SUSE: 2019:2951-1 important: the Linux Kernel

    Date12 Nov 2019
    CategorySuSE
    175
    Posted ByLinuxSecurity Advisories
    An update that solves 12 vulnerabilities and has 98 fixes is now available.
    
       SUSE Security Update: Security update for the Linux Kernel
    ______________________________________________________________________________
    
    Announcement ID:    SUSE-SU-2019:2951-1
    Rating:             important
    References:         #1046299 #1046303 #1046305 #1050244 #1050536 
                        #1050545 #1051510 #1055186 #1061840 #1064802 
                        #1065600 #1066129 #1073513 #1082635 #1083647 
                        #1086323 #1087092 #1089644 #1090631 #1093205 
                        #1096254 #1097583 #1097584 #1097585 #1097586 
                        #1097587 #1097588 #1098291 #1101674 #1109158 
                        #1114279 #1117665 #1119461 #1119465 #1123034 
                        #1123080 #1133140 #1134303 #1135642 #1135854 
                        #1135873 #1135967 #1137040 #1137799 #1138190 
                        #1140090 #1140729 #1140845 #1140883 #1141600 
                        #1142635 #1142667 #1143706 #1144338 #1144375 
                        #1144449 #1144903 #1145099 #1146612 #1148410 
                        #1149119 #1150452 #1150457 #1150465 #1150875 
                        #1151508 #1152624 #1152685 #1152782 #1152788 
                        #1152791 #1153112 #1153158 #1153236 #1153263 
                        #1153476 #1153509 #1153646 #1153681 #1153713 
                        #1153717 #1153718 #1153719 #1153811 #1153969 
                        #1154108 #1154189 #1154354 #1154372 #1154578 
                        #1154607 #1154608 #1154610 #1154611 #1154651 
                        #1154737 #1154747 #1154848 #1154858 #1154905 
                        #1154956 #1155178 #1155179 #1155184 #1155186 
                        #1155671 #1155692 #1155836 #1155982 #1156187 
                        
    Cross-References:   CVE-2018-12207 CVE-2019-10220 CVE-2019-11135
                        CVE-2019-16232 CVE-2019-16233 CVE-2019-16234
                        CVE-2019-16995 CVE-2019-17055 CVE-2019-17056
                        CVE-2019-17133 CVE-2019-17666 CVE-2019-18805
                       
    Affected Products:
                        SUSE Linux Enterprise Module for Public Cloud 15
                        SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
    ______________________________________________________________________________
    
       An update that solves 12 vulnerabilities and has 98 fixes
       is now available.
    
    Description:
    
    
    
       The SUSE Linux Enterprise 15 Azure kernel was updated to receive various
       security and bugfixes.
    
    
       The following security bugs were fixed:
    
       - CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a
         race condition in the Instruction Fetch Unit of the Intel CPU to cause a
         Machine Exception during Page Size Change, causing the CPU core to be
         non-functional.
    
         The Linux Kernel kvm hypervisor was adjusted to avoid page size changes
       in executable pages by splitting / merging huge pages into small pages as
       needed. More information can be found on
       https://www.suse.com/support/kb/doc/?id=7023735
    
       - CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs
         with Transactional Memory support could be used to facilitate
         sidechannel information leaks out of microarchitectural buffers, similar
         to the previously described "Microarchitectural Data Sampling" attack.
    
         The Linux kernel was supplemented with the option to disable TSX
       operation altogether (requiring CPU Microcode updates on older systems)
       and better flushing of microarchitectural buffers (VERW).
    
         The set of options available is described in our TID at
       https://www.suse.com/support/kb/doc/?id=7024251
    
       - CVE-2019-16995: Fix a memory leak in hsr_dev_finalize() if hsr_add_port
         failed to add a port, which may have caused denial of service
         (bsc#1152685).
    
       - CVE-2019-16233: drivers/scsi/qla2xxx/qla_os.c did not check the
         alloc_workqueue return value, leading to a NULL pointer dereference.
         (bsc#1150457).
    
       - CVE-2019-10220: Added sanity checks on the pathnames passed to the user
         space. (bsc#1144903).
    
       - CVE-2019-17666: rtlwifi: Fix potential overflow in P2P code
         (bsc#1154372).
    
       - CVE-2019-16232: Fix a potential NULL pointer dereference in the Marwell
         libertas driver (bsc#1150465).
    
       - CVE-2019-16234: iwlwifi pcie driver did not check the alloc_workqueue
         return value, leading to a NULL pointer dereference. (bsc#1150452).
    
       - CVE-2019-17133: cfg80211 wireless extension did not reject a long SSID
         IE, leading to a Buffer Overflow (bsc#1153158).
    
       - CVE-2019-17056: The AF_NFC network module did not enforce CAP_NET_RAW,
         which meant that unprivileged users could create a raw socket
         (bsc#1152788).
    
       - CVE-2019-18805: Fix signed integer overflow in tcp_ack_update_rtt() that
         could have lead to a denial of service or possibly unspecified other
         impact (bsc#1156187)
       - CVE-2019-17055: The AF_ISDN network module did not enforce CAP_NET_RAW,
         which meant that unprivileged users could create a raw socket
         (bnc#1152782)
    
       The following non-security bugs were fixed:
    
       - 9p: avoid attaching writeback_fid on mmap with type PRIVATE
         (bsc#1051510).
       - Add kernel module compression support (bsc#1135854) For enabling the
         kernel module compress, add the item COMPRESS_MODULES="xz" in config.sh,
         then mkspec will pass it to the spec file.
       - acpi / CPPC: do not require the _PSD method (bsc#1051510).
       - acpi / processor: do not print errors for processorIDs == 0xff
         (bsc#1051510).
       - acpi: CPPC: Set pcc_data[pcc_ss_id] to NULL in
         acpi_cppc_processor_exit() (bsc#1051510).
       - act_mirred: Fix mirred_init_module error handling (bsc#1051510).
       - alsa: bebob: Fix prototype of helper function to return negative value
         (bsc#1051510).
       - alsa: hda - Add laptop imic fixup for ASUS M9V laptop (bsc#1051510).
       - alsa: hda - Apply AMD controller workaround for Raven platform
         (bsc#1051510).
       - alsa: hda - Define a fallback_pin_fixup_tbl for alc269 family
         (bsc#1051510).
       - alsa: hda - Drop unsol event handler for Intel HDMI codecs (bsc#1051510).
       - alsa: hda - Expand pin_match function to match upcoming new tbls
         (bsc#1051510).
       - alsa: hda - Inform too slow responses (bsc#1051510).
       - alsa: hda - Show the fatal CORB/RIRB error more clearly (bsc#1051510).
       - alsa: hda/ca0132 - Fix possible workqueue stall (bsc#1155836).
       - alsa: hda/hdmi: remove redundant assignment to variable pcm_idx
         (bsc#1051510).
       - alsa: hda/realtek - Add support for ALC623 (bsc#1051510).
       - alsa: hda/realtek - Add support for ALC711 (bsc#1051510).
       - alsa: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93
         (bsc#1051510).
       - alsa: hda/realtek - Check beep whitelist before assigning in all codecs
         (bsc#1051510).
       - alsa: hda/realtek - Fix 2 front mics of codec 0x623 (bsc#1051510).
       - alsa: hda/realtek - Fix alienware headset mic (bsc#1051510).
       - alsa: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360
         (bsc#1051510).
       - alsa: hda/sigmatel - remove unused variable 'stac9200_core_init'
         (bsc#1051510).
       - alsa: hda: Add Elkhart Lake pci ID (bsc#1051510).
       - alsa: hda: Add Tigerlake/Jasperlake pci ID (bsc#1051510).
       - alsa: hda: Add support of Zhaoxin controller (bsc#1051510).
       - alsa: hda: Flush interrupts on disabling (bsc#1051510).
       - alsa: hda: Set fifo_size for both playback and capture streams
         (bsc#1051510).
       - alsa: i2c: ak4xxx-adda: Fix a possible null pointer dereference in
         build_adc_controls() (bsc#1051510).
       - alsa: line6: sizeof (byte) is always 1, use that fact (bsc#1051510).
       - alsa: timer: Fix mutex deadlock at releasing card (bsc#1051510).
       - alsa: usb-audio: Add Pioneer DDJ-SX3 PCM quirck (bsc#1051510).
       - alsa: usb-audio: Disable quirks for BOSS Katana amplifiers (bsc#1051510).
       - alsa: usb-audio: Skip bSynchAddress endpoint check if it is invalid
         (bsc#1051510).
       - appletalk: enforce CAP_NET_RAW for raw sockets (bsc#1051510).
       - arcnet: provide a buffer big enough to actually receive packets
         (networking-stable-19_09_30).
       - asoc: Define a set of DAPM pre/post-up events (bsc#1051510).
       - asoc: Intel: Fix use of potentially uninitialized variable (bsc#1051510).
       - asoc: Intel: NHLT: Fix debug print format (bsc#1051510).
       - asoc: dmaengine: Make the pcm->name equal to pcm->id if the name is not
         set (bsc#1051510).
       - asoc: rockchip: i2s: Fix RPM imbalance (bsc#1051510).
       - asoc: rsnd: Reinitialize bit clock inversion flag for every format
         setting (bsc#1051510).
       - asoc: sgtl5000: Fix charge pump source assignment (bsc#1051510).
       - auxdisplay: panel: need to delete scan_timer when misc_register fails in
         panel_attach (bsc#1051510).
       - ax25: enforce CAP_NET_RAW for raw sockets (bsc#1051510).
       - blk-wbt: abstract out end IO completion handler (bsc#1135873).
       - blk-wbt: fix has-sleeper queueing check (bsc#1135873).
       - blk-wbt: improve waking of tasks (bsc#1135873).
       - blk-wbt: move disable check into get_limit() (bsc#1135873).
       - blk-wbt: use wq_has_sleeper() for wq active check (bsc#1135873).
       - block: add io timeout to sysfs (bsc#1148410).
       - block: do not show io_timeout if driver has no timeout handler
         (bsc#1148410).
       - bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices
         (bsc#1051510).
       - bnx2x: Fix VF's VLAN reconfiguration in reload (bsc#1086323 ).
       - boot: Sign non-x86 kernels when possible (boo#1134303)
       - bpf: fix use after free in prog symbol exposure (bsc#1083647).
       - bridge/mdb: remove wrong use of NLM_F_MULTI (networking-stable-19_09_15).
       - btrfs: Ensure btrfs_init_dev_replace_tgtdev sees up to date values
         (bsc#1154651).
       - btrfs: Ensure replaced device does not have pending chunk allocation
         (bsc#1154607).
       - btrfs: bail out gracefully rather than BUG_ON (bsc#1153646).
       - btrfs: block-group: Fix a memory leak due to missing
         btrfs_put_block_group() (bsc#1155178).
       - btrfs: check for the full sync flag while holding the inode lock during
         fsync (bsc#1153713).
       - btrfs: qgroup: Always free PREALLOC META reserve in
         btrfs_delalloc_release_extents() (bsc#1155179).
       - btrfs: remove wrong use of volume_mutex from btrfs_dev_replace_start
         (bsc#1154651).
       - btrfs: tracepoints: Fix bad entry members of qgroup events (bsc#1155186).
       - btrfs: tracepoints: Fix wrong parameter order for qgroup events
         (bsc#1155184).
       - can: dev: call netif_carrier_off() in register_candev() (bsc#1051510).
       - can: mcp251x: mcp251x_hw_reset(): allow more time after a reset
         (bsc#1051510).
       - can: xilinx_can: xcan_probe(): skip error message on deferred probe
         (bsc#1051510).
       - cdc_ether: fix rndis support for Mediatek based smartphones
         (networking-stable-19_09_15).
       - cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize
         (bsc#1051510).
       - ceph: fix directories inode i_blkbits initialization (bsc#1153717).
       - ceph: reconnect connection if session hang in opening state
         (bsc#1153718).
       - ceph: update the mtime when truncating up (bsc#1153719).
       - cfg80211: Purge frame registrations on iftype change (bsc#1051510).
       - cfg80211: add and use strongly typed element iteration macros
         (bsc#1051510).
       - clk: at91: select parent if main oscillator or bypass is enabled
         (bsc#1051510).
       - clk: qoriq: Fix -Wunused-const-variable (bsc#1051510).
       - clk: sirf: Do not reference clk_init_data after registration
         (bsc#1051510).
       - clk: zx296718: Do not reference clk_init_data after registration
         (bsc#1051510).
       - crypto: af_alg - Fix race around ctx->rcvused by making it atomic_t
         (bsc#1154737).
       - crypto: af_alg - Initialize sg_num_bytes in error code path
         (bsc#1051510).
       - crypto: af_alg - consolidation of duplicate code (bsc#1154737).
       - crypto: af_alg - fix race accessing cipher request (bsc#1154737).
       - crypto: af_alg - remove locking in async callback (bsc#1154737).
       - crypto: af_alg - update correct dst SGL entry (bsc#1051510).
       - crypto: af_alg - wait for data at beginning of recvmsg (bsc#1154737).
       - crypto: algif - return error code when no data was processed
         (bsc#1154737).
       - crypto: algif_aead - copy AAD from src to dst (bsc#1154737).
       - crypto: algif_aead - fix reference counting of null skcipher
         (bsc#1154737).
       - crypto: algif_aead - overhaul memory management (bsc#1154737).
       - crypto: algif_aead - skip SGL entries with NULL page (bsc#1154737).
       - crypto: algif_skcipher - overhaul memory management (bsc#1154737).
       - crypto: talitos - fix missing break in switch statement (bsc#1142635).
       - cxgb4: Signedness bug in init_one() (bsc#1097585 bsc#1097586 bsc#1097587
         bsc#1097588 bsc#1097583 bsc#1097584).
       - cxgb4: fix endianness for vlan value in cxgb4_tc_flower (bsc#1064802
         bsc#1066129).
       - cxgb4: offload VLAN flows regardless of VLAN ethtype (bsc#1064802
         bsc#1066129).
       - cxgb4: reduce kernel stack usage in cudbg_collect_mem_region()
         (bsc#1073513).
       - cxgb4: smt: Add lock for atomic_dec_and_test (bsc#1064802 bsc#1066129).
       - cxgb4:Fix out-of-bounds MSI-X info array access
         (networking-stable-19_10_05).
       - dasd_fba: Display '00000000' for zero page when dumping sense
         (bsc#1123080).
       - dmaengine: bcm2835: Print error in case setting DMA mask fails
         (bsc#1051510).
       - dmaengine: imx-sdma: fix size check for sdma script_number (bsc#1051510).
       - drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) (bsc#1051510).
       - drm/amdgpu/si: fix ASIC tests (git-fixes).
       - drm/amdgpu: Check for valid number of registers to read (bsc#1051510).
       - drm/ast: Fixed reboot test may cause system hanged (bsc#1051510).
       - drm/bridge: tc358767: Increase AUX transfer length limit (bsc#1051510).
       - drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 (bsc#1051510).
       - drm/i915/cmdparser: Add support for backward jumps (bsc#1135967)
       - drm/i915/cmdparser: Ignore Length operands during command matching
         (bsc#1135967)
       - drm/i915/cmdparser: Use explicit goto for error paths (bsc#1135967)
       - drm/i915/gen8+: Add RC6 CTX corruption WA (bsc#1135967)
       - drm/i915/gtt: Add read only pages to gen8_pte_encode (bsc#1135967)
       - drm/i915/gtt: Disable read-only support under GVT (bsc#1135967)
       - drm/i915/gtt: Read-only pages for insert_entries on bdw (bsc#1135967)
       - drm/i915: Add gen9 BCS cmdparsing (bsc#1135967)
       - drm/i915: Add support for mandatory cmdparsing (bsc#1135967)
       - drm/i915: Allow parsing of unsized batches (bsc#1135967)
       - drm/i915: Disable Secure Batches for gen6+
       - drm/i915: Lower RM timeout to avoid DSI hard hangs (bsc#1135967)
       - drm/i915: Prevent writing into a read-only object via a GGTT mmap
         (bsc#1135967)
       - drm/i915: Remove Master tables from cmdparser
       - drm/i915: Rename gen7 cmdparser tables (bsc#1135967)
       - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (bsc#1135967)
       - drm/msm/dsi: Implement reset correctly (bsc#1051510).
       - drm/panel: simple: fix AUO g185han01 horizontal blanking (bsc#1051510).
       - drm/radeon: Fix EEH during kexec (bsc#1051510).
       - drm/tilcdc: Register cpufreq notifier after we have initialized crtc
         (bsc#1051510).
       - drm/vmwgfx: Fix double free in vmw_recv_msg() (bsc#1051510).
       - drm: Flush output polling on shutdown (bsc#1051510).
       - e1000e: add workaround for possible stalled packet (bsc#1051510).
       - efi/memattr: Do not bail on zero VA if it equals the region's PA
         (bsc#1051510).
       - efi: cper: print AER info of pcie fatal error (bsc#1051510).
       - efivar/ssdt: Do not iterate over EFI vars if no SSDT override was
         specified (bsc#1051510).
       - firmware: dmi: Fix unlikely out-of-bounds read in save_mem_devices
         (git-fixes).
       - gpu: drm: radeon: Fix a possible null-pointer dereference in
         radeon_connector_set_property() (bsc#1051510).
       - hid: apple: Fix stuck function keys when using FN (bsc#1051510).
       - hid: fix error message in hid_open_report() (bsc#1051510).
       - hid: hidraw: Fix invalid read in hidraw_ioctl (bsc#1051510).
       - hid: logitech-hidpp: do all FF cleanup in hidpp_ff_destroy()
         (bsc#1051510).
       - hid: logitech: Fix general protection fault caused by Logitech driver
         (bsc#1051510).
       - hid: prodikeys: Fix general protection fault during probe (bsc#1051510).
       - hid: sony: Fix memory corruption issue on cleanup (bsc#1051510).
       - hso: fix NULL-deref on tty open (bsc#1051510).
       - hwmon: (acpi_power_meter) Change log level for 'unsafe software power
         cap' (bsc#1051510).
       - hwrng: core - do not wait on add_early_randomness() (git-fixes).
       - hyperv: set nvme msi interrupts to unmanaged (jsc#SLE-8953,
         jsc#SLE-9221, jsc#SLE-4941, bsc#1119461, bsc#1119465, bsc#1138190,
         bsc#1154905).
       - i2c: riic: Clear NACK in tend isr (bsc#1051510).
       - ib/core, ipoib: Do not overreact to SM LID change event (bsc#1154108)
       - ib/core: Add mitigation for Spectre V1 (bsc#1155671)
       - ib/hfi1: Remove overly conservative VM_EXEC flag check (bsc#1144449).
       - ib/mlx5: Consolidate use_umr checks into single function (bsc#1093205).
       - ib/mlx5: Fix MR re-registration flow to use UMR properly (bsc#1093205).
       - ib/mlx5: Report correctly tag matching rendezvous capability
         (bsc#1046305).
       - ieee802154: atusb: fix use-after-free at disconnect (bsc#1051510).
       - ieee802154: ca8210: prevent memory leak (bsc#1051510).
       - ieee802154: enforce CAP_NET_RAW for raw sockets (bsc#1051510).
       - iio: adc: ad799x: fix probe error handling (bsc#1051510).
       - iio: light: opt3001: fix mutex unlock race (bsc#1051510).
       - ima: always return negative code for error (bsc#1051510).
       - input: Revert synaptics-rmi4 patch due to regression (bsc#1155982)
       - input: da9063 - fix capability and drop KEY_SLEEP (bsc#1051510).
       - input: synaptics-rmi4 - avoid processing unknown IRQs (bsc#1051510).
       - integrity: prevent deadlock during digsig verification (bsc#1090631).
       - iommu/amd: Apply the same IVRS IOAPIC workaround to Acer Aspire A315-41
         (bsc#1137799).
       - iommu/amd: Check PM_LEVEL_SIZE() condition in locked section
         (bsc#1154608).
       - iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems
         (bsc#1137799).
       - iommu/amd: Remove domain->updated (bsc#1154610).
       - iommu/amd: Wait for completion of IOTLB flush in attach_device
         (bsc#1154611).
       - ipmi_si: Only schedule continuously in the thread in maintenance mode
         (bsc#1051510).
       - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()'
         (networking-stable-19_09_15).
       - ipv6: Handle missing host route in __ipv6_ifa_notify
         (networking-stable-19_10_05).
       - ipv6: drop incoming packets having a v4mapped source address
         (networking-stable-19_10_05).
       - iwlwifi: do not panic in error path on non-msix systems (bsc#1155692).
       - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us
         (bsc#1101674).
       - ixgbe: sync the first fragment unconditionally (bsc#1133140).
       - kABI workaround for crypto/af_alg changes (bsc#1154737).
       - kABI workaround for drm_vma_offset_node readonly field addition
         (bsc#1135967)
       - kABI workaround for snd_hda_pick_pin_fixup() changes (bsc#1051510).
       - kabi/severities: Whitelist functions internal to radix mm. To call these
         functions you have to first detect if you are running in radix mm mode
         which can't be expected of OOT code.
       - kabi: net: sched: act_sample: fix psample group handling on overwrite
         (networking-stable-19_09_05).
       - kernel-binary.spec.in: Fix build of non-modular kernels (boo#1154578).
       - kernel-subpackage-build: create zero size ghost for uncompressed vmlinux
         (bsc#1154354). It is not strictly necessary to uncompress it so maybe
         the ghost file can be 0 size in this case.
       - kernel/sysctl.c: do not override max_threads provided by userspace
         (bnc#1150875).
       - ksm: cleanup stable_node chain collapse case (bnc#1144338).
       - ksm: fix use after free with merge_across_nodes = 0 (bnc#1144338).
       - ksm: introduce ksm_max_page_sharing per page deduplication limit
         (bnc#1144338).
       - ksm: optimize refile of stable_node_dup at the head of the chain
         (bnc#1144338).
       - ksm: swap the two output parameters of chain/chain_prune (bnc#1144338).
       - kvm: Convert kvm_lock to a mutex (bsc#1117665).
       - kvm: MMU: drop vcpu param in gpte_access (bsc#1117665).
       - kvm: PPC: Book3S HV: use smp_mb() when setting/clearing host_ipi flag
         (bsc#1061840).
       - kvm: vmx, svm: always run with EFER.NXE=1 when shadow paging is active
         (bsc#1117665).
       - kvm: x86, powerpc: do not allow clearing largepages debugfs entry
         (bsc#1117665).
       - kvm: x86: Do not release the page inside mmu_set_spte() (bsc#1117665).
       - kvm: x86: add tracepoints around __direct_map and FNAME(fetch)
         (bsc#1117665).
       - kvm: x86: adjust kvm_mmu_page member to save 8 bytes (bsc#1117665).
       - kvm: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON (bsc#1117665).
       - kvm: x86: make FNAME(fetch) and __direct_map more similar (bsc#1117665).
       - kvm: x86: remove now unneeded hugepage gfn adjustment (bsc#1117665).
       - lib/mpi: Fix karactx leak in mpi_powm (bsc#1051510).
       - libertas: Add missing sentinel at end of if_usb.c fw_table (bsc#1051510).
       - mISDN: enforce CAP_NET_RAW for raw sockets (bsc#1051510).
       - mac80211: Reject malformed SSID elements (bsc#1051510).
       - mac80211: accept deauth frames in IBSS mode (bsc#1051510).
       - mac80211: fix txq null pointer dereference (bsc#1051510).
       - macsec: drop skb sk before calling gro_cells_receive (bsc#1051510).
       - md/raid0: avoid RAID0 data corruption due to layout confusion
         (bsc#1140090).
       - md/raid0: fix warning message for parameter default_layout (bsc#1140090).
       - media: atmel: atmel-isc: fix asd memory allocation (bsc#1135642).
       - media: cpia2_usb: fix memory leaks (bsc#1051510).
       - media: dvb-core: fix a memory leak bug (bsc#1051510).
       - media: exynos4-is: fix leaked of_node references (bsc#1051510).
       - media: gspca: zero usb_buf on error (bsc#1051510).
       - media: hdpvr: Add device num check and handling (bsc#1051510).
       - media: hdpvr: add terminating 0 at end of string (bsc#1051510).
       - media: i2c: ov5645: Fix power sequence (bsc#1051510).
       - media: iguanair: add sanity checks (bsc#1051510).
       - media: omap3isp: Do not set streaming state on random subdevs
         (bsc#1051510).
       - media: omap3isp: Set device on omap3isp subdevs (bsc#1051510).
       - media: ov9650: add a sanity check (bsc#1051510).
       - media: radio/si470x: kill urb on error (bsc#1051510).
       - media: saa7134: fix terminology around saa7134_i2c_eeprom_md7134_gate()
         (bsc#1051510).
       - media: saa7146: add cleanup in hexium_attach() (bsc#1051510).
       - media: sn9c20x: Add MSI MS-1039 laptop to flip_dmi_table (bsc#1051510).
       - media: stkwebcam: fix runtime PM after driver unbind (bsc#1051510).
       - media: ttusb-dec: Fix info-leak in ttusb_dec_send_command()
         (bsc#1051510).
       - memstick: jmb38x_ms: Fix an error handling path in 'jmb38x_ms_probe()'
         (bsc#1051510).
       - mfd: intel-lpss: Remove D3cold delay (bsc#1051510).
       - mld: fix memory leak in mld_del_delrec() (networking-stable-19_09_05).
       - mmc: sdhci-of-esdhc: set DMA snooping based on DMA coherence
         (bsc#1051510).
       - mmc: sdhci: Fix incorrect switch to HS mode (bsc#1051510).
       - mmc: sdhci: improve ADMA error reporting (bsc#1051510).
       - net/ibmvnic: Fix EOI when running in XIVE mode (bsc#1089644, ltc#166495,
         ltc#165544, git-fixes).
       - net/mlx4_en: fix a memory leak bug (bsc#1046299).
       - net/mlx5: Add device ID of upcoming BlueField-2 (bsc#1046303 ).
       - net/mlx5: Fix error handling in mlx5_load() (bsc#1046305 ).
       - net/phy: fix DP83865 10 Mbps HDX loopback disable function
         (networking-stable-19_09_30).
       - net/rds: Fix error handling in rds_ib_add_one()
         (networking-stable-19_10_05).
       - net/rds: fix warn in rds_message_alloc_sgs (bsc#1154848).
       - net/rds: remove user triggered WARN_ON in rds_sendmsg (bsc#1154848).
       - net/sched: act_sample: do not push mac header on ip6gre ingress
         (networking-stable-19_09_30).
       - net: Fix null de-reference of device refcount
         (networking-stable-19_09_15).
       - net: Replace NF_CT_ASSERT() with WARN_ON() (bsc#1146612).
       - net: Unpublish sk from sk_reuseport_cb before call_rcu
         (networking-stable-19_10_05).
       - net: fix skb use after free in netpoll (networking-stable-19_09_05).
       - net: gso: Fix skb_segment splat when splitting gso_size mangled skb
         having linear-headed frag_list (networking-stable-19_09_15).
       - net: openvswitch: free vport unless register_netdevice() succeeds
         (git-fixes).
       - net: qlogic: Fix memory leak in ql_alloc_large_buffers
         (networking-stable-19_10_05).
       - net: qrtr: Stop rx_worker before freeing node
         (networking-stable-19_09_30).
       - net: sched: act_sample: fix psample group handling on overwrite
         (networking-stable-19_09_05).
       - net: stmmac: dwmac-rk: Do not fail if phy regulator is absent
         (networking-stable-19_09_05).
       - net_sched: add policy validation for action attributes
         (networking-stable-19_09_30).
       - net_sched: fix backward compatibility for TCA_ACT_KIND (git-fixes).
       - netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612).
       - nfc: fix attrs checks in netlink interface (bsc#1051510).
       - nfc: fix memory leak in llcp_sock_bind() (bsc#1051510).
       - nfc: pn533: fix use-after-free and memleaks (bsc#1051510).
       - nfs: fix regression (boo#1154189 bsc#1154747).
       - nfsv4.1 - backchannel request should hold ref on xprt (bsc#1152624).
       - nl80211: fix null pointer dereference (bsc#1051510).
       - objtool: Clobber user CFLAGS variable (bsc#1153236).
       - openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC
         (networking-stable-19_09_30).
       - packaging: add support for riscv64
       - pci: Correct pci=resource_alignment parameter example (bsc#1051510).
       - pci: PM: Fix pci_power_up() (bsc#1051510).
       - pci: dra7xx: Fix legacy INTD IRQ handling (bsc#1087092).
       - pci: hv: Use bytes 4 and 5 from instance ID as the pci domain numbers
         (bsc#1153263).
       - pinctrl: tegra: Fix write barrier placement in pmx_writel (bsc#1051510).
       - platform/x86: classmate-laptop: remove unused variable (bsc#1051510).
       - platform/x86: pmc_atom: Add Siemens SIMATIC IPC277E to critclk_systems
         DMI table (bsc#1051510).
       - power: supply: sysfs: ratelimit property read error message
         (bsc#1051510).
       - powerpc/64s/pseries: radix flush translations before MMU is enabled at
         boot (bsc#1055186).
       - powerpc/64s/radix: keep kernel ERAT over local process/guest invalidates
         (bsc#1055186).
       - powerpc/64s/radix: tidy up TLB flushing code (bsc#1055186).
       - powerpc/64s: Rename PPC_INVALIDATE_ERAT to PPC_ISA_3_0_INVALIDATE_ERAT
         (bsc#1055186).
       - powerpc/mm/book3s64: Move book3s64 code to pgtable-book3s64
         (bsc#1055186).
       - powerpc/mm/radix: mark __radix__flush_tlb_range_psize() as
         __always_inline (bsc#1055186).
       - powerpc/mm/radix: mark as __tlbie_pid() and friends as__always_inline
         (bsc#1055186).
       - powerpc/mm: Properly invalidate when setting process table base
         (bsc#1055186).
       - powerpc/mm: mark more tlb functions as __always_inline (bsc#1055186).
       - powerpc/pseries/mobility: use cond_resched when updating device tree
         (bsc#1153112 ltc#181778).
       - powerpc/pseries: Remove confusing warning message (bsc#1109158).
       - powerpc/rtas: allow rescheduling while changing cpu states (bsc#1153112
         ltc#181778).
       - qed: iWARP - Fix default window size to be based on chip (bsc#1050536
         bsc#1050545).
       - qed: iWARP - Fix tc for MPA ll2 connection (bsc#1050536 bsc#1050545).
       - qed: iWARP - Use READ_ONCE and smp_store_release to access ep->state
         (bsc#1050536 bsc#1050545).
       - qed: iWARP - fix uninitialized callback (bsc#1050536 bsc#1050545).
       - qmi_wwan: add support for Cinterion CLS8 devices
         (networking-stable-19_10_05).
       - r8152: Set macpassthru in reset_resume callback (bsc#1051510).
       - rdma/bnxt_re: Fix spelling mistake "missin_resp" -> "missing_resp"
         (bsc#1050244).
       - rdma: Fix goto target to release the allocated memory (bsc#1050244).
       - rds: Fix warning (bsc#1154848).
       - rpm/config.sh: Enable livepatch.
       - rpm/constraints.in: lower disk space required for ARM With a requirement
         of 35GB, only 2 slow workers are usable for ARM. Current aarch64 build
         requires 27G and armv6/7 requires 14G. Set requirements respectively to
         30GB and 20GB.
       - rpm/dtb.spec.in.in: do not make dtb directory inaccessible There is no
         reason to lock down the dtb directory for ordinary users.
       - rpm/kernel-binary.spec.in: Fix kernel-livepatch description typo.
       - rpm/kernel-binary.spec.in: build kernel-*-kgraft only for default SLE
         kernel RT and Azure variants are excluded for the moment. (bsc#1141600)
       - rpm/kernel-binary.spec.in: handle modules.builtin.modinfo It was added
         in 5.2.
       - rpm/kernel-binary.spec.in: support partial rt debug config.
       - rpm/kernel-subpackage-spec: Mention debuginfo in the subpackage
         description (bsc#1149119).
       - rpm/macros.kernel-source: KMPs should depend on kmod-compat to build.
         kmod-compat links are used in find-provides.ksyms, find-requires.ksyms,
         and find-supplements.ksyms in rpm-config-SUSE.
       - rpm/mkspec: Correct tarball URL for rc kernels.
       - rpm/mkspec: Make building DTBs optional.
       - rpm/modflist: Simplify compression support.
       - rpm: raise required disk space for binary packages Current disk space
         constraints (10 GB on s390x, 25 GB on other architectures) no longer
         suffice for 5.3 kernel builds. The statistics show ~30 GB of disk
         consumption on x86_64 and ~11 GB on s390x so raise the constraints to 35
         GB in general and 14 GB on s390x.
       - rpm: support compressed modules Some of our scripts and scriptlets in
         rpm/ do not expect module files not ending with ".ko" which currently
         leads to failure in preuninstall scriptlet of cluster-md-kmp-default
         (and probably also other subpackages). Let those which could be run on
         compressed module files recognize ".ko.xz" in addition to ".ko".
       - rtlwifi: rtl8192cu: Fix value set in descriptor (bsc#1142635).
       - s390/cmf: set_schib_wait add timeout (bsc#1153509, bsc#1153476).
       - s390/cpumsf: Check for CPU Measurement sampling (bsc#1153681 LTC#181855).
       - sch_cbq: validate TCA_CBQ_WRROPT to avoid crash
         (networking-stable-19_10_05).
       - sch_dsmark: fix potential NULL deref in dsmark_init()
         (networking-stable-19_10_05).
       - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
         (networking-stable-19_09_15).
       - sch_netem: fix a divide by zero in tabledist()
         (networking-stable-19_09_30).
       - sched/fair: Avoid divide by zero when rebalancing domains (bsc#1096254).
       - scripts/arch-symbols: add missing link.
       - scsi: lpfc: Fix devices that do not return after devloss followed by
         rediscovery (bsc#1137040).
       - scsi: lpfc: Fix null ptr oops updating lpfc_devloss_tmo via sysfs
         attribute (bsc#1140845).
       - scsi: lpfc: Fix propagation of devloss_tmo setting to nvme transport
         (bsc#1140883).
       - scsi: lpfc: Remove bg debugfs buffers (bsc#1144375).
       - scsi: qedf: Modify abort and tmf handler to handle edge condition and
         flush (bsc#1098291).
       - scsi: qedf: fc_rport_priv reference counting fixes (bsc#1098291).
       - scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump
         (bsc#1143706 bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Fix N2N link reset (bsc#1143706 bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Fix N2N link up fail (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Fix partial flash write of MBI (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Fix wait condition in loop (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Improve logging for scan thread (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Initialized mailbox to prevent driver load failure
         (bsc#1143706 bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: Optimize NPIV tear down process (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Set remove flag for all VP (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Silence fwdump template message (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: fixup incorrect usage of host_byte (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: remove redundant assignment to pointer host (bsc#1143706
         bsc#1082635 bsc#1123034).
       - scsi: qla2xxx: stop timer in shutdown path (bsc#1143706 bsc#1082635
         bsc#1123034).
       - scsi: storvsc: setup 1:1 mapping between hardware queue and CPU queue
         (bsc#1140729).
       - scsi: zfcp: fix reaction on bit error threshold notification
         (bsc#1154956 LTC#182054).
       - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()'
         (networking-stable-19_09_15).
       - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike
         (networking-stable-19_09_15).
       - skge: fix checksum byte order (networking-stable-19_09_30).
       - sock_diag: fix autoloading of the raw_diag module (bsc#1152791).
       - sock_diag: request _diag module only when the family or proto has been
         registered (bsc#1152791).
       - staging: vt6655: Fix memory leak in vt6655_probe (bsc#1051510).
       - staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS
         (bsc#1051510).
       - supporte.conf: add efivarfs to kernel-default-base (bsc#1154858).
       - tcp: Do not dequeue SYN/FIN-segments from write-queue (git-gixes).
       - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR
         (networking-stable-19_09_15).
       - tcp: inherit timestamp on mtu probe (networking-stable-19_09_05).
       - tcp: remove empty skb from write queue in error cases
         (networking-stable-19_09_05).
       - thermal: Fix use-after-free when unregistering thermal zone device
         (bsc#1051510).
       - thermal_hwmon: Sanitize thermal_zone type (bsc#1051510).
       - tipc: add NULL pointer check before calling kfree_rcu
         (networking-stable-19_09_15).
       - tipc: fix unlimited bundling of small messages
         (networking-stable-19_10_05).
       - tracing: Initialize iter->seq after zeroing in tracing_read_pipe()
         (bsc#1151508).
       - tun: fix use-after-free when register netdev failed
         (networking-stable-19_09_15).
       - tuntap: correctly set SOCKWQ_ASYNC_NOSPACE (bsc#1145099).
       - usb: adutux: fix NULL-derefs on disconnect (bsc#1142635).
       - usb: adutux: fix use-after-free on disconnect (bsc#1142635).
       - usb: adutux: fix use-after-free on release (bsc#1051510).
       - usb: chaoskey: fix use-after-free on release (bsc#1051510).
       - usb: dummy-hcd: fix power budget for SuperSpeed mode (bsc#1051510).
       - usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode (bsc#1051510).
       - usb: iowarrior: fix use-after-free after driver unbind (bsc#1051510).
       - usb: iowarrior: fix use-after-free on disconnect (bsc#1051510).
       - usb: iowarrior: fix use-after-free on release (bsc#1051510).
       - usb: ldusb: fix NULL-derefs on driver unbind (bsc#1051510).
       - usb: ldusb: fix control-message timeout (bsc#1051510).
       - usb: ldusb: fix memleak on disconnect (bsc#1051510).
       - usb: ldusb: fix read info leaks (bsc#1051510).
       - usb: ldusb: fix ring-buffer locking (bsc#1051510).
       - usb: legousbtower: fix a signedness bug in tower_probe() (bsc#1051510).
       - usb: legousbtower: fix deadlock on disconnect (bsc#1142635).
       - usb: legousbtower: fix memleak on disconnect (bsc#1051510).
       - usb: legousbtower: fix open after failed reset request (bsc#1142635).
       - usb: legousbtower: fix potential NULL-deref on disconnect (bsc#1142635).
       - usb: legousbtower: fix slab info leak at probe (bsc#1142635).
       - usb: legousbtower: fix use-after-free on release (bsc#1051510).
       - usb: microtek: fix info-leak at probe (bsc#1142635).
       - usb: serial: fix runtime PM after driver unbind (bsc#1051510).
       - usb: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20
         (bsc#1051510).
       - usb: serial: keyspan: fix NULL-derefs on open() and write()
         (bsc#1051510).
       - usb: serial: option: add Telit FN980 compositions (bsc#1051510).
       - usb: serial: option: add support for Cinterion CLS8 devices
         (bsc#1051510).
       - usb: serial: ti_usb_3410_5052: fix port-close races (bsc#1051510).
       - usb: serial: whiteheat: fix potential slab corruption (bsc#1051510).
       - usb: udc: lpc32xx: fix bad bit shift operation (bsc#1051510).
       - usb: usb-skeleton: fix NULL-deref on disconnect (bsc#1051510).
       - usb: usb-skeleton: fix runtime PM after driver unbind (bsc#1051510).
       - usb: usb-skeleton: fix use-after-free after driver unbind (bsc#1051510).
       - usb: usblcd: fix I/O after disconnect (bsc#1142635).
       - usb: usblp: fix runtime PM after driver unbind (bsc#1051510).
       - usb: usblp: fix use-after-free on disconnect (bsc#1051510).
       - usb: xhci: wait for CNR controller not ready bit in xhci resume
         (bsc#1051510).
       - usb: yurex: Do not retry on unexpected errors (bsc#1051510).
       - usb: yurex: fix NULL-derefs on disconnect (bsc#1051510).
       - usbnet: ignore endpoints with invalid wMaxPacketSize (bsc#1051510).
       - usbnet: sanity checking of packet sizes and device mtu (bsc#1051510).
       - vfio_pci: Restore original state on release (bsc#1051510).
       - vhost_net: conditionally enable tx polling (bsc#1145099).
       - video: of: display_timing: Add of_node_put() in of_get_display_timing()
         (bsc#1051510).
       - vsock: Fix a lockdep warning in __vsock_release()
         (networking-stable-19_10_05).
       - watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout
         (bsc#1051510).
       - x86/asm: Fix MWAITX C-state hint value (bsc#1114279).
       - x86/boot/64: Make level2_kernel_pgt pages invalid outside kernel area
         (bnc#1153969).
       - x86/boot/64: Round memory hole size up to next PMD page (bnc#1153969).
       - x86/mm: Use WRITE_ONCE() when setting PTEs (bsc#1114279).
       - xen/netback: fix error path of xenvif_connect_data() (bsc#1065600).
       - xen/pv: Fix Xen PV guest int3 handling (bsc#1153811).
       - xhci: Check all endpoints for LPM timeout (bsc#1051510).
       - xhci: Fix false warning message about wrong bounce buffer write length
         (bsc#1051510).
       - xhci: Increase STS_SAVE timeout in xhci_suspend() (bsc#1051510).
       - xhci: Prevent device initiated U1/U2 link pm if exit latency is too long
         (bsc#1051510).
    
    
    Special Instructions and Notes:
    
       Please reboot the system after installing this update.
    
    Patch Instructions:
    
       To install this SUSE Security Update use the SUSE recommended installation methods
       like YaST online_update or "zypper patch".
    
       Alternatively you can run the command listed for your product:
    
       - SUSE Linux Enterprise Module for Public Cloud 15:
    
          zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-2019-2951=1
    
       - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:
    
          zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2951=1
    
    
    
    Package List:
    
       - SUSE Linux Enterprise Module for Public Cloud 15 (x86_64):
    
          kernel-azure-4.12.14-5.44.1
          kernel-azure-base-4.12.14-5.44.1
          kernel-azure-base-debuginfo-4.12.14-5.44.1
          kernel-azure-debuginfo-4.12.14-5.44.1
          kernel-azure-devel-4.12.14-5.44.1
          kernel-syms-azure-4.12.14-5.44.1
    
       - SUSE Linux Enterprise Module for Public Cloud 15 (noarch):
    
          kernel-devel-azure-4.12.14-5.44.1
          kernel-source-azure-4.12.14-5.44.1
    
       - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (noarch):
    
          kernel-devel-azure-4.12.14-5.44.1
          kernel-source-azure-4.12.14-5.44.1
    
    
    References:
    
       https://www.suse.com/security/cve/CVE-2018-12207.html
       https://www.suse.com/security/cve/CVE-2019-10220.html
       https://www.suse.com/security/cve/CVE-2019-11135.html
       https://www.suse.com/security/cve/CVE-2019-16232.html
       https://www.suse.com/security/cve/CVE-2019-16233.html
       https://www.suse.com/security/cve/CVE-2019-16234.html
       https://www.suse.com/security/cve/CVE-2019-16995.html
       https://www.suse.com/security/cve/CVE-2019-17055.html
       https://www.suse.com/security/cve/CVE-2019-17056.html
       https://www.suse.com/security/cve/CVE-2019-17133.html
       https://www.suse.com/security/cve/CVE-2019-17666.html
       https://www.suse.com/security/cve/CVE-2019-18805.html
       https://bugzilla.suse.com/1046299
       https://bugzilla.suse.com/1046303
       https://bugzilla.suse.com/1046305
       https://bugzilla.suse.com/1050244
       https://bugzilla.suse.com/1050536
       https://bugzilla.suse.com/1050545
       https://bugzilla.suse.com/1051510
       https://bugzilla.suse.com/1055186
       https://bugzilla.suse.com/1061840
       https://bugzilla.suse.com/1064802
       https://bugzilla.suse.com/1065600
       https://bugzilla.suse.com/1066129
       https://bugzilla.suse.com/1073513
       https://bugzilla.suse.com/1082635
       https://bugzilla.suse.com/1083647
       https://bugzilla.suse.com/1086323
       https://bugzilla.suse.com/1087092
       https://bugzilla.suse.com/1089644
       https://bugzilla.suse.com/1090631
       https://bugzilla.suse.com/1093205
       https://bugzilla.suse.com/1096254
       https://bugzilla.suse.com/1097583
       https://bugzilla.suse.com/1097584
       https://bugzilla.suse.com/1097585
       https://bugzilla.suse.com/1097586
       https://bugzilla.suse.com/1097587
       https://bugzilla.suse.com/1097588
       https://bugzilla.suse.com/1098291
       https://bugzilla.suse.com/1101674
       https://bugzilla.suse.com/1109158
       https://bugzilla.suse.com/1114279
       https://bugzilla.suse.com/1117665
       https://bugzilla.suse.com/1119461
       https://bugzilla.suse.com/1119465
       https://bugzilla.suse.com/1123034
       https://bugzilla.suse.com/1123080
       https://bugzilla.suse.com/1133140
       https://bugzilla.suse.com/1134303
       https://bugzilla.suse.com/1135642
       https://bugzilla.suse.com/1135854
       https://bugzilla.suse.com/1135873
       https://bugzilla.suse.com/1135967
       https://bugzilla.suse.com/1137040
       https://bugzilla.suse.com/1137799
       https://bugzilla.suse.com/1138190
       https://bugzilla.suse.com/1140090
       https://bugzilla.suse.com/1140729
       https://bugzilla.suse.com/1140845
       https://bugzilla.suse.com/1140883
       https://bugzilla.suse.com/1141600
       https://bugzilla.suse.com/1142635
       https://bugzilla.suse.com/1142667
       https://bugzilla.suse.com/1143706
       https://bugzilla.suse.com/1144338
       https://bugzilla.suse.com/1144375
       https://bugzilla.suse.com/1144449
       https://bugzilla.suse.com/1144903
       https://bugzilla.suse.com/1145099
       https://bugzilla.suse.com/1146612
       https://bugzilla.suse.com/1148410
       https://bugzilla.suse.com/1149119
       https://bugzilla.suse.com/1150452
       https://bugzilla.suse.com/1150457
       https://bugzilla.suse.com/1150465
       https://bugzilla.suse.com/1150875
       https://bugzilla.suse.com/1151508
       https://bugzilla.suse.com/1152624
       https://bugzilla.suse.com/1152685
       https://bugzilla.suse.com/1152782
       https://bugzilla.suse.com/1152788
       https://bugzilla.suse.com/1152791
       https://bugzilla.suse.com/1153112
       https://bugzilla.suse.com/1153158
       https://bugzilla.suse.com/1153236
       https://bugzilla.suse.com/1153263
       https://bugzilla.suse.com/1153476
       https://bugzilla.suse.com/1153509
       https://bugzilla.suse.com/1153646
       https://bugzilla.suse.com/1153681
       https://bugzilla.suse.com/1153713
       https://bugzilla.suse.com/1153717
       https://bugzilla.suse.com/1153718
       https://bugzilla.suse.com/1153719
       https://bugzilla.suse.com/1153811
       https://bugzilla.suse.com/1153969
       https://bugzilla.suse.com/1154108
       https://bugzilla.suse.com/1154189
       https://bugzilla.suse.com/1154354
       https://bugzilla.suse.com/1154372
       https://bugzilla.suse.com/1154578
       https://bugzilla.suse.com/1154607
       https://bugzilla.suse.com/1154608
       https://bugzilla.suse.com/1154610
       https://bugzilla.suse.com/1154611
       https://bugzilla.suse.com/1154651
       https://bugzilla.suse.com/1154737
       https://bugzilla.suse.com/1154747
       https://bugzilla.suse.com/1154848
       https://bugzilla.suse.com/1154858
       https://bugzilla.suse.com/1154905
       https://bugzilla.suse.com/1154956
       https://bugzilla.suse.com/1155178
       https://bugzilla.suse.com/1155179
       https://bugzilla.suse.com/1155184
       https://bugzilla.suse.com/1155186
       https://bugzilla.suse.com/1155671
       https://bugzilla.suse.com/1155692
       https://bugzilla.suse.com/1155836
       https://bugzilla.suse.com/1155982
       https://bugzilla.suse.com/1156187
    
    _______________________________________________
    sle-security-updates mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    http://lists.suse.com/mailman/listinfo/sle-security-updates
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"67","type":"x","order":"1","pct":57.76,"resources":[]},{"id":"88","title":"Should be more technical","votes":"15","type":"x","order":"2","pct":12.93,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"34","type":"x","order":"3","pct":29.31,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.