openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2017:1825-1
Rating:             important
References:         #1025461 #1026570 #1031784 #1039354 #1040182 
                    #1040941 #1043347 #1043488 #1043912 #1044854 
                    #1044912 #1045922 #1046105 #1046434 #1046589 
                    #1046821 
Cross-References:   CVE-2017-1000365 CVE-2017-7518
Affected Products:
                    openSUSE Leap 42.2
______________________________________________________________________________

   An update that solves two vulnerabilities and has 14 fixes
   is now available.

Description:



   The openSUSE Leap 42.2 kernel was updated to 4.4.74 to receive various
   security and bugfixes.

   This update fixes some long standing btrfs issues.

   The following security bugs were fixed:

   - CVE-2017-7518: A KVM debug exception in the syscall handling was fixed
     which might have been used for local privilege escalation. (bnc#1045922).
   - CVE-2017-1000365: The Linux Kernel imposes a size restriction on the
     arguments and environmental strings passed through
     RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the
     argument and environment pointers into account, which allowed attackers     to bypass this limitation. (bnc#1039354).

   The following non-security bugs were fixed:

   - bluetooth: hidp: fix possible might sleep error in hidp_session_thread
     (bsc#1031784).
   - btrfs: disable possible cause of premature ENOSPC (bsc#1040182)
   - btrfs: Manually implement device_total_bytes getter/setter (bsc#1043912).
   - btrfs: Round down values which are written for total_bytes_size
     (bsc#1043912).
   - drm/i915: Serialize GTT/Aperture accesses on BXT (bsc#1046821).
   - Fix kABI breakage by KVM CVE fix (bsc#1045922).
   - hpsa: limit transfer length to 1MB (bsc#1025461).
   - hwpoison, memcg: forcibly uncharge LRU pages (bnc#1046105).
   - ibmvnic: Fix assignment of RX/TX IRQ's (bsc#1046589).
   - iw_cxgb4: Fix error return code in c4iw_rdev_open() (bsc#1026570).
   - iwlwifi: 8000: fix MODULE_FIRMWARE input (FATE#321353, FATE#323335).
   - iwlwifi: 9000: increase the number of queues (FATE#321353, FATE#323335).
   - iwlwifi: add device ID for 8265 (FATE#321353, FATE#323335).
   - iwlwifi: add device IDs for the 8265 device (FATE#321353, FATE#323335).
   - iwlwifi: add disable_11ac module param (FATE#321353, FATE#323335).
   - iwlwifi: add new 3168 series devices support (FATE#321353, FATE#323335).
   - iwlwifi: add new 8260 PCI IDs (FATE#321353, FATE#323335).
   - iwlwifi: add new 8265 (FATE#321353, FATE#323335).
   - iwlwifi: add new 8265 series PCI ID (FATE#321353, FATE#323335).
   - iwlwifi: Add new PCI IDs for 9260 and 5165 series (FATE#321353,
     FATE#323335).
   - iwlwifi: Add PCI IDs for the new 3168 series (FATE#321353, FATE#323335).
   - iwlwifi: Add PCI IDs for the new series 8165 (FATE#321353, FATE#323335).
   - iwlwifi: add support for 12K Receive Buffers (FATE#321353, FATE#323335).
   - iwlwifi: add support for getting HW address from CSR (FATE#321353,
     FATE#323335).
   - iwlwifi: avoid d0i3 commands when no/init ucode is loaded (FATE#321353,
     FATE#323335).
   - iwlwifi: bail out in case of bad trans state (FATE#321353, FATE#323335).
   - iwlwifi: block the queues when we send ADD_STA for uAPSD (FATE#321353,
     FATE#323335).
   - iwlwifi: change the Intel Wireless email address (FATE#321353,
     FATE#323335).
   - iwlwifi: change the Intel Wireless email address (FATE#321353,
     FATE#323335).
   - iwlwifi: check for valid ethernet address provided by OEM (FATE#321353,
     FATE#323335).
   - iwlwifi: clean up transport debugfs handling (FATE#321353, FATE#323335).
   - iwlwifi: clear ieee80211_tx_info->driver_data in the op_mode
     (FATE#321353, FATE#323335).
   - iwlwifi: Document missing module options (FATE#321353, FATE#323335).
   - iwlwifi: dump prph registers in a common place for all transports
     (FATE#321353, FATE#323335).
   - iwlwifi: dvm: advertise NETIF_F_SG (FATE#321353, FATE#323335).
   - iwlwifi: dvm: fix compare_const_fl.cocci warnings (FATE#321353,
     FATE#323335).
   - iwlwifi: dvm: handle zero brightness for wifi LED (FATE#321353,
     FATE#323335).
   - iwlwifi: dvm: remove a wrong dependency on m (FATE#321353, FATE#323335).
   - iwlwifi: dvm: remove Kconfig default (FATE#321353, FATE#323335).
   - iwlwifi: dvm: remove stray debug code (FATE#321353, FATE#323335).
   - iwlwifi: export the _no_grab version of PRPH IO functions (FATE#321353,
     FATE#323335).
   - iwlwifi: expose fw usniffer mode to more utilities (FATE#321353,
     FATE#323335).
   - iwlwifi: fix double hyphen in MODULE_FIRMWARE for 8000 (FATE#321353,
     FATE#323335).
   - iwlwifi: Fix firmware name maximum length definition (FATE#321353,
     FATE#323335).
   - iwlwifi: fix name of ucode loaded for 8265 series (FATE#321353,
     FATE#323335).
   - iwlwifi: fix printf specifier (FATE#321353, FATE#323335).
   - iwlwifi: generalize d0i3_entry_timeout module parameter (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: adapt the firmware assert log to new firmware
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add 9000-series RX API (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add 9000 series RX processing (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add a non-trigger window to fw dbg triggers (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add an option to start rs from HT/VHT rates (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: Add a station in monitor mode (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add bt rrc and ttc to debugfs (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add bt settings to debugfs (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add ctdp operations to debugfs (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add CT-KILL notification (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add debug print if scan config is ignored (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add extended dwell time (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add new ADD_STA command version (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Add P2P client snoozing (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add registration to cooling device (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add registration to thermal zone (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add support for negative temperatures (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add tlv for multi queue rx support (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: add trigger for firmware dump upon TDLS events
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: add trigger for firmware dump upon TX response status
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: advertise NETIF_F_SG (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Align bt-coex priority with requirements (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: allow to disable beacon filtering for AP/GO interface
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: avoid harmless -Wmaybe-uninialized warning (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: avoid panics with thermal device usage (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: avoid to WARN about gscan capabilities (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: bail out if CTDP start operation fails (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: bump firmware API to 21 (FATE#321353, FATE#323335).
   - iwlwifi: mvm: bump max API to 20 (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change access to ieee80211_hdr (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change iwl_mvm_get_key_sta_id() to return the station
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change mcc update API (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change name of iwl_mvm_d3_update_gtk (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: Change number of associated stations when station becomes
     associated (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change protocol offload flows (FATE#321353, FATE#323335).
   - iwlwifi: mvm: change the check for ADD_STA status (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: check FW's response for nvm access write cmd (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: check iwl_mvm_wowlan_config_key_params() return value
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: check minimum temperature notification length
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: cleanup roc te on restart cleanup (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: Configure fragmented scan for scheduled scan (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: configure scheduled scan according to traffic conditions
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: constify the parameters of a few functions in fw-dbg.c
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Disable beacon storing in D3 when WOWLAN configured
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: disable DQA support (FATE#321353, FATE#323335).
   - iwlwifi: mvm: do not ask beacons when P2P GO vif and no assoc sta
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: do not keep an mvm ref when the interface is down
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: do not let NDPs mess the packet tracking (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: do not restart HW if suspend fails with unified image
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Do not switch to D3 image on suspend (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: do not try to offload AES-CMAC in AP/IBSS modes
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: drop low_latency_agg_frame_cnt_limit (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: dump more registers upon error (FATE#321353, FATE#323335).
   - iwlwifi: mvm: dump the radio registers when the firmware crashes
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: enable L3 filtering (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Enable MPLUT only on supported hw (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: enable VHT MU-MIMO for supported hardware (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: extend time event duration (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix accessing Null pointer during fw dump collection
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix d3_test with unified D0/D3 images (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: fix debugfs signedness warning (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix extended dwell time (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix incorrect fallthrough in iwl_mvm_check_running_scans()
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix memory leaks in error paths upon fw error dump
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix netdetect starting/stopping for unified images
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix RSS key sizing (FATE#321353, FATE#323335).
   - iwlwifi: mvm: fix unregistration of thermal in some error flows
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: flush all used TX queues before suspending (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: forbid U-APSD for P2P Client if the firmware does not
     support it (FATE#321353, FATE#323335).
   - iwlwifi: mvm: handle pass all scan reporting (FATE#321353, FATE#323335).
   - iwlwifi: mvm: ignore LMAC scan notifications when running UMAC scans
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: infrastructure for frame-release message (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: kill iwl_mvm_enable_agg_txq (FATE#321353, FATE#323335).
   - iwlwifi: mvm: let the firmware choose the antenna for beacons
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: make collecting fw debug data optional (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: move fw-dbg code to separate file (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: only release the trans ref if d0i3 is supported in fw
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: prepare the code towards TSO implementation (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: refactor d3 key update functions (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: refactor the way fw_key_table is handled (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: remove an extra tab (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Remove bf_vif from iwl_power_vifs (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: Remove iwl_mvm_update_beacon_abort (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: remove redundant d0i3 flag from the config struct
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: remove shadowing variable (FATE#321353, FATE#323335).
   - iwlwifi: mvm: remove stray nd_config element (FATE#321353, FATE#323335).
   - iwlwifi: mvm: remove the vif parameter of
     iwl_mvm_configure_bcast_filter() (FATE#321353, FATE#323335).
   - iwlwifi: mvm: remove unnecessary check in iwl_mvm_is_d0i3_supported()
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: remove useless WARN_ON and rely on cfg80211's combination
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: report wakeup for wowlan (FATE#321353, FATE#323335).
   - iwlwifi: mvm: reset mvm->scan_type when firmware is started
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: return the cooling state index instead of the budget
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: ROC: cleanup time event info on FW failure (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: ROC: Extend the ROC max delay duration & limit ROC
     duration (FATE#321353, FATE#323335).
   - iwlwifi: mvm: rs: fix a potential out of bounds access (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: rs: fix a theoretical access to uninitialized array
     elements (FATE#321353, FATE#323335).
   - iwlwifi: mvm: rs: fix a warning message (FATE#321353, FATE#323335).
   - iwlwifi: mvm: rs: fix TPC action decision algorithm (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: rs: fix TPC statistics handling (FATE#321353, FATE#323335).
   - iwlwifi: mvm: Send power command on BSS_CHANGED_BEACON_INFO if needed
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: set default new STA as non-aggregated (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: set the correct amsdu enum values (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: set the correct descriptor size for tracing (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: small update in the firmware API (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: support A-MSDU in A-MPDU (FATE#321353, FATE#323335).
   - iwlwifi: mvm: support beacon storing (FATE#321353, FATE#323335).
   - iwlwifi: mvm: support description for user triggered fw dbg collection
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: support rss queues configuration command (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: Support setting continuous recording debug mode
     (FATE#321353, FATE#323335).
   - iwlwifi: mvm: support setting minimum quota from debugfs (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: support sw queue start/stop from mvm (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: take care of padded packets (FATE#321353, FATE#323335).
   - iwlwifi: mvm: take the transport ref back when leaving (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: track low-latency sources separately (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: update GSCAN capabilities (FATE#321353, FATE#323335).
   - iwlwifi: mvm: update ucode status before stopping device (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: use build-time assertion for fw trigger ID (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: use firmware station lookup, combine code (FATE#321353,
     FATE#323335).
   - iwlwifi: mvm: various trivial cleanups (FATE#321353, FATE#323335).
   - iwlwifi: mvm: writing zero bytes to debugfs causes a crash (FATE#321353,
     FATE#323335).
   - iwlwifi: nvm: fix loading default NVM file (FATE#321353, FATE#323335).
   - iwlwifi: nvm: fix up phy section when reading it (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: add 9000 series multi queue rx DMA support (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: add infrastructure for multi-queue rx (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: add initial RTPM support for PCI (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: Add new configuration to enable MSIX (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: add pm_prepare and pm_complete ops (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: add RTPM support when wifi is enabled (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: aggregate Flow Handler configuration writes (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: allow the op_mode to block the tx queues (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: allow to pretend to have Tx CSUM for debug (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: avoid restocks inside rx loop if not emergency
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: buffer packets to avoid overflowing Tx queues
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: build an A-MSDU using TSO core (FATE#321353, FATE#323335).
   - iwlwifi: pcie: configure more RFH settings (FATE#321353, FATE#323335).
   - iwlwifi: pcie: detect and workaround invalid write ptr behavior
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: do not increment / decrement a bool (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: enable interrupts before releasing the NIC's CPU
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: enable multi-queue rx path (FATE#321353, FATE#323335).
   - iwlwifi: pcie: extend device reset delay (FATE#321353, FATE#323335).
   - iwlwifi: pcie: fine tune number of rxbs (FATE#321353, FATE#323335).
   - iwlwifi: pcie: fix a race in firmware loading flow (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: fix erroneous return value (FATE#321353, FATE#323335).
   - iwlwifi: pcie: fix global table size (FATE#321353, FATE#323335).
   - iwlwifi: pcie: fix identation in trans.c (FATE#321353, FATE#323335).
   - iwlwifi: pcie: fix RF-Kill vs. firmware load race (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: forbid RTPM on device removal (FATE#321353, FATE#323335).
   - iwlwifi: pcie: mark command queue lock with separate lockdep class
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: prevent skbs shadowing in iwl_trans_pcie_reclaim
     (FATE#321353, FATE#323335).
   - iwlwifi: pcie: refactor RXBs reclaiming code (FATE#321353, FATE#323335).
   - iwlwifi: pcie: remove ICT allocation message (FATE#321353, FATE#323335).
   - iwlwifi: pcie: remove pointer from debug message (FATE#321353,
     FATE#323335).
   - iwlwifi: pcie: re-organize code towards TSO (FATE#321353, FATE#323335).
   - iwlwifi: pcie: set RB chunk size back to 64 (FATE#321353, FATE#323335).
   - iwlwifi: pcie: update iwl_mpdu_desc fields (FATE#321353, FATE#323335).
   - iwlwifi: print index in api/capa flags parsing message (FATE#321353,
     FATE#323335).
   - iwlwifi: refactor the code that reads the MAC address from the NVM
     (FATE#321353, FATE#323335).
   - iwlwifi: remove IWL_DL_LED (FATE#321353, FATE#323335).
   - iwlwifi: remove unused parameter from grab_nic_access (FATE#321353,
     FATE#323335).
   - iwlwifi: replace d0i3_mode and wowlan_d0i3 with more generic variables
     (FATE#321353, FATE#323335).
   - iwlwifi: set max firmware version of 7265 to 17 (FATE#321353,
     FATE#323335).
   - iwlwifi: support ucode with d0 unified image - regular and usniffer
     (FATE#321353, FATE#323335).
   - iwlwifi: trans: make various conversion macros inlines (FATE#321353,
     FATE#323335).
   - iwlwifi: trans: support a callback for ASYNC commands (FATE#321353,
     FATE#323335).
   - iwlwifi: treat iwl_parse_nvm_data() MAC addr as little endian
     (FATE#321353, FATE#323335).
   - iwlwifi: tt: move ucode_loaded check under mutex (FATE#321353,
     FATE#323335).
   - iwlwifi: uninline iwl_trans_send_cmd (FATE#321353, FATE#323335).
   - iwlwifi: update host command messages to new format (FATE#321353,
     FATE#323335).
   - iwlwifi: Update PCI IDs for 8000 and 9000 series (FATE#321353,
     FATE#323335).
   - iwlwifi: update support for 3168 series firmware and NVM (FATE#321353,
     FATE#323335).
   - iwlwifi: various comments and code cleanups (FATE#321353, FATE#323335).
   - kabi: ignore fs_info parameter for tracepoints that didn't have it
     (bsc#1044912).
   - kabi/severities: ignore kABi changes in iwlwifi stuff itself
   - powerpc/ftrace: Pass the correct stack pointer for
     DYNAMIC_FTRACE_WITH_REGS (FATE#322421).
   - printk: Correctly handle preemption in console_unlock() (bsc#1046434).
   - printk/xen: Force printk sync mode when migrating Xen guest
     (bsc#1043347).
   - RDMA/iw_cxgb4: Always wake up waiter in c4iw_peer_abort_intr()
     (bsc#1026570).
   - smartpqi: limit transfer length to 1MB (bsc#1025461).
   - tty: Destroy ldisc instance on hangup (bnc#1043488).
   - tty: Fix ldisc crash on reopened tty (bnc#1043488).
   - tty: Handle NULL tty->ldisc (bnc#1043488).
   - tty: Move tty_ldisc_kill() (bnc#1043488).
   - tty: Prepare for destroying line discipline on hangup (bnc#1043488).
   - tty: Refactor tty_ldisc_reinit() for reuse (bnc#1043488).
   - tty: Reset c_line from driver's init_termios (bnc#1043488).
   - tty: Simplify tty_set_ldisc() exit handling (bnc#1043488).
   - tty: Use 'disc' for line discipline index name (bnc#1043488).
   - Update config files: add CONFIG_IWLWIFI_PCIE_RTPM=y (FATE#323335)
   - Update patches.fixes/nfs-svc-rdma.fix (bsc#1044854). Fix bsc reference
   - Update patches.fixes/xfs-split-default-quota-limits-by-quota-type.patch
     (bsc#1040941). Fix the bug nr used.


Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE Leap 42.2:

      zypper in -t patch openSUSE-2017-798=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - openSUSE Leap 42.2 (noarch):

      kernel-devel-4.4.74-18.20.1
      kernel-docs-4.4.74-18.20.3
      kernel-docs-html-4.4.74-18.20.3
      kernel-docs-pdf-4.4.74-18.20.3
      kernel-macros-4.4.74-18.20.1
      kernel-source-4.4.74-18.20.1
      kernel-source-vanilla-4.4.74-18.20.1

   - openSUSE Leap 42.2 (x86_64):

      kernel-debug-4.4.74-18.20.1
      kernel-debug-base-4.4.74-18.20.1
      kernel-debug-base-debuginfo-4.4.74-18.20.1
      kernel-debug-debuginfo-4.4.74-18.20.1
      kernel-debug-debugsource-4.4.74-18.20.1
      kernel-debug-devel-4.4.74-18.20.1
      kernel-debug-devel-debuginfo-4.4.74-18.20.1
      kernel-default-4.4.74-18.20.1
      kernel-default-base-4.4.74-18.20.1
      kernel-default-base-debuginfo-4.4.74-18.20.1
      kernel-default-debuginfo-4.4.74-18.20.1
      kernel-default-debugsource-4.4.74-18.20.1
      kernel-default-devel-4.4.74-18.20.1
      kernel-obs-build-4.4.74-18.20.1
      kernel-obs-build-debugsource-4.4.74-18.20.1
      kernel-obs-qa-4.4.74-18.20.1
      kernel-syms-4.4.74-18.20.1
      kernel-vanilla-4.4.74-18.20.1
      kernel-vanilla-base-4.4.74-18.20.1
      kernel-vanilla-base-debuginfo-4.4.74-18.20.1
      kernel-vanilla-debuginfo-4.4.74-18.20.1
      kernel-vanilla-debugsource-4.4.74-18.20.1
      kernel-vanilla-devel-4.4.74-18.20.1


References:

   https://www.suse.com/security/cve/CVE-2017-1000365.html
   https://www.suse.com/security/cve/CVE-2017-7518.html
   https://bugzilla.suse.com/1025461
   https://bugzilla.suse.com/1026570
   https://bugzilla.suse.com/1031784
   https://bugzilla.suse.com/1039354
   https://bugzilla.suse.com/1040182
   https://bugzilla.suse.com/1040941
   https://bugzilla.suse.com/1043347
   https://bugzilla.suse.com/1043488
   https://bugzilla.suse.com/1043912
   https://bugzilla.suse.com/1044854
   https://bugzilla.suse.com/1044912
   https://bugzilla.suse.com/1045922
   https://bugzilla.suse.com/1046105
   https://bugzilla.suse.com/1046434
   https://bugzilla.suse.com/1046589
   https://bugzilla.suse.com/1046821

openSUSE: 2017:1825-1: important: the Linux Kernel

July 8, 2017
An update that solves two vulnerabilities and has 14 fixes An update that solves two vulnerabilities and has 14 fixes An update that solves two vulnerabilities and has 14 fixes is ...

Description

The openSUSE Leap 42.2 kernel was updated to 4.4.74 to receive various security and bugfixes. This update fixes some long standing btrfs issues. The following security bugs were fixed: - CVE-2017-7518: A KVM debug exception in the syscall handling was fixed which might have been used for local privilege escalation. (bnc#1045922). - CVE-2017-1000365: The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the argument and environment pointers into account, which allowed attackers to bypass this limitation. (bnc#1039354). The following non-security bugs were fixed: - bluetooth: hidp: fix possible might sleep error in hidp_session_thread (bsc#1031784). - btrfs: disable possible cause of premature ENOSPC (bsc#1040182) - btrfs: Manually implement device_total_bytes getter/setter (bsc#1043912). - btrfs: Round down values which are written for total_bytes_size (bsc#1043912). - drm/i915: Serialize GTT/Aperture accesses on BXT (bsc#1046821). - Fix kABI breakage by KVM CVE fix (bsc#1045922). - hpsa: limit transfer length to 1MB (bsc#1025461). - hwpoison, memcg: forcibly uncharge LRU pages (bnc#1046105). - ibmvnic: Fix assignment of RX/TX IRQ's (bsc#1046589). - iw_cxgb4: Fix error return code in c4iw_rdev_open() (bsc#1026570). - iwlwifi: 8000: fix MODULE_FIRMWARE input (FATE#321353, FATE#323335). - iwlwifi: 9000: increase the number of queues (FATE#321353, FATE#323335). - iwlwifi: add device ID for 8265 (FATE#321353, FATE#323335). - iwlwifi: add device IDs for the 8265 device (FATE#321353, FATE#323335). - iwlwifi: add disable_11ac module param (FATE#321353, FATE#323335). - iwlwifi: add new 3168 series devices support (FATE#321353, FATE#323335). - iwlwifi: add new 8260 PCI IDs (FATE#321353, FATE#323335). - iwlwifi: add new 8265 (FATE#321353, FATE#323335). - iwlwifi: add new 8265 series PCI ID (FATE#321353, FATE#323335). - iwlwifi: Add new PCI IDs for 9260 and 5165 series (FATE#321353, FATE#323335). - iwlwifi: Add PCI IDs for the new 3168 series (FATE#321353, FATE#323335). - iwlwifi: Add PCI IDs for the new series 8165 (FATE#321353, FATE#323335). - iwlwifi: add support for 12K Receive Buffers (FATE#321353, FATE#323335). - iwlwifi: add support for getting HW address from CSR (FATE#321353, FATE#323335). - iwlwifi: avoid d0i3 commands when no/init ucode is loaded (FATE#321353, FATE#323335). - iwlwifi: bail out in case of bad trans state (FATE#321353, FATE#323335). - iwlwifi: block the queues when we send ADD_STA for uAPSD (FATE#321353, FATE#323335). - iwlwifi: change the Intel Wireless email address (FATE#321353, FATE#323335). - iwlwifi: change the Intel Wireless email address (FATE#321353, FATE#323335). - iwlwifi: check for valid ethernet address provided by OEM (FATE#321353, FATE#323335). - iwlwifi: clean up transport debugfs handling (FATE#321353, FATE#323335). - iwlwifi: clear ieee80211_tx_info->driver_data in the op_mode (FATE#321353, FATE#323335). - iwlwifi: Document missing module options (FATE#321353, FATE#323335). - iwlwifi: dump prph registers in a common place for all transports (FATE#321353, FATE#323335). - iwlwifi: dvm: advertise NETIF_F_SG (FATE#321353, FATE#323335). - iwlwifi: dvm: fix compare_const_fl.cocci warnings (FATE#321353, FATE#323335). - iwlwifi: dvm: handle zero brightness for wifi LED (FATE#321353, FATE#323335). - iwlwifi: dvm: remove a wrong dependency on m (FATE#321353, FATE#323335). - iwlwifi: dvm: remove Kconfig default (FATE#321353, FATE#323335). - iwlwifi: dvm: remove stray debug code (FATE#321353, FATE#323335). - iwlwifi: export the _no_grab version of PRPH IO functions (FATE#321353, FATE#323335). - iwlwifi: expose fw usniffer mode to more utilities (FATE#321353, FATE#323335). - iwlwifi: fix double hyphen in MODULE_FIRMWARE for 8000 (FATE#321353, FATE#323335). - iwlwifi: Fix firmware name maximum length definition (FATE#321353, FATE#323335). - iwlwifi: fix name of ucode loaded for 8265 series (FATE#321353, FATE#323335). - iwlwifi: fix printf specifier (FATE#321353, FATE#323335). - iwlwifi: generalize d0i3_entry_timeout module parameter (FATE#321353, FATE#323335). - iwlwifi: mvm: adapt the firmware assert log to new firmware (FATE#321353, FATE#323335). - iwlwifi: mvm: add 9000-series RX API (FATE#321353, FATE#323335). - iwlwifi: mvm: add 9000 series RX processing (FATE#321353, FATE#323335). - iwlwifi: mvm: add a non-trigger window to fw dbg triggers (FATE#321353, FATE#323335). - iwlwifi: mvm: add an option to start rs from HT/VHT rates (FATE#321353, FATE#323335). - iwlwifi: mvm: Add a station in monitor mode (FATE#321353, FATE#323335). - iwlwifi: mvm: add bt rrc and ttc to debugfs (FATE#321353, FATE#323335). - iwlwifi: mvm: add bt settings to debugfs (FATE#321353, FATE#323335). - iwlwifi: mvm: add ctdp operations to debugfs (FATE#321353, FATE#323335). - iwlwifi: mvm: add CT-KILL notification (FATE#321353, FATE#323335). - iwlwifi: mvm: add debug print if scan config is ignored (FATE#321353, FATE#323335). - iwlwifi: mvm: add extended dwell time (FATE#321353, FATE#323335). - iwlwifi: mvm: add new ADD_STA command version (FATE#321353, FATE#323335). - iwlwifi: mvm: Add P2P client snoozing (FATE#321353, FATE#323335). - iwlwifi: mvm: add registration to cooling device (FATE#321353, FATE#323335). - iwlwifi: mvm: add registration to thermal zone (FATE#321353, FATE#323335). - iwlwifi: mvm: add support for negative temperatures (FATE#321353, FATE#323335). - iwlwifi: mvm: add tlv for multi queue rx support (FATE#321353, FATE#323335). - iwlwifi: mvm: add trigger for firmware dump upon TDLS events (FATE#321353, FATE#323335). - iwlwifi: mvm: add trigger for firmware dump upon TX response status (FATE#321353, FATE#323335). - iwlwifi: mvm: advertise NETIF_F_SG (FATE#321353, FATE#323335). - iwlwifi: mvm: Align bt-coex priority with requirements (FATE#321353, FATE#323335). - iwlwifi: mvm: allow to disable beacon filtering for AP/GO interface (FATE#321353, FATE#323335). - iwlwifi: mvm: avoid harmless -Wmaybe-uninialized warning (FATE#321353, FATE#323335). - iwlwifi: mvm: avoid panics with thermal device usage (FATE#321353, FATE#323335). - iwlwifi: mvm: avoid to WARN about gscan capabilities (FATE#321353, FATE#323335). - iwlwifi: mvm: bail out if CTDP start operation fails (FATE#321353, FATE#323335). - iwlwifi: mvm: bump firmware API to 21 (FATE#321353, FATE#323335). - iwlwifi: mvm: bump max API to 20 (FATE#321353, FATE#323335). - iwlwifi: mvm: change access to ieee80211_hdr (FATE#321353, FATE#323335). - iwlwifi: mvm: change iwl_mvm_get_key_sta_id() to return the station (FATE#321353, FATE#323335). - iwlwifi: mvm: change mcc update API (FATE#321353, FATE#323335). - iwlwifi: mvm: change name of iwl_mvm_d3_update_gtk (FATE#321353, FATE#323335). - iwlwifi: mvm: Change number of associated stations when station becomes associated (FATE#321353, FATE#323335). - iwlwifi: mvm: change protocol offload flows (FATE#321353, FATE#323335). - iwlwifi: mvm: change the check for ADD_STA status (FATE#321353, FATE#323335). - iwlwifi: mvm: check FW's response for nvm access write cmd (FATE#321353, FATE#323335). - iwlwifi: mvm: check iwl_mvm_wowlan_config_key_params() return value (FATE#321353, FATE#323335). - iwlwifi: mvm: check minimum temperature notification length (FATE#321353, FATE#323335). - iwlwifi: mvm: cleanup roc te on restart cleanup (FATE#321353, FATE#323335). - iwlwifi: mvm: Configure fragmented scan for scheduled scan (FATE#321353, FATE#323335). - iwlwifi: mvm: configure scheduled scan according to traffic conditions (FATE#321353, FATE#323335). - iwlwifi: mvm: constify the parameters of a few functions in fw-dbg.c (FATE#321353, FATE#323335). - iwlwifi: mvm: Disable beacon storing in D3 when WOWLAN configured (FATE#321353, FATE#323335). - iwlwifi: mvm: disable DQA support (FATE#321353, FATE#323335). - iwlwifi: mvm: do not ask beacons when P2P GO vif and no assoc sta (FATE#321353, FATE#323335). - iwlwifi: mvm: do not keep an mvm ref when the interface is down (FATE#321353, FATE#323335). - iwlwifi: mvm: do not let NDPs mess the packet tracking (FATE#321353, FATE#323335). - iwlwifi: mvm: do not restart HW if suspend fails with unified image (FATE#321353, FATE#323335). - iwlwifi: mvm: Do not switch to D3 image on suspend (FATE#321353, FATE#323335). - iwlwifi: mvm: do not try to offload AES-CMAC in AP/IBSS modes (FATE#321353, FATE#323335). - iwlwifi: mvm: drop low_latency_agg_frame_cnt_limit (FATE#321353, FATE#323335). - iwlwifi: mvm: dump more registers upon error (FATE#321353, FATE#323335). - iwlwifi: mvm: dump the radio registers when the firmware crashes (FATE#321353, FATE#323335). - iwlwifi: mvm: enable L3 filtering (FATE#321353, FATE#323335). - iwlwifi: mvm: Enable MPLUT only on supported hw (FATE#321353, FATE#323335). - iwlwifi: mvm: enable VHT MU-MIMO for supported hardware (FATE#321353, FATE#323335). - iwlwifi: mvm: extend time event duration (FATE#321353, FATE#323335). - iwlwifi: mvm: fix accessing Null pointer during fw dump collection (FATE#321353, FATE#323335). - iwlwifi: mvm: fix d3_test with unified D0/D3 images (FATE#321353, FATE#323335). - iwlwifi: mvm: fix debugfs signedness warning (FATE#321353, FATE#323335). - iwlwifi: mvm: fix extended dwell time (FATE#321353, FATE#323335). - iwlwifi: mvm: fix incorrect fallthrough in iwl_mvm_check_running_scans() (FATE#321353, FATE#323335). - iwlwifi: mvm: fix memory leaks in error paths upon fw error dump (FATE#321353, FATE#323335). - iwlwifi: mvm: fix netdetect starting/stopping for unified images (FATE#321353, FATE#323335). - iwlwifi: mvm: fix RSS key sizing (FATE#321353, FATE#323335). - iwlwifi: mvm: fix unregistration of thermal in some error flows (FATE#321353, FATE#323335). - iwlwifi: mvm: flush all used TX queues before suspending (FATE#321353, FATE#323335). - iwlwifi: mvm: forbid U-APSD for P2P Client if the firmware does not support it (FATE#321353, FATE#323335). - iwlwifi: mvm: handle pass all scan reporting (FATE#321353, FATE#323335). - iwlwifi: mvm: ignore LMAC scan notifications when running UMAC scans (FATE#321353, FATE#323335). - iwlwifi: mvm: infrastructure for frame-release message (FATE#321353, FATE#323335). - iwlwifi: mvm: kill iwl_mvm_enable_agg_txq (FATE#321353, FATE#323335). - iwlwifi: mvm: let the firmware choose the antenna for beacons (FATE#321353, FATE#323335). - iwlwifi: mvm: make collecting fw debug data optional (FATE#321353, FATE#323335). - iwlwifi: mvm: move fw-dbg code to separate file (FATE#321353, FATE#323335). - iwlwifi: mvm: only release the trans ref if d0i3 is supported in fw (FATE#321353, FATE#323335). - iwlwifi: mvm: prepare the code towards TSO implementation (FATE#321353, FATE#323335). - iwlwifi: mvm: refactor d3 key update functions (FATE#321353, FATE#323335). - iwlwifi: mvm: refactor the way fw_key_table is handled (FATE#321353, FATE#323335). - iwlwifi: mvm: remove an extra tab (FATE#321353, FATE#323335). - iwlwifi: mvm: Remove bf_vif from iwl_power_vifs (FATE#321353, FATE#323335). - iwlwifi: mvm: Remove iwl_mvm_update_beacon_abort (FATE#321353, FATE#323335). - iwlwifi: mvm: remove redundant d0i3 flag from the config struct (FATE#321353, FATE#323335). - iwlwifi: mvm: remove shadowing variable (FATE#321353, FATE#323335). - iwlwifi: mvm: remove stray nd_config element (FATE#321353, FATE#323335). - iwlwifi: mvm: remove the vif parameter of iwl_mvm_configure_bcast_filter() (FATE#321353, FATE#323335). - iwlwifi: mvm: remove unnecessary check in iwl_mvm_is_d0i3_supported() (FATE#321353, FATE#323335). - iwlwifi: mvm: remove useless WARN_ON and rely on cfg80211's combination (FATE#321353, FATE#323335). - iwlwifi: mvm: report wakeup for wowlan (FATE#321353, FATE#323335). - iwlwifi: mvm: reset mvm->scan_type when firmware is started (FATE#321353, FATE#323335). - iwlwifi: mvm: return the cooling state index instead of the budget (FATE#321353, FATE#323335). - iwlwifi: mvm: ROC: cleanup time event info on FW failure (FATE#321353, FATE#323335). - iwlwifi: mvm: ROC: Extend the ROC max delay duration & limit ROC duration (FATE#321353, FATE#323335). - iwlwifi: mvm: rs: fix a potential out of bounds access (FATE#321353, FATE#323335). - iwlwifi: mvm: rs: fix a theoretical access to uninitialized array elements (FATE#321353, FATE#323335). - iwlwifi: mvm: rs: fix a warning message (FATE#321353, FATE#323335). - iwlwifi: mvm: rs: fix TPC action decision algorithm (FATE#321353, FATE#323335). - iwlwifi: mvm: rs: fix TPC statistics handling (FATE#321353, FATE#323335). - iwlwifi: mvm: Send power command on BSS_CHANGED_BEACON_INFO if needed (FATE#321353, FATE#323335). - iwlwifi: mvm: set default new STA as non-aggregated (FATE#321353, FATE#323335). - iwlwifi: mvm: set the correct amsdu enum values (FATE#321353, FATE#323335). - iwlwifi: mvm: set the correct descriptor size for tracing (FATE#321353, FATE#323335). - iwlwifi: mvm: small update in the firmware API (FATE#321353, FATE#323335). - iwlwifi: mvm: support A-MSDU in A-MPDU (FATE#321353, FATE#323335). - iwlwifi: mvm: support beacon storing (FATE#321353, FATE#323335). - iwlwifi: mvm: support description for user triggered fw dbg collection (FATE#321353, FATE#323335). - iwlwifi: mvm: support rss queues configuration command (FATE#321353, FATE#323335). - iwlwifi: mvm: Support setting continuous recording debug mode (FATE#321353, FATE#323335). - iwlwifi: mvm: support setting minimum quota from debugfs (FATE#321353, FATE#323335). - iwlwifi: mvm: support sw queue start/stop from mvm (FATE#321353, FATE#323335). - iwlwifi: mvm: take care of padded packets (FATE#321353, FATE#323335). - iwlwifi: mvm: take the transport ref back when leaving (FATE#321353, FATE#323335). - iwlwifi: mvm: track low-latency sources separately (FATE#321353, FATE#323335). - iwlwifi: mvm: update GSCAN capabilities (FATE#321353, FATE#323335). - iwlwifi: mvm: update ucode status before stopping device (FATE#321353, FATE#323335). - iwlwifi: mvm: use build-time assertion for fw trigger ID (FATE#321353, FATE#323335). - iwlwifi: mvm: use firmware station lookup, combine code (FATE#321353, FATE#323335). - iwlwifi: mvm: various trivial cleanups (FATE#321353, FATE#323335). - iwlwifi: mvm: writing zero bytes to debugfs causes a crash (FATE#321353, FATE#323335). - iwlwifi: nvm: fix loading default NVM file (FATE#321353, FATE#323335). - iwlwifi: nvm: fix up phy section when reading it (FATE#321353, FATE#323335). - iwlwifi: pcie: add 9000 series multi queue rx DMA support (FATE#321353, FATE#323335). - iwlwifi: pcie: add infrastructure for multi-queue rx (FATE#321353, FATE#323335). - iwlwifi: pcie: add initial RTPM support for PCI (FATE#321353, FATE#323335). - iwlwifi: pcie: Add new configuration to enable MSIX (FATE#321353, FATE#323335). - iwlwifi: pcie: add pm_prepare and pm_complete ops (FATE#321353, FATE#323335). - iwlwifi: pcie: add RTPM support when wifi is enabled (FATE#321353, FATE#323335). - iwlwifi: pcie: aggregate Flow Handler configuration writes (FATE#321353, FATE#323335). - iwlwifi: pcie: allow the op_mode to block the tx queues (FATE#321353, FATE#323335). - iwlwifi: pcie: allow to pretend to have Tx CSUM for debug (FATE#321353, FATE#323335). - iwlwifi: pcie: avoid restocks inside rx loop if not emergency (FATE#321353, FATE#323335). - iwlwifi: pcie: buffer packets to avoid overflowing Tx queues (FATE#321353, FATE#323335). - iwlwifi: pcie: build an A-MSDU using TSO core (FATE#321353, FATE#323335). - iwlwifi: pcie: configure more RFH settings (FATE#321353, FATE#323335). - iwlwifi: pcie: detect and workaround invalid write ptr behavior (FATE#321353, FATE#323335). - iwlwifi: pcie: do not increment / decrement a bool (FATE#321353, FATE#323335). - iwlwifi: pcie: enable interrupts before releasing the NIC's CPU (FATE#321353, FATE#323335). - iwlwifi: pcie: enable multi-queue rx path (FATE#321353, FATE#323335). - iwlwifi: pcie: extend device reset delay (FATE#321353, FATE#323335). - iwlwifi: pcie: fine tune number of rxbs (FATE#321353, FATE#323335). - iwlwifi: pcie: fix a race in firmware loading flow (FATE#321353, FATE#323335). - iwlwifi: pcie: fix erroneous return value (FATE#321353, FATE#323335). - iwlwifi: pcie: fix global table size (FATE#321353, FATE#323335). - iwlwifi: pcie: fix identation in trans.c (FATE#321353, FATE#323335). - iwlwifi: pcie: fix RF-Kill vs. firmware load race (FATE#321353, FATE#323335). - iwlwifi: pcie: forbid RTPM on device removal (FATE#321353, FATE#323335). - iwlwifi: pcie: mark command queue lock with separate lockdep class (FATE#321353, FATE#323335). - iwlwifi: pcie: prevent skbs shadowing in iwl_trans_pcie_reclaim (FATE#321353, FATE#323335). - iwlwifi: pcie: refactor RXBs reclaiming code (FATE#321353, FATE#323335). - iwlwifi: pcie: remove ICT allocation message (FATE#321353, FATE#323335). - iwlwifi: pcie: remove pointer from debug message (FATE#321353, FATE#323335). - iwlwifi: pcie: re-organize code towards TSO (FATE#321353, FATE#323335). - iwlwifi: pcie: set RB chunk size back to 64 (FATE#321353, FATE#323335). - iwlwifi: pcie: update iwl_mpdu_desc fields (FATE#321353, FATE#323335). - iwlwifi: print index in api/capa flags parsing message (FATE#321353, FATE#323335). - iwlwifi: refactor the code that reads the MAC address from the NVM (FATE#321353, FATE#323335). - iwlwifi: remove IWL_DL_LED (FATE#321353, FATE#323335). - iwlwifi: remove unused parameter from grab_nic_access (FATE#321353, FATE#323335). - iwlwifi: replace d0i3_mode and wowlan_d0i3 with more generic variables (FATE#321353, FATE#323335). - iwlwifi: set max firmware version of 7265 to 17 (FATE#321353, FATE#323335). - iwlwifi: support ucode with d0 unified image - regular and usniffer (FATE#321353, FATE#323335). - iwlwifi: trans: make various conversion macros inlines (FATE#321353, FATE#323335). - iwlwifi: trans: support a callback for ASYNC commands (FATE#321353, FATE#323335). - iwlwifi: treat iwl_parse_nvm_data() MAC addr as little endian (FATE#321353, FATE#323335). - iwlwifi: tt: move ucode_loaded check under mutex (FATE#321353, FATE#323335). - iwlwifi: uninline iwl_trans_send_cmd (FATE#321353, FATE#323335). - iwlwifi: update host command messages to new format (FATE#321353, FATE#323335). - iwlwifi: Update PCI IDs for 8000 and 9000 series (FATE#321353, FATE#323335). - iwlwifi: update support for 3168 series firmware and NVM (FATE#321353, FATE#323335). - iwlwifi: various comments and code cleanups (FATE#321353, FATE#323335). - kabi: ignore fs_info parameter for tracepoints that didn't have it (bsc#1044912). - kabi/severities: ignore kABi changes in iwlwifi stuff itself - powerpc/ftrace: Pass the correct stack pointer for DYNAMIC_FTRACE_WITH_REGS (FATE#322421). - printk: Correctly handle preemption in console_unlock() (bsc#1046434). - printk/xen: Force printk sync mode when migrating Xen guest (bsc#1043347). - RDMA/iw_cxgb4: Always wake up waiter in c4iw_peer_abort_intr() (bsc#1026570). - smartpqi: limit transfer length to 1MB (bsc#1025461). - tty: Destroy ldisc instance on hangup (bnc#1043488). - tty: Fix ldisc crash on reopened tty (bnc#1043488). - tty: Handle NULL tty->ldisc (bnc#1043488). - tty: Move tty_ldisc_kill() (bnc#1043488). - tty: Prepare for destroying line discipline on hangup (bnc#1043488). - tty: Refactor tty_ldisc_reinit() for reuse (bnc#1043488). - tty: Reset c_line from driver's init_termios (bnc#1043488). - tty: Simplify tty_set_ldisc() exit handling (bnc#1043488). - tty: Use 'disc' for line discipline index name (bnc#1043488). - Update config files: add CONFIG_IWLWIFI_PCIE_RTPM=y (FATE#323335) - Update patches.fixes/nfs-svc-rdma.fix (bsc#1044854). Fix bsc reference - Update patches.fixes/xfs-split-default-quota-limits-by-quota-type.patch (bsc#1040941). Fix the bug nr used.

 

Patch

Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-798=1 To bring your system up-to-date, use "zypper patch".


Package List

- openSUSE Leap 42.2 (noarch): kernel-devel-4.4.74-18.20.1 kernel-docs-4.4.74-18.20.3 kernel-docs-html-4.4.74-18.20.3 kernel-docs-pdf-4.4.74-18.20.3 kernel-macros-4.4.74-18.20.1 kernel-source-4.4.74-18.20.1 kernel-source-vanilla-4.4.74-18.20.1 - openSUSE Leap 42.2 (x86_64): kernel-debug-4.4.74-18.20.1 kernel-debug-base-4.4.74-18.20.1 kernel-debug-base-debuginfo-4.4.74-18.20.1 kernel-debug-debuginfo-4.4.74-18.20.1 kernel-debug-debugsource-4.4.74-18.20.1 kernel-debug-devel-4.4.74-18.20.1 kernel-debug-devel-debuginfo-4.4.74-18.20.1 kernel-default-4.4.74-18.20.1 kernel-default-base-4.4.74-18.20.1 kernel-default-base-debuginfo-4.4.74-18.20.1 kernel-default-debuginfo-4.4.74-18.20.1 kernel-default-debugsource-4.4.74-18.20.1 kernel-default-devel-4.4.74-18.20.1 kernel-obs-build-4.4.74-18.20.1 kernel-obs-build-debugsource-4.4.74-18.20.1 kernel-obs-qa-4.4.74-18.20.1 kernel-syms-4.4.74-18.20.1 kernel-vanilla-4.4.74-18.20.1 kernel-vanilla-base-4.4.74-18.20.1 kernel-vanilla-base-debuginfo-4.4.74-18.20.1 kernel-vanilla-debuginfo-4.4.74-18.20.1 kernel-vanilla-debugsource-4.4.74-18.20.1 kernel-vanilla-devel-4.4.74-18.20.1


References

https://www.suse.com/security/cve/CVE-2017-1000365.html https://www.suse.com/security/cve/CVE-2017-7518.html https://bugzilla.suse.com/1025461 https://bugzilla.suse.com/1026570 https://bugzilla.suse.com/1031784 https://bugzilla.suse.com/1039354 https://bugzilla.suse.com/1040182 https://bugzilla.suse.com/1040941 https://bugzilla.suse.com/1043347 https://bugzilla.suse.com/1043488 https://bugzilla.suse.com/1043912 https://bugzilla.suse.com/1044854 https://bugzilla.suse.com/1044912 https://bugzilla.suse.com/1045922 https://bugzilla.suse.com/1046105 https://bugzilla.suse.com/1046434 https://bugzilla.suse.com/1046589 https://bugzilla.suse.com/1046821


Severity
Announcement ID: openSUSE-SU-2017:1825-1
Rating: important
Affected Products: openSUSE Leap 42.2

Related News

Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered
Open Source Strategies for Enhancing Security in Digital Business Operations
5 - 9 min read
Digital transformation, powered by the principles of open-source security , is vital for businesses looking to excel in today's technology-driven
Microsoft Update Mayhem: Rescuing Linux Dual-Boot Systems from Secure Boot Woes
2 - 4 min read
Microsoft's recent patch, intended to strengthen Secure Boot defenses, has resulted in an unexpected setback for Linux-Windows dual-boot setups

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved