SUSE-SU-2023:3682-1

Source
https://www.suse.com/support/update/announcement/2023/suse-su-20233682-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:3682-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2023:3682-1
Upstream
  • CVE-2023-4128
Related
Published
2023-09-19T15:06:19Z
Modified
2025-05-08T17:31:12.359620Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of the kernel (bsc#1210448).
  • CVE-2023-20588: Fixed a division-by-zero error on some AMD processors that can potentially return speculative data resulting in loss of confidentiality (bsc#1213927).
  • CVE-2023-34319: Fixed buffer overrun triggered by unusual packet in xen/netback (XSA-432) (bsc#1213546).
  • CVE-2023-3610: Fixed use-after-free vulnerability in nf_tables can be exploited to achieve local privilege escalation (bsc#1213580).
  • CVE-2023-37453: Fixed oversight in SuperSpeed initialization (bsc#1213123).
  • CVE-2023-3772: Fixed a flaw in XFRM subsystem that may have allowed a malicious user with CAPNETADMIN privileges to directly dereference a NULL pointer leading to a possible kernel crash and denial of service (bsc#1213666).
  • CVE-2023-3863: Fixed a use-after-free flaw was found in nfcllcpfind_local that allowed a local user with special privileges to impact a kernel information leak issue (bsc#1213601).
  • CVE-2023-4128: Fixed a use-after-free flaw in net/sched/cls_fw.c that allowed a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue (bsc#1214149).
  • CVE-2023-4133: Fixed use after free bugs caused by circular dependency problem in cxgb4 (bsc#1213970).
  • CVE-2023-4134: Fixed use-after-free in cyttsp4watchdogwork() (bsc#1213971).
  • CVE-2023-4147: Fixed use-after-free in nftablesnewrule (bsc#1213968).
  • CVE-2023-4194: Fixed a type confusion in net tunchropen() (bsc#1214019).
  • CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack (bsc#1214120).
  • CVE-2023-4387: Fixed use-after-free flaw in vmxnet3rqallocrxbuf that could allow a local attacker to crash the system due to a double-free (bsc#1214350).
  • CVE-2023-4459: Fixed a NULL pointer dereference flaw in vmxnet3rqcleanup that may have allowed a local attacker with normal user privilege to cause a denial of service (bsc#1214451).
  • CVE-2023-4569: Fixed information leak in nftsetcatchallflush in net/netfilter/nftables_api.c (bsc#1214729).

The following non-security bugs were fixed:

  • acpi: processor: perflib: avoid updating frequency qos unnecessarily (git-fixes).
  • acpi: processor: perflib: use the 'no limit' frequency qos (git-fixes).
  • acpi: x86: s2idle: fix a logic error parsing amd constraints table (git-fixes).
  • alsa: ac97: fix possible error value of *rac97 (git-fixes).
  • alsa: hda/cs8409: support new dell dolphin variants (git-fixes).
  • alsa: hda/realtek - remodified 3k pull low procedure (git-fixes).
  • alsa: hda/realtek: add quirk for hp victus 16-d1xxx to enable mute led (git-fixes).
  • alsa: hda/realtek: add quirk for mute leds on hp envy x360 15-eu0xxx (git-fixes).
  • alsa: hda/realtek: add quirks for hp g11 laptops (git-fixes).
  • alsa: hda/realtek: switch dell oasis models to use spi (git-fixes).
  • alsa: pcm: fix missing fixup call in compat hw_refine ioctl (git-fixes).
  • alsa: usb-audio: add support for mythware xa001au capture and playback interfaces (git-fixes).
  • alsa: usb-audio: fix init call orders for uac1 (git-fixes).
  • alsa: ymfpci: fix the missing sndcardfree() call at probe error (git-fixes).
  • amba: bus: fix refcount leak (git-fixes).
  • arm64: dts: imx8mn-var-som: add missing pull-up for onboard phy reset pinmux (git-fixes).
  • arm64: dts: qcom: qrb5165-rb5: fix thermal zone conflict (git-fixes).
  • arm64: dts: rockchip: disable hs400 for emmc on rock pi 4 (git-fixes).
  • arm: dts: imx6dl: prtrvt, prtvt7, prti6q, prtwd2: fix usb related warnings (git-fixes).
  • arm: dts: imx6sll: fixup of operating points (git-fixes).
  • arm: spear: do not use timer namespace for timer_shutdown() function (bsc#1213970).
  • asoc: lower 'no backend dais enabled for ... port' log severity (git-fixes).
  • asoc: meson: axg-tdm-formatter: fix channel slot allocation (git-fixes).
  • asoc: rt5665: add missed regulatorbulkdisable (git-fixes).
  • asoc: sof: intel: fix soundwire/hdaudio mutual exclusion (git-fixes).
  • asoc: stac9766: fix build errors with regmap_ac97 (git-fixes).
  • asoc: tegra: fix sfc conversion for few rates (git-fixes).
  • audit: fix possible soft lockup in _auditinode_child() (git-fixes).
  • backlight/bd6107: compare against struct fb_info.device (git-fixes).
  • backlight/gpiobacklight: compare against struct fbinfo.device (git-fixes).
  • backlight/lv5207lp: compare against struct fb_info.device (git-fixes).
  • batman-adv: do not get eth header before batadvcheckmanagement_packet (git-fixes).
  • batman-adv: do not increase mtu when set by user (git-fixes).
  • batman-adv: fix batadvvogmaggrsend memory leak (git-fixes).
  • batman-adv: fix tt global entry leak when client roamed back (git-fixes).
  • batman-adv: hold rtnl lock during mtu update via netlink (git-fixes).
  • batman-adv: trigger events for auto adjusted mtu (git-fixes).
  • bluetooth: btusb: add mt7922 bluetooth id for the asus ally (git-fixes).
  • bluetooth: btusb: do not call kfreeskb() under spinlock_irqsave() (git-fixes).
  • bluetooth: fix potential use-after-free when clear keys (git-fixes).
  • bluetooth: l2cap: fix use-after-free (git-fixes).
  • bluetooth: l2cap: fix use-after-free in l2capsockready_cb (git-fixes).
  • bluetooth: nokia: fix value check in nokiabluetoothserdev_probe() (git-fixes).
  • bluetooth: remove unused declaration ampreadloc_info() (git-fixes).
  • bnx2x: fix page fault following eeh recovery (bsc#1214299).
  • bpf: disable preemption in bpfeventoutput (git-fixes).
  • bus: ti-sysc: fix build warning for 64-bit build (git-fixes).
  • bus: ti-sysc: fix cast to enum warning (git-fixes).
  • bus: ti-sysc: flush posted write on enable before reset (git-fixes).
  • can: gsusb: gsusbreceivebulk_callback(): count rx overflow errors also in case of oom (git-fixes).
  • ceph: defer stopping mdsc delayed_work (bsc#1214392).
  • ceph: do not check for quotas on mds stray dirs (bsc#1214238).
  • ceph: never send metrics if disablesendmetrics is set (bsc#1214180).
  • check-for-config-changes: ignore builtinreturnaddressstripspac (bsc#1214380). gcc7 on sle 15 does not support this while later gcc does.
  • cifs: add missing return value check for cifssbtlink (bsc#1193629).
  • cifs: allow dumping keys for directories too (bsc#1193629).
  • cifs: fix mid leak during reconnection after timeout threshold (git-fixes).
  • cifs: if deferred close is disabled then close files immediately (git-fixes).
  • cifs: isnetworkname_deleted should return a bool (bsc#1193629).
  • cifs: update internal module version number for cifs.ko (bsc#1193629).
  • clk: fix slab-out-of-bounds error in devmclkrelease() (git-fixes).
  • clk: fix undefined reference to `clkrateexclusive_{get,put}' (git-fixes).
  • clk: imx8mp: fix sai4 clock (git-fixes).
  • clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op (git-fixes).
  • clk: imx: pll14xx: dynamically configure pll for 393216000/361267200hz (git-fixes).
  • clk: qcom: camcc-sc7180: fix async resume during probe (git-fixes).
  • clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock (git-fixes).
  • clk: qcom: gcc-sc7180: fix up gccsdcc2appsclksrc (git-fixes).
  • clk: qcom: gcc-sm8250: fix gccsdcc2appsclksrc (git-fixes).
  • clk: sunxi-ng: modify mismatched function name (git-fixes).
  • clocksource/drivers/armarchtimer: do not use timer namespace for timer_shutdown() function (bsc#1213970).
  • clocksource/drivers/sp804: do not use timer namespace for timer_shutdown() function (bsc#1213970).
  • confignvmeverbose_errors=y gone with a82baa8083b
  • configprintksafelogbuf_shift=13 gone with 7e152d55123
  • cpu/smt: allow enabling partial smt states via sysfs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpu/smt: create topologysmtthread_allowed() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpu/smt: move smt prototypes into cpu_smt.h (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpu/smt: move smt/control simple exit cases earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpu/smt: remove topologysmtsupported() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpu/smt: store the current/max number of threads (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • cpufreq: fix the race condition while updating the transition_task of policy (git-fixes).
  • cpufreq: intelpstate: adjust balanceperformance epp for sapphire rapids (bsc#1214659).
  • cpufreq: intel_pstate: enable hwp io boost for all servers (bsc#1208949 jsc#ped-6003 jsc#ped-6004).
  • cpufreq: intel_pstate: fix scaling for hybrid-capable systems with disabled e-cores (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929).
  • cpufreq: intel_pstate: hybrid: rework hwp calibration (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929).
  • cpufreq: intel_pstate: hybrid: use known scaling factor for p-cores (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929).
  • cpufreq: intel_pstate: read all msrs on the target cpu (bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929).
  • created new preempt kernel flavor configs are cloned from the respective $arch/default configs. all changed configs appart from configpreempt->y are a result of dependencies, namely many lock/unlock primitives are no longer inlined in the preempt kernel. treercu has been also changed to preempt_rcu which is the default implementation for preempt kernel.
  • crypto: caam - fix unchecked return value error (git-fixes).
  • crypto: stm32 - properly handle pmruntimeget failing (git-fixes).
  • dma-buf/sw_sync: avoid recursive lock during fence signal (git-fixes).
  • dma-buf/sync_file: fix docs syntax (git-fixes).
  • dmaengine: idxd: modify the dependence of attribute pasid_enabled (git-fixes).
  • dmaengine: mcf-edma: fix a potential un-allocated memory access (git-fixes).
  • dmaengine: pl330: return dma_paused when transaction is paused (git-fixes).
  • dmaengine: stedma40: add missing irq check in d40probe (git-fixes).
  • docs/process/howto: replace c89 with c11 (bsc#1214756).
  • docs: kernel-parameters: refer to the correct bitmap function (git-fixes).
  • docs: networking: replace skbhwtstamptx with skbtstamptx (git-fixes).
  • docs: printk-formats: fix hex printing of signed values (git-fixes).
  • documentation: devices.txt: fix minors for ttycpm* (git-fixes).
  • documentation: devices.txt: remove ttyioc* (git-fixes).
  • documentation: devices.txt: remove ttysioc* (git-fixes).
  • driver core: test_async: fix an error code (git-fixes).
  • drivers: clk: keystone: fix parameter judgment in ofpllclkinit() (git-fixes).
  • drivers: usb: smsusb: fix error handling code in smsusbinitdevice (git-fixes).
  • drm/amd/display: check attr flag before set cursor degamma on dcn3+ (git-fixes).
  • drm/amd/display: check tg is non-null before checking if enabled (git-fixes).
  • drm/amd/display: do not wait for mpc idle if tg is disabled (git-fixes).
  • drm/amd/display: fix access hdcp_workqueue assert (git-fixes).
  • drm/amd/display: phase3 mst hdcp for multiple displays (git-fixes).
  • drm/amd/display: save restore hdcp state when display is unplugged from mst hub (git-fixes).
  • drm/amd/pm: fix variable dereferenced issue in amdgpudeviceattr_create() (git-fixes).
  • drm/amd: flush any delayed gfxoff on suspend entry (git-fixes).
  • drm/amdgpu: avoid integer overflow warning in amdgpudeviceresizefbbar() (git-fixes).
  • drm/amdgpu: fix potential fence use-after-free v2 (git-fixes).
  • drm/amdgpu: install stub fence into potential unused fence pointers (git-fixes).
  • drm/amdgpu: use rmw accessors for changing lnkctl (git-fixes).
  • drm/armada: fix off-by-one error in armadaoverlayget_property() (git-fixes).
  • drm/ast: fix dram init on ast2200 (git-fixes).
  • drm/atomic-helper: update reference to drmcrtcforcedisableall() (git-fixes).
  • drm/bridge: anx7625: drop device lock before drmhelperhpdirqevent() (git-fixes).
  • drm/bridge: fix -wunused-const-variable= warning (git-fixes).
  • drm/bridge: tc358764: fix debug print parameter order (git-fixes).
  • drm/etnaviv: fix dumping of active mmu context (git-fixes).
  • drm/mediatek: fix dereference before null check (git-fixes).
  • drm/mediatek: fix potential memory leak if vmap() fail (git-fixes).
  • drm/msm/a2xx: call adrenogpuinit() earlier (git-fixes).
  • drm/msm/mdp5: do not leak some plane state (git-fixes).
  • drm/msm: update dev core dump to not print backwards (git-fixes).
  • drm/nouveau/disp: revert a null check inside nouveauconnectorget_modes (git-fixes).
  • drm/nouveau/gr: enable memory loads on helper invocation on all channels (git-fixes).
  • drm/panel: simple: add missing connector type and pixel format for auo t215hvn01 (git-fixes).
  • drm/panel: simple: fix auo g121ean01 panel timings according to the docs (git-fixes).
  • drm/qxl: fix uaf on handle creation (git-fixes).
  • drm/radeon: use rmw accessors for changing lnkctl (git-fixes).
  • drm/rockchip: do not spam logs in atomic check (git-fixes).
  • drm/shmem-helper: reset vma->vmops before calling dmabuf_mmap() (git-fixes).
  • drm/tegra: dpaux: fix incorrect return value of platformgetirq (git-fixes).
  • drm/ttm: check null pointer before accessing when swapping (git-fixes).
  • drm/ttm: never consider pinned bos for eviction&swap (git-fixes).
  • drm/vmwgfx: fix shader stage validation (git-fixes).
  • drm: adv7511: fix low refresh rate register for adv7533/5 (git-fixes).
  • drm: xlnx: zynqmpdpsub: add missing check for dmaset_mask (git-fixes).
  • drop cfg80211 lock fix patches that caused a regression (bsc#1213757)
  • drop rtsx patch that caused a regression (bsc#1214397,bsc#1214428)
  • dt-bindings: clock: xlnx,versal-clk: drop select:false (git-fixes).
  • dt-bindings: clocks: imx8mp: make sai4 a dummy clock (git-fixes).
  • dt-bindings: crypto: ti,sa2ul: make power-domains conditional (git-fixes).
  • e1000: fix typos in comments (jsc#ped-5738).
  • e1000: remove unnecessary use of kmap_atomic() (jsc#ped-5738).
  • e1000: switch to napibuildskb() (jsc#ped-5738).
  • e1000: switch to napiconsumeskb() (jsc#ped-5738).
  • enable analog devices industrial ethernet phy driver (jsc#ped-4759)
  • enable tpm in azure (bsc#1214760)
  • exfat: fix unexpected eof while reading dir (bsc#1214000).
  • exfat: release slock before calling diremit() (bsc#1214000).
  • exfatiterate(): do not open-code fileinode(file) (bsc#1214000).
  • fbdev/ep93xx-fb: do not assign to struct fb_info.dev (git-fixes).
  • fbdev: fix potential oob read in fast_imageblit() (git-fixes).
  • fbdev: fix sys_imageblit() for arbitrary image widths (git-fixes).
  • fbdev: improve performance of sys_imageblit() (git-fixes).
  • fbdev: mmp: fix value check in mmphw_probe() (git-fixes).
  • file: reinstate f_pos locking optimization for regular files (bsc#1213759).
  • firmware: arm_scmi: drop of node reference in the transport channel setup (git-fixes).
  • firmware: cs_dsp: fix new control name check (git-fixes).
  • firmware: meson_sm: fix to avoid potential null pointer dereference (git-fixes).
  • firmware: stratix10-svc: fix an null vs is_err() bug in probe (git-fixes).
  • fs/sysv: null check to prevent null-ptr-deref bug (git-fixes).
  • ftrace: fix possible warning on checking all pages used in ftraceprocesslocs() (git-fixes).
  • gpio: mvebu: fix irq domain leak (git-fixes).
  • gpio: mvebu: make use of devmpwmchipadd (git-fixes).
  • gpio: tps68470: make tps68470gpiooutput() always set the initial value (git-fixes).
  • hid: add quirk for 03f0:464a hp elite presenter mouse (git-fixes).
  • hid: logitech-dj: fix error handling in logidjrecvswitchtodjmode() (git-fixes).
  • hid: logitech-hidpp: add usb and bluetooth ids for the logitech g915 tkl keyboard (git-fixes).
  • hid: multitouch: correct devm device reference for hidinput input_dev name (git-fixes).
  • hid: wacom: remove the battery when the ekr is off (git-fixes).
  • hwmon: (pmbus/bel-pfe) enable pmbusskipstatus_check for pfe1100 (git-fixes).
  • hwmon: (tmp513) fix the channel number in tmp51xisvisible() (git-fixes).
  • hwpoison: offline support: fix spelling in documentation/abi/ (git-fixes).
  • hwrng: iproc-rng200 - implement suspend and resume calls (git-fixes).
  • hwrng: nomadik - keep clock enabled while hwrng is registered (git-fixes).
  • hwrng: pic32 - use devmclkget_enabled (git-fixes).
  • i2c: bcm-iproc: fix bcmiproci2c_isr deadlock issue (git-fixes).
  • i2c: delete error messages for failed memory allocations (git-fixes).
  • i2c: designware: correct length byte validation logic (git-fixes).
  • i2c: designware: handle invalid smbus block data response length value (git-fixes).
  • i2c: hisi: only handle the interrupt of the driver's transfer (git-fixes).
  • i2c: improve size determinations (git-fixes).
  • i2c: nomadik: remove a useless call in the remove function (git-fixes).
  • i2c: nomadik: remove unnecessary goto label (git-fixes).
  • i2c: nomadik: use devmclkget_enabled() (git-fixes).
  • i40e: fix an null vs iserr() bug for debugfscreate_dir() (git-fixes).
  • iavf: fix potential races for fdir filters (git-fixes).
  • ib/hfi1: fix possible panic during hotplug remove (git-fixes)
  • ib/uverbs: fix an potential error pointer dereference (git-fixes)
  • ice: fix crash by keep old cfg when update tcs more than queues (git-fixes).
  • ice: fix max_rate check while configuring tx rate limits (git-fixes).
  • ice: fix memory management in iceethtoolfdir.c (git-fixes).
  • ice: fix rdma vsi removal during queue rebuild (git-fixes).
  • iio: adc: ina2xx: avoid null pointer dereference on of device match (git-fixes).
  • iio: adc: stx104: implement and utilize register structures (git-fixes).
  • iio: adc: stx104: utilize iomap interface (git-fixes).
  • iio: crosec: fix the allocation size for crosec_command (git-fixes).
  • input: exc3000 - properly stop timer on shutdown (git-fixes).
  • intel/e1000:fix repeated words in comments (jsc#ped-5738).
  • intel: remove unused macros (jsc#ped-5738).
  • iommu/amd: add pci segment support for ivrs_ commands (git-fixes).
  • iommu/amd: fix compile warning in init code (git-fixes).
  • iommu/amd: fix ill-formed ivrsioapic, ivrshpet and ivrs_acpihid options (git-fixes).
  • iommu/amd: fix ivrs_acpihid cmdline parsing code (git-fixes).
  • iommu/amd: fix pci device refcount leak in ppr_notifier() (git-fixes).
  • iommu/amd: use full 64-bit value in buildcompletionwait() (git-fixes).
  • iommu/arm-smmu-v3: check return value after calling platformgetresource() (git-fixes).
  • iommu/arm-smmu-v3: fix event handling soft lockup (git-fixes).
  • iommu/arm-smmu-v3: make default domain type of hisilicon ptt device to identity (git-fixes).
  • iommu/arm-smmu: fix possible null-ptr-deref in armsmmudevice_probe() (git-fixes).
  • iommu/dart: initialize dartstreamsenable (git-fixes).
  • iommu/dma: fix incorrect error return on iommu deferred attach (git-fixes).
  • iommu/dma: fix iova map result check bug (git-fixes).
  • iommu/dma: return error code from iommudmamap_sg() (git-fixes).
  • iommu/fslpamu: fix resource leak in fslpamu_probe() (git-fixes).
  • iommu/io-pgtable-arm-v7s: add a quirk to allow pgtable pa up to 35bit (git-fixes).
  • iommu/iova: fix module config properly (git-fixes).
  • iommu/omap: fix buffer overflow in debugfs (git-fixes).
  • iommu/rockchip: fix permission bits in page table entries v2 (git-fixes).
  • iommu/sun50i: consider all fault sources for reset (git-fixes).
  • iommu/sun50i: fix flush size (git-fixes).
  • iommu/sun50i: fix r/w permission check (git-fixes).
  • iommu/sun50i: fix reset release (git-fixes).
  • iommu/sun50i: implement .iotlbsyncmap (git-fixes).
  • iommu/sun50i: remove iommudomainidentity (git-fixes).
  • iommu/vt-d: add rpls to quirk list to skip te disabling (git-fixes).
  • iommu/vt-d: check correct capability for sagaw determination (git-fixes).
  • iommu/vt-d: clean up sidomain in the initdmars() error path (git-fixes).
  • iommu/vt-d: correctly calculate sagaw value of iommu (git-fixes).
  • iommu/vt-d: fix kdump kernels boot failure with scalable mode (git-fixes).
  • iommu/vt-d: fix pci device refcount leak in dmardevscope_init() (git-fixes).
  • iommu/vt-d: fix pci device refcount leak in hasexternalpci() (git-fixes).
  • iommu/vt-d: preset access bit for iova in fl non-leaf paging entries (git-fixes).
  • iommu/vt-d: set sre bit only when hardware has srs cap (git-fixes).
  • ipmi:ssif: add check for kstrdup (git-fixes).
  • ipmi:ssif: fix a memory leak when scanning for an adapter (git-fixes).
  • ipmisi: fix a memleak in trysmi_init() (git-fixes).
  • jffs2: correct logic when creating a hole in jffs2writebegin (git-fixes).
  • kabi/severities: ignore newly added srso mitigation functions
  • kabi: allow extra bugsints (bsc#1213927).
  • kbuild: add -wno-shift-negative-value where -wextra is used (bsc#1214756).
  • kbuild: move to -std=gnu11 (bsc#1214756).
  • kernel-binary: common dependencies cleanup common dependencies are copied to a subpackage, there is no need for copying defines or build dependencies there.
  • kernel-binary: drop code for kerntypes support kerntypes was a suse-specific feature dropped before sle 12.
  • kunit: make kunittesttimeout compatible with comment (git-fixes).
  • kvm: s390: fix sthyi error handling (git-fixes bsc#1214370).
  • leds: fix bugon check for ledcoloridmulti that is always false (git-fixes).
  • leds: multicolor: use rounded division when calculating color components (git-fixes).
  • leds: pwm: fix error code in ledpwmcreate_fwnode() (git-fixes).
  • leds: trigger: tty: do not use ledon/off constants, use ledblinksetoneshot instead (git-fixes).
  • leds: turris-omnia: drop unnecessary mutex locking (git-fixes).
  • lib/testmeminit: allocate pages up to order maxorder (git-fixes).
  • lib/testmeminit: destroy cache in kmemcacheallocbulk() test (git-fixes).
  • libceph: fix potential hang in cephosdcnotify() (bsc#1214393).
  • md/raid0: factor out helper for mapping and submitting a bio (bsc#1213916).
  • md/raid0: fix performance regression for large sequential writes (bsc#1213916).
  • media: ad5820: drop unsupported ad5823 from i2c_ and ofdeviceid tables (git-fixes).
  • media: cx24120: add retval check for cx24120messagesend() (git-fixes).
  • media: dib7000p: fix potential division by zero (git-fixes).
  • media: dvb-usb: m920x: fix a potential memory leak in m920xi2cxfer() (git-fixes).
  • media: go7007: remove redundant if statement (git-fixes).
  • media: i2c: ccs: check rules is non-null (git-fixes).
  • media: i2c: rdacm21: fix uninitialized value (git-fixes).
  • media: i2c: tvp5150: check return value of devm_kasprintf() (git-fixes).
  • media: ov2680: add ov2680fillformat() helper function (git-fixes).
  • media: ov2680: do not take the lock for try_fmt calls (git-fixes).
  • media: ov2680: fix ov2680bayerorder() (git-fixes).
  • media: ov2680: fix ov2680setfmt() which == v4l2subdevformat_try not working (git-fixes).
  • media: ov2680: fix regulators being left enabled on ov2680poweron() errors (git-fixes).
  • media: ov2680: fix vflip / hflip set functions (git-fixes).
  • media: ov2680: remove videov4l2subdev_api ifdef-s (git-fixes).
  • media: ov5640: enable mipi interface in ov5640setpower_mipi() (git-fixes).
  • media: rkvdec: increase max supported height for h.264 (git-fixes).
  • media: v4l2-core: fix a potential resource leak in v4l2fwnodeparse_link() (git-fixes).
  • media: v4l2-mem2mem: add lock to protect parameter num_rdy (git-fixes).
  • media: venus: hfivenus: only consider sysidle_indicator on v1 (git-fixes).
  • media: venus: hfivenus: write to vidcctrl_init after unmasking interrupts (git-fixes).
  • misc: rtsx: judge aspm mode to set petxcfg reg (git-fixes).
  • mkspec: allow unsupported kmps (bsc#1214386)
  • mlxsw: pci: add shutdown method in pci driver (git-fixes).
  • mmc: block: fix inflight[issuetype] value error (git-fixes).
  • mmc: moxart: read scr register without changing byte order (git-fixes).
  • mmc: wbsd: fix double mmcfreehost() in wbsd_init() (git-fixes).
  • module: avoid allocation if module is already present and ready (bsc#1213921).
  • module: extract patient module check into helper (bsc#1213921).
  • module: move checkmodinfo() early to earlymod_check() (bsc#1213921).
  • module: move early sanity checks into a helper (bsc#1213921).
  • move upstreamed powerpc patches into sorted section
  • mtd: rawnand: brcmnand: fix crash during the panic_write (git-fixes).
  • mtd: rawnand: brcmnand: fix mtd oobsize (git-fixes).
  • mtd: rawnand: brcmnand: fix potential false time out warning (git-fixes).
  • mtd: rawnand: brcmnand: fix potential out-of-bounds access in oob write (git-fixes).
  • mtd: rawnand: fslupm: fix an off-by one test in funexec_op() (git-fixes).
  • mtd: rawnand: fsmc: handle clk prepare error in fsmcnandresume() (git-fixes).
  • mtd: rawnand: omap_elm: fix incorrect type in assignment (git-fixes).
  • mtd: rawnand: rockchip: align hwecc vs. raw page helper layouts (git-fixes).
  • mtd: rawnand: rockchip: fix oobfree offset and description (git-fixes).
  • mtd: spi-nor: check bus width while setting qe bit (git-fixes).
  • mtd: spinand: toshiba: fix eccgetstatus (git-fixes).
  • ntty: rename tail to oldtail in nttyread() (git-fixes).
  • net: hns3: fix wrong bw weight of disabled tc issue (git-fixes).
  • net: ieee802154: at86rf230: stop leaking skb's (git-fixes).
  • net: mana: fix mana vf unload when hardware is unresponsive (git-fixes).
  • net: phy: at803x: remove set/get wol callbacks for ar8032 (git-fixes).
  • net: phy: broadcom: stub c45 read/write for 54810 (git-fixes).
  • net: phy: fix irq-based wake-on-lan over hibernate / power off (git-fixes).
  • net: usb: lan78xx: reorder cleanup operations to avoid uaf bugs (git-fixes).
  • net: usbnet: fix warning in usbnetstartxmit/usbsubmiturb (git-fixes).
  • netfs: fix lockdep warning from taking sbwriters whilst holding mmaplock (bsc#1214742).
  • netfs: fix missing xas_retry() calls in xarray iteration (bsc#1213946).
  • netfs: fix parameter of cleanup() (bsc#1214743).
  • nfsd: remove incorrect check in nfsd4validatestateid (git-fixes).
  • nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput (git-fixes).
  • nilfs2: fix warning in markbufferdirty due to discarded buffer reuse (git-fixes).
  • nvme-rdma: fix potential unbalanced freeze & unfreeze (bsc#1208902).
  • nvme-tcp: fix potential unbalanced freeze & unfreeze (bsc#1208902).
  • objtool/x86: fix srso mess (git-fixes).
  • objtool/x86: fixup frame-pointer vs rethunk (git-fixes).
  • objtool: union instruction::{calldest,jumptable} (git-fixes).
  • old-flavors: drop 2.6 kernels. 2.6 based kernels are eol, upgrading from them is no longer suported.
  • pci/aspm: avoid link retraining race (git-fixes).
  • pci/aspm: factor out pciewaitfor_retrain() (git-fixes).
  • pci/aspm: return 0 or -etimedout from pcieretrainlink() (git-fixes).
  • pci: acpiphp: reassign resources on bridge if necessary (git-fixes).
  • pci: acpiphp: use pciassignunassignedbridgeresources() only for non-root bus (git-fixes).
  • pci: mark nvidia t4 gpus to avoid bus reset (git-fixes).
  • pci: meson: remove cast between incompatible function type (git-fixes).
  • pci: microchip: correct the ded and sec interrupt bit offsets (git-fixes).
  • pci: microchip: remove cast between incompatible function type (git-fixes).
  • pci: pciehp: use rmw accessors for changing lnkctl (git-fixes).
  • pci: rockchip: remove writes to unused registers (git-fixes).
  • pci: s390: fix use-after-free of pci resources with per-function hotplug (git-fixes).
  • pci: tegra194: fix possible array out of bounds access (git-fixes).
  • pcmcia: rsrcnonstatic: fix memory leak in nonstaticreleaseresourcedb() (git-fixes).
  • phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write (git-fixes).
  • phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate (git-fixes).
  • phy/rockchip: inno-hdmi: use correct vcodiv5 macro on rk3328 (git-fixes).
  • phy: qcom-snps-femto-v2: keep cfgahbclk enabled during runtime suspend (git-fixes).
  • phy: qcom-snps-femto-v2: properly enable ref clock (git-fixes).
  • phy: qcom-snps: correct struct qcomsnpshsphy kerneldoc (git-fixes).
  • phy: qcom-snps: use deverrprobe() to simplify code (git-fixes).
  • pinctrl: cherryview: fix addressspacehandler() argument (git-fixes).
  • pinctrl: mcp23s08: check return value of devm_kasprintf() (git-fixes).
  • pinctrl: renesas: rza2: add lock around pinctrlgeneric{{add,remove}group,{add,remove}_function} (git-fixes).
  • platform/x86: dell-sysman: fix reference leak (git-fixes).
  • pm / devfreq: fix leak in devfreqdevrelease() (git-fixes).
  • powerpc/64e: fix kexec build error (bsc#1212091 ltc#199106).
  • powerpc/iommu: do not set failed sg dmaaddress to dmamapping_error (bsc#1212091 ltc#199106).
  • powerpc/iommu: fix iommutablein_use for a small default dma window case (bsc#1212091 ltc#199106).
  • powerpc/iommu: incorrect ddw table is referenced for sr-iov device (bsc#1212091 ltc#199106).
  • powerpc/iommu: return error code from .map_sg() ops (bsc#1212091 ltc#199106).
  • powerpc/iommu: tces are incorrectly manipulated with dlpar add/remove of memory (bsc#1212091 ltc#199106).
  • powerpc/kernel/iommu: add new iommutablein_use() helper (bsc#1212091 ltc#199106).
  • powerpc/kexec: fix build failure from uninitialised variable (bsc#1212091 ltc#199106).
  • powerpc/mm/altmap: fix altmap boundary check (bsc#1120059 git-fixes).
  • powerpc/pseries/ddw: do not try direct mapping with persistent memory and one window (bsc#1212091 ltc#199106).
  • powerpc/pseries/ddw: simplify enable_ddw() (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: add ddwlistnew_entry() helper (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: add ddwpropertycreate() and refactor enable_ddw() (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: add iommupseriesalloc_table() helper (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: add ofnodeput() before break (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: allow ddw windows starting at 0x00 (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: check if the default window in use before removing it (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: create huge dma window if no mmio32 is present (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: find existing ddw with given property name (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: make use of ddw for indirect mapping (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: print ibm,query-pe-dma-windows parameters (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: rename 'direct window' to 'dma window' (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: reorganize iommutablesetparms*() with new helper (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: replace hard-coded page shift (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: update removedmawindow() to accept property name (bsc#1212091 ltc#199106).
  • powerpc/pseries/iommu: use correct vfree for it_map (bsc#1212091 ltc#199106).
  • powerpc/pseries: add __init attribute to eligible functions (bsc#1212091 ltc#199106).
  • powerpc/pseries: honour current smt state when dlpar onlining cpus (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • powerpc/pseries: initialise cpu hotplug callbacks earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
  • powerpc/rtas: block error injection when locked down (bsc#1023051).
  • powerpc/rtas: enture rtas_call is called with mmu enabled (bsc#1023051).
  • powerpc/rtas_flash: allow user copy to flash block cache objects (bsc#1194869).
  • powerpc/security: fix speculationstorebypass reporting on power10 (bsc#1188885 ltc#193722 git-fixes).
  • powerpc: add hotplug_smt support (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). update config files.
  • powerpc: fix typos in comments (bsc#1212091 ltc#199106).
  • powerpc: move dma64_propname define to a header (bsc#1214297 ltc#197503).
  • pseries/iommu/ddw: fix kdump to work in absence of ibm,dma-window (bsc#1214297 ltc#197503).
  • pstore/ram: check start of empty przs during init (git-fixes).
  • pwm: add a stub for devmpwmchipadd() (git-fixes).
  • pwm: meson: fix handling of period/duty if greater than uint_max (git-fixes).
  • pwm: meson: simplify duplicated per-channel tracking (git-fixes).
  • qed: fix scheduling in a tasklet while getting stats (git-fixes).
  • rdma/bnxt_re: fix error handling in probe failure path (git-fixes)
  • rdma/bnxtre: fix maxqp count for virtual functions (git-fixes)
  • rdma/efa: fix wrong resources deallocation order (git-fixes)
  • rdma/hns: fix cq and qp cache affinity (git-fixes)
  • rdma/hns: fix incorrect post-send with direct wqe of wr-list (git-fixes)
  • rdma/hns: fix port active speed (git-fixes)
  • rdma/irdma: prevent zero-length stag registration (git-fixes)
  • rdma/irdma: replace one-element array with flexible-array member (git-fixes)
  • rdma/mlx5: return the firmware result upon destroying qp/rq (git-fixes)
  • rdma/qedr: remove a duplicate assignment in irdmaqueryah() (git-fixes)
  • rdma/siw: balance the reference of cep->kref in the error path (git-fixes)
  • rdma/siw: correct wrong debug message (git-fixes)
  • rdma/umem: set iova in odp flow (git-fixes)
  • readme.branch: add miroslav franc as a sle15-sp4 co-maintainer.
  • regmap: rbtree: use alloc_flags for memory allocations (git-fixes).
  • revert 'ib/isert: fix incorrect release of isert connection' (git-fixes)
  • revert 'tracing: add '(fault)' name injection to kernel probes' (git-fixes).
  • ring-buffer: do not swap cpu_buffer during resize process (git-fixes).
  • ring-buffer: fix deadloop issue on reading trace_pipe (git-fixes).
  • ring-buffer: fix wrong stat of cpu_buffer->read (git-fixes).
  • rpmsg: glink: add check for kstrdup (git-fixes).
  • s390/purgatory: disable branch profiling (git-fixes bsc#1214372).
  • sched/fair: fix inaccurate tally of ttwumoveaffine (git fixes).
  • sched/fair: use recentusedcpu to test p->cpus_ptr (git fixes).
  • sched/psi: use kernfs polling functions for psi trigger polling (bsc#1209799).
  • scsi: bsg: increase number of devices (bsc#1210048).
  • scsi: core: do not wait for quiesce in scsideviceblock() (bsc#1209284).
  • scsi: core: do not wait for quiesce in scsistopqueue() (bsc#1209284).
  • scsi: core: improve warning message in scsideviceblock() (bsc#1209284).
  • scsi: core: merge scsiinternaldeviceblock() and deviceblock() (bsc#1209284).
  • scsi: rdma/srp: fix residual handling (git-fixes)
  • scsi: sg: increase number of devices (bsc#1210048).
  • scsi: storvsc: always set noreportopcodes (git-fixes).
  • scsi: storvsc: fix handling of virtual fibre channel timeouts (git-fixes).
  • scsi: storvsc: handle srb status value 0x30 (git-fixes).
  • scsi: storvsc: limit max_sectors for virtual fibre channel devices (git-fixes).
  • scsi: zfcp: defer fc_rport blocking until after adisc response (git-fixes bsc#1214371).
  • selftests/futex: order calls to futexlockpi (git-fixes).
  • selftests/harness: actually report skip for signal tests (git-fixes).
  • selftests/resctrl: close perf value read fd on errors (git-fixes).
  • selftests/resctrl: do not leak buffer in fill_cache() (git-fixes).
  • selftests/resctrl: unmount resctrl fs if child fails to run benchmark (git-fixes).
  • selftests/rseq: check if libc rseq support is registered (git-fixes).
  • selftests: forwarding: add a helper to skip test when using veth pairs (git-fixes).
  • selftests: forwarding: ethtool: skip when using veth pairs (git-fixes).
  • selftests: forwarding: ethtoolextendedstate: skip when using veth pairs (git-fixes).
  • selftests: forwarding: skip test when no interfaces are specified (git-fixes).
  • selftests: forwarding: switch off timeout (git-fixes).
  • selftests: forwarding: tc_actions: cleanup temporary files when test is aborted (git-fixes).
  • selftests: forwarding: tc_actions: use ncat instead of nc (git-fixes).
  • selftests: forwarding: tc_flower: relax success criterion (git-fixes).
  • selftests: mirrorgrechanges: tighten up the ttl test match (git-fixes).
  • serial: sc16is7xx: fix broken port 0 uart init (git-fixes).
  • serial: sc16is7xx: fix bug when first setting gpio direction (git-fixes).
  • serial: sprd: assign sprd_port after initialized to avoid wrong access (git-fixes).
  • serial: sprd: fix dma buffer leak issue (git-fixes).
  • serial: tegra: handle clk prepare error in tegrauarthw_init() (git-fixes).
  • sfc: fix crash when reading stats while nic is resetting (git-fixes).
  • smb3: do not send lease break acknowledgment if all file handles have been closed (git-fixes).
  • smb3: do not set ntlmssp_version flag for negotiate not auth request (bsc#1193629).
  • smb: client: fix -wstringop-overflow issues (bsc#1193629).
  • smb: client: fix dfs link mount against w2k8 (bsc#1212142).
  • smb: client: fix null auth (git-fixes).
  • soc: aspeed: socinfo: add kfree for kstrdup (git-fixes).
  • soundwire: bus: pmruntimerequest_resume on peripheral attachment (git-fixes).
  • soundwire: fix enumeration completion (git-fixes).
  • spi: tegra20-sflash: fix to check return value of platformgetirq() in tegrasflashprobe() (git-fixes).
  • supported.conf: fix typos for -!optional markers
  • target: compare and write backend driver sense handling (bsc#1177719 bsc#1213026).
  • targetcorerbd: fix leak and reduce kmalloc calls (bsc#1212873).
  • targetcorerbd: fix rbdimgrequest.snap_id assignment (bsc#1212857).
  • targetcorerbd: remove snapshot existence validation code (bsc#1212857).
  • thunderbolt: read retimer nvm authentication status prior tbretimersetinboundsbtx() (git-fixes).
  • timers: add shutdown mechanism to the internal functions (bsc#1213970).
  • timers: provide timershutdownsync (bsc#1213970).
  • timers: rename deltimer() to timerdelete() (bsc#1213970).
  • timers: rename deltimersync() to timerdeletesync() (bsc#1213970).
  • timers: replace bug_on()s (bsc#1213970).
  • timers: silently ignore timers with a null function (bsc#1213970).
  • timers: split [tryto]deltimersync to prepare for shutdown mode (bsc#1213970).
  • timers: update kernel-doc for various functions (bsc#1213970).
  • timers: use deltimersync() even on up (bsc#1213970).
  • tracing/histograms: add histograms to hist_vars if they have referenced variables (git-fixes).
  • tracing/histograms: return an error if we fail to add histogram to hist_vars list (git-fixes).
  • tracing/probes: fix not to count error code to total length (git-fixes).
  • tracing/probes: fix to avoid double count of the string length on the array (git-fixes).
  • tracing/probes: fix to record 0-length dataloc in fetchstore_string*() if fails (git-fixes).
  • tracing/probes: fix to update dynamic data counter if fetcharg uses it (git-fixes).
  • tracing: fix cpu buffers unavailable due to 'record_disabled' missed (git-fixes).
  • tracing: fix memleak due to race between current_tracer and trace (git-fixes).
  • tracing: fix memory leak of iter->temp when reading trace_pipe (git-fixes).
  • tracing: fix null pointer dereference in tracingerrlog_open() (git-fixes).
  • tracing: fix warning in tracebufferedevent_disable() (git-fixes).
  • tty: fix hang on tty device with no_room set (git-fixes).
  • tty: ngsm: fix the uaf caused by race condition in gsmcleanup_mux (git-fixes).
  • tty: serial: fsl_lpuart: add i.mxrt1050 support (git-fixes).
  • tty: serial: fsl_lpuart: clear the error flags by writing 1 for lpuart32 platforms (git-fixes).
  • tty: serial: fsllpuart: make rxwatermark configurable for different platforms (git-fixes).
  • tty: serial: fsl_lpuart: reduce rx watermark to 0 on ls1028a (git-fixes).
  • ubifs: fix memleak when insertoldidx() failed (git-fixes).
  • update patches.suse/cpufreq-intelpstate-fix-cpu-pstate.turbofreq-initi (git-fixes bsc#1212526 bsc#1214368 jsc#ped-4927 jsc#ped-4929).
  • usb-storage: alauda: fix uninit-value in alaudacheckmedia() (git-fixes).
  • usb: chipidea: imx: add missing usb phy dpdm wakeup setting (git-fixes).
  • usb: chipidea: imx: do not request qos for imx8ulp (git-fixes).
  • usb: chipidea: imx: improve logic if samsung,picophy-* parameter is 0 (git-fixes).
  • usb: common: usb-conn-gpio: prevent bailing out if initial role is none (git-fixes).
  • usb: dwc3: fix typos in gadget.c (git-fixes).
  • usb: dwc3: meson-g12a: do post init to fix broken usb after resumption (git-fixes).
  • usb: dwc3: properly handle processing of pending events (git-fixes).
  • usb: gadget: fmassstorage: fix unused variable warning (git-fixes).
  • usb: gadget: fix the memory leak in raw_gadget driver (git-fixes).
  • usb: gadget: userial: avoid spinlock recursion in _gsconsolepush (git-fixes).
  • usb: ohci-at91: fix the unhandle interrupt when resume (git-fixes).
  • usb: phy: mxs: fix getting wrong state with mxsphyisotghost() (git-fixes).
  • usb: quirks: add quirk for focusrite scarlett (git-fixes).
  • usb: serial: option: add quectel ec200a module support (git-fixes).
  • usb: serial: option: support quectel em060k_128 (git-fixes).
  • usb: serial: simple: add kaufmann rks+can vcp (git-fixes).
  • usb: serial: simple: sort driver entries (git-fixes).
  • usb: typec: altmodes/displayport: signal hpd when configuring pin assignment (git-fixes).
  • usb: typec: tcpm: fix response to vsafe0v event (git-fixes).
  • usb: typec: tcpm: set initial svdm version based on pd revision (git-fixes).
  • usb: zaurus: add id for a-300/b-500/c-700 (git-fixes).
  • watchdog: sp5100_tco: support hygon fch/sch (server controller hub) (git-fixes).
  • wifi: ath10k: use rmw accessors for changing lnkctl (git-fixes).
  • wifi: ath11k: use rmw accessors for changing lnkctl (git-fixes).
  • wifi: ath9k: fix races between ath9kwmicmd and ath9kwmictrl_rx (git-fixes).
  • wifi: ath9k: protect wmi command response buffer replacement with a lock (git-fixes).
  • wifi: ath9k: use iserr() with debugfscreate_dir() (git-fixes).
  • wifi: cfg80211: fix return value in scan logic (git-fixes).
  • wifi: cfg80211: fix sband iftype data lookup for ap_vlan (git-fixes).
  • wifi: mt76: mt7615: do not advertise 5 ghz on first phy of mt7615d (dbdc) (git-fixes).
  • wifi: mt76: mt7915: fix power-limits while chan_switch (git-fixes).
  • wifi: mt76: mt7921: do not support one stream on secondary antenna only (git-fixes).
  • wifi: mt76: testmode: add nlapolicy for mt76tmattrtx_length (git-fixes).
  • wifi: mwifiex: avoid possible null skb pointer dereference (git-fixes).
  • wifi: mwifiex: fix error recovery in pcie buffer descriptor management (git-fixes).
  • wifi: mwifiex: fix memory leak in mwifiexhistogramread() (git-fixes).
  • wifi: mwifiex: fix missed return in oob checks failed path (git-fixes).
  • wifi: mwifiex: fix oob and integer underflow when rx packets (git-fixes).
  • wifi: nl80211/cfg80211: add forgotten nla_policy for bss color attribute (git-fixes).
  • wifi: radiotap: fix kernel-doc notation warnings (git-fixes).
  • wifi: rtw89: debug: fix error handling in rtw89debugprivbtcmanual_set() (git-fixes).
  • x86/alternative: make custom return thunk unconditional (git-fixes).
  • x86/cpu/amd: disable xsaves on amd family 0x17 (git-fixes).
  • x86/cpu/kvm: provide untrainretvm (git-fixes).
  • x86/cpu: clean up srso return thunk mess (git-fixes).
  • x86/cpu: cleanup the untrain mess (git-fixes).
  • x86/cpu: fix _x86return_thunk symbol type (git-fixes).
  • x86/cpu: fix up srsosaferet() and _x86return_thunk() (git-fixes).
  • x86/cpu: rename original retbleed methods (git-fixes).
  • x86/cpu: rename srso(.*)alias to srsoalias\1 (git-fixes).
  • x86/mce: make sure logged mces are processed after sysfs update (git-fixes).
  • x86/retpoline,kprobes: fix position of thunk sections with configltoclang (git-fixes).
  • x86/retpoline,kprobes: skip optprobe check for indirect jumps with retpolines and ibt (git-fixes).
  • x86/retpoline: do not clobber rflags during srsosaferet() (git-fixes).
  • x86/speculation: add cpushowgds() prototype (git-fixes).
  • x86/speculation: mark all skylake cpus as vulnerable to gds (git-fixes).
  • x86/srso: correct the mitigation status when smt is disabled (git-fixes).
  • x86/srso: disable the mitigation on unaffected configurations (git-fixes).
  • x86/srso: explain the untraining sequences a bit more (git-fixes).
  • x86/srso: fix build breakage with the llvm linker (git-fixes).
  • x86/srso: fix return thunks in generated code (git-fixes).
  • x86/staticcall: fix _staticcallfixup() (git-fixes).
  • xfs: fix sb write verify for lazysbcount (bsc#1214661).
References

Affected packages

openSUSE:Leap 15.4

kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure-optional": "5.14.21-150400.14.66.1",
            "dlm-kmp-azure": "5.14.21-150400.14.66.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "reiserfs-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure-extra": "5.14.21-150400.14.66.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.66.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}

kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure-optional": "5.14.21-150400.14.66.1",
            "dlm-kmp-azure": "5.14.21-150400.14.66.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "reiserfs-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure-extra": "5.14.21-150400.14.66.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.66.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}

kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure-optional": "5.14.21-150400.14.66.1",
            "dlm-kmp-azure": "5.14.21-150400.14.66.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "reiserfs-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure-extra": "5.14.21-150400.14.66.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.66.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP4

kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}

kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}

kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.66.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure-devel": "5.14.21-150400.14.66.1",
            "kernel-azure": "5.14.21-150400.14.66.1",
            "kernel-devel-azure": "5.14.21-150400.14.66.1",
            "kernel-syms-azure": "5.14.21-150400.14.66.1",
            "kernel-source-azure": "5.14.21-150400.14.66.1"
        }
    ]
}