Linux Security
    Linux Security
    Linux Security

    SUSE: 2020:2103-1 important: the Linux Kernel

    Date
    201
    Posted By
    An update that solves 15 vulnerabilities and has 81 fixes is now available.
    
       SUSE Security Update: Security update for the Linux Kernel
    ______________________________________________________________________________
    
    Announcement ID:    SUSE-SU-2020:2103-1
    Rating:             important
    References:         #1051510 #1065729 #1071995 #1085030 #1111666 
                        #1112178 #1113956 #1114279 #1144333 #1148868 
                        #1150660 #1151927 #1152624 #1158983 #1159058 
                        #1161016 #1162002 #1162063 #1163309 #1166985 
                        #1167104 #1168081 #1168959 #1169194 #1169514 
                        #1169771 #1169795 #1170011 #1170442 #1170592 
                        #1170617 #1170618 #1171124 #1171424 #1171529 
                        #1171530 #1171558 #1171732 #1171739 #1171743 
                        #1171753 #1171759 #1171835 #1171841 #1171868 
                        #1171904 #1172247 #1172257 #1172344 #1172458 
                        #1172484 #1172537 #1172538 #1172687 #1172719 
                        #1172759 #1172775 #1172781 #1172782 #1172783 
                        #1172871 #1172872 #1172999 #1173060 #1173074 
                        #1173146 #1173265 #1173280 #1173284 #1173428 
                        #1173514 #1173567 #1173573 #1173746 #1173818 
                        #1173820 #1173825 #1173826 #1173833 #1173838 
                        #1173839 #1173845 #1173857 #1174113 #1174115 
                        #1174122 #1174123 #1174186 #1174187 #1174296 
                        #1174343 #1174356 #1174409 #1174438 #1174462 
                        #1174543 
    Cross-References:   CVE-2019-20810 CVE-2019-20908 CVE-2020-0305
                        CVE-2020-10766 CVE-2020-10767 CVE-2020-10768
                        CVE-2020-10769 CVE-2020-10773 CVE-2020-10781
                        CVE-2020-12771 CVE-2020-12888 CVE-2020-13974
                        CVE-2020-14416 CVE-2020-15393 CVE-2020-15780
                       
    Affected Products:
                        SUSE Linux Enterprise Module for Public Cloud 15-SP1
    ______________________________________________________________________________
    
       An update that solves 15 vulnerabilities and has 81 fixes
       is now available.
    
    Description:
    
       The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive
       various security and bugfixes.
    
    
       The following security bugs were fixed:
    
       - CVE-2020-15393: Fixed a memory leak in usbtest_disconnect (bnc#1173514).
       - CVE-2020-12771: An issue was discovered in btree_gc_coalesce in
         drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails
         (bnc#1171732).
       - CVE-2020-12888: The VFIO PCI driver mishandled attempts to access
         disabled memory space (bnc#1171868).
       - CVE-2020-10773: Fixed a memory leak on s390/s390x, in the
         cmm_timeout_hander in file arch/s390/mm/cmm.c (bnc#1172999).
       - CVE-2020-14416: Fixed a race condition in tty->disc_data handling in the
         slip and slcan line discipline could lead to a use-after-free. This
         affects drivers/net/slip/slip.c and drivers/net/can/slcan.c
         (bnc#1162002).
       - CVE-2020-10768: Fixed an issue with the prctl() function, where indirect
         branch speculation could be enabled even though it was diabled before
         (bnc#1172783).
       - CVE-2020-10766: Fixed an issue which allowed an attacker with a local
         account to disable SSBD protection (bnc#1172781).
       - CVE-2020-10767: Fixed an issue where Indirect Branch Prediction Barrier
         was disabled in certain circumstances, leaving the system open to a
         spectre v2 style attack (bnc#1172782).
       - CVE-2020-13974: Fixed a integer overflow in drivers/tty/vt/keyboard.c,
         if k_ascii is called several times in a row (bnc#1172775).
       - CVE-2019-20810: Fixed a memory leak in go7007_snd_init in
         drivers/media/usb/go7007/snd-go7007.c because it did not call
         snd_card_free for a failure path (bnc#1172458).
       - CVE-2020-10769: A buffer over-read flaw was found in
         crypto_authenc_extractkeys in crypto/authenc.c in the IPsec
         Cryptographic algorithm's module, authenc. This flaw allowed a local
         attacker with user privileges to cause a denial of service (bnc#1173265).
       - CVE-2020-10781: Fixed a denial of service issue in the ZRAM
         implementation (bsc#1173074).
       - CVE-2020-0305: In cdev_get of char_dev.c, there is a possible
         use-after-free due to a race condition. This could lead to local
         escalation of privilege with System execution privileges needed. User
         interaction is not needed for exploitation (bsc#1174462).
       - CVE-2019-20908: An issue was discovered in drivers/firmware/efi/efi.c:
         incorrect access permissions for the efivar_ssdt ACPI variable could be
         used by attackers to bypass lockdown or secure boot restrictions, aka
         CID-1957a85b0032 (bsc#1173567).
       - CVE-2020-15780: An issue was discovered in drivers/acpi/acpi_configfs.c:
         injection of malicious ACPI tables via configfs could be used by
         attackers to bypass lockdown and secure boot restrictions, aka
         CID-75b0cea7bf30 (bsc#1173573).
    
       The following non-security bugs were fixed:
    
       - ACPI: GED: add support for _Exx / _Lxx handler methods (bsc#1111666).
       - ACPI: GED: use correct trigger type field in _Exx / _Lxx handling
         (bsc#1111666).
       - ACPI: NFIT: Fix unlock on error in scrub_show() (bsc#1171753).
       - ACPI: PM: Avoid using power resources if there are none for D0
         (bsc#1051510).
       - ACPI: sysfs: Fix pm_profile_attr type (bsc#1111666).
       - ACPI: video: Use native backlight on Acer Aspire 5783z (bsc#1111666).
       - ACPI: video: Use native backlight on Acer TravelMate 5735Z (bsc#1111666).
       - ALSA: es1688: Add the missed snd_card_free() (bsc#1051510).
       - ALSA: hda: Add ElkhartLake HDMI codec vid (bsc#1111666).
       - ALSA: hda: add sienna_cichlid audio asic id for sienna_cichlid up
         (bsc#1111666).
       - ALSA: hda/hdmi - enable runtime pm for newer AMD display audio
         (bsc#1111666).
       - ALSA: hda - let hs_mic be picked ahead of hp_mic (bsc#1111666).
       - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines
         (bsc#1111666).
       - ALSA: hda/realtek - Add LED class support for micmute LED (bsc#1111666).
       - ALSA: hda/realtek - Enable micmute LED on and HP system (bsc#1111666).
       - ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534
         (bsc#1111666).
       - ALSA: hda/realtek - Fix unused variable warning w/o
         CONFIG_LEDS_TRIGGER_AUDIO (bsc#1111666).
       - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO
         (bsc#1111666).
       - ALSA: lx6464es - add support for LX6464ESe pci express variant
         (bsc#1111666).
       - ALSA: opl3: fix infoleak in opl3 (bsc#1111666).
       - ALSA: pcm: disallow linking stream to itself (bsc#1111666).
       - ALSA: usb-audio: Add duplex sound support for USB devices using implicit
         feedback (bsc#1111666).
       - ALSA: usb-audio: Add Pioneer DJ DJM-900NXS2 support (bsc#1111666).
       - ALSA: usb-audio: add quirk for MacroSilicon MS2109 (bsc#1111666).
       - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt
         Dock (bsc#1111666).
       - ALSA: usb-audio: Clean up quirk entries with macros (bsc#1111666).
       - ALSA: usb-audio: Fix inconsistent card PM state after resume
         (bsc#1111666).
       - ALSA: usb-audio: Fix packet size calculation (bsc#1111666).
       - ALSA: usb-audio: Fix racy list management in output queue (bsc#1111666).
       - ALSA: usb-audio: Improve frames size computation (bsc#1111666).
       - ALSA: usb-audio: Manage auto-pm of all bundled interfaces (bsc#1111666).
       - ALSA: usb-audio: Use the new macro for HP Dock rename quirks
         (bsc#1111666).
       - amdgpu: a NULL ->mm does not mean a thread is a kthread (git-fixes).
       - arm64: map FDT as RW for early_init_dt_scan() (jsc#SLE-12423).
       - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb (bsc#1111666).
       - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx (bsc#1111666).
       - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg (bsc#1111666).
       - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb
         (bsc#1111666).
       - ax25: fix setsockopt(SO_BINDTODEVICE) (networking-stable-20_05_27).
       - b43: Fix connection problem with WPA3 (bsc#1111666).
       - b43_legacy: Fix connection problem with WPA3 (bsc#1111666).
       - bcache: Fix an error code in bch_dump_read() (git fixes (block drivers)).
       - be2net: fix link failure after ethtool offline test (git-fixes).
       - block: nr_sects_write(): Disable preemption on seqcount write
         (bsc#1173818).
       - block: remove QUEUE_FLAG_STACKABLE (git fixes (block drivers)).
       - block: sed-opal: fix sparse warning: convert __be64 data (git fixes
         (block drivers)).
       - Bluetooth: Add SCO fallback for invalid LMP parameters error
         (bsc#1111666).
       - bnxt_en: Fix AER reset logic on 57500 chips (git-fixes).
       - bnxt_en: Fix ethtool selftest crash under error conditions (git-fixes).
       - bnxt_en: Fix handling FRAG_ERR when NVM_INSTALL_UPDATE cmd fails
         (git-fixes).
       - bnxt_en: Fix ipv6 RFS filter matching logic (git-fixes).
       - bnxt_en: fix NULL dereference in case SR-IOV configuration fails
         (git-fixes).
       - bnxt_en: Fix VF anti-spoof filter setup (networking-stable-20_05_12).
       - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features()
         (networking-stable-20_05_12).
       - bnxt_en: Improve AER slot reset (networking-stable-20_05_12).
       - brcmfmac: fix wrong location to get firmware feature (bsc#1111666).
       - brcmfmac: Transform compatible string for FW loading (bsc#1169771).
       - btrfs: add assertions for tree == inode->io_tree to extent IO helpers
         (bsc#1174438).
       - btrfs: add new helper btrfs_lock_and_flush_ordered_range (bsc#1174438).
       - btrfs: Always use a cached extent_state in
         btrfs_lock_and_flush_ordered_range (bsc#1174438).
       - btrfs: do not zero f_bavail if we have available space (bsc#1168081).
       - btrfs: do not zero f_bavail if we have available space (bsc#1168081).
       - btrfs: drop argument tree from btrfs_lock_and_flush_ordered_range
         (bsc#1174438).
       - btrfs: fix extent_state leak in btrfs_lock_and_flush_ordered_range
         (bsc#1174438).
       - btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof
         (bsc#1174438).
       - btrfs: fix hang on snapshot creation after RWF_NOWAIT write
         (bsc#1174438).
       - btrfs: fix RWF_NOWAIT write not failling when we need to cow
         (bsc#1174438).
       - btrfs: fix RWF_NOWAIT writes blocking on extent locks and waiting for IO
         (bsc#1174438).
       - btrfs: qgroup: Fix a bug that prevents qgroup to be re-enabled after
         disable (bsc#1172247).
       - btrfs: Return EAGAIN if we can't start no snpashot write in
         check_can_nocow (bsc#1174438).
       - btrfs: use correct count in btrfs_file_write_iter() (bsc#1174438).
       - btrfs: Use newly introduced btrfs_lock_and_flush_ordered_range
         (bsc#1174438).
       - btrfs: volumes: Remove ENOSPC-prone btrfs_can_relocate() (bsc#1171124).
       - bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads
         (bsc#1111666).
       - carl9170: remove P2P_GO support (bsc#1111666).
       - CDC-ACM: heed quirk also in error handling (git-fixes).
       - ceph: convert mdsc->cap_dirty to a per-session list (bsc#1167104).
       - ceph: request expedited service on session's last cap flush
         (bsc#1167104).
       - cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages
         (bsc#1173857).
       - char/random: Add a newline at the end of the file (jsc#SLE-12423).
       - cifs: get rid of unused parameter in reconn_setup_dfs_targets()
         (bsc#1144333).
       - cifs: handle hostnames that resolve to same ip in failover (bsc#1144333
         bsc#1161016).
       - cifs: set up next DFS target before generic_ip_connect() (bsc#1144333
         bsc#1161016).
       - clk: bcm2835: Fix return type of bcm2835_register_gate (bsc#1051510).
       - clk: clk-flexgen: fix clock-critical handling (bsc#1051510).
       - clk: sunxi: Fix incorrect usage of round_down() (bsc#1051510).
       - clocksource: dw_apb_timer: Make CPU-affiliation being optional
         (bsc#1111666).
       - compat_ioctl: block: handle BLKREPORTZONE/BLKRESETZONE (git fixes (block
         drivers)).
       - compat_ioctl: block: handle Persistent Reservations (git fixes (block
         drivers)).
       - copy_{to,from}_user(): consolidate object size checks (git fixes).
       - crypto: algboss - do not wait during notifier callback (bsc#1111666).
       - crypto: algif_skcipher - Cap recv SG list at ctx->used (bsc#1111666).
       - crypto: caam - update xts sector size for large input length
         (bsc#1111666).
       - crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is
         fully iterated (bsc#1111666).
       - crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is
         fully iterated (git-fixes).
       - Crypto/chcr: fix for ccm(aes) failed test (bsc#1111666).
       - crypto: chelsio/chtls: properly set tp->lsndtime (bsc#1111666).
       - crypto: talitos - fix IPsec cipher in length (git-fixes).
       - crypto: talitos - reorder code in talitos_edesc_alloc() (git-fixes).
       - debugfs: Check module state before warning in {full/open}_proxy_open()
         (bsc#1173746).
       - devinet: fix memleak in inetdev_init() (networking-stable-20_06_07).
       - /dev/mem: Add missing memory barriers for devmem_inode (git-fixes).
       - /dev/mem: Revoke mappings when a driver claims the region (git-fixes).
       - dmaengine: tegra210-adma: Fix an error handling path in
         'tegra_adma_probe()' (bsc#1111666).
       - dm btree: increase rebalance threshold in __rebalance2() (git fixes
         (block drivers)).
       - dm cache: fix a crash due to incorrect work item cancelling (git fixes
         (block drivers)).
       - dm crypt: fix benbi IV constructor crash if used in authenticated mode
         (git fixes (block drivers)).
       - dm: fix potential for q->make_request_fn NULL pointer (git fixes (block
         drivers)).
       - dm space map common: fix to ensure new block isn't already in use (git
         fixes (block drivers)).
       - dm: various cleanups to md->queue initialization code (git fixes).
       - dm verity fec: fix hash block number in verity_fec_decode (git fixes
         (block drivers)).
       - dm verity fec: fix memory leak in verity_fec_dtr (git fixes (block
         drivers)).
       - dpaa_eth: fix usage as DSA master, try 3 (networking-stable-20_05_27).
       - driver-core, libnvdimm: Let device subsystems add local lockdep coverage
         (bsc#1171753).
       - Drivers: hv: Change flag to write log level in panic msg to false
         (bsc#1170617, bsc#1170618).
       - drivers: soc: ti: knav_qmss_queue: Make knav_gp_range_ops static
         (bsc#1051510).
       - drm: amd/display: fix Kconfig help text (bsc#1113956) 	* only fix
         DEBUG_KERNEL_DC
       - drm: bridge: adv7511: Extend list of audio sample rates (bsc#1111666).
       - drm/dp_mst: Increase ACT retry timeout to 3s (bsc#1113956)  * context
         changes
       - drm: encoder_slave: fix refcouting error for modules (bsc#1111666).
       - drm: encoder_slave: fix refcouting error for modules (bsc#1114279)
       - drm/i915/icl+: Fix hotplug interrupt disabling after storm detection
         (bsc#1112178)
       - drm/i915: Whitelist context-local timestamp in the gen9 cmdparser
         (bsc#1111666).
       - drm/mediatek: Check plane visibility in atomic_update (bsc#1113956)  *
         context changes
       - drm/msm/dpu: fix error return code in dpu_encoder_init (bsc#1111666).
       - drm: panel-orientation-quirks: Add quirk for Asus T101HA panel
         (bsc#1111666).
       - drm: panel-orientation-quirks: Use generic orientation-data for Acer
         S1003 (bsc#1111666).
       - drm/qxl: Use correct notify port address when creating cursor ring
         (bsc#1113956)
       - drm/radeon: fix double free (bsc#1113956)
       - drm/radeon: fix fb_div check in ni_init_smc_spll_table() (bsc#1113956)
       - drm/sun4i: hdmi ddc clk: Fix size of m divider (bsc#1111666).
       - drm/tegra: hub: Do not enable orphaned window group (bsc#1111666).
       - drm/vkms: Hold gem object while still in-use (bsc#1113956)  * context
         changes
       - Drop another USB dwc3 gadget patch that broke the build
       - Drop USB dwc3 gadget patch that broke the build on openSUSE-15.1 branch
       - e1000: Distribute switch variables for initialization (bsc#1111666).
       - e1000e: Disable TSO for buffer overrun workaround (bsc#1051510).
       - e1000e: Do not wake up the system via WOL if device wakeup is disabled
         (bsc#1051510).
       - e1000e: Relax condition to trigger reset for ME workaround (bsc#1111666).
       - EDAC/amd64: Read back the scrub rate PCI register on F15h (bsc#1114279).
       - efi/random: Increase size of firmware supplied randomness
         (jsc#SLE-12423).
       - efi/random: Treat EFI_RNG_PROTOCOL output as bootloader randomness
         (jsc#SLE-12423).
       - efi: READ_ONCE rng seed size before munmap (jsc#SLE-12423).
       - efi: Reorder pr_notice() with add_device_randomness() call
         (jsc#SLE-12423).
       - evm: Check also if *tfm is an error pointer in init_desc() (bsc#1051510).
       - evm: Fix a small race in init_desc() (bsc#1051510).
       - ext4: fix a data race at inode->i_blocks (bsc#1171835).
       - ext4: fix partial cluster initialization when splitting extent
         (bsc#1173839).
       - ext4: fix race between ext4_sync_parent() and rename() (bsc#1173838).
       - ext4, jbd2: ensure panic by fix a race between jbd2 abort and ext4 error
         handlers (bsc#1173833).
       - extcon: adc-jack: Fix an error handling path in 'adc_jack_probe()'
         (bsc#1051510).
       - fanotify: fix ignore mask logic for events on child and on dir
         (bsc#1172719).
       - fdt: add support for rng-seed (jsc#SLE-12423).
       - fdt: Update CRC check for rng-seed (jsc#SLE-12423).
       - firmware: imx: scu: Fix corruption of header (git-fixes).
       - firmware: imx: scu: Fix possible memory leak in imx_scu_probe()
         (bsc#1111666).
       - Fix boot crash with MD (bsc#1174343) Refresh
         patches.suse/mdraid-fix-read-write-bytes-accounting.patch
       - fix multiplication overflow in copy_fdtable() (bsc#1173825).
       - Fix Patch-mainline tag in the previous zram fix patch
       - fpga: dfl: afu: Corrected error handling levels (git-fixes).
       - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks
         (networking-stable-20_05_12).
       - gpiolib: Document that GPIO line names are not globally unique
         (bsc#1051510).
       - gpu: host1x: Detach driver on unregister (bsc#1111666).
       - gpu: ipu-v3: pre: do not trigger update if buffer address does not
         change (bsc#1111666).
       - HID: magicmouse: do not set up autorepeat (git-fixes).
       - HID: sony: Fix for broken buttons on DS3 USB dongles (bsc#1051510).
       - hv_netvsc: Fix netvsc_start_xmit's return type (git-fixes).
       - hwmon: (acpi_power_meter) Fix potential memory leak in
         acpi_power_meter_add() (bsc#1111666).
       - hwmon: (emc2103) fix unable to change fan pwm1_enable attribute
         (bsc#1111666).
       - hwmon: (max6697) Make sure the OVERT mask is set correctly (bsc#1111666).
       - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665
         (bsc#1111666).
       - i2c: eg20t: Load module automatically if ID matches (bsc#1111666).
       - i2c: mlxcpld: check correct size of maximum RECV_LEN packet
         (bsc#1111666).
       - i40e: reduce stack usage in i40e_set_fc (git-fixes).
       - IB/hfi1: Do not destroy hfi1_wq when the device is shut down
         (bsc#1174409).
       - IB/hfi1: Do not destroy link_wq when the device is shut down
         (bsc#1174409).
       - ibmveth: Fix max MTU limit (bsc#1173428 ltc#186397).
       - ibmvnic: continue to init in CRQ reset returns H_CLOSED (bsc#1173280
         ltc#185369).
       - ibmvnic: Flush existing work items before device removal (bsc#1065729).
       - ibmvnic: Harden device login requests (bsc#1170011 ltc#183538).
       - iio: buffer: Do not allow buffers without any channels enabled to be
         activated (bsc#1051510).
       - iio:health:afe4404 Fix timestamp alignment and prevent data leak
         (bsc#1111666).
       - iio:humidity:hdc100x Fix alignment and data leak issues (bsc#1111666).
       - iio:magnetometer:ak8974: Fix alignment and data leak issues
         (bsc#1111666).
       - iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe()
         (bsc#1111666).
       - iio: pressure: bmp280: Tolerate IRQ before registering (bsc#1051510).
       - iio:pressure:ms5611 Fix buffer element alignment (bsc#1111666).
       - iio: pressure: zpa2326: handle pm_runtime_get_sync failure (bsc#1111666).
       - ima: Directly assign the ima_default_policy pointer to ima_rules
         (bsc#1051510).
       - ima: Fix ima digest hash table key calculation (bsc#1051510).
       - include/asm-generic/topology.h: guard cpumask_of_node() macro argument
         (bsc#1148868).
       - Input: i8042 - add Lenovo XiaoXin Air 12 to i8042 nomux list
         (bsc#1111666).
       - input: i8042 - Remove special PowerPC handling (git-fixes).
       - Input: synaptics - add a second working PNP_ID for Lenovo T470s
         (bsc#1111666).
       - intel_idle: Graceful probe failure when MWAIT is disabled (bsc#1174115).
       - intel_th: Fix a NULL dereference when hub driver is not loaded
         (bsc#1111666).
       - ipvlan: call dev_change_flags when ipvlan mode is reset (git-fixes).
       - ixgbevf: Remove limit of 10 entries for unicast filter list (git-fixes).
       - jbd2: avoid leaking transaction credits when unreserving handle
         (bsc#1173845).
       - jbd2: Preserve kABI when adding j_abort_mutex (bsc#1173833).
       - kabi: hv: prevent struct device_node to become defined (bsc#1172871).
       - kabi: ppc64le: prevent struct dma_map_ops to become defined
         (jsc#SLE-12423).
       - kABI: protect struct mlx5_cmd_work_ent (kabi).
       - kABI: reintroduce inet_hashtables.h include to l2tp_ip (kabi).
       - kernfs: fix barrier usage in __kernfs_new_node() (bsc#1111666).
       - KVM: nVMX: Do not reread VMCS-agnostic state when switching VMCS
         (bsc#1114279).
       - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02
         (bsc#1114279).
       - KVM: x86: Fix APIC page invalidation race (bsc#1174122).
       - kvm: x86: Fix L1TF mitigation for shadow MMU (bsc#1171904).
       - KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated
         (bsc#1171904).
       - KVM: x86: only do L1TF workaround on affected processors (bsc#1171904).
       - l2tp: add sk_family checks to l2tp_validate_socket
         (networking-stable-20_06_07).
       - l2tp: do not use inet_hash()/inet_unhash() (networking-stable-20_06_07).
       - libceph: do not omit recovery_deletes in target_copy() (bsc#1174113).
       - libceph: ignore pool overlay and cache logic on redirects (bsc#1173146).
       - libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock
         (bsc#1171753).
       - libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant
         (bsc#1171753).
       - libnvdimm/bus: Stop holding nvdimm_bus_list_mutex over __nd_ioctl()
         (bsc#1171753).
       - libnvdimm: cover up changes in struct nvdimm_bus (bsc#1171753).
       - libnvdimm: cover up nd_pfn_sb changes (bsc#1171759).
       - libnvdimm/dax: Pick the right alignment default when creating dax
         devices (bsc#1171759).
       - libnvdimm/label: Remove the dpa align check (bsc#1171759).
       - libnvdimm/of_pmem: Provide a unique name for bus provider (bsc#1171739).
       - libnvdimm/pfn_dev: Add a build check to make sure we notice when struct
         page size change (bsc#1171743).
       - libnvdimm/pfn_dev: Add page size and struct page size to pfn superblock
         (bsc#1171759).
       - libnvdimm/pfn: Prevent raw mode fallback if pfn-infoblock valid
         (bsc#1171743).
       - libnvdimm/pmem: Advance namespace seed for specific probe errors
         (bsc#1171743).
       - libnvdimm/region: Initialize bad block for volatile namespaces
         (bnc#1151927 5.3.6).
       - libnvdimm/region: Rewrite _probe_success() to _advance_seeds()
         (bsc#1171743).
       - libnvdimm: Use PAGE_SIZE instead of SZ_4K for align check (bsc#1171759).
       - livepatch: Apply vmlinux-specific KLP relocations early (bsc#1071995).
       - livepatch: Disallow vmlinux.ko (bsc#1071995).
       - livepatch: Make klp_apply_object_relocs static (bsc#1071995).
       - livepatch: Prevent module-specific KLP rela sections from referencing
         vmlinux symbols (bsc#1071995).
       - livepatch: Remove .klp.arch (bsc#1071995).
       - loop: replace kill_bdev with invalidate_bdev (bsc#1173820).
       - lpfc_debugfs: get rid of pointless access_ok() (bsc#1172687 bsc#1171530).
       - lpfc: Synchronize NVME transport and lpfc driver devloss_tmo
         (bcs#1173060).
       - mac80211: add option for setting control flags (bsc#1111666).
       - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX
         (bsc#1111666).
       - mailbox: imx: Disable the clock on devm_mbox_controller_register()
         failure (git-fixes).
       - md: Avoid namespace collision with bitmap API (git fixes (block
         drivers)).
       - mdraid: fix read/write bytes accounting (bsc#1172537).
       - md: use memalloc scope APIs in mddev_suspend()/mddev_resume()
         (bsc#1166985)).
       - media: cec: silence shift wrapping warning in __cec_s_log_addrs()
         (git-fixes).
       - media: si2157: Better check for running tuner in init (bsc#1111666).
       - mlxsw: core: Do not use WQ_MEM_RECLAIM for mlxsw ordered workqueue
         (git-fixes).
       - mlxsw: core: Do not use WQ_MEM_RECLAIM for mlxsw workqueue (git-fixes).
       - mlxsw: pci: Return error on PCI reset timeout (git-fixes).
       - mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly
         (networking-stable-20_05_12).
       - mlxsw: spectrum: Disallow prio-tagged packets when PVID is removed
         (git-fixes).
       - mlxsw: spectrum_dpipe: Add missing error path (git-fixes).
       - mlxsw: spectrum: Prevent force of 56G (git-fixes).
       - mlxsw: spectrum_router: Refresh nexthop neighbour when it becomes dead
         (git-fixes).
       - mlxsw: spectrum_router: Remove inappropriate usage of WARN_ON()
         (git-fixes).
       - mlxsw: spectrum_switchdev: Add MDB entries in prepare phase (git-fixes).
       - mlxsw: spectrum_switchdev: Do not treat static FDB entries as sticky
         (git-fixes).
       - mmc: block: Fix request completion in the CQE timeout path (bsc#1111666).
       - mmc: block: Fix use-after-free issue for rpmb (bsc#1111666).
       - mmc: fix compilation of user API (bsc#1051510).
       - mmc: sdhci: do not enable card detect interrupt for gpio cd type
         (bsc#1111666).
       - mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk
         (bsc#1111666).
       - Move upstreamed lpfc patches into sorted section
       - mvpp2: remove misleading comment (git-fixes).
       - net: be more gentle about silly gso requests coming from user
         (networking-stable-20_06_07).
       - net: check untrusted gso_size at kernel entry
         (networking-stable-20_06_07).
       - net/cxgb4: Check the return from t4_query_params properly (git-fixes).
       - net: dsa: bcm_sf2: Fix node reference count (git-fixes).
       - net: dsa: loop: Add module soft dependency (networking-stable-20_05_16).
       - net: dsa: mt7530: fix roaming from DSA user ports
         (networking-stable-20_05_27).
       - net: ena: add intr_moder_rx_interval to struct ena_com_dev and use it
         (git-fixes).
       - net: ena: add missing ethtool TX timestamping indication (git-fixes).
       - net: ena: avoid memory access violation by validating req_id properly
         (git-fixes).
       - net: ena: do not wake up tx queue when down (git-fixes).
       - net: ena: ena-com.c: prevent NULL pointer dereference (git-fixes).
       - net: ena: ethtool: use correct value for crc32 hash (git-fixes).
       - net: ena: fix continuous keep-alive resets (git-fixes).
       - net: ena: fix corruption of dev_idx_to_host_tbl (git-fixes).
       - net: ena: fix default tx interrupt moderation interval (git-fixes).
       - net: ena: fix incorrect default RSS key (git-fixes).
       - net: ena: fix incorrectly saving queue numbers when setting RSS
         indirection table (git-fixes).
       - net: ena: fix issues in setting interrupt moderation params in ethtool
         (git-fixes).
       - net: ena: fix potential crash when rxfh key is NULL (git-fixes).
       - net: ena: fix retrieval of nonadaptive interrupt moderation intervals
         (git-fixes).
       - net: ena: fix uses of round_jiffies() (git-fixes).
       - net: ena: make ena rxfh support ETH_RSS_HASH_NO_CHANGE (git-fixes).
       - net: ena: reimplement set/get_coalesce() (git-fixes).
       - net: ena: rss: do not allocate key when not supported (git-fixes).
       - net: ena: rss: fix failure to get indirection table (git-fixes).
       - net: ena: rss: store hash function as values and not bits (git-fixes).
       - netfilter: connlabels: prefer static lock initialiser (git-fixes).
       - netfilter: ctnetlink: netns exit must wait for callbacks (bsc#1169795).
       - netfilter: not mark a spinlock as __read_mostly (git-fixes).
       - net: fix a potential recursive NETDEV_FEAT_CHANGE
         (networking-stable-20_05_16).
       - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast*
         (networking-stable-20_05_27).
       - net: ipip: fix wrong address family in init error path
         (networking-stable-20_05_27).
       - net: ipvlan: Fix ipvlan device tso disabled while NETIF_F_IP_CSUM is set
         (git-fixes).
       - net: macsec: preserve ingress frame ordering
         (networking-stable-20_05_12).
       - net/mlx4_core: drop useless LIST_HEAD (git-fixes).
       - net/mlx4_core: fix a memory leak bug (git-fixes).
       - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc()
         (networking-stable-20_05_12).
       - net/mlx5: Add command entry handling completion
         (networking-stable-20_05_27).
       - net/mlx5: Avoid panic when setting vport rate (git-fixes).
       - net/mlx5: Continue driver initialization despite debugfs failure
         (git-fixes).
       - net/mlx5e: ethtool, Fix a typo in WOL function names (git-fixes).
       - net/mlx5e: Fix traffic duplication in ethtool steering (git-fixes).
       - net/mlx5e: Remove unnecessary clear_bit()s (git-fixes).
       - net/mlx5e: Update netdev txq on completions during closure
         (networking-stable-20_05_27).
       - net/mlx5: Fix command entry leak in Internal Error State
         (networking-stable-20_05_12).
       - net/mlx5: Fix crash upon suspend/resume (networking-stable-20_06_07).
       - net/mlx5: Fix forced completion access non initialized command entry
         (networking-stable-20_05_12).
       - net: mvmdio: allow up to four clocks to be specified for orion-mdio
         (git-fixes).
       - net: mvpp2: prs: Do not override the sign bit in SRAM parser shift
         (git-fixes).
       - net: phy: fix aneg restart in phy_ethtool_set_eee
         (networking-stable-20_05_16).
       - netprio_cgroup: Fix unlimited memory leak of v2 cgroups
         (networking-stable-20_05_16).
       - net: qede: stop adding events on an already destroyed workqueue
         (git-fixes).
       - net: qed: fix excessive QM ILT lines consumption (git-fixes).
       - net: qed: fix NVMe login fails over VFs (git-fixes).
       - net: qrtr: Fix passing invalid reference to qrtr_local_enqueue()
         (networking-stable-20_05_27).
       - net: revert "net: get rid of an signed integer overflow in
         ip_idents_reserve()" (networking-stable-20_05_27).
       - net sched: fix reporting the first-time use timestamp
         (networking-stable-20_05_27).
       - net: stricter validation of untrusted gso packets
         (networking-stable-20_05_12).
       - net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict()
         (networking-stable-20_05_12).
       - net/tls: Fix sk_psock refcnt leak when in tls_data_ready()
         (networking-stable-20_05_12).
       - net: usb: qmi_wwan: add support for DW5816e (networking-stable-20_05_12).
       - net: usb: qmi_wwan: add Telit 0x1050 composition
         (networking-stable-20_06_07).
       - net: usb: qmi_wwan: add Telit LE910C1-EUX composition
         (networking-stable-20_06_07).
       - net: vmxnet3: fix possible buffer overflow caused by bad DMA value in
         vmxnet3_get_rss() (bsc#1172484).
       - nfp: bpf: fix code-gen bug on BPF_ALU | BPF_XOR | BPF_K (git-fixes).
       - NFS: Fix an RCU lock leak in nfs4_refresh_delegation_stateid()
         (bsc#1170592).
       - NFSv4: Retry CLOSE and DELEGRETURN on NFS4ERR_OLD_STATEID (bsc#1170592).
       - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct()
         (bsc#1173857).
       - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type (bsc#1111666).
       - nvdimm: Avoid race between probe and reading device attributes
         (bsc#1170442).
       - nvme: check for NVME_CTRL_LIVE in nvme_report_ns_ids() (bcs#1171558
         bsc#1159058).
       - nvme: do not update multipath disk information if the controller is down
         (bcs#1171558 bsc#1159058).
       - nvme: fail cancelled commands with NVME_SC_HOST_PATH_ERROR (bsc#1158983
         bsc#1172538).
       - nvme-fc: Fail transport errors with NVME_SC_HOST_PATH (bsc#1158983
         bsc#1172538).
       - nvme-tcp: fail command with NVME_SC_HOST_PATH_ERROR send failed
         (bsc#1158983 bsc#1172538).
       - objtool: Clean instruction state before each function validation
         (bsc#1169514).
       - objtool: Ignore empty alternatives (bsc#1169514).
       - ocfs2: no need try to truncate file beyond i_size (bsc#1171841).
       - overflow: Fix -Wtype-limits compilation warnings (git fixes).
       - overflow.h: Add arithmetic shift helper (git fixes).
       - p54usb: add AirVasT USB stick device-id (bsc#1051510).
       - padata: ensure the reorder timer callback runs on the correct CPU
         (git-fixes).
       - padata: reorder work kABI fixup (git-fixes).
       - PCI/AER: Remove HEST/FIRMWARE_FIRST parsing for AER ownership
         (bsc#1174356).
       - PCI/AER: Use only _OSC to determine AER ownership (bsc#1174356).
       - PCI: Allow pci_resize_resource() for devices on root bus (bsc#1051510).
       - PCI: Fix pci_register_host_bridge() device_register() error handling
         (bsc#1051510).
       - PCI: Generalize multi-function power dependency device links
         (bsc#1111666).
       - PCI: hv: Change pci_protocol_version to per-hbus (bsc#1172871,
         bsc#1172872).
       - PCI: hv: Fix the PCI HyperV probe failure path to release resource
         properly (bsc#1172871, bsc#1172872).
       - PCI: hv: Introduce hv_msi_entry (bsc#1172871, bsc#1172872).
       - PCI: hv: Move hypercall related definitions into tlfs header
         (bsc#1172871, bsc#1172872).
       - PCI: hv: Move retarget related structures into tlfs header (bsc#1172871,
         bsc#1172872).
       - PCI: hv: Reorganize the code in preparation of hibernation (bsc#1172871,
         bsc#1172872).
       - PCI: hv: Retry PCI bus D0 entry on invalid device state (bsc#1172871,
         bsc#1172872).
       - PCI: pciehp: Fix indefinite wait on sysfs requests (git-fixes).
       - PCI: pciehp: Support interrupts sent from D3hot (git-fixes).
       - PCI/PM: Call .bridge_d3() hook only if non-NULL (git-fixes).
       - PCI: Program MPS for RCiEP devices (bsc#1051510).
       - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port
         (bsc#1051510).
       - pci: Revive pci_dev __aer_firmware_first* fields for kABI (bsc#1174356).
       - pcm_native: result of put_user() needs to be checked (bsc#1111666).
       - perf: Allocate context task_ctx_data for child event (git-fixes).
       - perf/cgroup: Fix perf cgroup hierarchy support (git-fixes).
       - perf: Copy parent's address filter offsets on clone (git-fixes).
       - perf/core: Add sanity check to deal with pinned event failure
         (git-fixes).
       - perf/core: Avoid freeing static PMU contexts when PMU is unregistered
         (git-fixes).
       - perf/core: Correct event creation with PERF_FORMAT_GROUP (git-fixes).
       - perf/core: Do not WARN() for impossible ring-buffer sizes (git-fixes).
       - perf/core: Fix ctx_event_type in ctx_resched() (git-fixes).
       - perf/core: Fix error handling in perf_event_alloc() (git-fixes).
       - perf/core: Fix exclusive events' grouping (git-fixes).
       - perf/core: Fix group scheduling with mixed hw and sw events (git-fixes).
       - perf/core: Fix impossible ring-buffer sizes warning (git-fixes).
       - perf/core: Fix locking for children siblings group read (git-fixes).
       - perf/core: Fix lock inversion between perf,trace,cpuhp (git-fixes
         (dependent patch for 18736eef1213)).
       - perf/core: Fix perf_event_read_value() locking (git-fixes).
       - perf/core: Fix perf_pmu_unregister() locking (git-fixes).
       - perf/core: Fix __perf_read_group_add() locking (git-fixes (dependent
         patch)).
       - perf/core: Fix perf_sample_regs_user() mm check (git-fixes).
       - perf/core: Fix possible Spectre-v1 indexing for ->aux_pages (git-fixes).
       - perf/core: Fix race between close() and fork() (git-fixes).
       - perf/core: Fix the address filtering fix (git-fixes).
       - perf/core: Fix use-after-free in uprobe_perf_close() (git-fixes).
       - perf/core: Force USER_DS when recording user stack data (git-fixes).
       - perf/core: Restore mmap record type correctly (git-fixes).
       - perf: Fix header.size for namespace events (git-fixes).
       - perf/ioctl: Add check for the sample_period value (git-fixes).
       - perf, pt, coresight: Fix address filters for vmas with non-zero offset
         (git-fixes).
       - perf: Return proper values for user stack errors (git-fixes).
       - perf/x86/amd: Constrain Large Increment per Cycle events (git-fixes).
       - perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus
         precise RIP validity (git-fixes).
       - perf/x86/amd/ibs: Fix sample bias for dispatched micro-ops (git-fixes).
       - perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family
         (10h) (git-fixes).
       - perf/x86/amd/iommu: Make the 'amd_iommu_attr_groups' symbol static
         (git-fixes).
       - perf/x86/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3
         PMCs (git-fixes stable).
       - perf/x86/amd/uncore: Set the thread mask for F17h L3 PMCs (git-fixes).
       - perf/x86/amd/uncore: Set ThreadMask and SliceMask for L3 Cache perf
         events (git-fixes stable).
       - perf/x86: Enable free running PEBS for REGS_USER/INTR (git-fixes).
       - perf/x86: Fix incorrect PEBS_REGS (git-fixes).
       - perf/x86/intel: Add generic branch tracing check to intel_pmu_has_bts()
         (git-fixes).
       - perf/x86/intel: Add proper condition to run sched_task callbacks
         (git-fixes).
       - perf/x86/intel/bts: Fix the use of page_private() (git-fixes).
       - perf/x86/intel: Fix PT PMI handling (git-fixes).
       - perf/x86/intel: Move branch tracing setup to the Intel-specific source
         file (git-fixes).
       - perf/x86/intel/uncore: Add Node ID mask (git-fixes).
       - perf/x86/intel/uncore: Fix PCI BDF address of M3UPI on SKX (git-fixes).
       - perf/x86/intel/uncore: Handle invalid event coding for free-running
         counter (git-fixes).
       - perf/x86/uncore: Fix event group support (git-fixes).
       - pid: Improve the comment about waiting in zap_pid_ns_processes (git
         fixes)).
       - pinctrl: freescale: imx: Fix an error handling path in
         'imx_pinctrl_probe()' (bsc#1051510).
       - pinctrl: imxl: Fix an error handling path in 'imx1_pinctrl_core_probe()'
         (bsc#1051510).
       - pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE
         GPIOs (bsc#1051510).
       - platform/x86: dell-laptop: do not register micmute LED if there is no
         token (bsc#1111666).
       - platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32()
         (bsc#1111666).
       - PM / Domains: Allow genpd users to specify default active wakeup
         behavior (git-fixes).
       - pnp: Use list_for_each_entry() instead of open coding (git fixes).
       - powerpc/64s: Do not let DT CPU features set FSCR_DSCR (bsc#1065729).
       - powerpc/64s: Save FSCR to init_task.thread.fscr after feature init
         (bsc#1065729).
       - powerpc/book3s64: Export has_transparent_hugepage() related functions
         (bsc#1171759).
       - powerpc/book3s64/pkeys: Fix pkey_access_permitted() for execute disable
         pkey (bsc#1065729).
       - powerpc/fadump: fix race between pstore write and fadump crash trigger
         (bsc#1168959 ltc#185010).
       - powerpc/xive: Clear the page tables for the ESB IO mapping (bsc#1085030).
       - powerpc/xmon: Reset RCU and soft lockup watchdogs (bsc#1065729).
       - power: supply: bq24257_charger: Replace depends on REGMAP_I2C with
         select (bsc#1051510).
       - power: supply: lp8788: Fix an error handling path in
         'lp8788_charger_probe()' (bsc#1051510).
       - power: supply: smb347-charger: IRQSTAT_D is volatile (bsc#1051510).
       - power: vexpress: add suppress_bind_attrs to true (bsc#1111666).
       - pppoe: only process PADT targeted at local interfaces
         (networking-stable-20_05_16).
       - qed: reduce maximum stack frame size (git-fixes).
       - qlcnic: fix missing release in qlcnic_83xx_interrupt_test (git-fixes).
       - r8152: support additional Microsoft Surface Ethernet Adapter variant
         (networking-stable-20_05_27).
       - raid5: remove gfp flags from scribble_alloc() (bsc#1166985).
       - RDMA/efa: Fix setting of wrong bit in get/set_feature commands
         (bsc#1111666)
       - RDMA/efa: Set maximum pkeys device attribute (bsc#1111666)
       - RDMA/efa: Support remote read access in MR registration (bsc#1111666)
       - RDMA/efa: Unified getters/setters for device structs bitmask access
         (bsc#1111666)
       - README.BRANCH: Add Takashi Iwai as primary maintainer.
       - regmap: debugfs: Do not sleep while atomic for fast_io regmaps
         (bsc#1111666).
       - resolve KABI warning for perf-pt-coresight (git-fixes).
       - Revert "bcache: ignore pending signals when creating gc and allocator
         thread" (git fixes (block drivers)).
       - Revert commit e918e570415c ("tpm_tis: Remove the HID IFX0102")
         (bsc#1111666).
       - Revert "dm crypt: use WQ_HIGHPRI for the IO and crypt workqueues" (git
         fixes (block drivers)).
       - Revert "thermal: mediatek: fix register index error" (bsc#1111666).
       - Revert "tools lib traceevent: Remove unneeded qsort and uses memmove"
       - rtnetlink: Fix memory(net_device) leak when ->newlink fails (git-fixes).
       - s390/bpf: Maintain 8-byte stack alignment (bsc#1169194).
       - s390: fix syscall_get_error for compat processes (git-fixes).
       - s390/qdio: consistently restore the IRQ handler (git-fixes).
       - s390/qdio: lock device while installing IRQ handler (git-fixes).
       - s390/qdio: put thinint indicator after early error (git-fixes).
       - s390/qdio: tear down thinint indicator after early error (git-fixes).
       - s390/qeth: fix error handling for isolation mode cmds (git-fixes).
       - sch_choke: avoid potential panic in choke_reset()
         (networking-stable-20_05_12).
       - sch_sfq: validate silly quantum values (networking-stable-20_05_12).
       - scsi: aacraid: fix a signedness bug (bsc#1174296).
       - scsi: hisi_sas: fix calls to dma_set_mask_and_coherent() (bsc#1174296).
       - scsi: ibmvscsi: Do not send host info in adapter info MAD after LPM
         (bsc#1172759 ltc#184814).
       - scsi: lpfc: Add an internal trace log buffer (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Add blk_io_poll support for latency improvment (bsc#1172687
         bsc#1171530).
       - scsi: lpfc: Add support to display if adapter dumps are available
         (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Allow applications to issue Common Set Features mailbox
         command (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Avoid another null dereference in lpfc_sli4_hba_unset()
         (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Fix inconsistent indenting (bsc#1158983).
       - scsi: lpfc: Fix interrupt assignments when multiple vectors are
         supported on same CPU (bsc#1158983).
       - scsi: lpfc: Fix kdump hang on PPC (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Fix language in 0373 message to reflect non-error message
         (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Fix less-than-zero comparison of unsigned value
         (bsc#1158983).
       - scsi: lpfc: Fix missing MDS functionality (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Fix NVMe rport deregister and registration during ADISC
         (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Fix oops due to overrun when reading SLI3 data (bsc#1172687
         bsc#1171530).
       - scsi: lpfc: Fix shost refcount mismatch when deleting vport (bsc#1172687
         bsc#1171530).
       - scsi: lpfc: Fix stack trace seen while setting rrq active (bsc#1172687
         bsc#1171530).
       - scsi: lpfc: Fix unused assignment in lpfc_sli4_bsg_link_diag_test
         (bsc#1172687 bsc#1171530).
       - scsi: lpfc: Update lpfc version to 12.8.0.2 (bsc#1158983).
       - scsi: megaraid_sas: Fix a compilation warning (bsc#1174296).
       - scsi: mpt3sas: Fix double free in attach error handling (bsc#1174296).
       - scsi: qedf: Add port_id getter (bsc#1150660).
       - scsi: qla2xxx: Fix a condition in qla2x00_find_all_fabric_devs()
         (bsc#1174296).
       - scsi: qla2xxx: Set NVMe status code for failed NVMe FCP request
         (bsc#1158983).
       - sctp: Do not add the shutdown timer if its already been added
         (networking-stable-20_05_27).
       - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state
         and socket is closed (networking-stable-20_05_27).
       - spi: dw: use "smp_mb()" to avoid sending spi data error (bsc#1051510).
       - spi: fix initial SPI_SR value in spi-fsl-dspi (bsc#1111666).
       - spi: pxa2xx: Apply CS clk quirk to BXT (bsc#1111666).
       - spi: spidev: fix a race between spidev_release and spidev_remove
         (bsc#1111666).
       - spi: spi-mem: Fix Dual/Quad modes on Octal-capable devices (bsc#1111666).
       - spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate
         (bsc#1111666).
       - staging: comedi: verify array index is correct before using it
         (bsc#1111666).
       - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK (bsc#1051510).
       - staging: sm750fb: add missing case while setting FB_VISUAL (bsc#1051510).
       - SUNRPC: The TCP back channel mustn't disappear while requests are
         outstanding (bsc#1152624).
       - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes
         (bsc#1173284).
       - timers: Add a function to start/reduce a timer
         (networking-stable-20_05_27).
       - tpm_tis: extra chip->ops check on error path in tpm_tis_core_init
         (bsc#1111666).
       - tpm_tis: Remove the HID IFX0102 (bsc#1111666).
       - tracing: Fix event trigger to accept redundant spaces (git-fixes).
       - tty: hvc_console, fix crashes on parallel open/close (git-fixes).
       - tty: n_gsm: Fix bogus i++ in gsm_data_kick (bsc#1051510).
       - tty: n_gsm: Fix SOF skipping (bsc#1051510).
       - tty: n_gsm: Fix waking up upper tty layer when room available
         (bsc#1051510).
       - tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040
         (networking-stable-20_05_12).
       - ubifs: remove broken lazytime support (bsc#1173826).
       - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 (git-fixes).
       - USB: c67x00: fix use after free in c67x00_giveback_urb (bsc#1111666).
       - usb: chipidea: core: add wakeup support for extcon (bsc#1111666).
       - usb: dwc2: Fix shutdown callback in platform (bsc#1111666).
       - usb: dwc2: gadget: move gadget resume after the core is in L0 state
         (bsc#1051510).
       - usb: dwc3: gadget: introduce cancelled_list (git-fixes).
       - usb: dwc3: gadget: never call ->complete() from ->ep_queue() (git-fixes).
       - usb: dwc3: gadget: Properly handle ClearFeature(halt) (git-fixes).
       - usb: dwc3: gadget: Properly handle failed kick_transfer (git-fixes).
       - USB: ehci: reopen solution for Synopsys HC bug (git-fixes).
       - usb: gadget: fix potential double-free in m66592_probe (bsc#1111666).
       - usb: gadget: lpc32xx_udc: do not dereference ep pointer before null
         check (bsc#1051510).
       - usb: gadget: udc: atmel: fix uninitialized read in debug printk
         (bsc#1111666).
       - usb: gadget: udc: atmel: remove outdated comment in usba_ep_disable()
         (bsc#1111666).
       - usb: gadget: udc: Potential Oops in error handling code (bsc#1111666).
       - USB: gadget: udc: s3c2410_udc: Remove pointless NULL check in
         s3c2410_udc_nuke (bsc#1051510).
       - usb: host: ehci-exynos: Fix error check in exynos_ehci_probe()
         (bsc#1111666).
       - USB: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe()
         (bsc#1051510).
       - usb: musb: Fix runtime PM imbalance on error (bsc#1051510).
       - usb: musb: start session in resume for host port (bsc#1051510).
       - usbnet: smsc95xx: Fix use-after-free after removal (bsc#1111666).
       - USB: ohci-sm501: Add missed iounmap() in remove (bsc#1111666).
       - USB: serial: ch341: add new Product ID for CH340 (bsc#1111666).
       - USB: serial: cypress_m8: enable Simply Automated UPB PIM (bsc#1111666).
       - USB: serial: iuu_phoenix: fix memory corruption (bsc#1111666).
       - USB: serial: option: add GosunCn GM500 series (bsc#1111666).
       - USB: serial: option: add Quectel EG95 LTE modem (bsc#1111666).
       - USB: serial: option: add Telit LE910C1-EUX compositions (bsc#1051510).
       - USB: serial: qcserial: add DW5816e QDL support (bsc#1051510).
       - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors
         (bsc#1051510).
       - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors
         (git-fixes).
       - vfio/pci: Fix SR-IOV VF handling with MMIO blocking (bsc#1174123).
       - vfs: Fix EOVERFLOW testing in put_compat_statfs64 (bnc#1151927 5.3.6).
       - virtio-blk: handle block_device_operations callbacks after hot unplug
         (git fixes (block drivers)).
       - virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc
         serial (git-fixes).
       - vmxnet3: add geneve and vxlan tunnel offload support (bsc#1172484).
       - vmxnet3: add support to get/set rx flow hash (bsc#1172484).
       - vmxnet3: allow rx flow hash ops only when rss is enabled (bsc#1172484).
       - vmxnet3: avoid format strint overflow warning (bsc#1172484).
       - vmxnet3: prepare for version 4 changes (bsc#1172484).
       - vmxnet3: Remove always false conditional statement (bsc#1172484).
       - vmxnet3: remove redundant initialization of pointer 'rq' (bsc#1172484).
       - vmxnet3: remove unused flag "rxcsum" from struct vmxnet3_adapter
         (bsc#1172484).
       - vmxnet3: Replace msleep(1) with usleep_range() (bsc#1172484).
       - vmxnet3: update to version 4 (bsc#1172484).
       - vmxnet3: use correct hdr reference when packet is encapsulated
         (bsc#1172484).
       - vsock: fix timeout in vsock_accept() (networking-stable-20_06_07).
       - vxlan: Avoid infinite loop when suppressing NS messages with invalid
         options (git-fixes).
       - w1: omap-hdq: cleanup to add missing newline for some dev_dbg
         (bsc#1051510).
       - watchdog: sp805: fix restart handler (bsc#1111666).
       - wil6210: add general initialization/size checks (bsc#1111666).
       - wil6210: check rx_buff_mgmt before accessing it (bsc#1111666).
       - wil6210: ignore HALP ICR if already handled (bsc#1111666).
       - wil6210: make sure Rx ring sizes are correlated (git-fixes).
       - work around mvfs bug (bsc#1162063).
       - x86/apic: Install an empty physflat_init_apic_ldr (bsc#1163309).
       - x86/cpu/amd: Make erratum #1054 a legacy erratum (bsc#1114279).
       - x86/events/intel/ds: Add PERF_SAMPLE_PERIOD into PEBS_FREERUNNING_FLAGS
         (git-fixes).
       - x86: Fix early boot crash on gcc-10, third try (bsc#1114279).
       - x86/{mce,mm}: Unmap the entire page if the whole page is affected and
         poisoned (bsc#1172257).
       - x86/reboot/quirks: Add MacBook6,1 reboot quirk (bsc#1114279).
       - xfrm: fix error in comment (git fixes).
       - xhci: Fix incorrect EP_STATE_MASK (git-fixes).
    
    
    Special Instructions and Notes:
    
       Please reboot the system after installing this update.
    
    Patch Instructions:
    
       To install this SUSE Security Update use the SUSE recommended installation methods
       like YaST online_update or "zypper patch".
    
       Alternatively you can run the command listed for your product:
    
       - SUSE Linux Enterprise Module for Public Cloud 15-SP1:
    
          zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP1-2020-2103=1
    
    
    
    Package List:
    
       - SUSE Linux Enterprise Module for Public Cloud 15-SP1 (noarch):
    
          kernel-devel-azure-4.12.14-8.38.1
          kernel-source-azure-4.12.14-8.38.1
    
       - SUSE Linux Enterprise Module for Public Cloud 15-SP1 (x86_64):
    
          kernel-azure-4.12.14-8.38.1
          kernel-azure-base-4.12.14-8.38.1
          kernel-azure-base-debuginfo-4.12.14-8.38.1
          kernel-azure-debuginfo-4.12.14-8.38.1
          kernel-azure-devel-4.12.14-8.38.1
          kernel-syms-azure-4.12.14-8.38.1
    
    
    References:
    
       https://www.suse.com/security/cve/CVE-2019-20810.html
       https://www.suse.com/security/cve/CVE-2019-20908.html
       https://www.suse.com/security/cve/CVE-2020-0305.html
       https://www.suse.com/security/cve/CVE-2020-10766.html
       https://www.suse.com/security/cve/CVE-2020-10767.html
       https://www.suse.com/security/cve/CVE-2020-10768.html
       https://www.suse.com/security/cve/CVE-2020-10769.html
       https://www.suse.com/security/cve/CVE-2020-10773.html
       https://www.suse.com/security/cve/CVE-2020-10781.html
       https://www.suse.com/security/cve/CVE-2020-12771.html
       https://www.suse.com/security/cve/CVE-2020-12888.html
       https://www.suse.com/security/cve/CVE-2020-13974.html
       https://www.suse.com/security/cve/CVE-2020-14416.html
       https://www.suse.com/security/cve/CVE-2020-15393.html
       https://www.suse.com/security/cve/CVE-2020-15780.html
       https://bugzilla.suse.com/1051510
       https://bugzilla.suse.com/1065729
       https://bugzilla.suse.com/1071995
       https://bugzilla.suse.com/1085030
       https://bugzilla.suse.com/1111666
       https://bugzilla.suse.com/1112178
       https://bugzilla.suse.com/1113956
       https://bugzilla.suse.com/1114279
       https://bugzilla.suse.com/1144333
       https://bugzilla.suse.com/1148868
       https://bugzilla.suse.com/1150660
       https://bugzilla.suse.com/1151927
       https://bugzilla.suse.com/1152624
       https://bugzilla.suse.com/1158983
       https://bugzilla.suse.com/1159058
       https://bugzilla.suse.com/1161016
       https://bugzilla.suse.com/1162002
       https://bugzilla.suse.com/1162063
       https://bugzilla.suse.com/1163309
       https://bugzilla.suse.com/1166985
       https://bugzilla.suse.com/1167104
       https://bugzilla.suse.com/1168081
       https://bugzilla.suse.com/1168959
       https://bugzilla.suse.com/1169194
       https://bugzilla.suse.com/1169514
       https://bugzilla.suse.com/1169771
       https://bugzilla.suse.com/1169795
       https://bugzilla.suse.com/1170011
       https://bugzilla.suse.com/1170442
       https://bugzilla.suse.com/1170592
       https://bugzilla.suse.com/1170617
       https://bugzilla.suse.com/1170618
       https://bugzilla.suse.com/1171124
       https://bugzilla.suse.com/1171424
       https://bugzilla.suse.com/1171529
       https://bugzilla.suse.com/1171530
       https://bugzilla.suse.com/1171558
       https://bugzilla.suse.com/1171732
       https://bugzilla.suse.com/1171739
       https://bugzilla.suse.com/1171743
       https://bugzilla.suse.com/1171753
       https://bugzilla.suse.com/1171759
       https://bugzilla.suse.com/1171835
       https://bugzilla.suse.com/1171841
       https://bugzilla.suse.com/1171868
       https://bugzilla.suse.com/1171904
       https://bugzilla.suse.com/1172247
       https://bugzilla.suse.com/1172257
       https://bugzilla.suse.com/1172344
       https://bugzilla.suse.com/1172458
       https://bugzilla.suse.com/1172484
       https://bugzilla.suse.com/1172537
       https://bugzilla.suse.com/1172538
       https://bugzilla.suse.com/1172687
       https://bugzilla.suse.com/1172719
       https://bugzilla.suse.com/1172759
       https://bugzilla.suse.com/1172775
       https://bugzilla.suse.com/1172781
       https://bugzilla.suse.com/1172782
       https://bugzilla.suse.com/1172783
       https://bugzilla.suse.com/1172871
       https://bugzilla.suse.com/1172872
       https://bugzilla.suse.com/1172999
       https://bugzilla.suse.com/1173060
       https://bugzilla.suse.com/1173074
       https://bugzilla.suse.com/1173146
       https://bugzilla.suse.com/1173265
       https://bugzilla.suse.com/1173280
       https://bugzilla.suse.com/1173284
       https://bugzilla.suse.com/1173428
       https://bugzilla.suse.com/1173514
       https://bugzilla.suse.com/1173567
       https://bugzilla.suse.com/1173573
       https://bugzilla.suse.com/1173746
       https://bugzilla.suse.com/1173818
       https://bugzilla.suse.com/1173820
       https://bugzilla.suse.com/1173825
       https://bugzilla.suse.com/1173826
       https://bugzilla.suse.com/1173833
       https://bugzilla.suse.com/1173838
       https://bugzilla.suse.com/1173839
       https://bugzilla.suse.com/1173845
       https://bugzilla.suse.com/1173857
       https://bugzilla.suse.com/1174113
       https://bugzilla.suse.com/1174115
       https://bugzilla.suse.com/1174122
       https://bugzilla.suse.com/1174123
       https://bugzilla.suse.com/1174186
       https://bugzilla.suse.com/1174187
       https://bugzilla.suse.com/1174296
       https://bugzilla.suse.com/1174343
       https://bugzilla.suse.com/1174356
       https://bugzilla.suse.com/1174409
       https://bugzilla.suse.com/1174438
       https://bugzilla.suse.com/1174462
       https://bugzilla.suse.com/1174543
    
    _______________________________________________
    sle-security-updates mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://lists.suse.com/mailman/listinfo/sle-security-updates
    

    Advisories

    LinuxSecurity Poll

    How are you contributing to Open Source?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 4 answer(s).
    /main-polls/37-how-are-you-contributing-to-open-source?task=poll.vote&format=json
    37
    radio
    [{"id":"127","title":"I'm involved with the development of an open-source project(s).","votes":"2","type":"x","order":"1","pct":100,"resources":[]},{"id":"128","title":"I've reported vulnerabilities I've discovered in open-source code.","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"129","title":"I've provided developers with feedback on their projects.","votes":"0","type":"x","order":"3","pct":0,"resources":[]},{"id":"130","title":"I've helped another community member get started contributing to Open Source.","votes":"0","type":"x","order":"4","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.