SUSE-SU-2021:2202-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20212202-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:2202-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:2202-1
Related
Published
2021-06-29T11:11:24Z
Modified
2021-06-29T11:11:24Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP3 azure kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463)
  • CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463).
  • CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctxlist in some ucmamigrateid situations where ucmaclose is called (bnc#1187050).
  • CVE-2020-36386: Fixed a slab out-of-bounds read in hciextendedinquiryresultevt (bnc#1187038).

The following non-security bugs were fixed:

  • ACPICA: Clean up context mutex during object deletion (git-fixes).
  • ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes).
  • ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes).
  • ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes).
  • ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes).
  • ALSA: hda: update the power_state during the direct-complete (git-fixes).
  • ALSA: seq: Fix race of sndseqtimer_open() (git-fixes).
  • ALSA: timer: Fix master timer notification (git-fixes).
  • ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes).
  • ASoC: amd: fix for pcm_read() error (git-fixes).
  • ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes).
  • ASoC: max98088: fix ni clock divider calculation (git-fixes).
  • Bluetooth: fix the erroneous flush_work() order (git-fixes).
  • Enable CONFIGPCIPF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691)
  • HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes).
  • HID: i2c-hid: fix format string mismatch (git-fixes).
  • HID: magicmouse: fix NULL-deref on disconnect (git-fixes).
  • HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes).
  • HID: pidff: fix error return code in hidpidffinit() (git-fixes).
  • NFC: SUSE specific brutal fix for runtime PM (bsc#1185589).
  • NFS: Deal correctly with attribute generation counter overflow (git-fixes).
  • NFS: Do not corrupt the value of pgbyteswritten in nfsdorecoalesce() (git-fixes).
  • NFS: Do not discard pNFS layout segments that are marked for return (git-fixes).
  • NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes).
  • NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes).
  • NFS: Fix an Oopsable condition in _nfspageioaddrequest() (git-fixes).
  • NFS: fix an incorrect limit in filelayoutdecodelayout() (git-fixes).
  • NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes).
  • NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes).
  • NFSv4.2: Always flush out writes in nfs42procfallocate() (git-fixes).
  • NFSv4.2: fix return value of nfs4getsecuritylabel() (git-fixes).
  • NFSv42: Copy offload should update the file size when appropriate (git-fixes).
  • NFSv4: Do not discard segments marked for return in pnfsreturn_layout() (git-fixes).
  • NFSv4: Fix a NULL pointer dereference in pnfsmarkmatchinglsegsreturn() (git-fixes).
  • NFSv4: Fix v4.0/v4.1 SEEKDATA return -ENOTSUPP when set NFSV4_2 config (git-fixes).
  • PCI/LINK: Remove bandwidth notification (bsc#1183712).
  • PM: sleep: Add pmdebugmessages kernel command line option (bsc#1186752).
  • SUNRPC: Move fault injection call sites (git-fixes).
  • SUNRPC: Set memallocnofssave() for sync tasks (git-fixes).
  • UCSI fixup of array of PDOs (git-fixes).
  • USB: fncm: ncmbitrate (speed) is unsigned (git-fixes).
  • USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes).
  • USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes).
  • USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes).
  • USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes).
  • USB: serial: quatech2: fix control-request directions (git-fixes).
  • USB: serial: tiusb3410_5052: add startech.com device id (git-fixes).
  • USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes).
  • ath6kl: return error code in ath6klwmisetroamlrssi_cmd() (git-fixes).
  • bcache: Convert to DEFINESHOWATTRIBUTE (bsc#1187357).
  • bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357).
  • bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631).
  • bcache: do not pass BIOSETNEEDBVECS for the 'bioset' embedded in 'cacheset' (bsc#1187357).
  • bcache: fix a regression of code compiling failure in debug.c (bsc#1187357).
  • bcache: inherit the optimal I/O size (bsc#1187357).
  • bcache: reduce redundant code in bchcacheddev_run() (bsc#1187357).
  • bcache: remove PTR_CACHE (bsc#1187357).
  • bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631).
  • bcache: use NULL instead of using plain integer as pointer (bsc#1187357).
  • blk-settings: align maxsectors on 'logicalblock_size' boundary (bsc#1185195).
  • block: return the correct bvec when checking for gaps (bsc#1187143).
  • block: return the correct bvec when checking for gaps (bsc#1187144).
  • brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677).
  • brcmfmac: properly check for bus register errors (git-fixes).
  • btrfs: open device without devicelistmutex (bsc#1176771).
  • bus: ti-sysc: Fix flakey idling of uarts and stop using swsupsidleact (git-fixes).
  • char: hpet: add checks after calling ioremap (git-fixes).
  • chelsio/chtls: unlock on error in chtlsptrecvmsg() (jsc#SLE-15129).
  • cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129).
  • cxgb4: avoid accessing registers when clearing filters (git-fixes).
  • cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389).
  • cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131).
  • devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172).
  • dmaengine: idxd: Use cpufeatureenabled() (git-fixes).
  • dmaengine: idxd: add missing dsa driver unregister (git-fixes).
  • dmaengine: qcomhidma: comment platformdriver_register call (git-fixes).
  • drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes).
  • drm/amd/amdgpu: fix refcount leak (git-fixes).
  • drm/amd/display: Disconnect non-DP with no EDID (git-fixes).
  • drm/amd/display: Disconnect non-DP with no EDID (git-fixes).
  • drm/amdgpu/jpeg2.0: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/jpeg2.5: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/jpeg3: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/vcn1: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/vcn2.0: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/vcn2.5: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu/vcn3: add canceldelayedwork_sync before power gate (git-fixes).
  • drm/amdgpu: Do not query CE and UE errors (git-fixes).
  • drm/amdgpu: Fix a use-after-free (git-fixes).
  • drm/amdgpu: make sure we unpin the UVD BO (git-fixes).
  • drm/amdgpu: stop touching sched.ready in the backend (git-fixes).
  • drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes).
  • drm/i915/selftests: Fix return value check in livebreadcrumbssmoketest() (git-fixes).
  • drm/mcde: Fix off by 10^3 in calculation (git-fixes).
  • drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes).
  • drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes).
  • efi/libstub: prevent read overflow in findfileoption() (git-fixes).
  • efi: Allow EFIMEMORYXP and EFIMEMORYRO both to be cleared (git-fixes).
  • efi: cper: fix snprintf() use in cperdimmerr_location() (git-fixes).
  • fs/nfs: Use fatalsignalpending instead of signal_pending (git-fixes).
  • gpio: cadence: Add missing MODULEDEVICETABLE (git-fixes).
  • gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes).
  • gve: Add NULL pointer checks when freeing irqs (git-fixes).
  • gve: Correct SKB queue index validation (git-fixes).
  • gve: Update mgmtmsixidx if num_ntfy changes (git-fixes).
  • gve: Upgrade memory barrier in poll routine (git-fixes).
  • hwmon: (dell-smm-hwmon) Fix index values (git-fixes).
  • i2c: imx: fix reference leak when pmruntimeget_sync fails (git-fixes).
  • i2c: qcom-geni: Suspend and resume the bus during SYSTEMSLEEPPM ops (git-fixes).
  • ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926).
  • ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes).
  • ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878).
  • ice: handle the VF VSI rebuild failure (jsc#SLE-12878).
  • iommu/amd: Keep track of amdiommuirqremap state (https://bugzilla.kernel.org/showbug.cgi?id=212133).
  • iommu/virtio: Add missing MODULEDEVICETABLE (bsc#1187345).
  • iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346).
  • iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347).
  • iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348).
  • iommu: Fix a boundary issue to avoid performance drop (bsc#1187344).
  • isdn: mISDN: correctly handle phinfo allocation failure in hfcsusbph_info (git-fixes).
  • isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes).
  • ixgbe: fix large MTU request from VF (git-fixes).
  • kABI workaround for rtw88 (git-fixes).
  • kABI workaround for struct lis3lv02d change (git-fixes).
  • lib: crc64: fix kernel-doc warning (bsc#1187357).
  • libertas: register sysfs groups properly (git-fixes).
  • locking/mutex: clear MUTEXFLAGS if waitlist is empty due to signal (git-fixes).
  • md: Fix missing unused status line of /proc/mdstat (git-fixes).
  • md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357).
  • md: bcache: avoid -Wempty-body warnings (bsc#1187357).
  • media: dvb: Add check on sp8870_readreg return (git-fixes).
  • media: dvb: Add check on sp8870_readreg return (git-fixes).
  • media: gspca: mt9m111: Check write_bridge for timeout (git-fixes).
  • media: gspca: mt9m111: Check write_bridge for timeout (git-fixes).
  • media: gspca: properly check for errors in po1030_probe() (git-fixes).
  • media: gspca: properly check for errors in po1030_probe() (git-fixes).
  • mei: request autosuspend after sending rx flow control (git-fixes).
  • mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039).
  • net/mlx4: Fix EEPROM dump support (git-fixes).
  • net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464).
  • net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172).
  • net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172).
  • net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172).
  • net/mlx5e: Fix incompatible casting (jsc#SLE-15172).
  • net/mlx5e: Fix multipath lag activation (git-fixes).
  • net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172).
  • net/mlx5e: Fix nullptr in addvlanpush_action() (git-fixes).
  • net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172).
  • net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172).
  • net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172).
  • net/sched: fqpie: re-factor fix for fqpie endless loop (jsc#SLE-15172).
  • net: bnx2: Fix error return code in bnx2initboard() (git-fixes).
  • net: fix iteration for sctp transport seq_files (git-fixes).
  • net: hns3: Limiting the scope of vectorringchain variable (git-fixes).
  • net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777).
  • net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353).
  • net: zero-initialize tc skb extension on allocation (bsc#1176447).
  • netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447).
  • netfilter: nftsetpipapoavx2: Add irqfpu_usable() check, fallback to non-AVX2 version (bsc#1176447).
  • nfc: fix NULL ptr dereference in llcpsockgetname() after failed connect (git-fixes).
  • nfsd: register pernet ops last, unregister first (git-fixes).
  • nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155).
  • nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: mark nvmesetuppasssthru() inline (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: rename nvmeinitidentify() (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvme: use NVMECTRLCMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155).
  • nvmet: use new analogsize instead the old one (bsc#1178612, bsc#1184259, bsc#1186155).
  • pNFS/NFSv4: Fix a layout segment leak in pnfslayoutprocess() (git-fixes).
  • pNFS/flexfiles: fix incorrect size check in decodenfsfh() (git-fixes).
  • pid: take a reference when initializing cad_pid (bsc#1152489).
  • platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes).
  • platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes).
  • platform/x86: intelpunitipc: Append MODULEDEVICETABLE for ACPI (git-fixes).
  • platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes).
  • powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes).
  • powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes).
  • regulator: core: resolve supply for boot-on/always-on regulators (git-fixes).
  • regulator: max77620: Use devicesetofnodefrom_dev() (git-fixes).
  • rtw88: 8822c: add LC calibration for RTL8822C (git-fixes).
  • scsi: aacraid: Fix an oops in error handling (bsc#1187072).
  • scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950).
  • scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951).
  • scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952).
  • scsi: be2iscsi: Fix a theoretical leak in beiscsicreateeqs() (bsc#1186953).
  • scsi: be2iscsi: Revert 'Fix a theoretical leak in beiscsicreateeqs()' (bsc#1187067).
  • scsi: bfa: Fix error return in bfadpciinit() (bsc#1186954).
  • scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955).
  • scsi: bnx2i: Requires MMU (bsc#1186956).
  • scsi: csiostor: Fix wrong return value in csiohwprep_fw() (bsc#1186957).
  • scsi: cumana2: Fix different devid between requestirq() and freeirq() (bsc#1186958).
  • scsi: cxgb3i: Fix some leaks in initactopen() (bsc#1186959).
  • scsi: cxgb4i: Fix TLS dependency (bsc#1186960).
  • scsi: eesox: Fix different devid between requestirq() and free_irq() (bsc#1186961).
  • scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962).
  • scsi: hisi_sas: Fix IRQ checks (bsc#1186963).
  • scsi: hisi_sas: Remove preemptible() (bsc#1186964).
  • scsi: jazz_esp: Add IRQ check (bsc#1186965).
  • scsi: libfc: Fix enum-conversion warning (bsc#1186966).
  • scsi: libsas: Fix error path in sasnotifylldddevfound() (bsc#1186967).
  • scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068).
  • scsi: libsas: Set datadir as DMANONE if libata marks qc as NODATA (bsc#1186968).
  • scsi: lpfc: Fix ancient double free (bsc#1186969).
  • scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes).
  • scsi: megaraid_sas: Check user-provided offsets (bsc#1186970).
  • scsi: megaraid_sas: Clear affinity hint (bsc#1186971).
  • scsi: megaraidsas: Do not call disableirq from process IRQ poll (bsc#1186972).
  • scsi: megaraidsas: Fix MEGASASIOC_FIRMWARE regression (bsc#1186973).
  • scsi: megaraidsas: Remove undefined ENABLEIRQ_POLL macro (bsc#1186974).
  • scsi: mesh: Fix panic after host or bus reset (bsc#1186976).
  • scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977).
  • scsi: mpt3sas: Fix error return code of mpt3sasbaseattach() (bsc#1186978).
  • scsi: mpt3sas: Fix ioctl timeout (bsc#1186979).
  • scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980).
  • scsi: pm80xx: Fix error return in pm8001pciprobe() (bsc#1186981).
  • scsi: powertec: Fix different devid between requestirq() and free_irq() (bsc#1186982).
  • scsi: qedi: Check for buffer overflow in qedisetpath() (bsc#1186983).
  • scsi: qedi: Fix error return code of qediallocglobal_queues() (bsc#1186984).
  • scsi: qedi: Fix missing destroyworkqueue() on error in _qedi_probe (bsc#1186985).
  • scsi: qla2xxx: Prevent PRLI in target mode (git-fixes).
  • scsi: qla4xxx: Fix an error handling path in 'qla4xxxgethost_stats()' (bsc#1186986).
  • scsi: qla4xxx: Remove in_interrupt() (bsc#1186987).
  • scsi: scsidebug: Add check for sdebugmax_queue during module init (bsc#1186988).
  • scsi: scsidhalua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701).
  • scsi: sd: Fix Opal support (bsc#1186989).
  • scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472).
  • scsi: smartpqi: Add host level stream detection enable (bsc#1186472).
  • scsi: smartpqi: Add new PCI IDs (bsc#1186472).
  • scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472).
  • scsi: smartpqi: Add stream detection (bsc#1186472).
  • scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472).
  • scsi: smartpqi: Add support for RAID1 writes (bsc#1186472).
  • scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472).
  • scsi: smartpqi: Add support for long firmware version (bsc#1186472).
  • scsi: smartpqi: Add support for new product ids (bsc#1186472).
  • scsi: smartpqi: Add support for wwid (bsc#1186472).
  • scsi: smartpqi: Align code with oob driver (bsc#1186472).
  • scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472).
  • scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472).
  • scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472).
  • scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472).
  • scsi: smartpqi: Fix blocksperrow static checker issue (bsc#1186472).
  • scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472).
  • scsi: smartpqi: Fix driver synchronization issues (bsc#1186472).
  • scsi: smartpqi: Refactor aio submission code (bsc#1186472).
  • scsi: smartpqi: Refactor scatterlist code (bsc#1186472).
  • scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472).
  • scsi: smartpqi: Remove unused functions (bsc#1186472).
  • scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472).
  • scsi: smartpqi: Update OFA management (bsc#1186472).
  • scsi: smartpqi: Update RAID bypass handling (bsc#1186472).
  • scsi: smartpqi: Update SAS initiatorportprotocols and targetportprotocols (bsc#1186472).
  • scsi: smartpqi: Update device scan operations (bsc#1186472).
  • scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472).
  • scsi: smartpqi: Update event handler (bsc#1186472).
  • scsi: smartpqi: Update soft reset management for OFA (bsc#1186472).
  • scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472).
  • scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472).
  • scsi: smartpqi: Use host-wide tag space (bsc#1186472).
  • scsi: sni_53c710: Add IRQ check (bsc#1186990).
  • scsi: sun3x_esp: Add IRQ check (bsc#1186991).
  • scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002).
  • scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992).
  • scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993).
  • scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994).
  • scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995).
  • scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997).
  • scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998).
  • scsi: ufs: Introduce UFSHCDQUIRKPRDTBYTEGRAN quirk (bsc#1187000).
  • scsi: ufs: Make ufshcdprinttrs() consider UFSHCDQUIRKPRDTBYTEGRAN (bsc#1187069).
  • scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001).
  • scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996).
  • scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003).
  • scsi: ufshcd: use an enum for quirks (bsc#1186999).
  • serial: 8250pci: handle FLNOIRQ board flag (git-fixes).
  • serial: max310x: unregister uart driver in case of failure and abort (git-fixes).
  • serial: rp2: use 'requestfirmware' instead of 'requestfirmware_nowait' (git-fixes).
  • staging: rtl8723bs: Fix uninitialized variables (git-fixes).
  • sunrpc: fix refcount leak for rpc auth modules (git-fixes).
  • svcrdma: disable timeouts on rdma backchannel (git-fixes).
  • thermal/drivers/intel: Initialize RW trip to THERMALTEMPINVALID (git-fixes).
  • thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes).
  • tpm: fix error return code in tpm2getccattrstbl() (git-fixes).
  • ttyprintk: Add TTY hangup callback (git-fixes).
  • usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes).
  • usb: core: reduce power-on-good delay time of root hub (git-fixes).
  • usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes).
  • usb: musb: fix MUSBQUIRKBDISCONNECT99 handling (git-fixes).
  • usb: pd: Set PDTSINKWAITCAP to 310ms (git-fixes).
  • usb: typec: intelpmcmux: Put fwnode in error case during ->probe() (git-fixes).
  • usb: typec: mux: Fix copy-paste mistake in typecmuxmatch (git-fixes).
  • usb: typec: mux: Fix matching with typecaltmodedesc (git-fixes).
  • usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes).
  • usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes).
  • usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes).
  • usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes).
  • vfio/pci: Fix error return code in vfioecapinit() (git-fixes).
  • vfio/pci: zapvmaptes() needs MMU (git-fixes).
  • vfio/platform: fix module_put call in error flow (git-fixes).
  • vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes).
  • vsock/vmci: log once the failed queue pair allocation (git-fixes).
  • wireguard: allowedips: initialize list head in selftest (git-fixes).
  • wireguard: do not use -O3 (git-fixes).
  • wireguard: peer: allocate in kmem_cache (git-fixes).
  • wireguard: peer: put frequently used members above cache lines (git-fixes).
  • wireguard: queueing: get rid of per-peer ring buffers (git-fixes).
  • wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes).
  • wireguard: selftests: remove old conntrack kconfig value (git-fixes).
  • wireguard: use synchronizenet rather than synchronizercu (git-fixes).
  • x86/apic: Mark all legacy interrupts when IO/APIC is missing (bsc#1152489).
  • x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337).
  • x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337).
  • x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337).
  • x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337).
  • x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337).
  • x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337).
  • x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337).
  • x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337).
  • x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337).
  • x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337).
  • x86/cpufeatures: Force disable X86FEATUREENQCMD and remove update_pasid() (bsc#1178134).
  • x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489).
  • x86/fpu: Prevent state corruption in fpurestore_sig() (bsc#1178134).
  • x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337).
  • x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337).
  • x86/ioremap: Map efimemreserve() memory as encrypted for SEV (bsc#1186885).
  • x86/sev-es: Do not return NULL from sevesget_ghcb() (bsc#1187349).
  • x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337).
  • x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350).
  • x86/sev-es: Replace open-coded hlt-loops with sevesterminate() (jsc#SLE-14337).
  • x86/sev-es: Use putuser()/getuser() for data accesses (bsc#1187351).
  • x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337).
  • x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337).
  • x86: fix seq_file iteration for pat.c (git-fixes).
  • xfrm: policy: Read seqcount outside of rcu-read side in xfrmpolicylookup_bytype (bsc#1185675).
  • xprtrdma: Avoid Receive Queue wrapping (git-fixes).
  • xprtrdma: rpcrdmamrpop() already does listdelinit() (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-38.8.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-38.8.1",
            "kernel-azure-devel": "5.3.18-38.8.1",
            "kernel-devel-azure": "5.3.18-38.8.1",
            "kernel-syms-azure": "5.3.18-38.8.1",
            "kernel-source-azure": "5.3.18-38.8.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-38.8.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-38.8.1",
            "kernel-azure-devel": "5.3.18-38.8.1",
            "kernel-devel-azure": "5.3.18-38.8.1",
            "kernel-syms-azure": "5.3.18-38.8.1",
            "kernel-source-azure": "5.3.18-38.8.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-38.8.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-38.8.1",
            "kernel-azure-devel": "5.3.18-38.8.1",
            "kernel-devel-azure": "5.3.18-38.8.1",
            "kernel-syms-azure": "5.3.18-38.8.1",
            "kernel-source-azure": "5.3.18-38.8.1"
        }
    ]
}