SUSE-SU-2023:2803-1

Source
https://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:2803-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2023:2803-1
Related
Published
2023-07-10T14:11:21Z
Modified
2023-07-10T14:11:21Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210335).
  • CVE-2023-3389: Fixed a use-after-free vulnerability in the io_uring subsystem (bsc#1212838).
  • CVE-2023-3090: Fixed a heap out-of-bounds write in the ipvlan network driver (bsc#1212842).
  • CVE-2023-3111: Fixed a use-after-free vulnerability in preparetorelocate in fs/btrfs/relocation.c (bsc#1212051).
  • CVE-2023-3212: Fixed a NULL pointer dereference flaw in the gfs2 file system (bsc#1212265).
  • CVE-2023-3358: Fixed a NULL pointer dereference flaw in the Integrated Sensor Hub (ISH) driver (bsc#1212606).
  • CVE-2023-3357: Fixed a NULL pointer dereference flaw in the AMD Sensor Fusion Hub driver (bsc#1212605).

The following non-security bugs were fixed:

  • Get module prefix from kmod (bsc#1212835).
  • Revert 'mtd: rawnand: arasan: Prevent an unsupported configuration' (git-fixes).
  • Revert 'net: phy: dp83867: perform soft reset and retain established link' (git-fixes).
  • alsa: ac97: Fix possible NULL dereference in sndac97mixer (git-fixes).
  • alsa: hda/realtek: Add 'Intel Reference board' and 'NUC 13' SSID in the ALC256 (git-fixes).
  • alsa: hda/realtek: Add quirk for ASUS ROG G634Z (git-fixes).
  • alsa: hda/realtek: Add quirk for ASUS ROG GV601V (git-fixes).
  • alsa: hda/realtek: Add quirks for ASUS GU604V and GU603V (git-fixes).
  • alsa: hda/realtek: Add quirks for ROG ALLY CS35l41 audio (git-fixes).
  • alsa: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook (git-fixes).
  • amdgpu: validate offsetinbo of drmamdgpugem_va (git-fixes).
  • arm64: Add missing Set/Way CMO encodings (git-fixes).
  • arm64: dts: Move BCM4908 dts to bcmbca folder (git-fixes)
  • arm64: dts: broadcom: bcmbca: bcm4908: fix NAND interrupt name (git-fixes)
  • arm64: dts: broadcom: bcmbca: bcm4908: fix procmon nodename (git-fixes)
  • arm64: dts: imx8mn-var-som: fix PHY detection bug by adding deassert (git-fixes)
  • arm: dts: Fix erroneous ADS touchscreen polarities (git-fixes).
  • asoc: es8316: Do not set rate constraints for unsupported MCLKs (git-fixes).
  • asoc: es8316: Increment max value for ALC Capture Target Volume control (git-fixes).
  • asoc: imx-audmix: check return value of devm_kasprintf() (git-fixes).
  • asoc: mediatek: mt8173: Fix irq error path (git-fixes).
  • asoc: nau8824: Add quirk to active-high jack-detect (git-fixes).
  • asoc: simple-card: Add missing ofnodeput() in case of error (git-fixes).
  • bus: fsl-mc: fsl-mc-allocator: Drop a write-only variable (git-fixes).
  • bus: ti-sysc: Fix dispc quirk masking bool variables (git-fixes).
  • can: isotp: isotp_sendmsg(): fix return error fix on TX path (git-fixes).
  • can: kvaserpciefd: Remove handler for unused KVASERPCIEFDPACKTYPEEFRAMEACK (git-fixes).
  • can: kvaser_pciefd: Remove useless write to interrupt register (git-fixes).
  • can: length: fix bitstuffing count (git-fixes).
  • can: length: fix description of the RRS field (git-fixes).
  • can: length: make header self contained (git-fixes).
  • clk: Fix memory leak in devmclknotifier_register() (git-fixes).
  • clk: cdce925: check return value of kasprintf() (git-fixes).
  • clk: imx: clk-imx8mn: fix memory leak in imx8mnclocksprobe (git-fixes).
  • clk: imx: clk-imx8mp: improve error handling in imx8mpclocksprobe() (git-fixes).
  • clk: imx: scu: use _safe list iterator to avoid a use after free (git-fixes).
  • clk: keystone: sci-clk: check return value of kasprintf() (git-fixes).
  • clk: samsung: Add Exynos4212 compatible to CLKOUT driver (git-fixes).
  • clk: si5341: check return value of {devm_}kasprintf() (git-fixes).
  • clk: si5341: free unused memory on probe failure (git-fixes).
  • clk: si5341: return error if one synth clock registration fails (git-fixes).
  • clk: tegra: tegra124-emc: Fix potential memory leak (git-fixes).
  • clk: ti: clkctrl: check return value of kasprintf() (git-fixes).
  • clk: vc5: check memory returned by kasprintf() (git-fixes).
  • clocksource/drivers/cadence-ttc: Fix memory leak in ttctimerprobe (git-fixes).
  • crypto: marvell/cesa - Fix type mismatch warning (git-fixes).
  • crypto: nx - fix build warnings when DEBUG_FS is not enabled (git-fixes).
  • drivers: meson: secure-pwrc: always enable DMA domain (git-fixes).
  • drm/amd/display: Add logging for display MALL refresh setting (git-fixes).
  • drm/amd/display: Add minimal pipe split transition state (git-fixes).
  • drm/amd/display: Add wrapper to call planes and stream update (git-fixes).
  • drm/amd/display: Explicitly specify update type per plane info change (git-fixes).
  • drm/amd/display: Fix artifacting on eDP panels when engaging freesync video mode (git-fixes).
  • drm/amd/display: Use dcupdateplanesandstream (git-fixes).
  • drm/amd/display: drop redundant memset() in getavailabledsc_slices() (git-fixes).
  • drm/amd/display: fix the system hang while disable PSR (git-fixes).
  • drm/amdkfd: Fix potential deallocation of previously deallocated memory (git-fixes).
  • drm/bridge: tc358768: always enable HS video mode (git-fixes).
  • drm/bridge: tc358768: fix PLL parameters computation (git-fixes).
  • drm/bridge: tc358768: fix PLL target frequency (git-fixes).
  • drm/bridge: tc358768: fix TCLK_ZEROCNT computation (git-fixes).
  • drm/bridge: tc358768: fix TXTAGOCNT computation (git-fixes).
  • drm/exynos: fix race condition UAF in exynosg2dexec_ioctl (git-fixes).
  • drm/exynos: vidi: fix a wrong error return (git-fixes).
  • drm/i915/gvt: remove unused variable gma_bottom in command parser (git-fixes).
  • drm/msm/adreno: fix sparse warnings in a6xx code (git-fixes).
  • drm/msm/dp: Free resources after unregistering them (git-fixes).
  • drm/msm/dpu: correct MERGE_3D length (git-fixes).
  • drm/msm/dpu: do not enable color-management if DSPPs are not available (git-fixes).
  • drm/msm/dsi: do not allow enabling 14nm VCO with unprogrammed rate (git-fixes).
  • drm/panel: sharp-ls043t1le01: adjust mode settings (git-fixes).
  • drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H (git-fixes).
  • drm/radeon: fix possible division-by-zero errors (git-fixes).
  • drm/radeon: fix race condition UAF in radeongemsetdomainioctl (git-fixes).
  • drm/rockchip: vop: Leave vblank enabled in self-refresh (git-fixes).
  • drm/vram-helper: fix function names in vram helper doc (git-fixes).
  • drm: sun4itcon: use devmclkgetenabled in sun4i_tcon_init_clocks (git-fixes).
  • elf: correct note name comment (git-fixes).
  • extcon: Fix kernel doc of property capability fields to avoid warnings (git-fixes).
  • extcon: Fix kernel doc of property fields to avoid warnings (git-fixes).
  • extcon: usbc-tusb320: Add USB TYPE-C support (git-fixes).
  • extcon: usbc-tusb320: Call the Type-C IRQ handler only if a port is registered (git-fixes).
  • extcon: usbc-tusb320: Unregister typec port on driver removal (git-fixes).
  • extcon: usbc-tusb320: Update state on probe even if no IRQ pending (git-fixes).
  • fbdev: omapfb: lcdmipid: Fix an error handling path in mipidspi_probe() (git-fixes).
  • firmware: stratix10-svc: Fix a potential resource leak in svccreatememory_pool() (git-fixes).
  • hid: logitech-hidpp: add HIDPPQUIRKDELAYED_INIT for the T651 (git-fixes).
  • hid: wacom: Add error check to wacomparseand_register() (git-fixes).
  • hwmon: (gsc-hwmon) fix fan pwm temperature scaling (git-fixes).
  • hwrng: imx-rngc - fix the timeout for init and self check (git-fixes).
  • hwrng: st - keep clock enabled while hwrng is registered (git-fixes).
  • i2c: imx-lpi2c: fix type char overflow issue when calculating the clock cycle (git-fixes).
  • i2c: qup: Add missing unwind goto in qupi2cprobe() (git-fixes).
  • ib/hfi1: Fix wrong mmu_node used for user SDMA packet after invalidate (git-fixes)
  • ib/isert: Fix dead lock in ib_isert (git-fixes)
  • ib/isert: Fix incorrect release of isert connection (git-fixes)
  • ib/isert: Fix possible list corruption in CMA handler (git-fixes)
  • ib/uverbs: Fix to consider event queue closing also upon non-blocking mode (git-fixes)
  • ibmvnic: Do not reset dql stats on NON_FATAL err (bsc#1212603 ltc#202604).
  • ice, xsk: Diversify return values from xsk_wakeup call paths (git-fixes).
  • ice: Do not double unplug aux on peer initiated reset (git-fixes).
  • ice: Do not use WQMEMRECLAIM flag for workqueue (git-fixes).
  • ice: Fix DSCP PFC TLV creation (git-fixes).
  • ice: Fix XDP memory leak when NIC is brought up and down (git-fixes).
  • ice: Fix icexdpxmit() when XDP TX queue number is not sufficient (git-fixes).
  • ice: Fix memory corruption in VF driver (git-fixes).
  • ice: Ignore EEXIST when setting promisc mode (git-fixes).
  • ice: Prevent set_channel from changing queues while RDMA active (git-fixes).
  • ice: Reset FDIR counter in FDIR init stage (git-fixes).
  • ice: add profile conflict check for AVF FDIR (git-fixes).
  • ice: block LAN in case of VF to VF offload (git-fixes).
  • ice: config netdev tc before setting queues number (git-fixes).
  • ice: copy last block omitted in icegetmodule_eeprom() (git-fixes).
  • ice: ethtool: Prohibit improper channel config for DCB (git-fixes).
  • ice: ethtool: advertise 1000M speeds properly (git-fixes).
  • ice: fix invalid check for empty list in iceschedassocvsito_agg() (git-fixes).
  • ice: fix wrong fallback logic for FDIR (git-fixes).
  • ice: handle E822 generic device ID in PLDM header (git-fixes).
  • ice: switch: fix potential memleak in iceaddadv_recipe() (git-fixes).
  • ice: use bitmapfree instead of devmkfree (git-fixes).
  • ice: xsk: use Rx ring's XDP ring when picking NAPI context (git-fixes).
  • ieee802154: hwsim: Fix possible memory leaks (git-fixes).
  • ifcvf/vDPA: fix misuse virtio-net device config size for blk dev (jsc#SLE-19253).
  • iio: accel: fxls8962af: errata bug only applicable for FXLS8962AF (git-fixes).
  • iio: accel: fxls8962af: fixup buffer scan element type (git-fixes).
  • iio: adc: ad7192: Fix internal/external clock selection (git-fixes).
  • iio: adc: ad7192: Fix null ad7192_state pointer access (git-fixes).
  • input: adxl34x - do not hardcode interrupt trigger type (git-fixes).
  • input: drv260x - fix typo in register value define (git-fixes).
  • input: drv260x - remove unused .reg_defaults (git-fixes).
  • input: drv260x - sleep between polling GO bit (git-fixes).
  • input: socbuttonarray - add invalid acpi_index DMI quirk handling (git-fixes).
  • integrity: Fix possible multiple allocation in integrityinodeget() (git-fixes).
  • irqchip/clps711x: Remove unused clps711xintcinit() function (git-fixes).
  • irqchip/ftintc010: Mark all function static (git-fixes).
  • irqchip/jcore-aic: Fix missing allocation of IRQ descriptors (git-fixes).
  • kernel-docs: Use python3 together with python3-Sphinx (bsc#1212741).
  • mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0 (git-fixes).
  • media: cec: core: do not set last_initiator if tx in progress (git-fixes).
  • memory: brcmstb_dpfe: fix testing array offset after use (git-fixes).
  • meson saradc: fix clock divider mask length (git-fixes).
  • mfd: intel-lpss: Add missing check for platformgetresource (git-fixes).
  • mfd: pm8008: Fix module autoloading (git-fixes).
  • mfd: rt5033: Drop rt5033-battery sub-device (git-fixes).
  • mfd: stmfx: Fix error path in stmfxchipinit (git-fixes).
  • mfd: stmfx: Nullify stmfx->vdd in case of error (git-fixes).
  • mfd: stmpe: Only disable the regulators if they are enabled (git-fixes).
  • misc: fastrpc: Create fastrpc scalar with correct buffer count (git-fixes).
  • misc: pciendpointtest: Free IRQs before removing the device (git-fixes).
  • misc: pciendpointtest: Re-init completion for every test (git-fixes).
  • mlx5: do not use RT_TOS for IPv6 flowlabel (jsc#SLE-19253).
  • mmc: bcm2835: fix deferred probing (git-fixes).
  • mmc: meson-gx: remove redundant mmcrequestdone() call from irq context (git-fixes).
  • mmc: mmci: Set PROBEPREFERASYNCHRONOUS (git-fixes).
  • mmc: mmci: stm32: fix max busy timeout calculation (git-fixes).
  • mmc: mtk-sd: fix deferred probing (git-fixes).
  • mmc: mvsdio: fix deferred probing (git-fixes).
  • mmc: omap: fix deferred probing (git-fixes).
  • mmc: omap_hsmmc: fix deferred probing (git-fixes).
  • mmc: owl: fix deferred probing (git-fixes).
  • mmc: sdhci-acpi: fix deferred probing (git-fixes).
  • mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916 (git-fixes).
  • mmc: sdhci-spear: fix deferred probing (git-fixes).
  • mmc: sh_mmcif: fix deferred probing (git-fixes).
  • mmc: sunxi: fix deferred probing (git-fixes).
  • mmc: usdhi60rol0: fix deferred probing (git-fixes).
  • mtd: rawnand: meson: fix unaligned DMA buffers handling (git-fixes).
  • net/mlx5: Add forgotten cleanup calls into mlx5initonce() error path (jsc#SLE-19253).
  • net/mlx5: Allow async trigger completion execution on single CPU systems (jsc#SLE-19253).
  • net/mlx5: Allow future addition of IPsec object modifiers (jsc#SLE-19253).
  • net/mlx5: Avoid false positive lockdep warning by adding lockclasskey (jsc#SLE-19253).
  • net/mlx5: Avoid recovery in probe flows (jsc#SLE-19253).
  • net/mlx5: Bridge, fix ageing of peer FDB entries (jsc#SLE-19253).
  • net/mlx5: Bridge, verify LAG state when adding bond to bridge (jsc#SLE-19253).
  • net/mlx5: DR, Check force-loopback RC QP capability independently from RoCE (jsc#SLE-19253).
  • net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE) CPUs (jsc#SLE-19253).
  • net/mlx5: DR, Fix missing flow_source when creating multi-destination FW table (jsc#SLE-19253).
  • net/mlx5: Devcom, fix error flow in mlx5devcomregister_device (jsc#SLE-19253).
  • net/mlx5: Do not advertise IPsec netdev support for non-IPsec device (jsc#SLE-19253).
  • net/mlx5: Do not use already freed action pointer (jsc#SLE-19253).
  • net/mlx5: E-Switch, Fix an Oops in error handling code (jsc#SLE-19253).
  • net/mlx5: E-Switch, properly handle ingress tagged packets on VST (jsc#SLE-19253).
  • net/mlx5: E-switch, Create per vport table based on devlink encap mode (jsc#SLE-19253).
  • net/mlx5: E-switch, Do not destroy indirect table in split rule (jsc#SLE-19253).
  • net/mlx5: E-switch, Fix missing set of split_count when forward to ovs internal port (jsc#SLE-19253).
  • net/mlx5: E-switch, Fix setting of reserved fields on MODIFYSCHEDULINGELEMENT (jsc#SLE-19253).
  • net/mlx5: Enhance debug print in page allocation failure (jsc#SLE-19253).
  • net/mlx5: Fix FW tracer timestamp calculation (jsc#SLE-19253).
  • net/mlx5: Fix RoCE setting at HCA level (jsc#SLE-19253).
  • net/mlx5: Fix crash during sync firmware reset (jsc#SLE-19253).
  • net/mlx5: Fix error message when failing to allocate device memory (jsc#SLE-19253).
  • net/mlx5: Fix handling of entry refcount when command is not issued to FW (jsc#SLE-19253).
  • net/mlx5: Fix possible use-after-free in async command interface (jsc#SLE-19253).
  • net/mlx5: Fix ptp max frequency adjustment range (jsc#SLE-19253).
  • net/mlx5: Fix steering rules cleanup (jsc#SLE-19253).
  • net/mlx5: Fix uninitialized variable bug in outlen_write() (jsc#SLE-19253).
  • net/mlx5: Geneve, Fix handling of Geneve object id as error code (jsc#SLE-19253).
  • net/mlx5: Initialize flow steering during driver probe (jsc#SLE-19253).
  • net/mlx5: Read embedded cpu after init bit cleared (jsc#SLE-19253).
  • net/mlx5: Read the TC mapping of all priorities on ETS query (jsc#SLE-19253).
  • net/mlx5: Rearm the FW tracer after each tracer event (jsc#SLE-19253).
  • net/mlx5: SF, Drain health before removing device (jsc#SLE-19253).
  • net/mlx5: SF: Fix probing active SFs during driver probe phase (jsc#SLE-19253).
  • net/mlx5: Serialize module cleanup with reload and remove (jsc#SLE-19253).
  • net/mlx5: Wait for firmware to enable CRS before pcirestorestate (jsc#SLE-19253).
  • net/mlx5: add IFC bits for bypassing port select flow table (git-fixes)
  • net/mlx5: check attr pointer validity before dereferencing it (jsc#SLE-19253).
  • net/mlx5: correct ECE offset in query qp output (jsc#SLE-19253).
  • net/mlx5: fix missing mutexunlock in mlx5fwfatalreportererrwork() (jsc#SLE-19253).
  • net/mlx5: fs, fail conflicting actions (jsc#SLE-19253).
  • net/mlx5: fw_tracer, Clear load bit when freeing string DBs buffers (jsc#SLE-19253).
  • net/mlx5: fw_tracer, Fix event handling (jsc#SLE-19253).
  • net/mlx5: fw_tracer, Zero consumer index when reloading the tracer (jsc#SLE-19253).
  • net/mlx5e: Always clear dest encap in neigh-update-del (jsc#SLE-19253).
  • net/mlx5e: Avoid false lock dependency warning on tc_ht even more (jsc#SLE-19253).
  • net/mlx5e: Block entering switchdev mode with ns inconsistency (jsc#SLE-19253).
  • net/mlx5e: Do not attach netdev profile while handling internal error (jsc#SLE-19253).
  • net/mlx5e: Do not increment ESN when updating IPsec ESN state (jsc#SLE-19253).
  • net/mlx5e: Do not support encap rules with gbp option (jsc#SLE-19253).
  • net/mlx5e: E-Switch, Fix comparing termination table instance (jsc#SLE-19253).
  • net/mlx5e: Extend SKB room check to include PTP-SQ (jsc#SLE-19253).
  • net/mlx5e: Fix MPLSoUDP encap to use MPLS action information (jsc#SLE-19253).
  • net/mlx5e: Fix SQ wake logic in ptp napi_poll context (jsc#SLE-19253).
  • net/mlx5e: Fix capability check for updating vnic env counters (jsc#SLE-19253).
  • net/mlx5e: Fix error handling in mlx5erefreshtirs (jsc#SLE-19253).
  • net/mlx5e: Fix hw mtu initializing at XDP SQ allocation (jsc#SLE-19253).
  • net/mlx5e: Fix the value of MLX5EMAXRQNUMMTTS (jsc#SLE-19253).
  • net/mlx5e: Fix use-after-free when reverting termination table (jsc#SLE-19253).
  • net/mlx5e: Fix wrong application of the LRO state (jsc#SLE-19253).
  • net/mlx5e: Fix wrong tc flag used when set hw-tc-offload off (jsc#SLE-19253).
  • net/mlx5e: IPoIB, Do not allow CQE compression to be turned on by default (jsc#SLE-19253).
  • net/mlx5e: IPoIB, Show unknown speed instead of error (jsc#SLE-19253).
  • net/mlx5e: Modify slow path rules to go to slow fdb (jsc#SLE-19253).
  • net/mlx5e: QoS, Fix wrongfully setting parentelementid on MODIFYSCHEDULINGELEMENT (jsc#SLE-19253).
  • net/mlx5e: Set uplink rep as NETNS_LOCAL (jsc#SLE-19253).
  • net/mlx5e: TC, Fix ct_clear overwriting ct action metadata (jsc#SLE-19253).
  • net/mlx5e: Update rx ring hw mtu upon each rx-fcs flag change (jsc#SLE-19253).
  • net/mlx5e: Verify flow_source cap before using it (jsc#SLE-19253).
  • net/mlx5e: do as little as possible in napi poll when budget is 0 (jsc#SLE-19253).
  • net/mlx5e: kTLS, Fix build time constant test in RX (jsc#SLE-19253).
  • net/mlx5e: kTLS, Fix build time constant test in TX (jsc#SLE-19253).
  • net: mlx5: eliminate anonymous moduleinit & moduleexit (jsc#SLE-19253).
  • nfcsim.c: Fix error checking for debugfscreatedir (git-fixes).
  • nilfs2: fix buffer corruption due to concurrent device reads (git-fixes).
  • nvme-core: fix devpmqos memleak (git-fixes).
  • nvme-core: fix memory leak in dhchapctrlsecret (git-fixes).
  • nvme-core: fix memory leak in dhchapsecretstore (git-fixes).
  • nvme-pci: add quirk for missing secondary temperature thresholds (git-fixes).
  • nvme: double KA polling frequency to avoid KATO with TBKAS on (git-fixes).
  • ocfs2: fix defrag path triggering jbd2 ASSERT (git-fixes).
  • ocfs2: fix freeing uninitialized resource on ocfs2dlmshutdown (git-fixes).
  • ocfs2: fix non-auto defrag path not working issue (git-fixes).
  • pci/aspm: Disable ASPM on MFD function removal to avoid use-after-free (git-fixes).
  • pci: Add pciclearmaster() stub for non-CONFIG_PCI (git-fixes).
  • pci: Release resource invalidated by coalescing (git-fixes).
  • pci: cadence: Fix Gen2 Link Retraining process (git-fixes).
  • pci: endpoint: Add missing documentation about the MSI/MSI-X range (git-fixes).
  • pci: ftpci100: Release the clock resources (git-fixes).
  • pci: pciehp: Cancel bringup sequence if card is not present (git-fixes).
  • pci: qcom: Disable write access to read only registers for IP v2.3.3 (git-fixes).
  • pci: rockchip: Add poll and timeout to wait for PHY PLLs to be locked (git-fixes).
  • pci: rockchip: Assert PCI Configuration Enable bit after probe (git-fixes).
  • pci: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core (git-fixes).
  • pci: rockchip: Set address alignment for endpoint mode (git-fixes).
  • pci: rockchip: Use u32 variable to access 32-bit registers (git-fixes).
  • pci: rockchip: Write PCI Device ID to correct register (git-fixes).
  • pci: vmd: Reset VMD config register between soft reboots (git-fixes).
  • pinctrl: at91-pio4: check return value of devm_kasprintf() (git-fixes).
  • pinctrl: cherryview: Return correct value if pin in push-pull mode (git-fixes).
  • pinctrl: microchip-sgpio: check return value of devm_kasprintf() (git-fixes).
  • platform/x86: think-lmi: Correct NVME password handling (git-fixes).
  • platform/x86: think-lmi: Correct System password interface (git-fixes).
  • platform/x86: think-lmi: mutex protection around multiple WMI calls (git-fixes).
  • platform/x86: thinkpad_acpi: Fix lkp-tests warnings for platform profiles (git-fixes).
  • pm: domains: fix integer overflow issues in genpdparsestate() (git-fixes).
  • powerpc/64s/radix: Fix exit lazy tlb mm switch with irqs enabled (bsc#1194869).
  • powerpc/iommu: Limit number of TCEs to 512 for HSTUFFTCE hcall (bsc#1194869 bsc#1212701).
  • powerpc/setmemory: Avoid spinlock recursion in changepage_attr() (bsc#1194869).
  • pstore/ram: Add check for kstrdup (git-fixes).
  • radeon: avoid double free in cidpminit() (git-fixes).
  • rdma/bnxtre: Avoid calling wakeup threads from spin_lock context (git-fixes)
  • rdma/bnxt_re: Disable/kill tasklet only if it is enabled (git-fixes)
  • rdma/bnxt_re: Fix to remove an unnecessary log (git-fixes)
  • rdma/bnxt_re: Fix to remove unnecessary return labels (git-fixes)
  • rdma/bnxtre: Remove a redundant check inside bnxtreupdategid (git-fixes)
  • rdma/bnxt_re: Remove unnecessary checks (git-fixes)
  • rdma/bnxt_re: Return directly without goto jumps (git-fixes)
  • rdma/bnxt_re: Use unique names while registering interrupts (git-fixes)
  • rdma/bnxt_re: wraparound mbox producer index (git-fixes)
  • rdma/cma: Always set static rate to 0 for RoCE (git-fixes)
  • rdma/hns: Fix hnsrocetable_get return value (git-fixes)
  • rdma/irdma: avoid fortify-string warning in irdmaclrwqes (git-fixes)
  • rdma/mlx5: Do not set tx affinity when lag is in hash mode (git-fixes)
  • rdma/mlx5: Fix affinity assignment (git-fixes)
  • rdma/mlx5: Initiate dropless RQ for RAW Ethernet functions (git-fixes)
  • rdma/mlx5: Rely on RoCE fw cap instead of devlink when setting profile (jsc#SLE-19253).
  • rdma/rtrs: Fix rxedeallocpd warning (git-fixes)
  • rdma/rtrs: Fix the last iu->buf leak in err path (git-fixes)
  • rdma/rxe: Fix packet length checks (git-fixes)
  • rdma/rxe: Fix ref count error in check_rkey() (git-fixes)
  • rdma/rxe: Fix rxecqpost (git-fixes)
  • rdma/rxe: Fix the use-before-initialization error of resp_pkts (git-fixes)
  • rdma/rxe: Remove dangling declaration of rxecqdisable() (git-fixes)
  • rdma/rxe: Remove the unused variable obj (git-fixes)
  • rdma/rxe: Removed unused name from rxe_task struct (git-fixes)
  • rdma/uverbs: Restrict usage of privileged QKEYs (git-fixes)
  • rdma/vmw_pvrdma: Remove unnecessary check on wr->opcode (git-fixes)
  • regulator: core: Fix more error checking for debugfscreatedir() (git-fixes).
  • regulator: core: Streamline debugfs operations (git-fixes).
  • regulator: helper: Document rampdelay parameter of regulatorsetrampdelay_regmap() (git-fixes).
  • rpm/check-for-config-changes: ignore also PAHOLEHAS* We now also have options like CONFIGPAHOLEHASLANGEXCLUDE.
  • rtc: st-lpc: Release some resources in strtcprobe() in case of error (git-fixes).
  • s390/gmap: voluntarily schedule during key setting (git-fixes bsc#1212892).
  • s390/pkey: zeroize key blobs (git-fixes bsc#1212619).
  • serial: 8250: lock port for UARTIER access in omap8250irq() (git-fixes).
  • serial: 8250: lock port for stoprx() in omap8250irq() (git-fixes).
  • serial: 8250: omap: Fix freeing of resources on failed register (git-fixes).
  • serial: 8250omap: Use forcesuspend and resume for system suspend (git-fixes).
  • serial: atmel: do not enable IRQs prematurely (git-fixes).
  • signal/s390: Use forcesigsegv in defaulttrap_handler (git-fixes bsc#1212861).
  • soc/fsl/qe: fix usb.c build errors (git-fixes).
  • soc: samsung: exynos-pmu: Re-introduce Exynos4212 support (git-fixes).
  • soundwire: dmi-quirks: add new mapping for HP Spectre x360 (git-fixes).
  • spi: dw: Round of n_bytes to power of 2 (git-fixes).
  • spi: lpspi: disable lpspi module irq in DMA mode (git-fixes).
  • spi: spi-geni-qcom: Correct CSTOGGLE bit in SPITRANS_CFG (git-fixes).
  • test_firmware: return ENOMEM instead of ENOSPC on failed memory allocation (git-fixes).
  • thermal/drivers/sun8i: Fix some error handling paths in sun8ithsprobe() (git-fixes).
  • tracing/timer: Add missing hrtimer modes to decodehrtimermode() (git-fixes).
  • tty: serial: imx: fix rs485 rx after tx (git-fixes).
  • tty: serial: samsungtty: Fix a memory leak in s3c24xxserial_getclk() in case of error (git-fixes).
  • tty: serial: samsungtty: Fix a memory leak in s3c24xxserial_getclk() when iterating clk (git-fixes).
  • usb: dwc3-meson-g12a: Fix an error handling path in dwc3mesong12a_probe() (git-fixes).
  • usb: dwc3: gadget: Propagate core init errors to UDC during pullup (git-fixes).
  • usb: dwc3: qcom: Fix an error handling path in dwc3qcomprobe() (git-fixes).
  • usb: dwc3: qcom: Fix potential memory leak (git-fixes).
  • usb: dwc3: qcom: Release the correct resources in dwc3qcomremove() (git-fixes).
  • usb: gadget: userial: Add null pointer check in gserialsuspend (git-fixes).
  • usb: gadget: udc: fix NULL dereference in remove() (git-fixes).
  • usb: hide unused usbfsnotifysuspend/resume functions (git-fixes).
  • usb: phy: phy-tahvo: fix memory leak in tahvousbprobe() (git-fixes).
  • usb: xhci: Remove unused udev from xhcilogctx trace event (git-fixes).
  • usrmerge: Adjust module path in the kernel sources (bsc#1212835).
  • vdpa/mlx5: Directly assign memory key (jsc#SLE-19253).
  • vdpa/mlx5: Do not clear mr struct on destroy MR (jsc#SLE-19253).
  • vdpa/mlx5: Fix wrong configuration of virtioversion1_0 (jsc#SLE-19253).
  • vdpa: Fix error logic in vdpanlcmddevget_doit (jsc#SLE-19253).
  • vhostvdpa: support PACKED when setting-getting vringbase (jsc#SLE-19253).
  • w1: fix loop in w1_fini() (git-fixes).
  • w1: w1therm: fix locking behavior in convertt (git-fixes).
  • wifi: ath9k: Fix possible stall on ath9ktxqlisthaskey() (git-fixes).
  • wifi: ath9k: avoid referencing uninit memory in ath9kwmictrl_rx (git-fixes).
  • wifi: ath9k: convert msecs to jiffies where needed (git-fixes).
  • wifi: ath9k: do not allow to overwrite ENDPOINT0 attributes (git-fixes).
  • wifi: ath9k: fix AR9003 mac hardware hang check register offset calculation (git-fixes).
  • wifi: atmel: Fix an error handling path in atmel_probe() (git-fixes).
  • wifi: cfg80211: rewrite merging of inherited elements (git-fixes).
  • wifi: iwlwifi: mvm: indicate HW decrypt for beacon protection (git-fixes).
  • wifi: iwlwifi: pcie: fix NULL pointer dereference in iwlpcieirqrxmsix_handler() (git-fixes).
  • wifi: iwlwifi: pull from TXQs with softirqs disabled (git-fixes).
  • wifi: mwifiex: Fix the size of a memory allocation in mwifiexret80211scan() (git-fixes).
  • wifi: orinoco: Fix an error handling path in orinococsprobe() (git-fixes).
  • wifi: orinoco: Fix an error handling path in spectrumcsprobe() (git-fixes).
  • wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled (git-fixes).
  • wifi: rsi: Do not set MMCPMKEEP_POWER in shutdown (git-fixes).
  • wifi: wilc1000: fix for absent RSN capabilities WFA testcase (git-fixes).
  • writeback: fix dereferencing NULL mapping->host on writebackpagetemplate (git-fixes).
  • x86/build: Avoid relocation information in final vmlinux (bsc#1187829).
  • x86/kprobes: Fix archcheckoptimizedkprobe check within optimizedkprobe range (git-fixes).
  • x86/mm: Fix RESERVE_BRK() for older binutils (git-fixes).
  • x86/mm: Fix use of uninitialized buffer in sme_enable() (git-fixes).
  • x86/sgx: Fix race between reclaimer and page fault handler (git-fixes).
  • x86/sgx: Mark PCMD page as dirty when modifying contents (git-fixes).
  • x86/xen: fix secondary processor fpu initialization (bsc#1212869).
References

Affected packages

SUSE:Linux Enterprise Micro 5.3 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 15 SP4 / kernel-livepatch-SLE15-SP4-RT_Update_9

Package

Name
kernel-livepatch-SLE15-SP4-RT_Update_9
Purl
purl:rpm/suse/kernel-livepatch-SLE15-SP4-RT_Update_9&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-150400.1.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-livepatch-5_14_21-150400_15_40-rt": "1-150400.1.3.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-rt_debug

Package

Name
kernel-rt_debug
Purl
purl:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-source-rt

Package

Name
kernel-source-rt
Purl
purl:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-syms-rt

Package

Name
kernel-syms-rt
Purl
purl:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

openSUSE:Leap Micro 5.3 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-rt_debug

Package

Name
kernel-rt_debug
Purl
purl:rpm/suse/kernel-rt_debug&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-source-rt

Package

Name
kernel-source-rt
Purl
purl:rpm/suse/kernel-source-rt&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-syms-rt

Package

Name
kernel-syms-rt
Purl
purl:rpm/suse/kernel-syms-rt&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.40.1",
            "dlm-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug": "5.14.21-150400.15.40.1",
            "kernel-rt-devel": "5.14.21-150400.15.40.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.40.1",
            "kernel-source-rt": "5.14.21-150400.15.40.1",
            "kernel-rt": "5.14.21-150400.15.40.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.40.1",
            "kernel-syms-rt": "5.14.21-150400.15.40.1"
        }
    ]
}