SUSE-SU-2024:2019-1

Source
https://www.suse.com/support/update/announcement/2024/suse-su-20242019-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:2019-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2024:2019-1
Related
Published
2024-06-13T10:40:58Z
Modified
2024-06-13T10:40:58Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

  • CVE-2024-35924: Limit read size on v1.2 (bsc#1224657).
  • CVE-2024-26921: Preserve kabi for sk_buff (bsc#1223138).
  • CVE-2024-35976: Validate user input for XDP{UMEM|COMPLETION}FILL_RING (bsc#1224575).
  • CVE-2024-36938: Fixed NULL pointer dereference in skpsockskbingressenqueue (bsc#1225761).
  • CVE-2024-35905: Fixed int overflow for stack access size (bsc#1224488).
  • CVE-2023-52795: Fixed use after free in vhostvdpaprobe() (bsc#1225085).
  • CVE-2024-35998: Fixed lock ordering potential deadlock in cifssyncmid_result (bsc#1224549).
  • CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548).
  • CVE-2021-47548: Fixed a possible array out-of=bounds (bsc#1225506)
  • CVE-2024-26828: Fixed underflow in parseserverinterfaces() (bsc#1223084).
  • CVE-2024-26822: Set correct id, uid and cruid for multiuser automounts (bsc#1223011).
  • CVE-2024-35999: Fixed missing lock when picking channel (bsc#1224550).
  • CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect() (bsc#1224766).
  • CVE-2024-35862: Fixed potential UAF in smb2isnetworknamedeleted() (bsc#1224764).
  • CVE-2024-35863: Fixed potential UAF in isvalidoplock_break() (bsc#1224763).
  • CVE-2024-35865: Fixed potential UAF in smb2isvalidoplockbreak() (bsc#1224668).
  • CVE-2024-35864: Fixed potential UAF in smb2isvalidleasebreak() (bsc#1224765).
  • CVE-2024-35867: Fixed potential UAF in cifsstatsproc_show() (bsc#1224664).
  • CVE-2024-35868: Fixed potential UAF in cifsstatsproc_write() (bsc#1224678).
  • CVE-2024-35866: Fixed potential UAF in cifsdumpfull_key() (bsc#1224667).
  • CVE-2024-26928: Fixed potential UAF in cifsdebugfilesprocshow() (bsc#1223532).
  • CVE-2024-35869: Guarantee refcounted children from parent session (bsc#1224679).
  • CVE-2024-35870: Fixed UAF in smb2reconnectserver() (bsc#1224672).
  • CVE-2024-26692: Fixed regression in writes when non-standard maximum write size negotiated (bsc#1222464).
  • CVE-2024-26925: Release mutex after nftgcseq_end from abort path (bsc#1223390).
  • CVE-2023-42755: Check user supplied offsets (bsc#1215702).
  • CVE-2024-35964: Fixed not validating setsockopt user input (bsc#1224581).
  • CVE-2023-52698: Fixed memory leak in netlblcalipsoadd_pass() (CVE-2023-52698 bsc#1224621)
  • CVE-2023-52664: Eliminate double free in error handling logic (bsc#1224747).
  • CVE-2023-52807: Fixed out-of-bounds access may occur when coalesce info is read via debugfs (bsc#1225097).
  • CVE-2024-27431: Fixed Zero-initialise xdprxqinfo struct before running XDP program (bsc#1224718).
  • CVE-2024-35860: struct bpflink and bpflink_ops kABI workaround (bsc#1224531).
  • CVE-2023-52671: Fixed hang/underflow when transitioning to ODM4:1 (bsc#1224729).
  • CVE-2024-35799: Prevent crash when disable stream (bsc#1224740).
  • CVE-2024-35951: Fixed the error path in panfrostmmumapfaultaddr() (bsc#1224701).
  • CVE-2024-27413: Fixed incorrect allocation size (bsc#1224438).
  • CVE-2024-35817: Set gtt bound flag in amdgputtmgart_bind (bsc#1224736).
  • CVE-2024-35877: Fixed VM_PAT handling in COW mappings (bsc#1224525).
  • CVE-2024-35969: Fixed race condition between ipv6getifaddr and ipv6deladdr (bsc#1224580).
  • CVE-2023-52746: Prevent potential spectre v1 gadget in xfrmxlate32attr() (bsc#1225114)
  • CVE-2024-35872: Fixed GUP-fast succeeding on secretmem folios (bsc#1224530).
  • CVE-2024-35852: Fixed memory leak when canceling rehash work (bsc#1224502).
  • CVE-2024-36006: Fixed incorrect list API usage (bsc#1224541).
  • CVE-2024-36007: Fixed warning during rehash (bsc#1224543).
  • CVE-2024-35885: Stop interface during shutdown (bsc#1224519).
  • CVE-2024-35907: Call request_irq() after NAPI initialized (bsc#1224492).
  • CVE-2023-52796: Add ipvlanroutev6_outbound() helper (bsc#1224930).
  • CVE-2024-35939: Fixed leak pages on dmasetdecrypted() failure (bsc#1224535).
  • CVE-2024-35875: Require seeding RNG with RDRAND on CoCo systems (bsc#1224665).
  • CVE-2024-35804: Mark target gfn of emulated atomic instruction as dirty (bsc#1224638).
  • CVE-2024-35791: Flush pages under kvm->lock to fix UAF in svmregisterenc_region() (bsc#1224725).
  • CVE-2024-35904: Fixed dereference of garbage after mount failure (bsc#1224494).
  • CVE-2023-52660: Fiedx IRQ handling due to shared interrupts (bsc#1224443).
  • CVE-2024-35879: kABI workaround for drivers/of/dynamic.c (bsc#1224524).
  • CVE-2024-35943: Fixed a null pointer dereference in omapprmdomain_init (bsc#1224649).
  • CVE-2024-35878: Prevent NULL pointer dereference in vsnprintf() (bsc#1224671).
  • CVE-2023-52860: Fixed null pointer dereference in hisi_hns3 (bsc#1224936).
  • CVE-2024-35959: Fixed mlx5eprivinit() cleanup flow (bsc#1224666).
  • CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636).
  • CVE-2024-35973: Fixed header validation in geneve[6]xmitskb (bsc#1224586).
  • CVE-2024-27417: Fixed potential 'struct net' leak in inet6rtmgetaddr() (bsc#1224721)
  • CVE-2023-52656: Dropped any code related to SCM_RIGHTS (bsc#1224187).
  • CVE-2023-52674: Add clamp() in scarlett2mixerctl_put() (bsc#1224727).
  • CVE-2023-52680: Fixed missing error checks to *ctlget() (bsc#1224608).
  • CVE-2023-52692: Fixed missing error check to scarlett2usbset_config() (bsc#1224628).
  • CVE-2024-35944: Fixed memcpy() run-time warning in dgdispatchas_host() (bsc#1224648).
  • CVE-2024-26742: Fixed disablemanagedinterrupts (git-fixes bsc#1222608).
  • CVE-2024-27398: Fixed use-after-free bugs caused by scosocktimeout (bsc#1224174).
  • CVE-2023-52586: Fixed mutex lock in control vblank irq (bsc#1221081).
  • CVE-2024-27395: Fixed Use-After-Free in ovsctexit (bsc#1224098).
  • CVE-2024-27396: Fixed Use-After-Free in gtp_dellink (bsc#1224096).
  • CVE-2024-26715: Fixed NULL pointer dereference in dwc3gadgetsuspend (bsc#1222561).
  • CVE-2024-26919: Fixed debugfs directory leak (bsc#1223847).
  • CVE-2024-27401: Fixed user_length taken into account when fetching packet contents (bsc#1224181).
  • CVE-2024-26900: Fixed kmemleak of rdev->serial (bsc#1223046).
  • CVE-2024-26775: Fixed potential deadlock at set_capacity (bsc#1222627).
  • CVE-2024-26958: Fixed UAF in direct writes (bsc#1223653).
  • CVE-2024-26643: Fixed mark set as dead when unbinding anonymous set with timeout (bsc#1221829).
  • CVE-2023-52618: Fixed string overflow in block/rnbd-srv (bsc#1221615).
  • CVE-2022-48689: Fixed data-race in lruaddfn (bsc#1223959)
  • CVE-2022-48691: Fixed memory leak in netfilter (bsc#1223961)
  • CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210335).

The following non-security bugs were fixed:

  • 9p: explicitly deny setlease attempts (git-fixes).
  • ACPI: bus: Indicate support for _TFP thru _OSC (git-fixes).
  • ACPI: disable -Wstringop-truncation (git-fixes).
  • ACPI: Fix Generic Initiator Affinity _OSC bit (git-fixes).
  • ACPI: LPSS: Advertise number of chip selects via property (git-fixes).
  • admin-guide/hw-vuln/core-scheduling: fix return type of PRSCHEDCORE_GET (git-fixes).
  • afunix: annote lockless accesses to unixtotinflight & gcin_progress (bsc#1223384).
  • afunix: Do not use atomic ops for unixsk(sk)->inflight (bsc#1223384).
  • afunix: Replace BUGON() with WARNONONCE() (bsc#1223384).
  • ALSA: core: Fix NULL module pointer assignment at card init (git-fixes).
  • ALSA: hda/csdspctl: Use private_free for control cleanup (git-fixes).
  • ALSA: line6: Zero-initialize message buffers (stable-fixes).
  • ARM: 9381/1: kasan: clear stale stack poison (git-fixes).
  • ASoC: Intel: avs: Fix ASRC module initialization (git-fixes).
  • ASoC: Intel: avs: Fix potential integer overflow (git-fixes).
  • ASoC: Intel: avs: ssm4567: Do not ignore route checks (git-fixes).
  • ASoC: Intel: Disable route checks for Skylake boards (git-fixes).
  • ASoC: kirkwood: Fix potential NULL dereference (git-fixes).
  • ASoC: mediatek: mt8192: fix register configuration for tdm (git-fixes).
  • ASoC: meson: axg-fifo: use FIELD helpers (stable-fixes).
  • ASoC: meson: axg-fifo: use threaded irq to check periods (git-fixes).
  • ASoC: tas2552: Add TX path for capturing AUDIO-OUT data (git-fixes).
  • ASoC: tracing: Export SNDSOCDAPMDIROUT to its value (git-fixes).
  • ata: patalegacy: make legacyexit() work again (git-fixes).
  • ata: satagemini: Check clkenable() result (stable-fixes).
  • autofs: use wakeup() instead of wakeup_interruptible(() (bsc#1224166).
  • Bluetooth: Fix use-after-free bugs caused by scosocktimeout (git-fixes).
  • Bluetooth: hcisync: Avoid use-after-free in dbg for hciaddadvmonitor() (git-fixes).
  • Bluetooth: hcisync: Do not double print name in add/remove advmonitor (bsc#1216358).
  • Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout (git-fixes).
  • Bluetooth: msft: fix slab-use-after-free in msftdoclose() (git-fixes).
  • Bluetooth: qca: add missing firmware sanity checks (git-fixes).
  • Bluetooth: qca: Fix error code in qcareadfwbuildinfo() (git-fixes).
  • Bluetooth: qca: fix firmware check error path (git-fixes).
  • Bluetooth: qca: fix info leak when fetching fw build id (git-fixes).
  • Bluetooth: qca: fix NVM configuration parsing (git-fixes).
  • bnxtre: avoid shift undefined behavior in bnxtqpliballocinit_hwq (git-fixes)
  • bpf: decouple prune and jump points (bsc#1225756).
  • bpf: fix precision backtracking instruction iteration (bsc#1225756).
  • bpf: Fix precision tracking for BPFALU | BPFTOBE | BPFEND (git-fixes).
  • bpf: handle ldimm64 properly in check_cfg() (bsc#1225756).
  • bpf: mostly decouple jump history management from isstatevisited() (bsc#1225756).
  • bpf: remove unnecessary prune and jump points (bsc#1225756).
  • btrfs: add error messages to all unrecognized mount options (git-fixes)
  • btrfs: add missing mutexunlock in btrfsrelocatesyschunks() (git-fixes)
  • btrfs: export: handle invalid inode or root reference in btrfsgetparent() (git-fixes)
  • btrfs: extend locking to all space_info members accesses (git-fixes)
  • btrfs: fix btrfssubmitcompressed_write cgroup attribution (git-fixes)
  • btrfs: fix fallocate to use file_modified to update permissions consistently (git-fixes)
  • btrfs: fix information leak in btrfsioctllogicaltoino() (git-fixes)
  • btrfs: fix missing blkdevput() call in btrfsscanonedevice() (git-fixes)
  • btrfs: fix off-by-one chunk length calculation at containspendingextent() (git-fixes)
  • btrfs: fix qgroup reserve overflow the qgroup limit (git-fixes)
  • btrfs: fix silent failure when deleting root reference (git-fixes)
  • btrfs: fix use-after-free after failure to create a snapshot (git-fixes)
  • btrfs: free exchange changeset on failures (git-fixes)
  • btrfs: handle chunk tree lookup error in btrfsrelocatesys_chunks() (git-fixes)
  • btrfs: make searchcsumtree return 0 if we get -EFBIG (git-fixes)
  • btrfs: prevent copying too big compressed lzo segment (git-fixes)
  • btrfs: remove BUGON(!eie) in findparent_nodes (git-fixes)
  • btrfs: remove BUGON() in findparent_nodes() (git-fixes)
  • btrfs: repair super block num_devices automatically (git-fixes)
  • btrfs: replace the BUGON in btrfsdelrootref with proper error handling (git-fixes)
  • btrfs: send: ensure send_fd is writable (git-fixes)
  • btrfs: send: handle path ref underflow in header iterateinoderef() (git-fixes)
  • btrfs: send: in case of IO error log it (git-fixes)
  • btrfs: send: return EOPNOTSUPP on unknown flags (git-fixes)
  • btrfs: tree-checker: check itemsize for devitem (git-fixes)
  • btrfs: tree-checker: check itemsize for inodeitem (git-fixes)
  • cifs: account for primary channel in the interface list (bsc#1224020).
  • cifs: cifschanisifaceactive should be called with chan_lock held (bsc#1224020).
  • cifs: distribute channels across interfaces based on speed (bsc#1224020).
  • cifs: do not pass cifs_sb when trying to add channels (bsc#1224020).
  • cifs: failure to add channel on iface should bump up weight (git-fixes, bsc#1224020).
  • cifs: fix charset issue in reconnection (bsc#1224020).
  • cifs: fix leak of iface for primary channel (git-fixes, bsc#1224020).
  • cifs: handle cases where a channel is closed (bsc#1224020).
  • cifs: handle cases where multiple sessions share connection (bsc#1224020).
  • cifs: reconnect work should have reference on server struct (bsc#1224020).
  • clk: Do not hold preparelock when calling krefput() (stable-fixes).
  • clk: qcom: mmcc-msm8998: fix venus clock issue (git-fixes).
  • counter: stm32-lptimer-cnt: Provide defines for clock polarities (git-fixes).
  • counter: stm32-timer-cnt: Provide defines for slave mode selection (git-fixes).
  • cppc_cpufreq: Fix possible null pointer dereference (git-fixes).
  • cpu/hotplug: Remove the 'cpu' member of cpuhpcpustate (git-fixes).
  • cpumask: Add foreachcpu_from() (bsc#1225053).
  • crypto: bcm - Fix pointer arithmetic (git-fixes).
  • crypto: ccp - drop platform ifdef checks (git-fixes).
  • crypto: ecdsa - Fix module auto-load on add-key (git-fixes).
  • crypto: x86/nh-avx2 - add missing vzeroupper (git-fixes).
  • crypto: x86/sha256-avx2 - add missing vzeroupper (git-fixes).
  • crypto: x86/sha512-avx2 - add missing vzeroupper (git-fixes).
  • dm-multipath: dont't attempt SG_IO on non-SCSI-disks (bsc#1223575).
  • dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11 users (git-fixes).
  • dmaengine: axi-dmac: fix possible race in remove() (git-fixes).
  • dmaengine: idma64: Add check for dmasetmaxsegsize (git-fixes).
  • docs: kernel_include.py: Cope with docutils 0.21 (stable-fixes).
  • drivers/nvme: Add quirks for device 126f:2262 (git-fixes).
  • drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference (git-fixes).
  • drm: vc4: Fix possible null pointer dereference (git-fixes).
  • drm/amd: Flush GFXOFF requests in prepare stage (git-fixes).
  • drm/amd/display: Atom Integrated System Info v2_2 for DCN35 (stable-fixes).
  • drm/amd/display: Fix division by zero in setupdscconfig (stable-fixes).
  • drm/amd/display: Fix potential index out of bounds in color transformation function (git-fixes).
  • drm/amd/display: Handle Y carry-over in VCP X.Y calculation (stable-fixes).
  • drm/amdgpu: Refine IB schedule error logging (stable-fixes).
  • drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (git-fixes).
  • drm/arm/malidp: fix a possible null pointer dereference (git-fixes).
  • drm/bridge: anx7625: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: dpc3433: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: icn6211: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: lt8912b: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: lt9611: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: tc358775: Do not log an error when DSI host can't be found (git-fixes).
  • drm/bridge: tc358775: fix support for jeida-18 and jeida-24 (git-fixes).
  • drm/connector: Add \n to message about demoting connector force-probes (git-fixes).
  • drm/i915/bios: Fix parsing backlight BDB data (git-fixes).
  • drm/lcdif: Do not disable clocks on already suspended hardware (git-fixes).
  • drm/mediatek: Add 0 size check to mtkdrmgem_obj (git-fixes).
  • drm/meson: dw-hdmi: add bandgap setting for g12 (git-fixes).
  • drm/meson: dw-hdmi: power up phy on device init (git-fixes).
  • drm/meson: vclk: fix calculation of 59.94 fractional rates (git-fixes).
  • drm/msm/dp: allow voltage swing / pre emphasis of 3 (git-fixes).
  • drm/msm/dpu: Always flush the slave INTF on the CTL (git-fixes).
  • drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode pclk (git-fixes).
  • drm/nouveau/dp: Do not probe eDP ports twice harder (stable-fixes).
  • drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD does not assert (git-fixes).
  • drm/panel: novatek-nt35950: Do not log an error when DSI host can't be found (git-fixes).
  • drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector (git-fixes).
  • dt-bindings: clock: qcom: Add missing UFS QREF clocks (git-fixes)
  • dyndbg: fix old BUG_ON in >control parser (stable-fixes).
  • efi: libstub: only free priv.runtime_map when allocated (git-fixes).
  • extcon: max8997: select IRQ_DOMAIN instead of depending on it (git-fixes).
  • failfunction: fix wrong use of feiattr_remove().
  • fbdev: savage: Handle err return when savagefbcheckvar failed (git-fixes).
  • fbdev: shmobile: fix snprintf truncation (git-fixes).
  • fbdev: sisfb: hide unused variables (git-fixes).
  • firewire: ohci: mask bus reset interrupts between ISR and bottom half (stable-fixes).
  • firmware: dmi-id: add a release callback function (git-fixes).
  • firmware: raspberrypi: Use correct device for DMA mappings (git-fixes).
  • fs/9p: drop inodes immediately on non-.L too (git-fixes).
  • fs/9p: only translate RWX permissions for plain 9P2000 (git-fixes).
  • fs/9p: translate O_TRUNC into OTRUNC (git-fixes).
  • gpio: crystalcove: Use -ENOTSUPP consistently (stable-fixes).
  • gpio: wcove: Use -ENOTSUPP consistently (stable-fixes).
  • gpu: host1x: Do not setup DMA for virtual devices (stable-fixes).
  • HID: intel-ish-hid: ipc: Add check for pciallocirq_vectors (git-fixes).
  • hwmon: (corsair-cpro) Protect ccp->waitinputreport with a spinlock (git-fixes).
  • hwmon: (corsair-cpro) Use a separate buffer for sending commands (git-fixes).
  • hwmon: (corsair-cpro) Use completeall() instead of complete() in ccpraw_event() (git-fixes).
  • hwmon: (lm70) fix links in doc and comments (git-fixes).
  • hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us (git-fixes).
  • i3c: master: svc: change ENXIO to EAGAIN when IBI occurs during start frame (git-fixes).
  • i3c: master: svc: fix invalidate IBI type and miss call client IBI handler (git-fixes).
  • IB/mlx5: Use _iowrite64copy() for write combining stores (git-fixes)
  • idpf: extend tx watchdog timeout (bsc#1224137).
  • iio: core: Leave private pointer NULL when no private data supplied (git-fixes).
  • iio: pressure: dps310: support negative temperature values (git-fixes).
  • Input: cyapa - add missing input core locking to suspend/resume functions (git-fixes).
  • Input: ims-pcu - fix printf string overflow (git-fixes).
  • Input: pm8xxx-vibrator - correct VIBMAXLEVELS calculation (git-fixes).
  • iouring/unix: drop usage of iouring socket (git-fixes).
  • iomap: Fix inline extent handling in iomap_readpage (git-fixes)
  • iomap: iomap: fix memory corruption when recording errors during writeback (git-fixes)
  • iomap: Support partial direct I/O on user copy failures (git-fixes)
  • iommu/dma: Force swiotlbmaxmapping_size on an untrusted device (bsc#1224331)
  • jffs2: prevent xattr node from overflowing the eraseblock (git-fixes).
  • kABI: bpf: struct bpfinsnaux_data kABI workaround (bsc#1225756).
  • kcm: do not sense pfmemalloc status in kcm_sendpage() (git-fixes bsc#1223959)
  • KEYS: trusted: Do not use WARN when encode fails (git-fixes).
  • KEYS: trusted: Fix memory leak in tpm2keyencode() (git-fixes).
  • KVM: s390: Check kvm pointer when testing KVMCAPS390HPAGE1M (git-fixes bsc#1224794).
  • KVM: x86: Delete duplicate documentation for KVMX86SETMSRFILTER (git-fixes).
  • leds: pwm: Disable PWM when going to suspend (git-fixes).
  • libsubcmd: Fix parse-options memory leak (git-fixes).
  • locking/atomic: Make testand*_bit() ordered on failure (git-fixes).
  • media: atomisp: sshcss: Fix a null-pointer dereference in loadvideo_binaries (git-fixes).
  • media: dt-bindings: ovti,ov2680: Fix the power supply names (git-fixes).
  • media: mc: mark the media devnode as registered from the, start (git-fixes).
  • media: ngene: Add dvbcaen50221_init return value check (git-fixes).
  • media: stk1160: fix bounds checking in stk1160copyvideo() (git-fixes).
  • mei: me: add lunar lake point M DID (stable-fixes).
  • mfd: intel-lpss: Revert 'Add missing check for platformgetresource' (git-fixes).
  • mfd: tiam335xtscadc: Support the correctly spelled DT property (git-fixes).
  • mfd: tqmx86: Specify IO port register range more precisely (git-fixes).
  • mlxbfgige: Enable the GigE port in mlxbfgige_open (git-fixes).
  • mlxbf_gige: Fix intermittent no ip issue (git-fixes).
  • mlxbf_gige: stop PHY during open() error paths (git-fixes).
  • mmc: sdhci_am654: Add tuning algorithm for delay chain (git-fixes).
  • mmc: sdhci_am654: Write ITAPDLY for DDR52 timing (git-fixes).
  • mtd: core: Report error if first mtdotpsize() call fails in mtdotpnvmem_add() (git-fixes).
  • mtd: rawnand: hynix: fixed typo (git-fixes).
  • net: do not sense pfmemalloc status in skbappendpagefrags() (git-fixes bsc#1223959)
  • net: introduce _skbfillpagedesc_noacc (git-fixes bsc#1223959)
  • net: nfc: remove inappropriate attrs check (stable-fixes).
  • net: qualcomm: rmnet: fix global oob in rmnet_policy (git-fixes).
  • net: usb: ax88179_178a: fix link status when link is set to down/up (git-fixes).
  • net: usb: smsc95xx: stop lying about skb->truesize (git-fixes).
  • net: usb: sr9700: stop lying about skb->truesize (git-fixes).
  • net:usb:qmi_wwan: support Rolling modules (stable-fixes).
  • netfilter: nf_tables: bail out early if hardware offload is not supported (git-fixes bsc#1223961)
  • nfc: nci: Fix handling of zero-length payload packets in ncirxwork() (git-fixes).
  • nfc: nci: Fix uninit-value in ncirxwork (git-fixes).
  • nilfs2: fix out-of-range warning (git-fixes).
  • nilfs2: fix unexpected freezing of nilfssegctorsync() (git-fixes).
  • nilfs2: fix use-after-free of timer for log writer thread (git-fixes).
  • nilfs2: make superblock data array index computation sparse friendly (git-fixes).
  • nvme-multipath: fix io accounting on failover (git-fixes).
  • nvme: ensure disabling pairs with unquiesce (bsc#1224534).
  • nvme: fix miss command type check (git-fixes).
  • nvme: fix multipath batched completion accounting (git-fixes).
  • nvmet: fix ns enable/disable possible hang (git-fixes).
  • PCI: dwc: Detect iATU settings after getting 'addr_space' resource (git-fixes).
  • PCI: dwc: ep: Fix DBI access failure for drivers requiring refclk from host (git-fixes).
  • PCI: dwc: Use the bitmap API to allocate bitmaps (git-fixes).
  • PCI: rockchip-ep: Remove wrong mask on subsysvendorid (git-fixes).
  • PCI: tegra194: Fix probe path for Endpoint mode (git-fixes).
  • PCI/EDR: Align EDRPORTDPCENABLEDSM with PCI Firmware r3.3 (git-fixes).
  • PCI/EDR: Align EDRPORTLOCATE_DSM with PCI Firmware r3.3 (git-fixes).
  • pinctrl: armada-37xx: remove an unused variable (git-fixes).
  • pinctrl: core: delete incorrect free in pinctrl_enable() (git-fixes).
  • pinctrl: core: handle radixtreeinsert() errors in pinctrlregisterone_pin() (stable-fixes).
  • pinctrl: devicetree: fix refcount leak in pinctrldtto_map() (git-fixes).
  • pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T (git-fixes).
  • pinctrl/meson: fix typo in PDM's pin name (git-fixes).
  • platform/x86: xiaomi-wmi: Fix race condition when reporting key events (git-fixes).
  • platform/x86/intel-uncore-freq: Do not present root domain on error (git-fixes).
  • power: rt9455: hide unused rt9455boostvoltage_values (git-fixes).
  • powerpc/eeh: Permanently disable the removed device (bsc#1223991 ltc#205740).
  • powerpc/eeh: Small refactor of eehhandlenormal_event() (bsc#1223991 ltc#205740).
  • powerpc/eeh: Use a goto for recovery failures (bsc#1223991 ltc#205740).
  • powerpc/powernv: Add a null pointer check in opaleventinit() (bsc#1065729).
  • powerpc/pseries/lparcfg: drop error message from guest name lookup (bsc#1187716 ltc#193451 git-fixes).
  • powerpc/pseries/vio: Do not return ENODEV if node or compatible missing (bsc#1220783).
  • powerpc/uaccess: Fix build errors seen with GCC 13/14 (bsc#1194869).
  • powerpc/uaccess: Use YZ asm constraint for ld (bsc#1194869).
  • ppdev: Add an error check in register_device (git-fixes).
  • printk: Update @consolemayschedule in consoletrylockspinning() (bsc#1225616).
  • qibfs: fix dentry leak (git-fixes)
  • RDMA/hns: Add maxah and cq moderation capacities in querydevice() (git-fixes)
  • RDMA/hns: Fix deadlock on SRQ async events. (git-fixes)
  • RDMA/hns: Fix GMV table pagesize (git-fixes)
  • RDMA/hns: Fix return value in hnsrocemapmrsg (git-fixes)
  • RDMA/hns: Fix UAF for cq async event (git-fixes)
  • RDMA/hns: Modify the print level of CQE error (git-fixes)
  • RDMA/hns: Use complete parentheses in macros (git-fixes)
  • RDMA/IPoIB: Fix format truncation compilation errors (git-fixes)
  • RDMA/mlx5: Adding remote atomic access flag to updatable flags (git-fixes)
  • RDMA/mlx5: Fix port number for counter query in multi-port configuration (git-fixes)
  • RDMA/rxe: Add ibdev_dbg macros for rxe (git-fixes)
  • RDMA/rxe: Fix incorrect rxe_put in error path (git-fixes)
  • RDMA/rxe: Fix seg fault in rxecompqueue_pkt (git-fixes)
  • RDMA/rxe: Fix the problem 'mutex_destroy missing' (git-fixes)
  • RDMA/rxe: Replace prxxx by rxedbgxxx in rxenet.c (git-fixes)
  • RDMA/rxe: Split rxeruntask() into two subroutines (git-fixes)
  • regulator: bd71828: Do not overwrite runtime voltages (git-fixes).
  • regulator: core: fix debugfs creation regression (git-fixes).
  • regulator: mt6360: De-capitalize devicetree regulator subnodes (git-fixes).
  • remoteproc: mediatek: Make sure IPI buffer fits in L2TCM (git-fixes).
  • ring-buffer: Fix a race between readers and resize checks (git-fixes).
  • s390/bpf: Emit a barrier for BPF_FETCH instructions (git-fixes bsc#1224795).
  • s390/cio: fix tracepoint subchannel type field (git-fixes bsc#1224796).
  • s390/cpum_cf: make crypto counters upward compatible across machine types (bsc#1224346).
  • s390/ipl: Fix incorrect initialization of len fields in nvme reipl block (git-fixes bsc#1225139).
  • s390/ipl: Fix incorrect initialization of nvme dump block (git-fixes bsc#1225138).
  • sched/topology: Optimize topologyspansane() (bsc#1225053).
  • scsi: arcmsr: Support new PCI device IDs 1883 and 1886 (git-fixes).
  • scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn (git-fixes).
  • scsi: core: Consult supported VPD page list prior to fetching page (git-fixes).
  • scsi: core: Fix unremoved procfs host directory regression (git-fixes).
  • scsi: csiostor: Avoid function pointer casts (git-fixes).
  • scsi: libfc: Do not schedule abort twice (git-fixes).
  • scsi: libfc: Fix up timeout error in fcfcprec_error() (git-fixes).
  • scsi: lpfc: Add support for 32 byte CDBs (bsc#1225842).
  • scsi: lpfc: Change default logging level for unsolicited CT MIB commands (bsc#1225842).
  • scsi: lpfc: Change lpfchba hbaflag member into a bitmask (bsc#1225842).
  • scsi: lpfc: Clear deferred RSCN processing flag when driver is unloading (bsc#1225842).
  • scsi: lpfc: Copyright updates for 14.4.0.2 patches (bsc#1225842).
  • scsi: lpfc: Introduce rrqlistlock to protect activerrqlist (bsc#1225842).
  • scsi: lpfc: Update logging of protection type for T10 DIF I/O (bsc#1225842).
  • scsi: lpfc: Update lpfc version to 14.4.0.2 (bsc#1225842).
  • scsi: mpt3sas: Prevent sending diag_reset when the controller is ready (git-fixes).
  • scsi: mylex: Fix sysfs buffer lengths (git-fixes).
  • scsi: qla2xxx: Fix off by one in qlaedifapp_getstats() (git-fixes).
  • scsi: sd: Unregister device if deviceadddisk() failed in sd_probe() (git-fixes).
  • selftests/pidfd: Fix config for pidfdsetnstest (git-fixes).
  • serial: 8250bcm7271: use defaultmux_rate if possible (git-fixes).
  • serial: kgdboc: Fix NMI-safety problems from keyboard reset code (stable-fixes).
  • serial: max3100: Fix bitwise types (git-fixes).
  • serial: max3100: Lock port->lock when calling uarthandlects_change() (git-fixes).
  • serial: max3100: Update uartdriverregistered on driver removal (git-fixes).
  • serial: sc16is7xx: add proper sched.h include for schedsetfifo() (git-fixes).
  • serial: sc16is7xx: fix bug in sc16is7xxsetbaud() when using prescaler (git-fixes).
  • serial: sh-sci: protect invalidating RXDMA on shutdown (git-fixes).
  • smb: client: ensure to try all targets when finding nested links (bsc#1224020).
  • smb: client: fix mount when dns_resolver key is not available (git-fixes, bsc#1224020).
  • smb: client: get rid of dfs code dep in namespace.c (bsc#1224020).
  • smb: client: get rid of dfs naming in automount code (bsc#1224020).
  • smb: client: introduce DFSCACHETGT_LIST() (bsc#1224020).
  • smb: client: reduce stack usage in cifstryadding_channels() (bsc#1224020).
  • smb: client: remove extra @chancount check in _cifsputsmb_ses() (bsc#1224020).
  • smb: client: rename cifsdfsref.c to namespace.c (bsc#1224020).
  • smb3: show beginning time for per share stats (bsc#1224020).
  • soc: mediatek: cmdq: Fix typo of CMDQJUMPRELATIVE (git-fixes).
  • soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request (git-fixes).
  • speakup: Fix sizeof() vs ARRAY_SIZE() bug (git-fixes).
  • spmi: Add a check for remove callback when removing a SPMI driver (git-fixes).
  • spmi: hisi-spmi-controller: Do not override device identifier (git-fixes).
  • swiotlb: extend buffer pre-padding to allocalignmask if necessary (bsc#1224331).
  • swiotlb: Fix alignment checks when both allocation and DMA masks are (bsc#1224331)
  • swiotlb: Fix double-allocation of slots due to broken alignment (bsc#1224331)
  • swiotlb: Honour dmaalloccoherent() alignment in swiotlb_alloc() (bsc#1224331)
  • sysv: do not call sbbread() with pointerslock held (git-fixes).
  • thermal/drivers/tsens: Fix null pointer dereference (git-fixes).
  • tools/latency-collector: Fix -Wformat-security compile warns (git-fixes).
  • tpmtisspi: Account for SPI header when allocating TPM SPI xfer (bsc#1225535)
  • tpmtisspi: Account for SPI header when allocating TPM SPI xfer buffer (git-fixes).
  • tracing: Add MODULEDESCRIPTION() to preemptirqdelay_test (git-fixes).
  • tracing: hide unused ftraceeventid_fops (git-fixes).
  • tty: n_gsm: fix missing receive state reset after mode switch (git-fixes).
  • tty: ngsm: fix possible out-of-bounds in gsm0receive() (git-fixes).
  • usb: aqc111: stop lying about skb->truesize (git-fixes).
  • usb: gadget: u_audio: Clear uac pointer when freed (git-fixes).
  • usb: typec: tipd: fix event checking for tps6598x (git-fixes).
  • usb: typec: ucsi: displayport: Fix potential deadlock (git-fixes).
  • VMCI: Fix an error handling path in vmciguestprobe_device() (git-fixes).
  • VMCI: Fix possible memcpy() run-time warning in vmcidatagraminvokeguesthandler() (stable-fixes).
  • vmci: prevent speculation leaks by sanitizing event in event_deliver() (git-fixes).
  • watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (git-fixes).
  • watchdog: ixp4xx: Make sure restart always works (git-fixes).
  • watchdog: rtiwdt: Set minhwheartbeatms to accommodate a safety margin (git-fixes).
  • wifi: ar5523: enable proper endpoint verification (git-fixes).
  • wifi: ath10k: Fix an error code problem in ath10kdbgstawritepeerdebugtrigger() (git-fixes).
  • wifi: ath10k: poll service ready message before failing (git-fixes).
  • wifi: ath10k: populate board data for WCN3990 (git-fixes).
  • wifi: ath11k: do not force enable power save on non-running vdevs (git-fixes).
  • wifi: carl9170: add a proper sanity check for endpoints (git-fixes).
  • wifi: carl9170: re-fix fortified-memset warning (git-fixes).
  • wifi: cfg80211: fix rdevdumpmpp() arguments order (stable-fixes).
  • wifi: mac80211: fix ieee80211bss*_flags kernel-doc (stable-fixes).
  • wifi: mwl8k: initialize cmd->addr[] properly (git-fixes).
  • x86: Fix CPUIDLEFLAGIRQ_ENABLE leaking timer reprogram (git-fixes).
  • x86/boot: Ignore NMIs during very early boot (git-fixes).
  • x86/bugs: Change commas to semicolons in 'spectre_v2' sysfs file (git-fixes).
  • x86/bugs: Remove CONFIGBHIMITIGATIONAUTO and spectrebhi=auto (git-fixes).
  • x86/bugs: Replace CONFIGSPECTREBHI{ON,OFF} with CONFIGMITIGATIONSPECTREBHI (git-fixes).
  • x86/kvm: Do not try to disable kvmclock if it was not enabled (git-fixes).
  • x86/lib: Fix overflow when counting digits (git-fixes).
  • x86/mce: Make sure to grab mcesysfsmutex in set_bank() (git-fixes).
  • x86/nmi: Drop unused declaration of procnmienabled() (git-fixes).
  • x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO (git-fixes).
  • x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler (git-fixes).
  • x86/sme: Fix memory encryption setting if enabled by default and not overridden (git-fixes).
  • x86/tdx: Preserve shared bit on mprotect() (git-fixes).
  • xfs: add missing cmap->brstate = XFSEXT_NORM update (git-fixes).
  • xfs: fix exception caused by unexpected illegal bestcount in leaf dir (git-fixes).
  • xfs: Fix false ENOSPC when performing direct write on a delalloc extent in cow fork (git-fixes).
  • xfs: fix imprecise logic in xchkbtreecheckblockowner (git-fixes).
  • xfs: fix inode reservation space for removing transaction (git-fixes).
  • xfs: shrink failure needs to hold AGI buffer (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "dlm-kmp-azure": "5.14.21-150500.33.57.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-extra": "5.14.21-150500.33.57.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-optional": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-vdso": "5.14.21-150500.33.57.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.57.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "dlm-kmp-azure": "5.14.21-150500.33.57.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-extra": "5.14.21-150500.33.57.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-optional": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-vdso": "5.14.21-150500.33.57.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.57.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.57.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-devel-azure": "5.14.21-150500.33.57.1",
            "dlm-kmp-azure": "5.14.21-150500.33.57.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-extra": "5.14.21-150500.33.57.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-optional": "5.14.21-150500.33.57.1",
            "kernel-azure-devel": "5.14.21-150500.33.57.1",
            "kernel-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-vdso": "5.14.21-150500.33.57.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-syms-azure": "5.14.21-150500.33.57.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.57.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.57.1",
            "kernel-source-azure": "5.14.21-150500.33.57.1"
        }
    ]
}