixe argument (bsc#1051510).
- rtl818x: fix potential use after free (bsc#1051510).
- rtl8xxxu: fix interface sanity check (git-fixes).
- rtlwifi: Remove unnecessary NULL check in rtl_regd_init (bsc#1051510).
- rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information (bsc#1051510).
- rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address
- rtlwifi: rtl8192de: Fix missing enable interrupt flag (bsc#1051510).
- s390/bpf: fix lcgr instruction encoding (bsc#1051510).
- s390/bpf: use 32-bit index for tail calls (bsc#1051510).
- s390/cio: avoid calling strlen on null pointer (bsc#1051510).
- s390/cio: exclude subchannels with no parent from pseudo check
- s390/cmm: fix information leak in cmm_timeout_handler() (bsc#1051510).
- s390/ftrace: generate traced function stack frame (jsc#SLE-11178
- s390/ftrace: save traced function caller (jsc#SLE-11179).
- s390/ftrace: use HAVE_FUNCTION_GRAPH_RET_ADDR_PTR (jsc#SLE-11179).
- s390/head64: correct init_task stack setup (jsc#SLE-11179).
- s390/idle: fix cpu idle time calculation (bsc#1051510).
- s390/kasan: avoid false positives during stack unwind (jsc#SLE-11179).
- s390/kasan: avoid report in get_wchan (jsc#SLE-11179).
- s390/livepatch: Implement reliable stack tracing for the consistency
model (jsc#SLE-11179).
- s390/mm: properly clear _PAGE_NOEXEC bit when it is not supported
- s390/process: avoid custom stack unwinding in get_wchan (jsc#SLE-11179).
- s390/process: avoid potential reading of freed stack (bsc#1051510).
- s390/qdio: (re-)initialize tiqdio list entries (bsc#1051510).
- s390/qdio: do not touch the dsci in tiqdio_add_input_queues()
- s390/qeth: clean up page frag creation (git-fixes).
- s390/qeth: consolidate skb allocation (git-fixes).
- s390/qeth: ensure linear access to packet headers (git-fixes).
- s390/qeth: guard against runt packets (git-fixes).
- s390/qeth: return proper errno on IO error (bsc#1051510).
- s390/setup: fix boot crash for machine without EDAT-1 (bsc#1051510
- s390/setup: fix early warning messages (bsc#1051510 bsc#1140948).
- s390/stacktrace: use common arch_stack_walk infrastructure
- s390/suspend: fix stack setup in swsusp_arch_suspend (jsc#SLE-11179).
- s390/test_unwind: print verbose unwinding results (jsc#SLE-11179).
- s390/topology: avoid firing events before kobjs are created
- s390/unwind: add stack pointer alignment sanity checks (jsc#SLE-11179).
- s390/unwind: always inline get_stack_pointer (jsc#SLE-11179).
- s390/unwind: avoid int overflow in outside_of_stack (jsc#SLE-11179).
- s390/unwind: cleanup unused READ_ONCE_TASK_STACK (jsc#SLE-11179).
- s390/unwind: correct stack switching during unwind (jsc#SLE-11179).
- s390/unwind: drop unnecessary code around calling
ftrace_graph_ret_addr() (jsc#SLE-11179).
- s390/unwind: filter out unreliable bogus %r14 (jsc#SLE-11179).
- s390/unwind: fix get_stack_pointer(NULL, NULL) (jsc#SLE-11179).
- s390/unwind: fix mixing regs and sp (jsc#SLE-11179).
- s390/unwind: introduce stack unwind API (jsc#SLE-11179).
- s390/unwind: make reuse_sp default when unwinding pt_regs
- s390/unwind: remove stack recursion warning (jsc#SLE-11179).
- s390/unwind: report an error if pt_regs are not on stack (jsc#SLE-11179).
- s390/unwind: start unwinding from reliable state (jsc#SLE-11179).
- s390/unwind: stop gracefully at task pt_regs (jsc#SLE-11179).
- s390/unwind: stop gracefully at user mode pt_regs in irq stack
- s390/unwind: unify task is current checks (jsc#SLE-11179).
- s390: add stack switch helper (jsc#SLE-11179).
- s390: add support for virtually mapped kernel stacks (jsc#SLE-11179).
- s390: always inline current_stack_pointer() (jsc#SLE-11179).
- s390: always inline disabled_wait (jsc#SLE-11179).
- s390: avoid misusing CALL_ON_STACK for task stack setup (jsc#SLE-11179).
- s390: clean up stacks setup (jsc#SLE-11179).
- s390: correct CALL_ON_STACK back_chain saving (jsc#SLE-11179).
- s390: disable preemption when switching to nodat stack with
CALL_ON_STACK (jsc#SLE-11179).
- s390: fine-tune stack switch helper (jsc#SLE-11179).
- s390: fix register clobbering in CALL_ON_STACK (jsc#SLE-11179).
- s390: fix stfle zero padding (bsc#1051510).
- s390: kabi workaround for ftrace_ret_stack (jsc#SLE-11179).
- s390: kabi workaround for lowcore changes due to vmap stack
- s390: kabi workaround for reliable stack tracing (jsc#SLE-11179).
- s390: preserve kabi for stack unwind API (jsc#SLE-11179).
- s390: unify stack size definitions (jsc#SLE-11179).
- sched/fair: Add tmp_alone_branch assertion (bnc#1156462).
- sched/fair: Fix insertion in rq->leaf_cfs_rq_list (bnc#1156462).
- sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462).
- sched/fair: Optimize update_blocked_averages() (bnc#1156462).
- sched/fair: WARN() and refuse to set buddy when !se->on_rq
- scsi: lpfc: Fix Oops in nvme_register with target logout/login
- scsi: qla2xxx: Add a shadow variable to hold disc_state history of
fcport (bsc#1158013).
- scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs
- scsi: qla2xxx: Add debug dump of LOGO payload and ELS IOCB (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Added support for MPI and PEP regions for ISP28XX
(bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).
- scsi: qla2xxx: Allow PLOGI in target mode (bsc#1157424, bsc#1157908.
bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Change discovery state before PLOGI (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013).
- scsi: qla2xxx: Configure local loop for N2N target (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Consolidate fabric scan (bsc#1158013).
- scsi: qla2xxx: Correct fcport flags handling (bsc#1158013).
- scsi: qla2xxx: Correctly retrieve and interpret active flash region
(bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).
- scsi: qla2xxx: Do not call qlt_async_event twice (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Do not defer relogin unconditonally (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Drop superfluous INIT_WORK of del_work (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Fix fabric scan hang (bsc#1158013).
- scsi: qla2xxx: Fix incorrect SFUB length used for Secure Flash Update MB
Cmd (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).
- scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013).
- scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013).
- scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan
- scsi: qla2xxx: Fix stuck login session using prli_pend_timer
- scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013).
- scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return
type (bsc#1158013).
- scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013).
- scsi: qla2xxx: Ignore NULL pointer in tcm_qla2xxx_free_mcmd
(bsc#1157424, bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Improve readability of the code that handles
qla_flt_header (bsc#1158013).
- scsi: qla2xxx: Initialize free_work before flushing it (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss
- scsi: qla2xxx: Send Notify ACK after N2N PLOGI (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: unregister ports after GPN_FT failure (bsc#1138039).
- scsi: qla2xxx: Update driver version to (bsc#1158013).
- scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013).
- scsi: qla2xxx: Use explicit LOGO in target mode (bsc#1157424,
bsc#1157908. bsc#1117169, bsc#1151548).
- scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these
functions (bsc#1158013).
- scsi: zfcp: fix request object use-after-free in send path causing wrong
traces (bsc#1051510).
- scsi: zfcp: trace channel log even for FCP command responses (git-fixes).
- sctp: cache netns in sctp_ep_common (networking-stable-19_12_03).
- sctp: change sctp_prot .no_autobind with true
- selftests: net: reuseport_dualstack: fix uninitalized parameter
- serial: max310x: Fix tx_empty() callback (bsc#1051510).
- serial: mxs-auart: Fix potential infinite loop (bsc#1051510).
- serial: samsung: Enable baud clock for UART reset procedure in resume
- serial: uartps: Fix suspend functionality (bsc#1051510).
- sfc: Only cancel the PPS workqueue if it exists
- signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal
- slcan: Fix memory leak in error path (bsc#1051510).
- slip: Fix memory leak in slip_open error path (bsc#1051510).
- slip: Fix use-after-free Read in slip_open (bsc#1051510).
- smb3: Fix crash in SMB2_open_init due to uninitialized field in
compounding path (bsc#1144333).
- smb3: fix leak in "open on server" perf counter (bsc#1144333,
- smb3: Fix persistent handles reconnect (bsc#1144333).
- smb3: fix refcount underflow warning on unmount when no directory leases
- smb3: fix signing verification of large reads (bsc#1144333, bsc#1154355).
- smb3: fix unmount hang in open_shroot (bsc#1144333, bsc#1154355).
- smb3: improve handling of share deleted (and share recreated)
(bsc#1144333, bsc#1154355).
- smb3: Incorrect size for netname negotiate context (bsc#1144333,
- smb3: remove confusing dmesg when mounting with encryption
- soc: imx: gpc: fix PDN delay (bsc#1051510).
- soc: qcom: wcnss_ctrl: Avoid string overflow (bsc#1051510).
- spi: atmel: Fix CS high support (bsc#1051510).
- spi: atmel: fix handling of cs_change set on non-last xfer (bsc#1051510).
- spi: fsl-lpspi: Prevent FIFO under/overrun by default (bsc#1051510).
- spi: mediatek: Do not modify spi_transfer when transfer (bsc#1051510).
- spi: mediatek: use correct mata->xfer_len when in fifo transfer
- spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch
- spi: omap2-mcspi: Set FIFO DMA trigger level to word length
- spi: pic32: Use proper enum in dmaengine_prep_slave_rg (bsc#1051510).
- spi: rockchip: initialize dma_slave_config properly (bsc#1051510).
- spi: spidev: Fix OF tree warning logic (bsc#1051510).
- stacktrace: Do not skip first entry on noncurrent tasks (jsc#SLE-11179).
- stacktrace: Force USER_DS for stack_trace_save_user() (jsc#SLE-11179).
- stacktrace: Get rid of unneeded '!!' pattern (jsc#SLE-11179).
- stacktrace: Provide common infrastructure (jsc#SLE-11179).
- stacktrace: Provide helpers for common stack trace operations
- stacktrace: Unbreak stack_trace_save_tsk_reliable() (jsc#SLE-11179).
- stacktrace: Use PF_KTHREAD to check for kernel threads (jsc#SLE-11179).
- staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713
- staging: iio: adt7316: Fix i2c data reading, set the data field
- staging: rtl8188eu: fix interface sanity check (bsc#1051510).
- staging: rtl8192e: fix potential use after free (bsc#1051510).
- staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids
- staging: rtl8723bs: Drop ACPI device ids (bsc#1051510).
- stm class: Fix a double free of stm_source_device (bsc#1051510).
- supported.conf:
- synclink_gt(): fix compat_ioctl() (bsc#1051510).
- tcp: clear tp->packets_out when purging write queue (bsc#1160560).
- tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable
- tcp: md5: fix potential overestimation of TCP option space
- tcp_nv: fix potential integer overflow in tcpnv_acked (bsc#1051510).
- thermal: Fix deadlock in thermal thermal_zone_device_check (bsc#1051510).
- thunderbolt: Fix lockdep circular locking depedency warning (git-fixes).
- tipc: Avoid copying bytes beyond the supplied data (bsc#1051510).
- tipc: check bearer name with right length in
tipc_nl_compat_bearer_enable (bsc#1051510).
- tipc: check link name with right length in tipc_nl_compat_link_set
- tipc: check msg->req data len in tipc_nl_compat_bearer_disable
- tipc: compat: allow tipc commands without arguments (bsc#1051510).
- tipc: fix a missing check of genlmsg_put (bsc#1051510).
- tipc: fix link name length check (bsc#1051510).
- tipc: fix memory leak in tipc_nl_compat_publ_dump (bsc#1051510).
- tipc: fix skb may be leaky in tipc_link_input (bsc#1051510).
- tipc: fix tipc_mon_delete() oops in tipc_enable_bearer() error path
- tipc: fix wrong timeout input for tipc_wait_for_cond() (bsc#1051510).
- tipc: handle the err returned from cmd header function (bsc#1051510).
- tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb (bsc#1051510).
- tipc: tipc clang warning (bsc#1051510).
- tpm: add check after commands attribs tab allocation (bsc#1051510).
- tracing: Cleanup stack trace code (jsc#SLE-11179).
- tracing: Have the histogram compare functions convert to u64 first
- tracing: xen: Ordered comparison of function pointers (git-fixes).
- tty: serial: fsl_lpuart: use the sg count from dma_map_sg (bsc#1051510).
- tty: serial: imx: use the sg count from dma_map_sg (bsc#1051510).
- tty: serial: msm_serial: Fix flow control (bsc#1051510).
- tty: serial: pch_uart: correct usage of dma_unmap_sg (bsc#1051510).
- uaccess: Add non-pagefault user-space write function (bsc#1083647).
- ubifs: Correctly initialize c->min_log_bytes (bsc#1158641).
- ubifs: Limit the number of pages in shrink_liability (bsc#1158643).
- udp: use skb_queue_empty_lockless() (networking-stable-19_11_05).
- usb-serial: cp201x: support Mark-10 digital force gauge (bsc#1051510).
- usb: adutux: fix interface sanity check (bsc#1051510).
- usb: Allow USB device to be warm reset in suspended state (bsc#1051510).
- usb: atm: ueagle-atm: add missing endpoint check (bsc#1051510).
- usb: chaoskey: fix error case of a timeout (git-fixes).
- usb: chipidea: Fix otg event handler (bsc#1051510).
- usb: chipidea: host: Disable port power only if previously enabled
- usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is
already started (bsc#1051510).
- usb: core: hub: Improved device recognition on remote wakeup
- usb: core: urb: fix URB structure initialization function (bsc#1051510).
- usb: documentation: flags on usb-storage versus UAS (bsc#1051510).
- usb: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510).
- usb: dwc3: do not log probe deferrals; but do log other error codes
- usb: dwc3: ep0: Clear started flag on completion (bsc#1051510).
- usb: dwc3: gadget: Check ENBLSLPM before sending ep command
- usb: gadget: pch_udc: fix use after free (bsc#1051510).
- usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in
fotg210_get_status() (bsc#1051510).
- usb: gadget: uvc: configfs: Drop leaked references to config items
- usb: gadget: uvc: configfs: Prevent format changes after linking header
- usb: gadget: uvc: Factor out video USB request queueing (bsc#1051510).
- usb: gadget: uvc: Only halt video streaming endpoint in bulk mode
- usb: gadget: u_serial: add missing port entry locking (bsc#1051510).
- usb: idmouse: fix interface sanity checks (bsc#1051510).
- usb: misc: appledisplay: fix backlight update_status return code
- usb: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510).
- usb: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510).
- usb: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510).
- usb: musb: fix idling for suspend after disconnect interrupt
- usb: serial: ch341: handle unbound port at reset_resume (bsc#1051510).
- usb: serial: ftdi_sio: add device IDs for U-Blox C099-F9P (bsc#1051510).
- usb: serial: io_edgeport: add missing active-port sanity check
- usb: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510).
- usb: serial: io_edgeport: handle unbound ports on URB completion
- usb: serial: io_edgeport: use irqsave() in USB's complete callback
- usb: serial: keyspan: handle unbound ports (bsc#1051510).
- usb: serial: mos7720: fix remote wakeup (git-fixes).
- usb: serial: mos7840: add USB ID to support Moxa UPort 2210
- usb: serial: mos7840: fix remote wakeup (git-fixes).
- usb: serial: opticon: fix control-message timeouts (bsc#1051510).
- usb: serial: option: add support for DW5821e with eSIM support
- usb: serial: option: add support for Foxconn T77W968 LTE modules
- usb: serial: option: Add support for Quectel RM500Q (bsc#1051510).
- usb: serial: quatech2: handle unbound ports (bsc#1051510).
- usb: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx
- usb: serial: suppress driver bind attributes (bsc#1051510).
- usb: uas: heed CAPACITY_HEURISTICS (bsc#1051510).
- usb: uas: honor flag to avoid CAPACITY16 (bsc#1051510).
- usb: xhci-mtk: fix ISOC error when interval is zero (bsc#1051510).
- usb: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510).
- usb: xhci: only set D3hot for pci device (bsc#1051510).
- usbip: Fix receive error in vhci-hcd when using scatter-gather
- usbip: tools: fix fd leakage in the function of read_attr_usbip_status
- vfio-ccw: Fix misleading comment when setting orb.cmd.c64 (bsc#1051510).
- vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn
- vfio: ccw: push down unsupported IDA check (bsc#1156471 LTC#182362).
- vfs: fix preadv64v2 and pwritev64v2 compat syscalls with offset == -1
- video/hdmi: Fix AVI bar unpack (git-fixes).
- video: backlight: Add devres versions of of_find_backlight (bsc#1090888)
Taken for 6010831dde5.
- video: backlight: Add of_find_backlight helper in backlight.c
(bsc#1090888) Taken for 6010831dde5.
- virtio/s390: fix race on airq_areas (bsc#1051510).
- virtio_console: allocate inbufs in add_port() only if it is needed
- virtio_ring: fix return code on DMA mapping fails (git-fixes).
- vmxnet3: turn off lro when rxcsum is disabled (bsc#1157499).
- vsock/virtio: fix sock refcnt holding during the shutdown (git-fixes).
- watchdog: meson: Fix the wrong value of left time (bsc#1051510).
- watchdog: sama5d4: fix WDD value to be always set to max (bsc#1051510).
- workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211).
- x86/alternatives: Add int3_emulate_call() selftest (bsc#1153811).
- x86/alternatives: Fix int3_emulate_call() selftest stack corruption
- x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279).
- x86/mce/AMD: Allow any CPU to initialize the smca_banks array
- x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks
- x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure()
- x86/mce: Fix possibly incorrect severity calculation on AMD
- x86/mm/pkeys: Fix typo in Documentation/x86/protection-keys.txt
- x86/pkeys: Update documentation about availability (bsc#1078248).
- x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279).
- x86/resctrl: Fix potential lockdep warning (bsc#1114279).
- x86/resctrl: Fix potential memory leak (bsc#1114279).
- x86/resctrl: Prevent NULL pointer dereference when reading mondata
- x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs
- x86/speculation: Fix incorrect MDS/TAA mitigation status (bsc#1114279).
- x86/speculation: Fix redundant MDS mitigation message (bsc#1114279).
- xen-blkfront: switch kcalloc to kvcalloc for large array allocation
- xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600).
- xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600).
- xfrm: Fix transport mode skb control buffer usage (bsc#1161552).
- xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087,
- xfs: Sanity check flags of Q_XQUOTARM call (bsc#1158652).
- xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour
- xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510).
- zd1211rw: fix storage endpoint lookup (git-fixes).

Special Instructions and Notes:

Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- SUSE Linux Enterprise Real Time Extension 12-SP4:

zypper in -t patch SUSE-SLE-RT-12-SP4-2020-599=1

Package List:

- SUSE Linux Enterprise Real Time Extension 12-SP4 (noarch):


- SUSE Linux Enterprise Real Time Extension 12-SP4 (x86_64):




sle-security-updates mailing list
Pro-Linux @Facebook
Neue Nachrichten