SUSE-SU-2019:2953-1

Source
https://www.suse.com/support/update/announcement/2019/suse-su-20192953-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:2953-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2019:2953-1
Related
Published
2019-11-12T18:13:32Z
Modified
2019-11-12T18:13:32Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15-SP1 Azure Kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional.

    The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in executable pages by splitting / merging huge pages into small pages as More information can be found on https://www.suse.com/support/kb/doc/?id=7023735 (bnc#1117665 1152505 1155812 1155817 1155945)

  • CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack.

    The Linux kernel was supplemented with the option to disable TSX operation altogether (requiring CPU Microcode updates on older systems) and better flushing of microarchitectural buffers (VERW).

    The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251 (bnc#1139073 1152497 1152505 1152506).

  • CVE-2019-18805: There was a signed integer overflow in tcpackupdatertt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcpminrttwlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).

  • CVE-2019-17055: The AFNFC network module did not enforce CAPNET_RAW, which meant that unprivileged users could create a raw socket (bnc#1152782).

  • CVE-2019-16995: Fix a memory leak in hsrdevfinalize() if hsraddport failed to add a port, which may have caused denial of service (bsc#1152685).

  • CVE-2019-16233: drivers/scsi/qla2xxx/qlaos.c did not check the allocworkqueue return value, leading to a NULL pointer dereference. (bsc#1150457).

  • CVE-2019-10220: Added sanity checks on the pathnames passed to the user space. (bsc#1144903).

  • CVE-2019-17666: rtlwifi: Fix potential overflow in P2P code (bsc#1154372).

  • CVE-2019-16232: Fix a potential NULL pointer dereference in the Marwell libertas driver (bsc#1150465).

  • CVE-2019-16234: iwlwifi pcie driver did not check the alloc_workqueue return value, leading to a NULL pointer dereference. (bsc#1150452).

  • CVE-2019-17133: cfg80211 wireless extension did not reject a long SSID IE, leading to a Buffer Overflow (bsc#1153158).

  • CVE-2019-17056: The AFNFC network module did not enforce CAPNET_RAW, which meant that unprivileged users could create a raw socket (bsc#1152788).

The following non-security bugs were fixed:

  • /dev/mem: Bail out upon SIGKILL (git-fixes).
  • 9p: avoid attaching writeback_fid on mmap with type PRIVATE (bsc#1051510).
  • ACPI / CPPC: do not require the _PSD method (bsc#1051510).
  • ACPI / processor: do not print errors for processorIDs == 0xff (bsc#1051510).
  • ACPI: CPPC: Set pccdata[pccssid] to NULL in acpicppcprocessorexit() (bsc#1051510).
  • actmirred: Fix mirredinit_module error handling (bsc#1051510).
  • Add kernel module compression support (bsc#1135854) For enabling the kernel module compress, add the item COMPRESS_MODULES='xz' in config.sh, then mkspec will pass it to the spec file.
  • alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP (bsc#1151680).
  • ALSA: bebob: Fix prototype of helper function to return negative value (bsc#1051510).
  • ALSA: hda - Add laptop imic fixup for ASUS M9V laptop (bsc#1051510).
  • ALSA: hda - Apply AMD controller workaround for Raven platform (bsc#1051510).
  • ALSA: hda - Define a fallbackpinfixup_tbl for alc269 family (bsc#1051510).
  • ALSA: hda - Drop unsol event handler for Intel HDMI codecs (bsc#1051510).
  • ALSA: hda - Expand pin_match function to match upcoming new tbls (bsc#1051510).
  • ALSA: hda - Inform too slow responses (bsc#1051510).
  • ALSA: hda - Show the fatal CORB/RIRB error more clearly (bsc#1051510).
  • ALSA: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).
  • ALSA: hda/hdmi: remove redundant assignment to variable pcm_idx (bsc#1051510).
  • ALSA: hda/realtek - Add support for ALC623 (bsc#1051510).
  • ALSA: hda/realtek - Add support for ALC711 (bsc#1051510).
  • ALSA: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93 (bsc#1051510).
  • ALSA: hda/realtek - Check beep whitelist before assigning in all codecs (bsc#1051510).
  • ALSA: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).
  • ALSA: hda/realtek - Fix alienware headset mic (bsc#1051510).
  • ALSA: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360 (bsc#1051510).
  • ALSA: hda/sigmatel - remove unused variable 'stac9200coreinit' (bsc#1051510).
  • ALSA: hda: Add Elkhart Lake PCI ID (bsc#1051510).
  • ALSA: hda: Add support of Zhaoxin controller (bsc#1051510).
  • ALSA: hda: Add Tigerlake/Jasperlake PCI ID (bsc#1051510).
  • ALSA: hda: Flush interrupts on disabling (bsc#1051510).
  • ALSA: hda: Set fifo_size for both playback and capture streams (bsc#1051510).
  • ALSA: i2c: ak4xxx-adda: Fix a possible null pointer dereference in buildadccontrols() (bsc#1051510).
  • ALSA: line6: sizeof (byte) is always 1, use that fact (bsc#1051510).
  • ALSA: timer: Fix mutex deadlock at releasing card (bsc#1051510).
  • ALSA: usb-audio: Add Pioneer DDJ-SX3 PCM quirck (bsc#1051510).
  • ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers (bsc#1051510).
  • ALSA: usb-audio: Skip bSynchAddress endpoint check if it is invalid (bsc#1051510).
  • appletalk: enforce CAPNETRAW for raw sockets (bsc#1051510).
  • arcnet: provide a buffer big enough to actually receive packets (networking-stable-190930).
  • ASoC: Define a set of DAPM pre/post-up events (bsc#1051510).
  • ASoC: dmaengine: Make the pcm->name equal to pcm->id if the name is not set (bsc#1051510).
  • ASoC: Intel: Fix use of potentially uninitialized variable (bsc#1051510).
  • ASoC: Intel: NHLT: Fix debug print format (bsc#1051510).
  • ASoc: rockchip: i2s: Fix RPM imbalance (bsc#1051510).
  • ASoC: rsnd: Reinitialize bit clock inversion flag for every format setting (bsc#1051510).
  • ASoC: sgtl5000: Fix charge pump source assignment (bsc#1051510).
  • auxdisplay: panel: need to delete scantimer when miscregister fails in panel_attach (bsc#1051510).
  • ax25: enforce CAPNETRAW for raw sockets (bsc#1051510).
  • Blacklist 'signal: Correct namespace fixups of sipid and siuid' (bsc#1142667)
  • blk-wbt: abstract out end IO completion handler (bsc#1135873).
  • blk-wbt: fix has-sleeper queueing check (bsc#1135873).
  • blk-wbt: improve waking of tasks (bsc#1135873).
  • blk-wbt: move disable check into get_limit() (bsc#1135873).
  • blk-wbt: use wqhassleeper() for wq active check (bsc#1135873).
  • block: add io timeout to sysfs (bsc#1148410).
  • block: do not show io_timeout if driver has no timeout handler (bsc#1148410).
  • Bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices (bsc#1051510).
  • bnx2x: Fix VF's VLAN reconfiguration in reload (bsc#1086323 ).
  • bpf: fix use after free in prog symbol exposure (bsc#1083647).
  • bridge/mdb: remove wrong use of NLMFMULTI (networking-stable-190915).
  • Btrfs: bail out gracefully rather than BUG_ON (bsc#1153646).
  • btrfs: block-group: Fix a memory leak due to missing btrfsputblock_group() (bsc#1155178).
  • Btrfs: check for the full sync flag while holding the inode lock during fsync (bsc#1153713).
  • btrfs: Ensure btrfsinitdevreplacetgtdev sees up to date values (bsc#1154651).
  • btrfs: Ensure replaced device does not have pending chunk allocation (bsc#1154607).
  • btrfs: qgroup: Always free PREALLOC META reserve in btrfsdelallocrelease_extents() (bsc#1155179).
  • btrfs: remove wrong use of volumemutex from btrfsdevreplacestart (bsc#1154651).
  • btrfs: tracepoints: Fix bad entry members of qgroup events (bsc#1155186).
  • btrfs: tracepoints: Fix wrong parameter order for qgroup events (bsc#1155184).
  • can: dev: call netifcarrieroff() in register_candev() (bsc#1051510).
  • can: mcp251x: mcp251xhwreset(): allow more time after a reset (bsc#1051510).
  • can: xilinxcan: xcanprobe(): skip error message on deferred probe (bsc#1051510).
  • cdcether: fix rndis support for Mediatek based smartphones (networking-stable-1909_15).
  • cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize (bsc#1051510).
  • ceph: fix directories inode i_blkbits initialization (bsc#1153717).
  • ceph: reconnect connection if session hang in opening state (bsc#1153718).
  • ceph: update the mtime when truncating up (bsc#1153719).
  • cfg80211: add and use strongly typed element iteration macros (bsc#1051510).
  • cfg80211: Purge frame registrations on iftype change (bsc#1051510).
  • clk: at91: select parent if main oscillator or bypass is enabled (bsc#1051510).
  • clk: qoriq: Fix -Wunused-const-variable (bsc#1051510).
  • clk: sirf: Do not reference clkinitdata after registration (bsc#1051510).
  • clk: zx296718: Do not reference clkinitdata after registration (bsc#1051510).
  • crypto: af_alg - consolidation of duplicate code (bsc#1154737).
  • crypto: af_alg - fix race accessing cipher request (bsc#1154737).
  • crypto: afalg - Fix race around ctx->rcvused by making it atomict (bsc#1154737).
  • crypto: afalg - Initialize sgnum_bytes in error code path (bsc#1051510).
  • crypto: af_alg - remove locking in async callback (bsc#1154737).
  • crypto: af_alg - update correct dst SGL entry (bsc#1051510).
  • crypto: af_alg - wait for data at beginning of recvmsg (bsc#1154737).
  • crypto: algif - return error code when no data was processed (bsc#1154737).
  • crypto: algif_aead - copy AAD from src to dst (bsc#1154737).
  • crypto: algif_aead - fix reference counting of null skcipher (bsc#1154737).
  • crypto: algif_aead - overhaul memory management (bsc#1154737).
  • crypto: algif_aead - skip SGL entries with NULL page (bsc#1154737).
  • crypto: algif_skcipher - overhaul memory management (bsc#1154737).
  • crypto: talitos - fix missing break in switch statement (bsc#1142635).
  • cxgb4: fix endianness for vlan value in cxgb4tcflower (bsc#1064802 bsc#1066129).
  • cxgb4: offload VLAN flows regardless of VLAN ethtype (bsc#1064802 bsc#1066129).
  • cxgb4: reduce kernel stack usage in cudbgcollectmem_region() (bsc#1073513).
  • cxgb4: Signedness bug in init_one() (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588 bsc#1097583 bsc#1097584).
  • cxgb4: smt: Add lock for atomicdecand_test (bsc#1064802 bsc#1066129).
  • cxgb4:Fix out-of-bounds MSI-X info array access (networking-stable-191005).
  • dmaengine: bcm2835: Print error in case setting DMA mask fails (bsc#1051510).
  • dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).
  • drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) (bsc#1051510).
  • drm/amdgpu/si: fix ASIC tests (git-fixes).
  • drm/amdgpu: Check for valid number of registers to read (bsc#1051510).
  • drm/ast: Fixed reboot test may cause system hanged (bsc#1051510).
  • drm/bridge: tc358767: Increase AUX transfer length limit (bsc#1051510).
  • drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 (bsc#1051510).
  • drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)
  • drm/i915/cmdparser: Ignore Length operands during command matching (bsc#1135967)
  • drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)
  • drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)
  • drm/i915/gtt: Add read only pages to gen8pteencode (bsc#1135967)
  • drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)
  • drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)
  • drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)
  • drm/i915: Add support for mandatory cmdparsing (bsc#1135967)
  • drm/i915: Allow parsing of unsized batches (bsc#1135967)
  • drm/i915: Disable Secure Batches for gen6+
  • drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)
  • drm/i915: Prevent writing into a read-only object via a GGTT mmap (bsc#1135967)
  • drm/i915: Remove Master tables from cmdparser
  • drm/i915: Rename gen7 cmdparser tables (bsc#1135967)
  • drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)
  • drm/msm/dsi: Implement reset correctly (bsc#1051510).
  • drm/panel: simple: fix AUO g185han01 horizontal blanking (bsc#1051510).
  • drm/radeon: Fix EEH during kexec (bsc#1051510).
  • drm/tilcdc: Register cpufreq notifier after we have initialized crtc (bsc#1051510).
  • drm/vmwgfx: Fix double free in vmwrecvmsg() (bsc#1051510).
  • drm: Flush output polling on shutdown (bsc#1051510).
  • e1000e: add workaround for possible stalled packet (bsc#1051510).
  • efi/memattr: Do not bail on zero VA if it equals the region's PA (bsc#1051510).
  • efi: cper: print AER info of PCIe fatal error (bsc#1051510).
  • efivar/ssdt: Do not iterate over EFI vars if no SSDT override was specified (bsc#1051510).
  • firmware: dmi: Fix unlikely out-of-bounds read in savememdevices (git-fixes).
  • gpu: drm: radeon: Fix a possible null-pointer dereference in radeonconnectorset_property() (bsc#1051510).
  • HID: apple: Fix stuck function keys when using FN (bsc#1051510).
  • HID: fix error message in hidopenreport() (bsc#1051510).
  • HID: hidraw: Fix invalid read in hidraw_ioctl (bsc#1051510).
  • HID: logitech-hidpp: do all FF cleanup in hidppffdestroy() (bsc#1051510).
  • HID: logitech: Fix general protection fault caused by Logitech driver (bsc#1051510).
  • HID: prodikeys: Fix general protection fault during probe (bsc#1051510).
  • HID: sony: Fix memory corruption issue on cleanup (bsc#1051510).
  • hso: fix NULL-deref on tty open (bsc#1051510).
  • hwmon: (acpipowermeter) Change log level for 'unsafe software power cap' (bsc#1051510).
  • hwrng: core - do not wait on addearlyrandomness() (git-fixes).
  • hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953, jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190, bsc#1154905).
  • i2c: riic: Clear NACK in tend isr (bsc#1051510).
  • IB/core, ipoib: Do not overreact to SM LID change event (bsc#1154108)
  • IB/core: Add mitigation for Spectre V1 (bsc#1155671)
  • IB/hfi1: Remove overly conservative VM_EXEC flag check (bsc#1144449).
  • IB/mlx5: Consolidate use_umr checks into single function (bsc#1093205).
  • IB/mlx5: Fix MR re-registration flow to use UMR properly (bsc#1093205).
  • IB/mlx5: Report correctly tag matching rendezvous capability (bsc#1046305).
  • ieee802154: atusb: fix use-after-free at disconnect (bsc#1051510).
  • ieee802154: ca8210: prevent memory leak (bsc#1051510).
  • ieee802154: enforce CAPNETRAW for raw sockets (bsc#1051510).
  • iio: adc: ad799x: fix probe error handling (bsc#1051510).
  • iio: light: opt3001: fix mutex unlock race (bsc#1051510).
  • ima: always return negative code for error (bsc#1051510).
  • Input: da9063 - fix capability and drop KEY_SLEEP (bsc#1051510).
  • Input: synaptics-rmi4 - avoid processing unknown IRQs (bsc#1051510).
  • integrity: prevent deadlock during digsig verification (bsc#1090631).
  • iommu/amd: Apply the same IVRS IOAPIC workaround to Acer Aspire A315-41 (bsc#1137799).
  • iommu/amd: Check PMLEVELSIZE() condition in locked section (bsc#1154608).
  • iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems (bsc#1137799).
  • iommu/amd: Remove domain->updated (bsc#1154610).
  • iommu/amd: Wait for completion of IOTLB flush in attach_device (bsc#1154611).
  • ipmi_si: Only schedule continuously in the thread in maintenance mode (bsc#1051510).
  • ipv6: drop incoming packets having a v4mapped source address (networking-stable-191005).
  • ipv6: Fix the link time qualifier of 'pingv6procexitnet()' (networking-stable-190915).
  • ipv6: Handle missing host route in _ipv6ifanotify (networking-stable-1910_05).
  • iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).
  • ixgbe: Prevent u8 wrapping of ITR value to something less than 10us (bsc#1101674).
  • ixgbe: sync the first fragment unconditionally (bsc#1133140).
  • kABI workaround for crypto/af_alg changes (bsc#1154737).
  • kABI workaround for drmvmaoffset_node readonly field addition (bsc#1135967)
  • kABI workaround for sndhdapickpinfixup() changes (bsc#1051510).
  • kabi/severities: Whitelist functions internal to radix mm. To call these functions you have to first detect if you are running in radix mm mode which can't be expected of OOT code.
  • kabi: net: sched: actsample: fix psample group handling on overwrite (networking-stable-1909_05).
  • kernel-binary.spec.in: Fix build of non-modular kernels (boo#1154578).
  • kernel-binary.spec.in: Obsolete kgraft packages only when not building them.
  • kernel-binary: check also bzImage on s390/s390x Starting with 4.19-rc1, uncompressed image is no longer built on s390x. If file 'image' is not found in arch/s390/boot after the build, try bzImage instead. For now, install bzImage under the name image-* until we know grub2 and our grub2 scripts can handle correct name.
  • kernel-subpackage-build: create zero size ghost for uncompressed vmlinux (bsc#1154354). It is not strictly necessary to uncompress it so maybe the ghost file can be 0 size in this case.
  • kernel/sysctl.c: do not override max_threads provided by userspace (bnc#1150875).
  • ksm: cleanup stable_node chain collapse case (bnc#1144338).
  • ksm: fix use after free with mergeacrossnodes = 0 (bnc#1144338).
  • ksm: introduce ksmmaxpage_sharing per page deduplication limit (bnc#1144338).
  • ksm: optimize refile of stablenodedup at the head of the chain (bnc#1144338).
  • ksm: swap the two output parameters of chain/chain_prune (bnc#1144338).
  • kvm: Convert kvm_lock to a mutex (bsc#1117665).
  • KVM: MMU: drop vcpu param in gpte_access (bsc#1117665).
  • KVM: PPC: Book3S HV: use smpmb() when setting/clearing hostipi flag (bsc#1061840).
  • KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).
  • kvm: x86, powerpc: do not allow clearing largepages debugfs entry (bsc#1117665).
  • KVM: x86: add tracepoints around _directmap and FNAME(fetch) (bsc#1117665).
  • KVM: x86: adjust kvmmmupage member to save 8 bytes (bsc#1117665).
  • KVM: x86: change kvmmmupagegetgfn BUGON to WARNON (bsc#1117665).
  • kvm: x86: Do not release the page inside mmusetspte() (bsc#1117665).
  • KVM: x86: make FNAME(fetch) and _directmap more similar (bsc#1117665).
  • KVM: x86: remove now unneeded hugepage gfn adjustment (bsc#1117665).
  • lib/mpi: Fix karactx leak in mpi_powm (bsc#1051510).
  • libertas: Add missing sentinel at end of ifusb.c fwtable (bsc#1051510).
  • mac80211: accept deauth frames in IBSS mode (bsc#1051510).
  • mac80211: fix txq null pointer dereference (bsc#1051510).
  • mac80211: Reject malformed SSID elements (bsc#1051510).
  • macsec: drop skb sk before calling grocellsreceive (bsc#1051510).
  • md/raid0: avoid RAID0 data corruption due to layout confusion (bsc#1140090).
  • md/raid0: fix warning message for parameter default_layout (bsc#1140090).
  • media: atmel: atmel-isc: fix asd memory allocation (bsc#1135642).
  • media: cpia2_usb: fix memory leaks (bsc#1051510).
  • media: dvb-core: fix a memory leak bug (bsc#1051510).
  • media: exynos4-is: fix leaked of_node references (bsc#1051510).
  • media: gspca: zero usb_buf on error (bsc#1051510).
  • media: hdpvr: Add device num check and handling (bsc#1051510).
  • media: hdpvr: add terminating 0 at end of string (bsc#1051510).
  • media: i2c: ov5645: Fix power sequence (bsc#1051510).
  • media: iguanair: add sanity checks (bsc#1051510).
  • media: omap3isp: Do not set streaming state on random subdevs (bsc#1051510).
  • media: omap3isp: Set device on omap3isp subdevs (bsc#1051510).
  • media: ov9650: add a sanity check (bsc#1051510).
  • media: radio/si470x: kill urb on error (bsc#1051510).
  • media: saa7134: fix terminology around saa7134i2ceeprommd7134gate() (bsc#1051510).
  • media: saa7146: add cleanup in hexium_attach() (bsc#1051510).
  • media: sn9c20x: Add MSI MS-1039 laptop to flipdmitable (bsc#1051510).
  • media: stkwebcam: fix runtime PM after driver unbind (bsc#1051510).
  • media: ttusb-dec: Fix info-leak in ttusbdecsend_command() (bsc#1051510).
  • memstick: jmb38xms: Fix an error handling path in 'jmb38xms_probe()' (bsc#1051510).
  • mfd: intel-lpss: Remove D3cold delay (bsc#1051510).
  • mISDN: enforce CAPNETRAW for raw sockets (bsc#1051510).
  • mld: fix memory leak in mlddeldelrec() (networking-stable-190905).
  • mmc: sdhci-of-esdhc: set DMA snooping based on DMA coherence (bsc#1051510).
  • mmc: sdhci: Fix incorrect switch to HS mode (bsc#1051510).
  • mmc: sdhci: improve ADMA error reporting (bsc#1051510).
  • Move the upstreamed ath6kl fix into the sorted section
  • Move the upstreamed cfg80211 fix into the sorted section
  • net/ibmvnic: Fix EOI when running in XIVE mode (bsc#1089644, ltc#166495, ltc#165544, git-fixes).
  • net/mlx4_en: fix a memory leak bug (bsc#1046299).
  • net/mlx5: Add device ID of upcoming BlueField-2 (bsc#1046303 ).
  • net/mlx5: Fix error handling in mlx5_load() (bsc#1046305 ).
  • net/phy: fix DP83865 10 Mbps HDX loopback disable function (networking-stable-190930).
  • net/rds: Fix error handling in rdsibaddone() (networking-stable-1910_05).
  • net/rds: fix warn in rdsmessagealloc_sgs (bsc#1154848).
  • net/rds: remove user triggered WARNON in rdssendmsg (bsc#1154848).
  • net/sched: actsample: do not push mac header on ip6gre ingress (networking-stable-1909_30).
  • net/smc: fix SMCD link group creation with VLAN id (bsc#1154959).
  • net: Fix null de-reference of device refcount (networking-stable-190915).
  • net: fix skb use after free in netpoll (networking-stable-190905).
  • net: gso: Fix skbsegment splat when splitting gsosize mangled skb having linear-headed fraglist (networking-stable-1909_15).
  • net: openvswitch: free vport unless register_netdevice() succeeds (git-fixes).
  • net: qlogic: Fix memory leak in qlalloclargebuffers (networking-stable-1910_05).
  • net: qrtr: Stop rxworker before freeing node (networking-stable-1909_30).
  • net: Replace NFCTASSERT() with WARN_ON() (bsc#1146612).
  • net: sched: actsample: fix psample group handling on overwrite (networking-stable-1909_05).
  • net: stmmac: dwmac-rk: Do not fail if phy regulator is absent (networking-stable-190905).
  • net: Unpublish sk from skreuseportcb before callrcu (networking-stable-1910_05).
  • netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612).
  • netsched: add policy validation for action attributes (networking-stable-1909_30).
  • netsched: fix backward compatibility for TCAACT_KIND (git-fixes).
  • NFC: fix attrs checks in netlink interface (bsc#1051510).
  • nfc: fix memory leak in llcpsockbind() (bsc#1051510).
  • NFC: pn533: fix use-after-free and memleaks (bsc#1051510).
  • NFSv4.1 - backchannel request should hold ref on xprt (bsc#1152624).
  • nl80211: fix null pointer dereference (bsc#1051510).
  • objtool: Clobber user CFLAGS variable (bsc#1153236).
  • openvswitch: change type of UPCALLPID attribute to NLAUNSPEC (networking-stable-190930).
  • packaging: add support for riscv64
  • Parametrize kgraft vs livepatch.
  • PCI: Correct pci=resource_alignment parameter example (bsc#1051510).
  • PCI: dra7xx: Fix legacy INTD IRQ handling (bsc#1087092).
  • PCI: hv: Use bytes 4 and 5 from instance ID as the PCI domain numbers (bsc#1153263).
  • PCI: PM: Fix pcipowerup() (bsc#1051510).
  • pinctrl: tegra: Fix write barrier placement in pmx_writel (bsc#1051510).
  • platform/x86: classmate-laptop: remove unused variable (bsc#1051510).
  • platform/x86: pmcatom: Add Siemens SIMATIC IPC277E to critclksystems DMI table (bsc#1051510).
  • power: supply: sysfs: ratelimit property read error message (bsc#1051510).
  • powerpc/64s/pseries: radix flush translations before MMU is enabled at boot (bsc#1055186).
  • powerpc/64s/radix: keep kernel ERAT over local process/guest invalidates (bsc#1055186).
  • powerpc/64s/radix: tidy up TLB flushing code (bsc#1055186).
  • powerpc/64s: Rename PPCINVALIDATEERAT to PPCISA30INVALIDATE_ERAT (bsc#1055186).
  • powerpc/mm/book3s64: Move book3s64 code to pgtable-book3s64 (bsc#1055186).
  • powerpc/mm/radix: mark as tlbiepid() and friends asalwaysinline (bsc#1055186).
  • powerpc/mm/radix: mark radixflushtlbrangepsize() as _always_inline (bsc#1055186).
  • powerpc/mm: mark more tlb functions as _alwaysinline (bsc#1055186).
  • powerpc/mm: Properly invalidate when setting process table base (bsc#1055186).
  • powerpc/pseries/mobility: use cond_resched when updating device tree (bsc#1153112 ltc#181778).
  • powerpc/pseries: Export maximum memory value (bsc#1122363).
  • powerpc/pseries: Export raw per-CPU VPA data via debugfs ().
  • powerpc/pseries: Remove confusing warning message (bsc#1109158).
  • powerpc/rtas: allow rescheduling while changing cpu states (bsc#1153112 ltc#181778).
  • Pull packaging cleanup from mkubecek.
  • qed: iWARP - Fix default window size to be based on chip (bsc#1050536 bsc#1050545).
  • qed: iWARP - Fix tc for MPA ll2 connection (bsc#1050536 bsc#1050545).
  • qed: iWARP - fix uninitialized callback (bsc#1050536 bsc#1050545).
  • qed: iWARP - Use READONCE and smpstore_release to access ep->state (bsc#1050536 bsc#1050545).
  • qmiwwan: add support for Cinterion CLS8 devices (networking-stable-1910_05).
  • r8152: Set macpassthru in reset_resume callback (bsc#1051510).
  • RDMA/bnxtre: Fix spelling mistake 'missinresp' -> 'missing_resp' (bsc#1050244).
  • RDMA: Fix goto target to release the allocated memory (bsc#1050244).
  • rds: Fix warning (bsc#1154848).
  • README.BRANCH: Add Denis as branch maintainer
  • reiserfs: fix extended attributes on the root directory (bsc#1151225).
  • Revert 'ALSA: hda: Flush interrupts on disabling' (bsc#1051510).
  • Revert 'drm/radeon: Fix EEH during kexec' (bsc#1051510).
  • Revert 'Revert 'rpm/kernel-binary.spec.in: rename kGraft to KLP ()'' This reverts commit 468af43c8fd8509820798b6d8ed363fc417ca939 Should get this rename again with next SLE15 merge.
  • Revert synaptics-rmi4 patch due to regression (bsc#1155982) Also blacklisting it
  • rpm/constraints.in: lower disk space required for ARM With a requirement of 35GB, only 2 slow workers are usable for ARM. Current aarch64 build requires 27G and armv6/7 requires 14G. Set requirements respectively to 30GB and 20GB.
  • rpm/dtb.spec.in.in: do not make dtb directory inaccessible There is no reason to lock down the dtb directory for ordinary users.
  • rpm/kernel-binary.spec.in: build kernel-*-kgraft only for default SLE kernel RT and Azure variants are excluded for the moment. (bsc#1141600)
  • rpm/kernel-binary.spec.in: Fix kernel-livepatch description typo.
  • rpm/kernel-binary.spec.in: handle modules.builtin.modinfo It was added in 5.2.
  • rpm/kernel-binary.spec.in: support partial rt debug config.
  • rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage description (bsc#1149119).
  • rpm/macros.kernel-source: KMPs should depend on kmod-compat to build. kmod-compat links are used in find-provides.ksyms, find-requires.ksyms, and find-supplements.ksyms in rpm-config-SUSE.
  • rpm/mkspec: Correct tarball URL for rc kernels.
  • rpm/mkspec: Make building DTBs optional.
  • rpm/modflist: Simplify compression support.
  • rpm: raise required disk space for binary packages Current disk space constraints (10 GB on s390x, 25 GB on other architectures) no longer suffice for 5.3 kernel builds. The statistics show ~30 GB of disk consumption on x86_64 and ~11 GB on s390x so raise the constraints to 35 GB in general and 14 GB on s390x.
  • rpm: support compressed modules Some of our scripts and scriptlets in rpm/ do not expect module files not ending with '.ko' which currently leads to failure in preuninstall scriptlet of cluster-md-kmp-default (and probably also other subpackages). Let those which could be run on compressed module files recognize '.ko.xz' in addition to '.ko'.
  • rtlwifi: rtl8192cu: Fix value set in descriptor (bsc#1142635).
  • s390/cmf: setschibwait add timeout (bsc#1153509, bsc#1153476).
  • s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).
  • s390/crypto: fix gcm-aes-s390 selftest failures (bsc#1137861 LTC#178091).
  • sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).
  • schcbq: validate TCACBQWRROPT to avoid crash (networking-stable-1910_05).
  • schdsmark: fix potential NULL deref in dsmarkinit() (networking-stable-191005).
  • schhhf: ensure quantum and hhfnonhhweight are non-zero (networking-stable-190915).
  • schnetem: fix a divide by zero in tabledist() (networking-stable-1909_30).
  • scripts/arch-symbols: add missing link.
  • scsi: lpfc: Fix devices that do not return after devloss followed by rediscovery (bsc#1137040).
  • scsi: lpfc: Fix null ptr oops updating lpfcdevlosstmo via sysfs attribute (bsc#1140845).
  • scsi: lpfc: Fix propagation of devloss_tmo setting to nvme transport (bsc#1140883).
  • scsi: lpfc: Remove bg debugfs buffers (bsc#1144375).
  • scsi: qedf: fcrportpriv reference counting fixes (bsc#1098291).
  • scsi: qedf: Modify abort and tmf handler to handle edge condition and flush (bsc#1098291).
  • scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Fix wait condition in loop (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Initialized mailbox to prevent driver load failure (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706 bsc#1082635 bsc#1123034).
  • scsi: storvsc: setup 1:1 mapping between hardware queue and CPU queue (bsc#1140729).
  • scsi: zfcp: fix reaction on bit error threshold notification (bsc#1154956 LTC#182054).
  • sctp: Fix the link time qualifier of 'sctpctrlsockexit()' (networking-stable-190915).
  • sctp: use transport pfretrans in sctpdo82transportstrike (networking-stable-190915).
  • Sign non-x86 kernels when possible (boo#1134303)
  • skge: fix checksum byte order (networking-stable-190930).
  • sockdiag: fix autoloading of the rawdiag module (bsc#1152791).
  • sock_diag: request _diag module only when the family or proto has been registered (bsc#1152791).
  • staging: vt6655: Fix memory leak in vt6655_probe (bsc#1051510).
  • staging: wlan-ng: fix exit return when sme->keyidx >= NUMWEPKEYS (bsc#1051510).
  • supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).
  • tcp: Do not dequeue SYN/FIN-segments from write-queue (git-gixes).
  • tcp: fix tcpecnwithdrawcwr() to clear TCPECNQUEUECWR (networking-stable-190915).
  • tcp: inherit timestamp on mtu probe (networking-stable-190905).
  • tcp: remove empty skb from write queue in error cases (networking-stable-190905).
  • thermal: Fix use-after-free when unregistering thermal zone device (bsc#1051510).
  • thermalhwmon: Sanitize thermalzone type (bsc#1051510).
  • tipc: add NULL pointer check before calling kfreercu (networking-stable-1909_15).
  • tipc: fix unlimited bundling of small messages (networking-stable-191005).
  • tracing: Initialize iter->seq after zeroing in tracingreadpipe() (bsc#1151508).
  • tun: fix use-after-free when register netdev failed (networking-stable-190915).
  • tuntap: correctly set SOCKWQASYNCNOSPACE (bsc#1145099).
  • tuntap: correctly set SOCKWQASYNCNOSPACE (bsc#1145099).
  • USB: adutux: fix NULL-derefs on disconnect (bsc#1142635).
  • USB: adutux: fix use-after-free on disconnect (bsc#1142635).
  • USB: adutux: fix use-after-free on release (bsc#1051510).
  • USB: chaoskey: fix use-after-free on release (bsc#1051510).
  • USB: dummy-hcd: fix power budget for SuperSpeed mode (bsc#1051510).
  • usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).
  • USB: iowarrior: fix use-after-free after driver unbind (bsc#1051510).
  • USB: iowarrior: fix use-after-free on disconnect (bsc#1051510).
  • USB: iowarrior: fix use-after-free on release (bsc#1051510).
  • USB: ldusb: fix control-message timeout (bsc#1051510).
  • USB: ldusb: fix memleak on disconnect (bsc#1051510).
  • USB: ldusb: fix NULL-derefs on driver unbind (bsc#1051510).
  • USB: ldusb: fix read info leaks (bsc#1051510).
  • USB: ldusb: fix ring-buffer locking (bsc#1051510).
  • USB: legousbtower: fix a signedness bug in tower_probe() (bsc#1051510).
  • USB: legousbtower: fix deadlock on disconnect (bsc#1142635).
  • USB: legousbtower: fix memleak on disconnect (bsc#1051510).
  • USB: legousbtower: fix open after failed reset request (bsc#1142635).
  • USB: legousbtower: fix potential NULL-deref on disconnect (bsc#1142635).
  • USB: legousbtower: fix slab info leak at probe (bsc#1142635).
  • USB: legousbtower: fix use-after-free on release (bsc#1051510).
  • USB: microtek: fix info-leak at probe (bsc#1142635).
  • USB: serial: fix runtime PM after driver unbind (bsc#1051510).
  • USB: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20 (bsc#1051510).
  • USB: serial: keyspan: fix NULL-derefs on open() and write() (bsc#1051510).
  • USB: serial: option: add support for Cinterion CLS8 devices (bsc#1051510).
  • USB: serial: option: add Telit FN980 compositions (bsc#1051510).
  • USB: serial: tiusb3410_5052: fix port-close races (bsc#1051510).
  • USB: serial: whiteheat: fix potential slab corruption (bsc#1051510).
  • usb: udc: lpc32xx: fix bad bit shift operation (bsc#1051510).
  • USB: usb-skeleton: fix NULL-deref on disconnect (bsc#1051510).
  • USB: usb-skeleton: fix runtime PM after driver unbind (bsc#1051510).
  • USB: usb-skeleton: fix use-after-free after driver unbind (bsc#1051510).
  • USB: usblcd: fix I/O after disconnect (bsc#1142635).
  • USB: usblp: fix runtime PM after driver unbind (bsc#1051510).
  • USB: usblp: fix use-after-free on disconnect (bsc#1051510).
  • usb: xhci: wait for CNR controller not ready bit in xhci resume (bsc#1051510).
  • USB: yurex: Do not retry on unexpected errors (bsc#1051510).
  • USB: yurex: fix NULL-derefs on disconnect (bsc#1051510).
  • usbnet: ignore endpoints with invalid wMaxPacketSize (bsc#1051510).
  • usbnet: sanity checking of packet sizes and device mtu (bsc#1051510).
  • vfio_pci: Restore original state on release (bsc#1051510).
  • vhost_net: conditionally enable tx polling (bsc#1145099).
  • vhost_net: conditionally enable tx polling (bsc#1145099).
  • video: of: displaytiming: Add ofnodeput() in ofgetdisplaytiming() (bsc#1051510).
  • vsock: Fix a lockdep warning in _vsockrelease() (networking-stable-191005).
  • watchdog: imx2wdt: fix min() calculation in imx2wdtsettimeout (bsc#1051510).
  • x86/asm: Fix MWAITX C-state hint value (bsc#1114279).
  • x86/boot/64: Make level2kernelpgt pages invalid outside kernel area (bnc#1153969).
  • x86/boot/64: Round memory hole size up to next PMD page (bnc#1153969).
  • x86/mm: Use WRITE_ONCE() when setting PTEs (bsc#1114279).
  • xen-netfront: do not use ~0U as error return value for xennetfillfrags() (bsc#1065600).
  • xen/netback: fix error path of xenvifconnectdata() (bsc#1065600).
  • xen/pv: Fix Xen PV guest int3 handling (bsc#1153811).
  • xen/xenbus: fix self-deadlock after killing user process (bsc#1065600).
  • xhci: Check all endpoints for LPM timeout (bsc#1051510).
  • xhci: Fix false warning message about wrong bounce buffer write length (bsc#1051510).
  • xhci: Increase STSSAVE timeout in xhcisuspend() (bsc#1051510).
  • xhci: Prevent device initiated U1/U2 link pm if exit latency is too long (bsc#1051510).
References

Affected packages

SUSE:Linux Enterprise Server 12 SP4 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP4 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP4 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP4 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP4 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP4 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-6.29.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-6.29.1",
            "kernel-azure-devel": "4.12.14-6.29.1",
            "kernel-devel-azure": "4.12.14-6.29.1",
            "kernel-syms-azure": "4.12.14-6.29.1",
            "kernel-azure-base": "4.12.14-6.29.1",
            "kernel-source-azure": "4.12.14-6.29.1"
        }
    ]
}