{"id":"SUSE-SU-2020:0559-1","summary":"Security update for the Linux Kernel","details":" The SUSE Linux Enterprise 12 SP4 Azure kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources (bsc#1163971).\n- CVE-2020-8992: An issue was discovered in ext4_protect_reserved_inode in fs/ext4/block_validity.c that allowed attackers to cause a soft lockup via a crafted journal size (bnc#1164069).\n- CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).\n- CVE-2020-8428: There was a use-after-free bug in fs/namei.c, which allowed local users to cause a denial of service or possibly obtain sensitive information from kernel memory (bnc#1162109).\n- CVE-2020-7053: There was a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c (bnc#1160966).\n- CVE-2019-19045: A memory leak in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures (bnc#1161522).\n- CVE-2019-16994: A memory leak existed in sit_init_net() in net/ipv6/sit.c which might have caused denial of service (bnc#1161523).\n- CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures (bnc#1161518).\n- CVE-2019-14896: A heap overflow was found in the add_ie_rates() function of the Marvell Wifi Driver (bsc#1157157).\n- CVE-2019-14897: A stack overflow was found in the lbs_ibss_join_existing() function of the Marvell Wifi Driver (bsc#1157155).\n- CVE-2019-19318: Mounting a crafted btrfs image twice could have caused a use-after-free (bnc#1158026).\n- CVE-2019-19036: An issue discovered in btrfs_root_node in fs/btrfs/ctree.c allowed a NULL pointer dereference because rcu_dereference(root-\u003enode) can be zero (bnc#1157692).\n- CVE-2019-14615: An information disclosure vulnerability existed due to insufficient control flow in certain data structures for some Intel(R) Processors (bnc#1160195).\n- CVE-2019-19965: There was a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition (bnc#1159911).\n- CVE-2019-20095: Fixed a memory leak and denial of service in mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c, where some error-handling cases did not free allocated hostcmd memory (bnc#1159909).\n- CVE-2019-20054: Fixed a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c related to put_links (bnc#1159910).\n- CVE-2019-20096: Fixed a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service (bnc#1159908).\n- CVE-2019-19966: Fixed a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service (bnc#1159841).\n- CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing some operations, and unmounting could have led to a use-after-free in fs/ext4/super.c (bnc#1158819).\n- CVE-2019-19319: A setxattr operation, after a mount of a crafted ext4 image, could cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a memset call (bnc#1158021).\n- CVE-2019-19767: The Linux kernel mishandled ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c (bnc#1159297).\n- CVE-2019-18808: A memory leak in the ccp_run_sha_cmd() in drivers/crypto/ccp/ccp-ops.c allowed attackers to cause a denial of service (memory consumption) (bnc#1156259).\n- CVE-2019-19066: A memory leak in the bfad_im_get_stats() in drivers/scsi/bfa/bfad_attr.c allowed attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures (bnc#1157303).\n\nThe following non-security bugs were fixed:\n\n- 6pack,mkiss: fix possible deadlock (bsc#1051510).\n- ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510).\n- ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() (bsc#1051510).\n- ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() (bsc#1051510).\n- ACPI: PM: Avoid attaching ACPI PM domain to certain devices (bsc#1051510).\n- ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510).\n- ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards (bsc#1051510).\n- ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557).\n- ACPI / watchdog: Fix init failure with overlapping register regions (bsc#1162557).\n- ACPI / watchdog: Set default timeout in probe (bsc#1162557).\n- af_packet: set defaule value for tmo (bsc#1051510).\n- ALSA: control: remove useless assignment in .info callback of PCM chmap element (git-fixes).\n- ALSA: echoaudio: simplify get_audio_levels (bsc#1051510).\n- ALSA: fireface: fix return value in error path of isochronous resources reservation (bsc#1051510).\n- ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).\n- ALSA: hda - Add docking station support for Lenovo Thinkpad T420s (git-fixes).\n- ALSA: hda/analog - Minor optimization for SPDIF mux connections (git-fixes).\n- ALSA: hda/ca0132 - Avoid endless loop (git-fixes).\n- ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes).\n- ALSA: hda/ca0132 - Keep power on during processing DSP response (git-fixes).\n- ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes).\n- ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes).\n- ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510).\n- ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510).\n- ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510).\n- ALSA: hda/realtek - Fix silent output on MSI-GL73 (git-fixes).\n- ALSA: hda/realtek - Line-out jack does not work on a Dell AIO (bsc#1051510).\n- ALSA: hda: Reset stream if DMA RUN bit not cleared (bsc#1111666).\n- ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs (git-fixes).\n- ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code (bsc#1051510).\n- ALSA: oxfw: fix return value in error path of isochronous resources reservation (bsc#1051510).\n- ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes).\n- ALSA: seq: Avoid concurrent access to queue flags (git-fixes).\n- ALSA: seq: Fix concurrent access to queue current tick/time (git-fixes).\n- ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510).\n- ALSA: sh: Fix compile warning wrt const (git-fixes).\n- ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 (git-fixes).\n- ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510).\n- ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510).\n- apparmor: fix unsigned len comparison with less than zero (git-fixes).\n- ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510).\n- arm64: Revert support for execute-only user mappings (bsc#1160218).\n- ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510).\n- ASoC: cs4349: Use PM ops 'cs4349_runtime_pm' (bsc#1051510).\n- ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report (bsc#1051510).\n- ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 (bsc#1051510).\n- ASoC: sun8i-codec: Fix setting DAI data format (git-fixes).\n- ASoC: wm8962: fix lambda value (git-fixes).\n- ata: ahci: Add shutdown to freeze hardware resources of ahci (bsc#1164388).\n- ath10k: fix fw crash by moving chip reset after napi disabled (bsc#1051510).\n- ath9k: fix storage endpoint lookup (git-fixes).\n- batman-adv: Fix DAT candidate selection on little endian systems (bsc#1051510).\n- bcache: add code comment bch_keylist_pop() and bch_keylist_pop_front() (bsc#1163762).\n- bcache: add code comments for state-\u003epool in __btree_sort() (bsc#1163762).\n- bcache: add code comments in bch_btree_leaf_dirty() (bsc#1163762).\n- bcache: add cond_resched() in __bch_cache_cmp() (bsc#1163762).\n- bcache: add idle_max_writeback_rate sysfs interface (bsc#1163762).\n- bcache: add more accurate error messages in read_super() (bsc#1163762).\n- bcache: add readahead cache policy options via sysfs interface (bsc#1163762).\n- bcache: at least try to shrink 1 node in bch_mca_scan() (bsc#1163762).\n- bcache: avoid unnecessary btree nodes flushing in btree_flush_write() (bsc#1163762).\n- bcache: check return value of prio_read() (bsc#1163762).\n- bcache: deleted code comments for dead code in bch_data_insert_keys() (bsc#1163762).\n- bcache: do not export symbols (bsc#1163762).\n- bcache: explicity type cast in bset_bkey_last() (bsc#1163762).\n- bcache: fix a lost wake-up problem caused by mca_cannibalize_lock (bsc#1163762).\n- bcache: Fix an error code in bch_dump_read() (bsc#1163762).\n- bcache: fix deadlock in bcache_allocator (bsc#1163762).\n- bcache: fix incorrect data type usage in btree_flush_write() (bsc#1163762).\n- bcache: fix memory corruption in bch_cache_accounting_clear() (bsc#1163762).\n- bcache: fix static checker warning in bcache_device_free() (bsc#1163762).\n- bcache: ignore pending signals when creating gc and allocator thread (bsc#1163762, bsc#1112504).\n- bcache: print written and keys in trace_bcache_btree_write (bsc#1163762).\n- bcache: reap c-\u003ebtree_cache_freeable from the tail in bch_mca_scan() (bsc#1163762).\n- bcache: reap from tail of c-\u003ebtree_cache in bch_mca_scan() (bsc#1163762).\n- bcache: remove macro nr_to_fifo_front() (bsc#1163762).\n- bcache: remove member accessed from struct btree (bsc#1163762).\n- bcache: remove the extra cflags for request.o (bsc#1163762).\n- bcache: Revert 'bcache: shrink btree node cache after bch_btree_check()' (bsc#1163762, bsc#1112504).\n- bcma: remove set but not used variable 'sizel' (git-fixes).\n- blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1163840).\n- blk-mq: make sure that line break can be printed (bsc#1164098).\n- Bluetooth: Fix race condition in hci_release_sock() (bsc#1051510).\n- bonding: fix active-backup transition after link failure (git-fixes).\n- bonding: fix potential NULL deref in bond_update_slave_arr (bsc#1051510).\n- bonding: fix slave stuck in BOND_LINK_FAIL state (networking-stable-19_11_10).\n- bonding: fix state transition issue in link monitoring (networking-stable-19_11_10).\n- bonding: fix unexpected IFF_BONDING bit unset (bsc#1051510).\n- brcmfmac: fix interface sanity check (git-fixes).\n- brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes).\n- brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes).\n- Btrfs: abort transaction after failed inode updates in create_subvol (bsc#1161936).\n- Btrfs: add missing extents release on file extent cluster relocation error (bsc#1159483).\n- Btrfs: avoid fallback to transaction commit during fsync of files with holes (bsc#1159569).\n- Btrfs: dev-replace: remove warning for unknown return codes when finished (dependency for bsc#1162067).\n- Btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934).\n- Btrfs: do not double lock the subvol_sem for rename exchange (bsc#1162943).\n- Btrfs: Ensure we trim ranges across block group boundary (bsc#1151910).\n- Btrfs: fix block group remaining RO forever after error during device replace (bsc#1160442).\n- Btrfs: fix btrfs_write_inode vs delayed iput deadlock (bsc#1154243).\n- Btrfs: fix infinite loop during fsync after rename operations (bsc#1163383).\n- Btrfs: fix infinite loop during nocow writeback due to race (bsc#1160804).\n- Btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433).\n- Btrfs: fix missing data checksums after replaying a log tree (bsc#1161931).\n- Btrfs: fix negative subv_writers counter and data space leak after buffered write (bsc#1160802).\n- Btrfs: fix race between adding and putting tree mod seq elements and nodes (bsc#1163384).\n- Btrfs: fix removal logic of the tree mod log that leads to use-after-free issues (bsc#1160803).\n- Btrfs: fix selftests failure due to uninitialized i_mode in test inodes (Fix for dependency of bsc#1157692).\n- Btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937).\n- Btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973).\n- Btrfs: inode: Verify inode mode to avoid NULL pointer dereference (dependency for bsc#1157692).\n- Btrfs: make tree checker detect checksum items with overlapping ranges (bsc#1161931).\n- Btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it (dependency for bsc#1157692).\n- Btrfs: record all roots for rename exchange on a subvol (bsc#1161933).\n- Btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588).\n- Btrfs: scrub: Require mandatory block group RO for dev-replace (bsc#1162067).\n- Btrfs: send, skip backreference walking for extents with many references (bsc#1162139).\n- Btrfs: simplify inode locking for RWF_NOWAIT (git-fixes).\n- Btrfs: skip log replay on orphaned roots (bsc#1161935).\n- Btrfs: tree-checker: Check chunk item at tree block read time (dependency for bsc#1157692).\n- Btrfs: tree-checker: Check level for leaves and nodes (dependency for bsc#1157692).\n- Btrfs: tree-checker: Enhance chunk checker to validate chunk profile (dependency for bsc#1157692).\n- Btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency of bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in block_group_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_block_group_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_extent_data_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: get fs_info from eb in generic_err (dependency for bsc#1157692).\n- Btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO (dependency for bsc#1157692).\n- Btrfs: tree-checker: Make chunk item checker messages more readable (dependency for bsc#1157692).\n- Btrfs: tree-checker: Verify dev item (dependency for bsc#1157692).\n- Btrfs: tree-checker: Verify inode item (dependency for bsc#1157692).\n- Btrfs: volumes: Use more straightforward way to calculate map length (bsc#1151910).\n- can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs (bsc#1051510).\n- can: gs_usb: gs_usb_probe(): use descriptors of current altsetting (bsc#1051510).\n- can: mscan: mscan_rx_poll(): fix rx path lockup when returning from polling to irq mode (bsc#1051510).\n- can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510).\n- can, slip: Protect tty-\u003edisc_data in write_wakeup and close with RCU (bsc#1051510).\n- CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10).\n- cdrom: respect device capabilities during opening action (boo#1164632).\n- cfg80211: check for set_wiphy_params (bsc#1051510).\n- cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510).\n- cfg80211/mac80211: make ieee80211_send_layer2_update a public function (bsc#1051510).\n- cgroup: pids: use atomic64_t for pids-\u003elimit (bsc#1161514).\n- chardev: Avoid potential use-after-free in 'chrdev_open()' (bsc#1163849).\n- cifs: add support for flock (bsc#1144333).\n- CIFS: Close cached root handle only if it had a lease (bsc#1144333).\n- CIFS: Close open handle after interrupted close (bsc#1144333).\n- CIFS: close the shared root handle on tree disconnect (bsc#1144333).\n- CIFS: Do not miss cancelled OPEN responses (bsc#1144333).\n- CIFS: Fix lookup of root ses in DFS referral cache (bsc#1144333).\n- CIFS: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333).\n- CIFS: fix mount option display for sec=krb5i (bsc#1161907).\n- CIFS: Fix mount options set in automount (bsc#1144333).\n- CIFS: Fix NULL pointer dereference in mid callback (bsc#1144333).\n- CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bsc#1144333).\n- CIFS: Fix potential softlockups while refreshing DFS cache (bsc#1144333).\n- CIFS: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333).\n- CIFS: Fix use-after-free bug in cifs_reconnect() (bsc#1144333).\n- CIFS: Properly process SMB3 lease breaks (bsc#1144333).\n- CIFS: remove set but not used variables 'cinode' and 'netfid' (bsc#1144333).\n- CIFS: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333).\n- clk: Do not try to enable critical clocks if prepare failed (bsc#1051510).\n- clk: mmp2: Fix the order of timer mux parents (bsc#1051510).\n- clk: qcom: rcg2: Do not crash if our parent can't be found; return an error (bsc#1051510).\n- clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510).\n- clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510).\n- clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering (bsc#1051510).\n- clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510).\n- clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock (bsc#1051510).\n- clk: sunxi: sun9i-mmc: Implement reset callback for reset controls (bsc#1051510).\n- clk: tegra: Mark fuse clock as critical (bsc#1051510).\n- clocksource/drivers/bcm2835_timer: Fix memory leak of timer (bsc#1051510).\n- clocksource: Prevent double add_timer_on() for watchdog_timer (bsc#1051510).\n- closures: fix a race on wakeup from closure_sync (bsc#1163762).\n- configfs_register_group() shouldn't be (and isn't) called in rmdirable parts (bsc#1051510).\n- copy/pasted 'Recommends:' instead of 'Provides:', 'Obsoletes:' and 'Conflicts:\n- Cover up kABI breakage due to DH key verification (bsc#1155331).\n- crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510).\n- crypto: api - Check spawn-\u003ealg under lock in crypto_drop_spawn (bsc#1051510).\n- crypto: api - Fix race condition in crypto_spawn_alg (bsc#1051510).\n- crypto: atmel-sha - fix error handling when setting hmac key (bsc#1051510).\n- crypto: ccp - fix uninitialized list head (bsc#1051510).\n- crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510).\n- crypto: dh - add public key verification test (bsc#1155331).\n- crypto: dh - fix calculating encoded key size (bsc#1155331).\n- crypto: dh - fix memory leak (bsc#1155331).\n- crypto: dh - update test for public key verification (bsc#1155331).\n- crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334).\n- crypto: ecdh - add public key verification test (bsc#1155331).\n- crypto: ecdh - fix typo of P-192 b value (bsc#1155331).\n- crypto: pcrypt - Do not clear MAY_SLEEP flag in original request (bsc#1051510).\n- crypto: picoxcell - adjust the position of tasklet_init and fix missed tasklet_kill (bsc#1051510).\n- crypto: reexport crypto_shoot_alg() (bsc#1051510, kABI fix).\n- cxgb4: request the TX CIDX updates to status page (bsc#1127371).\n- dma-buf: Fix memory leak in sync_file_merge() (git-fixes).\n- dmaengine: coh901318: Fix a double-lock bug (bsc#1051510).\n- dmaengine: coh901318: Remove unused variable (bsc#1051510).\n- dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510).\n- dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510).\n- Documentation: Document arm64 kpti control (bsc#1162623).\n- drivers/base/memory.c: cache blocks in radix tree to accelerate lookup (bsc#1159955 ltc#182993).\n- drivers/base/memory.c: do not access uninitialized memmaps in soft_offline_page_store() (bsc#1051510).\n- drm/amdgpu: add function parameter description in 'amdgpu_gart_bind' (bsc#1051510).\n- drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table (bsc#1051510).\n- drm/amdgpu: remove always false comparison in 'amdgpu_atombios_i2c_process_i2c_ch' (bsc#1051510).\n- drm/amdgpu: remove set but not used variable 'amdgpu_connector' (bsc#1051510).\n- drm/amdgpu: remove set but not used variable 'dig' (bsc#1051510).\n- drm/amdgpu: remove set but not used variable 'dig_connector' (bsc#1051510).\n- drm/amdgpu: remove set but not used variable 'mc_shared_chmap' (bsc#1051510).\n- drm/amdgpu: remove set but not used variable 'mc_shared_chmap' from 'gfx_v6_0.c' and 'gfx_v7_0.c' (bsc#1051510).\n- drm: bridge: dw-hdmi: constify copied structure (bsc#1051510).\n- drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510).\n- drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510).\n- drm/i810: Prevent underflow in ioctl (bsc#1114279)\n- drm/i915: Add missing include file &lt;linux/math64.h\u003e (bsc#1051510).\n- drm/i915: Fix pid leak with banned clients (bsc#1114279)\n- drm: limit to INT_MAX in create_blob ioctl (bsc#1051510).\n- drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510).\n- drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510).\n- drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler (bsc#1051510).\n- drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() (bsc#1051510).\n- drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)\n- drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279)\n- drm/rockchip: lvds: Fix indentation of a #define (bsc#1051510).\n- drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add (bsc#1051510).\n- e1000e: Add support for Comet Lake (bsc#1158533).\n- e1000e: Add support for Tiger Lake (bsc#1158533).\n- e1000e: Increase pause and refresh time (bsc#1158533).\n- e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait (bsc#1051510).\n- Enable CONFIG_BLK_DEV_SR_VENDOR (boo#1164632).\n- enic: prevent waking up stopped tx queues over watchdog reset (bsc#1133147).\n- exit: panic before exit_mm() on global init exit (bsc#1161549).\n- ext2: check err when partial != NULL (bsc#1163859).\n- ext4: check for directory entries too close to block end (bsc#1163861).\n- ext4: fix a bug in ext4_wait_for_tail_page_commit (bsc#1163841).\n- ext4: fix checksum errors with indexed dirs (bsc#1160979).\n- ext4: fix deadlock allocating crypto bounce page from mempool (bsc#1163842).\n- ext4: Fix mount failure with quota configured as module (bsc#1164471).\n- ext4: improve explanation of a mount failure caused by a misconfigured kernel (bsc#1163843).\n- ext4, jbd2: ensure panic when aborting with zero errno (bsc#1163853).\n- extcon: max8997: Fix lack of path setting in USB device mode (bsc#1051510).\n- firestream: fix memory leaks (bsc#1051510).\n- fix autofs regression caused by follow_managed() changes (bsc#1159271).\n- fix dget_parent() fastpath race (bsc#1159271).\n- Fix partial checked out tree build ... so that bisection does not break.\n- Fix the locking in dcache_readdir() and friends (bsc#1123328).\n- fjes: fix missed check in fjes_acpi_add (bsc#1051510).\n- fs: cifs: Fix atime update check vs mtime (bsc#1144333).\n- fscrypt: do not set policy for a dead directory (bsc#1163846).\n- fs/namei.c: fix missing barriers when checking positivity (bsc#1159271).\n- fs/namei.c: pull positivity check into follow_managed() (bsc#1159271).\n- fs/open.c: allow opening only regular files during execve() (bsc#1163845).\n- ftrace: Add comment to why rcu_dereference_sched() is open coded (git-fixes).\n- ftrace: Avoid potential division by zero in function profiler (bsc#1160784).\n- ftrace: Protect ftrace_graph_hash with ftrace_sync (git-fixes).\n- genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510).\n- genirq/proc: Return proper error code when irq_set_affinity() fails (bnc#1105392).\n- genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510).\n- gpio: Fix error message on out-of-range GPIO in lookup table (bsc#1051510).\n- gtp: avoid zero size hashtable (networking-stable-20_01_01).\n- gtp: do not allow adding duplicate tid and ms_addr pdp context (networking-stable-20_01_01).\n- gtp: fix an use-after-free in ipv4_pdp_find() (networking-stable-20_01_01).\n- gtp: fix wrong condition in gtp_genl_dump_pdp() (networking-stable-20_01_01).\n- HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510).\n- HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510).\n- hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510).\n- HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510).\n- hwmon: (adt7475) Make volt2reg return same reg as reg2volt input (bsc#1051510).\n- hwmon: (core) Do not use device managed functions for memory allocations (bsc#1051510).\n- hwmon: (nct7802) Fix voltage limits to wrong registers (bsc#1051510).\n- hwmon: (pmbus/ltc2978) Fix PMBus polling of MFR_COMMON definitions (bsc#1051510).\n- i2c: imx: do not print error message on probe defer (bsc#1051510).\n- ibmveth: Detect unsupported packets before sending to the hypervisor (bsc#1159484 ltc#182983).\n- iio: adc: max9611: Fix too short conversion time delay (bsc#1051510).\n- iio: buffer: align the size of scan bytes to size of the largest element (bsc#1051510).\n- inet: protect against too small mtu values (networking-stable-19_12_16).\n- init: add arch_call_rest_init to allow stack switching (jsc#SLE-11179).\n- Input: aiptek - fix endpoint sanity check (bsc#1051510).\n- Input: cyttsp4_core - fix use after free bug (bsc#1051510).\n- Input: goodix - add upside-down quirk for Teclast X89 tablet (bsc#1051510).\n- Input: gtco - fix endpoint sanity check (bsc#1051510).\n- Input: keyspan-remote - fix control-message timeouts (bsc#1051510).\n- Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510).\n- Input: pm8xxx-vib - fix handling of separate enable register (bsc#1051510).\n- Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510).\n- Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register (bsc#1051510).\n- Input: sur40 - fix interface sanity checks (bsc#1051510).\n- Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers (bsc#1051510).\n- Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510).\n- Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510).\n- iommu/amd: Fix IOMMU perf counter clobbering during init (bsc#1162617).\n- iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA (bsc#1164314).\n- iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() (bsc#1164115).\n- iommu: Remove device link to group on failure (bsc#1160755).\n- iommu/vt-d: Unlink device if failed to add to group (bsc#1160756).\n- ipv4: Fix table id reference in fib_sync_down_addr (networking-stable-19_11_10).\n- iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop (git-fixes).\n- iwlwifi: do not throw error when trying to remove IGTK (bsc#1051510).\n- iwlwifi: mvm: fix NVM check for 3168 devices (bsc#1051510).\n- iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510).\n- iwlwifi: mvm: synchronize TID queue removal (bsc#1051510).\n- jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal (bsc#1163862).\n- jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer (bsc#1163836).\n- jbd2: Fix possible overflow in jbd2_log_space_left() (bsc#1163860).\n- jbd2: make sure ESHUTDOWN to be recorded in the journal superblock (bsc#1163863).\n- jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() (bsc#1163880).\n- jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record (bsc#1163852).\n- kABI: add _q suffix to exports that take struct dh (bsc#1155331).\n- kABI: protect struct sctp_ep_common (kabi).\n- kABI workaround for can/skb.h inclusion (bsc#1051510).\n- kconfig: fix broken dependency in randconfig-generated .config (bsc#1051510).\n- kernel-binary.spec.in: do not recommend firmware for kvmsmall and azure flavor (boo#1161360).\n- kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail (bsc#1160787).\n- kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510).\n- kexec: bail out upon SIGKILL when allocating memory (git-fixes).\n- KVM: Clean up __kvm_gfn_to_hva_cache_init() and its callers (bsc#1133021).\n- KVM: fix spectrev1 gadgets (bsc#1164705).\n- KVM: PPC: Book3S HV: Uninit vCPU if vcore creation fails (bsc#1061840).\n- KVM: PPC: Book3S PR: Fix -Werror=return-type build failure (bsc#1061840).\n- KVM: PPC: Book3S PR: Free shared page if mmu initialization fails (bsc#1061840).\n- KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl (git-fixes).\n- KVM: s390: Test for bad access register and size at the start of S390_MEM_OP (git-fixes).\n- KVM: SVM: Override default MMIO mask if memory encryption is enabled (bsc#1162618).\n- KVM: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD (bsc#1160476).\n- KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks (bsc#1164734).\n- KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks (bsc#1164728).\n- KVM: x86: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks (bsc#1164729).\n- KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks (bsc#1164712).\n- KVM: x86: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks (bsc#1164730).\n- KVM: x86: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c (bsc#1164733).\n- KVM: x86: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks (bsc#1164731).\n- KVM: x86: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks (bsc#1164732).\n- KVM: x86: Protect pmu_intel.c from Spectre-v1/L1TF attacks (bsc#1164735).\n- KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks (bsc#1164705).\n- KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks (bsc#1164727).\n- leds: Allow to call led_classdev_unregister() unconditionally (bsc#1161674).\n- leds: class: ensure workqueue is initialized before setting brightness (bsc#1161674).\n- lib: crc64: include &lt;linux/crc64.h\u003e for 'crc64_be' (bsc#1163762).\n- lib/scatterlist.c: adjust indentation in __sg_alloc_table (bsc#1051510).\n- lib/test_kasan.c: fix memory leak in kmalloc_oob_krealloc_more() (bsc#1051510).\n- livepatch/samples/selftest: Use klp_shadow_alloc() API correctly (bsc#1071995).\n- livepatch/selftest: Clean up shadow variable names and type (bsc#1071995).\n- livepatch: Simplify stack trace retrieval (jsc#SLE-11179).\n- mac80211: Do not send Layer 2 Update frame before authorization (bsc#1051510).\n- mac80211: Fix TKIP replay protection immediately after key setup (bsc#1051510).\n- mac80211: mesh: restrict airtime metric to peered established plinks (bsc#1051510).\n- macvlan: do not assume mac_header is set in macvlan_broadcast() (bsc#1051510).\n- macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() (bsc#1051510).\n- media: af9005: uninitialized variable printked (bsc#1051510).\n- media: cec: CEC 2.0-only bcast messages were ignored (git-fixes).\n- media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510).\n- media: cec: report Vendor ID after initialization (bsc#1051510).\n- media: digitv: do not continue if remote control state can't be read (bsc#1051510).\n- media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 (bsc#1051510).\n- media: exynos4-is: fix wrong mdev and v4l2 dev order in error path (git-fixes).\n- media: gspca: zero usb_buf (bsc#1051510).\n- media: iguanair: fix endpoint sanity check (bsc#1051510).\n- media: ov6650: Fix crop rectangle alignment not passed back (git-fixes).\n- media: ov6650: Fix incorrect use of JPEG colorspace (git-fixes).\n- media: pulse8-cec: fix lost cec_transmit_attempt_done() call.\n- media: pulse8-cec: return 0 when invalidating the logical address (bsc#1051510).\n- media: stkwebcam: Bugfix for wrong return values (bsc#1051510).\n- media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors (bsc#1051510).\n- media/v4l2-core: set pages dirty upon releasing DMA buffers (bsc#1051510).\n- media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT (bsc#1051510).\n- media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments (bsc#1051510).\n- mfd: da9062: Fix watchdog compatible string (bsc#1051510).\n- mfd: dln2: More sanity checking for endpoints (bsc#1051510).\n- mfd: rn5t618: Mark ADC control register volatile (bsc#1051510).\n- mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510).\n- mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510).\n- mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510).\n- mmc: sdhci-of-esdhc: Revert 'mmc: sdhci-of-esdhc: add erratum A-009204 support' (bsc#1051510).\n- mmc: spi: Toggle SPI polarity, do not hardcode it (bsc#1051510).\n- mmc: tegra: fix SDR50 tuning override (bsc#1051510).\n- mm: memory_hotplug: use put_device() if device_register fail (bsc#1159955 ltc#182993).\n- mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock (bsc#1159394).\n- mod_devicetable: fix PHY module format (networking-stable-19_12_28).\n- mtd: fix mtd_oobavail() incoherent returned value (bsc#1051510).\n- mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() (git-fixes).\n- namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1163851).\n- net: bridge: deny dev_set_mac_address() when unregistering (networking-stable-19_12_16).\n- net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes).\n- net: dst: Force 4-byte alignment of dst_metrics (networking-stable-19_12_28).\n- net: ena: fix napi handler misbehavior when the napi budget is zero (networking-stable-20_01_01).\n- net: ethernet: octeon_mgmt: Account for second possible VLAN header (networking-stable-19_11_10).\n- net: ethernet: ti: cpsw: fix extra rx interrupt (networking-stable-19_12_16).\n- netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes).\n- net: fix data-race in neigh_event_send() (networking-stable-19_11_10).\n- net: hisilicon: Fix a BUG trigered by wrong bytes_compl (networking-stable-19_12_28).\n- net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25).\n- net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25).\n- net/mlx5e: Fix SFF 8472 eeprom length (git-fixes).\n- net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303).\n- net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858).\n- net: nfc: nci: fix a possible sleep-in-atomic-context bug in nci_uart_tty_receive() (networking-stable-19_12_28).\n- net: psample: fix skb_over_panic (networking-stable-19_12_03).\n- net: qlogic: Fix error paths in ql_alloc_large_buffers() (networking-stable-19_12_28).\n- net: rtnetlink: prevent underflows in do_setvfinfo() (networking-stable-19_11_25).\n- net/sched: act_pedit: fix WARN() in the traffic path (networking-stable-19_11_25).\n- net: sched: correct flower port blocking (git-fixes).\n- net: sched: fix `tc -s class show` no bstats on class with nolock subqueues (networking-stable-19_12_03).\n- net: usb: lan78xx: Fix suspend/resume PHY register access error (networking-stable-19_12_28).\n- net: usb: lan78xx: limit size of local TSO packets (bsc#1051510).\n- net: usb: qmi_wwan: add support for DW5821e with eSIM support (networking-stable-19_11_10).\n- net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules (networking-stable-19_11_18).\n- new helper: lookup_positive_unlocked() (bsc#1159271).\n- NFC: fdp: fix incorrect free object (networking-stable-19_11_10).\n- NFC: pn533: fix bulk-message timeout (bsc#1051510).\n- NFC: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes).\n- NFC: st21nfca: fix double free (networking-stable-19_11_10).\n- nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info (bsc#1163774).\n- openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() (networking-stable-19_12_03).\n- openvswitch: remove another BUG_ON() (networking-stable-19_12_03).\n- openvswitch: support asymmetric conntrack (networking-stable-19_12_16).\n- orinoco_usb: fix interface sanity check (git-fixes).\n- PCI: Add DMA alias quirk for Intel VCA NTB (bsc#1051510).\n- PCI: Do not disable bridge BARs when assigning bus resources (bsc#1051510).\n- PCI/IOV: Fix memory leak in pci_iov_add_virtfn() (git-fixes).\n- PCI/switchtec: Fix vep_vector_number ioread width (bsc#1051510).\n- percpu: Separate decrypted varaibles anytime encryption can be enabled (bsc#1114279).\n- perf/x86/intel: Fix inaccurate period in context switch for auto-reload (bsc#1164315).\n- phy: qualcomm: Adjust indentation in read_poll_timeout (bsc#1051510).\n- pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510).\n- pinctrl: sh-pfc: r8a7778: Fix duplicate SDSELF_B and SD1_CLK_B (bsc#1051510).\n- platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 (bsc#1051510).\n- platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes (bsc#1051510).\n- platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table (bsc#1051510).\n- powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges \u003e4GB (bnc#1151927 5.3.17).\n- powerpc: Allow flush_icache_range to work across ranges \u003e4GB (bnc#1151927 5.3.17).\n- powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729).\n- powerpc: avoid adjusting memory_limit for capture kernel memory reservation (bsc#1140025 ltc#176086).\n- powerpc: Fix vDSO clock_getres() (bsc#1065729).\n- powerpc/irq: fix stack overflow verification (bsc#1065729).\n- powerpc/livepatch: return -ERRNO values in save_stack_trace_tsk_reliable() (bsc#1071995 bsc#1161875).\n- powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729).\n- powerpc/mm: Remove kvm radix prefetch workaround for Power9 DD2.2 (bsc#1061840).\n- powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729).\n- powerpc/powernv: Disable native PCIe port management (bsc#1065729).\n- powerpc/pseries: Advance pfn if section is not present in lmb_is_removable() (bsc#1065729).\n- powerpc/pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW (bsc#1065729).\n- powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init() (git-fixes).\n- powerpc/pseries/hotplug-memory: Change rc variable to bool (bsc#1065729).\n- powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028 ltc#181740).\n- powerpc/pseries/vio: Fix iommu_table use-after-free refcount warning (bsc#1065729).\n- powerpc: reserve memory for capture kernel after hugepages init (bsc#1140025 ltc#176086).\n- powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729).\n- powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery (bsc#1118338 ltc#173734).\n- powerpc/tools: Do not quote $objdump in scripts (bsc#1065729).\n- powerpc/xive: Discard ESB load value when interrupt is invalid (bsc#1085030).\n- powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts (bsc#1085030).\n- powerpc/xmon: do not access ASDR in VMs (bsc#1065729).\n- power: supply: ltc2941-battery-gauge: fix use-after-free (bsc#1051510).\n- ppp: Adjust indentation into ppp_async_input (git-fixes).\n- prevent active file list thrashing due to refault detection (VM Performance, bsc#1156286).\n- pstore/ram: Write new dumps to start of recycled zones (bsc#1051510).\n- pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional (git-fixes).\n- pwm: Remove set but not set variable 'pwm' (git-fixes).\n- pxa168fb: Fix the function used to release some memory in an error (bsc#1114279)\n- qede: Disable hardware gro when xdp prog is installed (bsc#1086314 bsc#1086313 bsc#1086301 ).\n- qede: Fix multicast mac configuration (networking-stable-19_12_28).\n- qede: fix NULL pointer deref in __qede_remove() (networking-stable-19_11_10).\n- qmi_wwan: Add support for Quectel RM500Q (bsc#1051510).\n- quota: Check that quota is not dirty before release (bsc#1163858).\n- quota: fix livelock in dquot_writeback_dquots (bsc#1163857).\n- r8152: add missing endpoint sanity check (bsc#1051510).\n- r8152: get default setting of WOL before initializing (bsc#1051510).\n- random: move FIPS continuous test to output functions (bsc#1155334).\n- RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244).\n- RDMA/hns: Prevent memory leaks of eq-\u003ebuf_list (bsc#1104427 ).\n- README.BRANCH: Update the branch name to cve/linux-4.12\n- regulator: Fix return value of _set_load() stub (bsc#1051510).\n- regulator: rk808: Lower log level on optional GPIOs being not available (bsc#1051510).\n- regulator: rn5t618: fix module aliases (bsc#1051510).\n- reiserfs: Fix memory leak of journal device string (bsc#1163867).\n- reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling (bsc#1163869).\n- resource: fix locking in find_next_iomem_res() (bsc#1114279).\n- Revert 'ath10k: fix DMA related firmware crashes on multiple devices' (git-fixes).\n- Revert 'Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers' (bsc#1051510).\n- Revert 'mmc: sdhci: Fix incorrect switch to HS mode' (bsc#1051510).\n- rpm/kabi.pl: support new (\u003e=5.4) Module.symvers format (new symbol namespace field)\n- rpm/kernel-binary.spec.in: Replace Novell with SUSE\n- rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends (bsc#1143959) For reducing the dependency on kernel-firmware in sub packages\n- rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959)\n- rpm/kernel-subpackage-spec: fix kernel-default-base build There were some issues with recent changes to subpackage dependencies handling:\n- rpm/kernel-subpackage-spec: Unify dependency handling.\n- rpm/modules.fips: update module list (bsc#1157853)\n- rsi_91x_usb: fix interface sanity check (git-fixes).\n- rtc: cmos: Stop using shared IRQ (bsc#1051510).\n- rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510).\n- rtc: hym8563: Return -EINVAL if the time is known to be invalid (bsc#1051510).\n- rtc: max8997: Fix the returned value in case of error in 'max8997_rtc_read_alarm()' (bsc#1051510).\n- rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510).\n- rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510).\n- rtc: s35390a: Change buf's type to u8 in s35390a_init (bsc#1051510).\n- rtl8xxxu: fix interface sanity check (git-fixes).\n- rtlwifi: Fix MAX MPDU of VHT capability (git-fixes).\n- rtlwifi: Remove redundant semicolon in wifi.h (git-fixes).\n- s390: add stack switch helper (jsc#SLE-11179).\n- s390: add support for virtually mapped kernel stacks (jsc#SLE-11179).\n- s390: always inline current_stack_pointer() (jsc#SLE-11179).\n- s390: always inline disabled_wait (jsc#SLE-11179).\n- s390: avoid misusing CALL_ON_STACK for task stack setup (jsc#SLE-11179).\n- s390: clean up stacks setup (jsc#SLE-11179).\n- s390: correct CALL_ON_STACK back_chain saving (jsc#SLE-11179).\n- s390: disable preemption when switching to nodat stack with CALL_ON_STACK (jsc#SLE-11179).\n- s390: fine-tune stack switch helper (jsc#SLE-11179).\n- s390: fix register clobbering in CALL_ON_STACK (jsc#SLE-11179).\n- s390/ftrace: generate traced function stack frame (jsc#SLE-11178 jsc#SLE-11179).\n- s390/ftrace: save traced function caller (jsc#SLE-11179).\n- s390/ftrace: use HAVE_FUNCTION_GRAPH_RET_ADDR_PTR (jsc#SLE-11179).\n- s390/head64: correct init_task stack setup (jsc#SLE-11179).\n- s390: kabi workaround for ftrace_ret_stack (jsc#SLE-11179).\n- s390: kabi workaround for lowcore changes due to vmap stack (jsc#SLE-11179).\n- s390: kabi workaround for reliable stack tracing (jsc#SLE-11179).\n- s390/kasan: avoid false positives during stack unwind (jsc#SLE-11179).\n- s390/kasan: avoid report in get_wchan (jsc#SLE-11179).\n- s390/livepatch: Implement reliable stack tracing for the consistency model (jsc#SLE-11179).\n- s390: preserve kabi for stack unwind API (jsc#SLE-11179).\n- s390/process: avoid custom stack unwinding in get_wchan (jsc#SLE-11179).\n- s390/qeth: clean up page frag creation (git-fixes).\n- s390/qeth: consolidate skb allocation (git-fixes).\n- s390/qeth: ensure linear access to packet headers (git-fixes).\n- s390/qeth: guard against runt packets (git-fixes).\n- s390/stacktrace: use common arch_stack_walk infrastructure (jsc#SLE-11179).\n- s390/suspend: fix stack setup in swsusp_arch_suspend (jsc#SLE-11179).\n- s390/test_unwind: print verbose unwinding results (jsc#SLE-11179).\n- s390: unify stack size definitions (jsc#SLE-11179).\n- s390/unwind: add stack pointer alignment sanity checks (jsc#SLE-11179).\n- s390/unwind: always inline get_stack_pointer (jsc#SLE-11179).\n- s390/unwind: avoid int overflow in outside_of_stack (jsc#SLE-11179).\n- s390/unwind: cleanup unused READ_ONCE_TASK_STACK (jsc#SLE-11179).\n- s390/unwind: correct stack switching during unwind (jsc#SLE-11179).\n- s390/unwind: drop unnecessary code around calling ftrace_graph_ret_addr() (jsc#SLE-11179).\n- s390/unwind: filter out unreliable bogus %r14 (jsc#SLE-11179).\n- s390/unwind: fix get_stack_pointer(NULL, NULL) (jsc#SLE-11179).\n- s390/unwind: fix mixing regs and sp (jsc#SLE-11179).\n- s390/unwind: introduce stack unwind API (jsc#SLE-11179).\n- s390/unwind: make reuse_sp default when unwinding pt_regs (jsc#SLE-11179).\n- s390/unwind: remove stack recursion warning (jsc#SLE-11179).\n- s390/unwind: report an error if pt_regs are not on stack (jsc#SLE-11179).\n- s390/unwind: start unwinding from reliable state (jsc#SLE-11179).\n- s390/unwind: stop gracefully at task pt_regs (jsc#SLE-11179).\n- s390/unwind: stop gracefully at user mode pt_regs in irq stack (jsc#SLE-11179).\n- s390/unwind: unify task is current checks (jsc#SLE-11179).\n- sched/fair: Add tmp_alone_branch assertion (bnc#1156462).\n- sched/fair: Fix insertion in rq-\u003eleaf_cfs_rq_list (bnc#1156462).\n- sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462).\n- sched/fair: Optimize update_blocked_averages() (bnc#1156462).\n- scsi: qla2xxx: Add a shadow variable to hold disc_state history of fcport (bsc#1158013).\n- scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs (bsc#1158013).\n- scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013).\n- scsi: qla2xxx: Consolidate fabric scan (bsc#1158013).\n- scsi: qla2xxx: Correct fcport flags handling (bsc#1158013).\n- scsi: qla2xxx: Fix a NULL pointer dereference in an error path (bsc#1157966 bsc#1158013 bsc#1157424).\n- scsi: qla2xxx: Fix fabric scan hang (bsc#1158013).\n- scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013).\n- scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013).\n- scsi: qla2xxx: Fix stuck login session using prli_pend_timer (bsc#1158013).\n- scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013).\n- scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type (bsc#1158013).\n- scsi: qla2xxx: Fix unbound NVME response length (bsc#1157966 bsc#1158013 bsc#1157424).\n- scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013).\n- scsi: qla2xxx: Improve readability of the code that handles qla_flt_header (bsc#1158013).\n- scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss (bsc#1158013).\n- scsi: qla2xxx: Update driver version to 10.01.00.22-k (bsc#1158013).\n- scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013).\n- scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these functions (bsc#1158013).\n- scsi: zfcp: trace channel log even for FCP command responses (git-fixes).\n- sctp: cache netns in sctp_ep_common (networking-stable-19_12_03).\n- sctp: fully initialize v4 addr in some functions (networking-stable-19_12_28).\n- serial: 8250_bcm2835aux: Fix line mismatch on driver unbind (bsc#1051510).\n- serial: ifx6x60: add missed pm_runtime_disable (bsc#1051510).\n- serial: pl011: Fix DMA -\u003eflush_buffer() (bsc#1051510).\n- serial: serial_core: Perform NULL checks for break_ctl ops (bsc#1051510).\n- serial: stm32: fix transmit_chars when tx is stopped (bsc#1051510).\n- sfc: Only cancel the PPS workqueue if it exists (networking-stable-19_11_25).\n- sh_eth: check sh_eth_cpu_data::dual_port when dumping registers (bsc#1051510).\n- sh_eth: fix dumping ARSTR (bsc#1051510).\n- sh_eth: fix invalid context bug while calling auto-negotiation by ethtool (bsc#1051510).\n- sh_eth: fix invalid context bug while changing link options by ethtool (bsc#1051510).\n- sh_eth: fix TSU init on SH7734/R8A7740 (bsc#1051510).\n- sh_eth: fix TXALCR1 offsets (bsc#1051510).\n- sh_eth: TSU_QTAG0/1 registers the same as TSU_QTAGM0/1 (bsc#1051510).\n- SMB3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1144333).\n- SMB3: Fix persistent handles reconnect (bsc#1144333).\n- smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1144333).\n- smb3: remove confusing dmesg when mounting with encryption ('seal') (bsc#1144333).\n- soc: renesas: rcar-sysc: Add goto to of_node_put() before return (bsc#1051510).\n- soc/tegra: fuse: Correct straps' address for older Tegra124 device trees (bsc#1051510).\n- soc: ti: wkup_m3_ipc: Fix race condition with rproc_boot (bsc#1051510).\n- spi: tegra114: clear packed bit for unpacked mode (bsc#1051510).\n- spi: tegra114: configure dma burst size to fifo trig level (bsc#1051510).\n- spi: tegra114: fix for unpacked mode transfers (bsc#1051510).\n- spi: tegra114: flush fifos (bsc#1051510).\n- spi: tegra114: terminate dma and reset on transfer timeout (bsc#1051510).\n- sr_vendor: support Beurer GL50 evo CD-on-a-chip devices (boo#1164632).\n- stacktrace: Do not skip first entry on noncurrent tasks (jsc#SLE-11179).\n- stacktrace: Force USER_DS for stack_trace_save_user() (jsc#SLE-11179).\n- stacktrace: Get rid of unneeded '!!' pattern (jsc#SLE-11179).\n- stacktrace: Provide common infrastructure (jsc#SLE-11179).\n- stacktrace: Provide helpers for common stack trace operations (jsc#SLE-11179).\n- stacktrace: Unbreak stack_trace_save_tsk_reliable() (jsc#SLE-11179).\n- stacktrace: Use PF_KTHREAD to check for kernel threads (jsc#SLE-11179).\n- staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 (bsc#1051510).\n- Staging: iio: adt7316: Fix i2c data reading, set the data field (bsc#1051510).\n- staging: rtl8188eu: fix interface sanity check (bsc#1051510).\n- staging: vt6656: correct packet types for CTS protect, mode (bsc#1051510).\n- staging: vt6656: Fix false Tx excessive retries reporting (bsc#1051510).\n- staging: vt6656: use NULLFUCTION stack on mac80211 (bsc#1051510).\n- staging: wlan-ng: ensure error return is actually returned (bsc#1051510).\n- stop_machine: Atomically queue and wake stopper threads (bsc#1088810, bsc#1161702).\n- stop_machine: Disable preemption after queueing stopper threads (bsc#1088810, bsc#1161702).\n- stop_machine: Disable preemption when waking two stopper threads (bsc#1088810, bsc#1161702).\n- stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock (bsc#1088810, bsc#1161702).\n- tcp: clear tp-\u003epackets_out when purging write queue (bsc#1160560).\n- tcp: do not send empty skb from tcp_write_xmit() (networking-stable-20_01_01).\n- tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable 4.14.159).\n- tcp: md5: fix potential overestimation of TCP option space (networking-stable-19_12_16).\n- tracing: Annotate ftrace_graph_hash pointer with __rcu (git-fixes).\n- tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu (git-fixes).\n- tracing: Cleanup stack trace code (jsc#SLE-11179).\n- tracing: Fix tracing_stat return values in error handling paths (git-fixes).\n- tracing: Fix very unlikely race of registering two stat tracers (git-fixes).\n- tracing: Have the histogram compare functions convert to u64 first (bsc#1160210).\n- tracing: xen: Ordered comparison of function pointers (git-fixes).\n- tty: n_hdlc: fix build on SPARC (bsc#1051510).\n- tty/serial: atmel: Add is_half_duplex helper (bsc#1051510).\n- tty: serial: msm_serial: Fix lockup for sysrq and oops (bsc#1051510).\n- tty: vt: keyboard: reject invalid keycodes (bsc#1051510).\n- ubifs: do not trigger assertion on invalid no-key filename (bsc#1163850).\n- ubifs: Fix deadlock in concurrent bulk-read and writepage (bsc#1163856).\n- ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag (bsc#1163855).\n- ubifs: Reject unsupported ioctl flags explicitly (bsc#1163844).\n- udp: fix integer overflow while computing available space in sk_rcvbuf (networking-stable-20_01_01).\n- USB: adutux: fix interface sanity check (bsc#1051510).\n- USB: Allow USB device to be warm reset in suspended state (bsc#1051510).\n- USB: atm: ueagle-atm: add missing endpoint check (bsc#1051510).\n- USB: chipidea: host: Disable port power only if previously enabled (bsc#1051510).\n- USB: core: fix check for duplicate endpoints (git-fixes).\n- USB: core: hub: Improved device recognition on remote wakeup (bsc#1051510).\n- USB: core: urb: fix URB structure initialization function (bsc#1051510).\n- USB: documentation: flags on usb-storage versus UAS (bsc#1051510).\n- USB: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510).\n- USB: dwc3: do not log probe deferrals; but do log other error codes (bsc#1051510).\n- USB: dwc3: ep0: Clear started flag on completion (bsc#1051510).\n- USB: dwc3: turn off VBUS when leaving host mode (bsc#1051510).\n- USB: EHCI: Do not return -EPIPE when hub is disconnected (git-fixes).\n- USB: gadget: f_ecm: Use atomic_t to track in-flight request (bsc#1051510).\n- USB: gadget: f_ncm: Use atomic_t to track in-flight request (bsc#1051510).\n- USB: gadget: legacy: set max_speed to super-speed (bsc#1051510).\n- USB: gadget: pch_udc: fix use after free (bsc#1051510).\n- USB: gadget: u_serial: add missing port entry locking (bsc#1051510).\n- USB: gadget: Zero ffs_io_data (bsc#1051510).\n- USB: host: xhci-hub: fix extra endianness conversion (bsc#1051510).\n- USB: idmouse: fix interface sanity checks (bsc#1051510).\n- usbip: Fix error path of vhci_recv_ret_submit() (git-fixes).\n- usbip: Fix receive error in vhci-hcd when using scatter-gather (bsc#1051510).\n- USB: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510).\n- USB: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510).\n- USB: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510).\n- USB: musb: fix idling for suspend after disconnect interrupt (bsc#1051510).\n- USB: serial: ch341: handle unbound port at reset_resume (bsc#1051510).\n- USB: serial: io_edgeport: add missing active-port sanity check (bsc#1051510).\n- USB: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510).\n- USB: serial: io_edgeport: handle unbound ports on URB completion (bsc#1051510).\n- USB: serial: io_edgeport: use irqsave() in USB's complete callback (bsc#1051510).\n- USB: serial: ir-usb: add missing endpoint sanity check (bsc#1051510).\n- USB: serial: ir-usb: fix IrLAP framing (bsc#1051510).\n- USB: serial: ir-usb: fix link-speed handling (bsc#1051510).\n- USB: serial: keyspan: handle unbound ports (bsc#1051510).\n- USB: serial: opticon: fix control-message timeouts (bsc#1051510).\n- USB: serial: option: Add support for Quectel RM500Q (bsc#1051510).\n- USB: serial: option: add support for Quectel RM500Q in QDL mode (git-fixes).\n- USB: serial: option: add Telit ME910G1 0x110a composition (git-fixes).\n- USB: serial: option: add ZLP support for 0x1bc7/0x9010 (git-fixes).\n- USB: serial: quatech2: handle unbound ports (bsc#1051510).\n- USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx (bsc#1051510).\n- USB: serial: suppress driver bind attributes (bsc#1051510).\n- usb-storage: Disable UAS on JMicron SATA enclosure (bsc#1051510).\n- USB: typec: tcpci: mask event interrupts when remove driver (bsc#1051510).\n- USB: uas: heed CAPACITY_HEURISTICS (bsc#1051510).\n- USB: uas: honor flag to avoid CAPACITY16 (bsc#1051510).\n- USB: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510).\n- USB: xhci: only set D3hot for pci device (bsc#1051510).\n- vhost/vsock: accept only packets with the right dst_cid (networking-stable-20_01_01).\n- watchdog: max77620_wdt: fix potential build errors (bsc#1051510).\n- watchdog: rn5t618_wdt: fix module aliases (bsc#1051510).\n- watchdog: wdat_wdt: fix get_timeleft call for wdat_wdt (bsc#1162557).\n- wireless: fix enabling channel 12 for custom regulatory domain (bsc#1051510).\n- wireless: wext: avoid gcc -O3 warning (bsc#1051510).\n- workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211).\n- x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR (bsc#1162619).\n- x86/intel_rdt: Split resource group removal in two (bsc#1112178).\n- x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279).\n- x86/MCE/AMD: Allow any CPU to initialize the smca_banks array (bsc#1114279).\n- x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks (bsc#1114279).\n- x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() (bsc#1114279).\n- x86/MCE: Fix possibly incorrect severity calculation on AMD (bsc#1114279).\n- x86/resctrl: Check monitoring static key in the MBM overflow handler (bsc#1114279).\n- x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).\n- x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279).\n- x86/resctrl: Fix potential memory leak (bsc#1114279).\n- x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc#1112178).\n- x86/resctrl: Fix use-after-free when deleting resource groups (bsc#1114279).\n- xen/balloon: Support xend-based toolstack take two (bsc#1065600).\n- xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600).\n- xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600).\n- xen-blkfront: switch kcalloc to kvcalloc for large array allocation (bsc#1160917).\n- xen: Enable interrupts when calling _cond_resched() (bsc#1065600).\n- xfrm: Fix transport mode skb control buffer usage (bsc#1161552).\n- xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087, bsc#1153917).\n- xhci: Fix memory leak in xhci_add_in_port() (bsc#1051510).\n- xhci: fix USB3 device initiated resume race with roothub autosuspend (bsc#1051510).\n- xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour (bsc#1051510).\n- xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510).\n- xhci: make sure interrupts are restored to correct state (bsc#1051510).\n- zd1211rw: fix storage endpoint lookup (git-fixes).\n","modified":"2026-02-04T04:05:11.668271Z","published":"2020-03-02T14:21:42Z","related":["CVE-2019-14615","CVE-2019-14896","CVE-2019-14897","CVE-2019-16994","CVE-2019-18808","CVE-2019-19036","CVE-2019-19045","CVE-2019-19054","CVE-2019-19066","CVE-2019-19318","CVE-2019-19319","CVE-2019-19447","CVE-2019-19767","CVE-2019-19965","CVE-2019-19966","CVE-2019-20054","CVE-2019-20095","CVE-2019-20096","CVE-2020-2732","CVE-2020-7053","CVE-2020-8428","CVE-2020-8648","CVE-2020-8992"],"upstream":["CVE-2019-14615","CVE-2019-14896","CVE-2019-14897","CVE-2019-16994","CVE-2019-18808","CVE-2019-19036","CVE-2019-19045","CVE-2019-19054","CVE-2019-19066","CVE-2019-19318","CVE-2019-19319","CVE-2019-19447","CVE-2019-19767","CVE-2019-19965","CVE-2019-19966","CVE-2019-20054","CVE-2019-20095","CVE-2019-20096","CVE-2020-2732","CVE-2020-7053","CVE-2020-8428","CVE-2020-8648","CVE-2020-8992"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20200559-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1046303"},{"type":"REPORT","url":"https://bugzilla.suse.com/1050244"},{"type":"REPORT","url":"https://bugzilla.suse.com/1051510"},{"type":"REPORT","url":"https://bugzilla.suse.com/1051858"},{"type":"REPORT","url":"https://bugzilla.suse.com/1061840"},{"type":"REPORT","url":"https://bugzilla.suse.com/1065600"},{"type":"REPORT","url":"https://bugzilla.suse.com/1065729"},{"type":"REPORT","url":"https://bugzilla.suse.com/1071995"},{"type":"REPORT","url":"https://bugzilla.suse.com/1085030"},{"type":"REPORT","url":"https://bugzilla.suse.com/1086301"},{"type":"REPORT","url":"https://bugzilla.suse.com/1086313"},{"type":"REPORT","url":"https://bugzilla.suse.com/1086314"},{"type":"REPORT","url":"https://bugzilla.suse.com/1088810"},{"type":"REPORT","url":"https://bugzilla.suse.com/1104427"},{"type":"REPORT","url":"https://bugzilla.suse.com/1105392"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111666"},{"type":"REPORT","url":"https://bugzilla.suse.com/1112178"},{"type":"REPORT","url":"https://bugzilla.suse.com/1112504"},{"type":"REPORT","url":"https://bugzilla.suse.com/1114279"},{"type":"REPORT","url":"https://bugzilla.suse.com/1118338"},{"type":"REPORT","url":"https://bugzilla.suse.com/1123328"},{"type":"REPORT","url":"https://bugzilla.suse.com/1127371"},{"type":"REPORT","url":"https://bugzilla.suse.com/1133021"},{"type":"REPORT","url":"https://bugzilla.suse.com/1133147"},{"type":"REPORT","url":"https://bugzilla.suse.com/1134973"},{"type":"REPORT","url":"https://bugzilla.suse.com/1140025"},{"type":"REPORT","url":"https://bugzilla.suse.com/1143959"},{"type":"REPORT","url":"https://bugzilla.suse.com/1144333"},{"type":"REPORT","url":"https://bugzilla.suse.com/1151910"},{"type":"REPORT","url":"https://bugzilla.suse.com/1151927"},{"type":"REPORT","url":"https://bugzilla.suse.com/1153917"},{"type":"REPORT","url":"https://bugzilla.suse.com/1154243"},{"type":"REPORT","url":"https://bugzilla.suse.com/1155331"},{"type":"REPORT","url":"https://bugzilla.suse.com/1155334"},{"type":"REPORT","url":"https://bugzilla.suse.com/1156259"},{"type":"REPORT","url":"https://bugzilla.suse.com/1156286"},{"type":"REPORT","url":"https://bugzilla.suse.com/1156462"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157155"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157157"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157303"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157424"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157692"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157853"},{"type":"REPORT","url":"https://bugzilla.suse.com/1157966"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158013"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158021"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158026"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158533"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158819"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159028"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159271"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159297"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159394"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159483"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159484"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159569"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159588"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159841"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159908"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159909"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159910"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159911"},{"type":"REPORT","url":"https://bugzilla.suse.com/1159955"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160195"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160210"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160211"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160218"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160433"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160442"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160476"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160560"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160755"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160756"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160784"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160787"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160802"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160803"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160804"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160917"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160966"},{"type":"REPORT","url":"https://bugzilla.suse.com/1160979"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161087"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161360"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161514"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161518"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161522"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161523"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161549"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161552"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161674"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161702"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161875"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161907"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161931"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161933"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161934"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161935"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161936"},{"type":"REPORT","url":"https://bugzilla.suse.com/1161937"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162028"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162067"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162109"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162139"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162557"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162617"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162618"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162619"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162623"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162928"},{"type":"REPORT","url":"https://bugzilla.suse.com/1162943"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163383"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163384"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163762"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163774"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163836"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163840"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163841"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163842"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163843"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163844"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163845"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163846"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163849"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163850"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163851"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163852"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163853"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163855"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163856"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163857"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163858"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163859"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163860"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163861"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163862"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163863"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163867"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163869"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163880"},{"type":"REPORT","url":"https://bugzilla.suse.com/1163971"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164069"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164098"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164115"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164314"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164315"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164388"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164471"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164632"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164705"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164712"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164727"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164728"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164729"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164730"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164731"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164732"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164733"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164734"},{"type":"REPORT","url":"https://bugzilla.suse.com/1164735"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-14615"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-14896"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-14897"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-16994"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-18808"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19036"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19045"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19054"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19066"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19319"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19447"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19767"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19965"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-19966"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-20054"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-20095"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-20096"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-2732"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-7053"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-8428"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-8648"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-8992"}],"affected":[{"package":{"name":"kernel-azure","ecosystem":"SUSE:Linux Enterprise Server 12 SP4","purl":"pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}},{"package":{"name":"kernel-source-azure","ecosystem":"SUSE:Linux Enterprise Server 12 SP4","purl":"pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}},{"package":{"name":"kernel-syms-azure","ecosystem":"SUSE:Linux Enterprise Server 12 SP4","purl":"pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}},{"package":{"name":"kernel-azure","ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP4","purl":"pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}},{"package":{"name":"kernel-source-azure","ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP4","purl":"pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}},{"package":{"name":"kernel-syms-azure","ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP4","purl":"pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.12.14-6.37.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-source-azure":"4.12.14-6.37.1","kernel-azure-base":"4.12.14-6.37.1","kernel-azure":"4.12.14-6.37.1","kernel-syms-azure":"4.12.14-6.37.1","kernel-azure-devel":"4.12.14-6.37.1","kernel-devel-azure":"4.12.14-6.37.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0559-1.json"}}],"schema_version":"1.7.3"}