ID CVE-2018-10938Type cveReporter cve@mitre.orgModified 2019-10-03T00:03:00
Description
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.
{"id": "CVE-2018-10938", "bulletinFamily": "NVD", "title": "CVE-2018-10938", "description": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.", "published": "2018-08-27T13:29:00", "modified": "2019-10-03T00:03:00", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-10938", "reporter": "cve@mitre.org", "references": ["https://www.debian.org/security/2018/dsa-4308", "https://usn.ubuntu.com/3797-2/", "http://www.securityfocus.com/bid/105154", "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html", "http://seclists.org/oss-sec/2018/q3/179", "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938", "http://www.securitytracker.com/id/1041569", "https://usn.ubuntu.com/3797-1/", "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"], "cvelist": ["CVE-2018-10938"], "type": "cve", "lastseen": "2021-02-02T06:52:24", "edition": 5, "viewCount": 46, "enchantments": {"dependencies": {"references": [{"type": "f5", "idList": ["F5:K35205264"]}, {"type": "nessus", "idList": ["SUSE_SU-2018-2860-1.NASL", "UBUNTU_USN-3797-2.NASL", "OPENSUSE-2019-769.NASL", "UBUNTU_USN-3797-1.NASL", "SUSE_SU-2018-2864-1.NASL", "SUSE_SU-2018-2980-1.NASL", "ORACLELINUX_ELSA-2018-4208.NASL", "OPENSUSE-2018-1140.NASL", "OPENSUSE-2018-1016.NASL", "ORACLEVM_OVMSA-2018-0253.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2018-4208"]}, {"type": "ubuntu", "idList": ["USN-3797-1", "USN-3797-2"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310843666", "OPENVAS:1361412562310704308", "OPENVAS:1361412562310851895", "OPENVAS:1361412562310891531", "OPENVAS:1361412562310852091", "OPENVAS:1361412562310843663"]}, {"type": "cloudfoundry", "idList": ["CFOUNDRY:B4B97B81301258FB8DE2E5FB29E0A418"]}, {"type": "symantec", "idList": ["SMNTC-1467"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2018:2738-1", "OPENSUSE-SU-2018:3071-1"]}, {"type": "debian", "idList": ["DEBIAN:DLA-1531-1:834CC", "DEBIAN:DSA-4308-1:D561A"]}], "modified": "2021-02-02T06:52:24", "rev": 2}, "score": {"value": 5.5, "vector": "NONE", "modified": "2021-02-02T06:52:24", "rev": 2}, "vulnersScore": 5.5}, "cpe": ["cpe:/o:linux:linux_kernel:4.2", "cpe:/o:linux:linux_kernel:4.0", "cpe:/o:linux:linux_kernel:4.12", "cpe:/o:linux:linux_kernel:4.6", "cpe:/o:linux:linux_kernel:4.13", "cpe:/o:linux:linux_kernel:4.1", "cpe:/o:canonical:ubuntu_linux:16.04", "cpe:/o:linux:linux_kernel:4.4", "cpe:/o:linux:linux_kernel:4.5", "cpe:/o:linux:linux_kernel:4.7", "cpe:/o:linux:linux_kernel:4.10", "cpe:/o:linux:linux_kernel:4.3", "cpe:/o:linux:linux_kernel:4.9", "cpe:/o:linux:linux_kernel:4.11", "cpe:/o:linux:linux_kernel:4.8", "cpe:/o:canonical:ubuntu_linux:14.04", "cpe:/o:debian:debian_linux:9.0"], "affectedSoftware": [{"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.7"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.11"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.2"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.4"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.6"}, {"cpeName": "canonical:ubuntu_linux", "name": "canonical ubuntu linux", "operator": "eq", "version": "16.04"}, {"cpeName": "canonical:ubuntu_linux", "name": "canonical ubuntu linux", "operator": "eq", "version": "14.04"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.9"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.10"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.8"}, {"cpeName": "debian:debian_linux", "name": "debian debian linux", "operator": "eq", "version": "9.0"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.13"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.13"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.13"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.13"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.3"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.1"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.12"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}, {"cpeName": "linux:linux_kernel", "name": "linux linux kernel", "operator": "eq", "version": "4.5"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.6}, "cpe23": ["cpe:2.3:o:linux:linux_kernel:4.7:rc1:*:*:*:*:*:*", "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.13:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc6:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.13:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.13:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.3:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.5:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.1:rc6:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.4:rc8:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.6:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc7:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.8:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc5:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.0:rc2:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.7:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.10:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.13:rc3:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.9:rc4:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.11:rc7:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.2:rc1:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:4.12:rc4:*:*:*:*:*:*"], "cwe": ["CWE-835"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.13:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.13:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.13:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.13:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:rc8:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.4:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.0:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc4:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.10:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc3:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.12:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.8:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.11:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.1:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.5:rc2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.6:rc1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.9:rc7:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.3:rc6:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.2:rc5:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.7:rc4:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}, {"cpe_match": [{"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149", "refsource": "CONFIRM", "tags": ["Third Party Advisory", "Mailing List"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"}, {"name": "105154", "refsource": "BID", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/105154"}, {"name": "DSA-4308", "refsource": "DEBIAN", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2018/dsa-4308"}, {"name": "USN-3797-1", "refsource": "UBUNTU", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/3797-1/"}, {"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update", "refsource": "MLIST", "tags": ["Third Party Advisory", "Mailing List"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"}, {"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS", "refsource": "MLIST", "tags": ["Third Party Advisory", "Mailing List"], "url": "http://seclists.org/oss-sec/2018/q3/179"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938", "refsource": "CONFIRM", "tags": ["Third Party Advisory", "Issue Tracking"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"}, {"name": "USN-3797-2", "refsource": "UBUNTU", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/3797-2/"}, {"name": "1041569", "refsource": "SECTRACK", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1041569"}], "immutableFields": []}
{"f5": [{"lastseen": "2020-04-06T22:40:29", "bulletinFamily": "software", "cvelist": ["CVE-2018-10938"], "description": "\nF5 Product Development has evaluated the currently supported releases for potential vulnerability, and no F5 products were found to be vulnerable.\n\nNone\n\n * [K51812227: Understanding Security Advisory versioning](<https://support.f5.com/csp/article/K51812227>)\n * [K41942608: Overview of AskF5 Security Advisory articles](<https://support.f5.com/csp/article/K41942608>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents](<https://support.f5.com/csp/article/K9957>)\n", "edition": 1, "modified": "2018-09-25T22:58:00", "published": "2018-09-25T22:58:00", "id": "F5:K35205264", "href": "https://support.f5.com/csp/article/K35205264", "title": "Linux kernel vulnerability CVE-2018-10938", "type": "f5", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}], "nessus": [{"lastseen": "2021-04-01T06:53:42", "description": "This update for the Linux Kernel 4.4.121-92_92 fixes several issues.\n\nThe following security issues were fixed :\n\nCVE-2018-5390: Prevent very expensive calls to\ntcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming\nTCP packet which can lead to a denial of service (bsc#1102682).\n\nCVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service via crafted network packets\n(bsc#1106191).\n\nCVE-2018-10902: It was found that the raw midi kernel driver did not\nprotect against concurrent access which lead to a double realloc\n(double free) in snd_rawmidi_input_params() and\nsnd_rawmidi_output_status(), allowing a malicious local attacker to\nuse this for privilege escalation (bsc#1105323).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 26, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-09-27T00:00:00", "title": "SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2864-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-5390", "CVE-2018-10902", "CVE-2018-10938"], "modified": "2021-04-02T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_92-default", "cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_80-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_73-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_85-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_120-92_70-default"], "id": "SUSE_SU-2018-2864-1.NASL", "href": "https://www.tenable.com/plugins/nessus/117802", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:2864-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(117802);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/09/10 13:51:49\");\n\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-5390\");\n\n script_name(english:\"SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2864-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for the Linux Kernel 4.4.121-92_92 fixes several issues.\n\nThe following security issues were fixed :\n\nCVE-2018-5390: Prevent very expensive calls to\ntcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming\nTCP packet which can lead to a denial of service (bsc#1102682).\n\nCVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service via crafted network packets\n(bsc#1106191).\n\nCVE-2018-10902: It was found that the raw midi kernel driver did not\nprotect against concurrent access which lead to a double realloc\n(double free) in snd_rawmidi_input_params() and\nsnd_rawmidi_output_status(), allowing a malicious local attacker to\nuse this for privilege escalation (bsc#1105323).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102682\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103203\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106191\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10902/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10938/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-5390/\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20182864-1/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?224ce206\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server for SAP 12-SP2:zypper in -t patch\nSUSE-SLE-SAP-12-SP2-2018-2006=1 SUSE-SLE-SAP-12-SP2-2018-2007=1\nSUSE-SLE-SAP-12-SP2-2018-2008=1 SUSE-SLE-SAP-12-SP2-2018-2009=1\nSUSE-SLE-SAP-12-SP2-2018-2010=1\n\nSUSE Linux Enterprise Server 12-SP2-LTSS:zypper in -t patch\nSUSE-SLE-SERVER-12-SP2-2018-2006=1 SUSE-SLE-SERVER-12-SP2-2018-2007=1\nSUSE-SLE-SERVER-12-SP2-2018-2008=1 SUSE-SLE-SERVER-12-SP2-2018-2009=1\nSUSE-SLE-SERVER-12-SP2-2018-2010=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_120-92_70-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_73-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_80-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_85-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_121-92_92-default\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/08/06\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/09/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/09/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\nif (cpu >!< \"x86_64\") audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! preg(pattern:\"^(2)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP2\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_120-92_70-default-6-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_121-92_73-default-5-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_121-92_80-default-5-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_121-92_85-default-3-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_121-92_92-default-3-2.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2021-04-01T05:09:30", "description": "Description of changes:\n\n[4.1.12-124.18.9.el7uek]\n- rebuild bumping release\n\n[4.1.12-124.18.8.el7uek]\n- Cipso: cipso_v4_optptr enter infinite loop (yujuan.qi) [Orabug: \n28563992] {CVE-2018-10938}\n- Btrfs: fix list_add corruption and soft lockups in fsync (Liu Bo) \n[Orabug: 28119834]\n- x86/paravirt: Fix spectre-v2 mitigations for paravirt guests (Peter \nZijlstra) [Orabug: 28474643] {CVE-2018-15594}\n- sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() in \nsym_hipd.c (George Kennedy) [Orabug: 28481893]\n- md/raid1: Avoid raid1 resync getting stuck (Jes Sorensen) [Orabug: \n28529228]\n- x86/spectrev2: Don't set mode to SPECTRE_V2_NONE when retpoline is \navailable. (Boris Ostrovsky) [Orabug: 28540376]\n\n[4.1.12-124.18.7.el7uek]\n- ext4: avoid deadlock when expanding inode size (Jan Kara) [Orabug: \n25718971]\n- ext4: properly align shifted xattrs when expanding inodes (Jan Kara) \n[Orabug: 25718971]\n- ext4: fix xattr shifting when expanding inodes part 2 (Jan Kara) \n[Orabug: 25718971]\n- ext4: fix xattr shifting when expanding inodes (Jan Kara) [Orabug: \n25718971]\n- uek-rpm: Enable perf stripped binary (Victor Erminpour) [Orabug: \n27801171]\n- nfsd: give out fewer session slots as limit approaches (J. Bruce \nFields) [Orabug: 28023821]\n- nfsd: increase DRC cache limit (J. Bruce Fields) [Orabug: 28023821]\n- uek-rpm: config-debug: Turn off torture testing by default (Knut \nOmang) [Orabug: 28261886]\n- ipmi: Remove smi_msg from waiting_rcv_msgs list before \nhandle_one_recv_msg() (Junichi Nomura)\n- x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs \n(Yazen Ghannam) [Orabug: 28416303]\n- Fix up non-directory creation in SGID directories (Linus Torvalds) \n[Orabug: 28459477] {CVE-2018-13405}\n- scsi: libsas: defer ata device eh commands to libata (Jason Yan) \n[Orabug: 28459685] {CVE-2018-10021}\n- PCI: Allocate ATS struct during enumeration (Bjorn Helgaas) [Orabug: \n28460092]", "edition": 25, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-09-05T00:00:00", "title": "Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4208)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10021", "CVE-2018-13405", "CVE-2018-15594", "CVE-2018-10938"], "modified": "2021-04-02T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:kernel-uek-firmware", "p-cpe:/a:oracle:linux:kernel-uek-doc", "p-cpe:/a:oracle:linux:kernel-uek", "p-cpe:/a:oracle:linux:kernel-uek-debug-devel", "p-cpe:/a:oracle:linux:kernel-uek-devel", "cpe:/o:oracle:linux:7", "p-cpe:/a:oracle:linux:kernel-uek-debug"], "id": "ORACLELINUX_ELSA-2018-4208.NASL", "href": "https://www.tenable.com/plugins/nessus/112283", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisory ELSA-2018-4208.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(112283);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/09/27 13:00:39\");\n\n script_cve_id(\"CVE-2018-10021\", \"CVE-2018-10938\", \"CVE-2018-13405\", \"CVE-2018-15594\");\n\n script_name(english:\"Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4208)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Description of changes:\n\n[4.1.12-124.18.9.el7uek]\n- rebuild bumping release\n\n[4.1.12-124.18.8.el7uek]\n- Cipso: cipso_v4_optptr enter infinite loop (yujuan.qi) [Orabug: \n28563992] {CVE-2018-10938}\n- Btrfs: fix list_add corruption and soft lockups in fsync (Liu Bo) \n[Orabug: 28119834]\n- x86/paravirt: Fix spectre-v2 mitigations for paravirt guests (Peter \nZijlstra) [Orabug: 28474643] {CVE-2018-15594}\n- sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() in \nsym_hipd.c (George Kennedy) [Orabug: 28481893]\n- md/raid1: Avoid raid1 resync getting stuck (Jes Sorensen) [Orabug: \n28529228]\n- x86/spectrev2: Don't set mode to SPECTRE_V2_NONE when retpoline is \navailable. (Boris Ostrovsky) [Orabug: 28540376]\n\n[4.1.12-124.18.7.el7uek]\n- ext4: avoid deadlock when expanding inode size (Jan Kara) [Orabug: \n25718971]\n- ext4: properly align shifted xattrs when expanding inodes (Jan Kara) \n[Orabug: 25718971]\n- ext4: fix xattr shifting when expanding inodes part 2 (Jan Kara) \n[Orabug: 25718971]\n- ext4: fix xattr shifting when expanding inodes (Jan Kara) [Orabug: \n25718971]\n- uek-rpm: Enable perf stripped binary (Victor Erminpour) [Orabug: \n27801171]\n- nfsd: give out fewer session slots as limit approaches (J. Bruce \nFields) [Orabug: 28023821]\n- nfsd: increase DRC cache limit (J. Bruce Fields) [Orabug: 28023821]\n- uek-rpm: config-debug: Turn off torture testing by default (Knut \nOmang) [Orabug: 28261886]\n- ipmi: Remove smi_msg from waiting_rcv_msgs list before \nhandle_one_recv_msg() (Junichi Nomura)\n- x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs \n(Yazen Ghannam) [Orabug: 28416303]\n- Fix up non-directory creation in SGID directories (Linus Torvalds) \n[Orabug: 28459477] {CVE-2018-13405}\n- scsi: libsas: defer ata device eh commands to libata (Jason Yan) \n[Orabug: 28459685] {CVE-2018-10021}\n- PCI: Allocate ATS struct during enumeration (Bjorn Helgaas) [Orabug: \n28460092]\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2018-September/008011.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2018-September/008012.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected unbreakable enterprise kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/04/11\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/09/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\ninclude(\"ksplice.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(6|7)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6 / 7\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2018-10021\", \"CVE-2018-10938\", \"CVE-2018-13405\", \"CVE-2018-15594\"); \n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for ELSA-2018-4208\");\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\nkernel_major_minor = get_kb_item(\"Host/uname/major_minor\");\nif (empty_or_null(kernel_major_minor)) exit(1, \"Unable to determine kernel major-minor level.\");\nexpected_kernel_major_minor = \"4.1\";\nif (kernel_major_minor != expected_kernel_major_minor)\n audit(AUDIT_OS_NOT, \"running kernel level \" + expected_kernel_major_minor + \", it is running kernel level \" + kernel_major_minor);\n\nflag = 0;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-devel-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-devel-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-devel-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-devel-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-doc-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-doc-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-firmware-4.1.12\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-firmware-4.1.12-124.18.9.el6uek\")) flag++;\n\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-4.1.12-124.18.9.el7uek\")) flag++;\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-debug-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-debug-4.1.12-124.18.9.el7uek\")) flag++;\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-debug-devel-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-debug-devel-4.1.12-124.18.9.el7uek\")) flag++;\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-devel-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-devel-4.1.12-124.18.9.el7uek\")) flag++;\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-doc-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-doc-4.1.12-124.18.9.el7uek\")) flag++;\nif (rpm_exists(release:\"EL7\", rpm:\"kernel-uek-firmware-4.1.12\") && rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"kernel-uek-firmware-4.1.12-124.18.9.el7uek\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2021-04-01T05:18:18", "description": "The remote OracleVM system is missing necessary patches to address\ncritical security updates :\n\n - rebuild bumping release\n\n - Cipso: cipso_v4_optptr enter infinite loop (yujuan.qi)\n [Orabug: 28563992] (CVE-2018-10938)\n\n - Btrfs: fix list_add corruption and soft lockups in fsync\n (Liu Bo) \n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (Peter Zijlstra) [Orabug: 28474643]\n (CVE-2018-15594)\n\n - sym53c8xx: fix NULL pointer dereference panic in\n sym_int_sir in sym_hipd.c (George Kennedy) [Orabug:\n 28481893]\n\n - md/raid1: Avoid raid1 resync getting stuck (Jes\n Sorensen) [Orabug: 28529228]\n\n - x86/spectrev2: Don't set mode to SPECTRE_V2_NONE when\n retpoline is available. (Boris Ostrovsky) [Orabug:\n 28540376]\n\n - ext4: avoid deadlock when expanding inode size (Jan\n Kara) [Orabug: 25718971]\n\n - ext4: properly align shifted xattrs when expanding\n inodes (Jan Kara) \n\n - ext4: fix xattr shifting when expanding inodes part 2\n (Jan Kara) \n\n - ext4: fix xattr shifting when expanding inodes (Jan\n Kara) [Orabug: 25718971]\n\n - uek-rpm: Enable perf stripped binary (Victor Erminpour)\n [Orabug: 27801171]\n\n - nfsd: give out fewer session slots as limit approaches\n (J. Bruce Fields) [Orabug: 28023821]\n\n - nfsd: increase DRC cache limit (J. Bruce Fields)\n [Orabug: 28023821]\n\n - uek-rpm: config-debug: Turn off torture testing by\n default (Knut Omang) [Orabug: 28261886]\n\n - ipmi: Remove smi_msg from waiting_rcv_msgs list before\n handle_one_recv_msg (Junichi Nomura)\n\n - x86/mce/AMD: Give a name to MCA bank 3 when accessed\n with legacy MSRs (Yazen Ghannam) [Orabug: 28416303]\n\n - Fix up non-directory creation in SGID directories (Linus\n Torvalds) [Orabug: 28459477] (CVE-2018-13405)\n\n - scsi: libsas: defer ata device eh commands to libata\n (Jason Yan) [Orabug: 28459685] (CVE-2018-10021)\n\n - PCI: Allocate ATS struct during enumeration (Bjorn\n Helgaas) [Orabug: 28460092]", "edition": 25, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-09-05T00:00:00", "title": "OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0253)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10021", "CVE-2018-13405", "CVE-2018-15594", "CVE-2018-10938"], "modified": "2021-04-02T00:00:00", "cpe": ["cpe:/o:oracle:vm_server:3.4", "p-cpe:/a:oracle:vm:kernel-uek", "p-cpe:/a:oracle:vm:kernel-uek-firmware"], "id": "ORACLEVM_OVMSA-2018-0253.NASL", "href": "https://www.tenable.com/plugins/nessus/112282", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from OracleVM\n# Security Advisory OVMSA-2018-0253.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(112282);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2019/09/27 13:00:35\");\n\n script_cve_id(\"CVE-2018-10021\", \"CVE-2018-10938\", \"CVE-2018-13405\", \"CVE-2018-15594\");\n\n script_name(english:\"OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0253)\");\n script_summary(english:\"Checks the RPM output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote OracleVM host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote OracleVM system is missing necessary patches to address\ncritical security updates :\n\n - rebuild bumping release\n\n - Cipso: cipso_v4_optptr enter infinite loop (yujuan.qi)\n [Orabug: 28563992] (CVE-2018-10938)\n\n - Btrfs: fix list_add corruption and soft lockups in fsync\n (Liu Bo) \n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (Peter Zijlstra) [Orabug: 28474643]\n (CVE-2018-15594)\n\n - sym53c8xx: fix NULL pointer dereference panic in\n sym_int_sir in sym_hipd.c (George Kennedy) [Orabug:\n 28481893]\n\n - md/raid1: Avoid raid1 resync getting stuck (Jes\n Sorensen) [Orabug: 28529228]\n\n - x86/spectrev2: Don't set mode to SPECTRE_V2_NONE when\n retpoline is available. (Boris Ostrovsky) [Orabug:\n 28540376]\n\n - ext4: avoid deadlock when expanding inode size (Jan\n Kara) [Orabug: 25718971]\n\n - ext4: properly align shifted xattrs when expanding\n inodes (Jan Kara) \n\n - ext4: fix xattr shifting when expanding inodes part 2\n (Jan Kara) \n\n - ext4: fix xattr shifting when expanding inodes (Jan\n Kara) [Orabug: 25718971]\n\n - uek-rpm: Enable perf stripped binary (Victor Erminpour)\n [Orabug: 27801171]\n\n - nfsd: give out fewer session slots as limit approaches\n (J. Bruce Fields) [Orabug: 28023821]\n\n - nfsd: increase DRC cache limit (J. Bruce Fields)\n [Orabug: 28023821]\n\n - uek-rpm: config-debug: Turn off torture testing by\n default (Knut Omang) [Orabug: 28261886]\n\n - ipmi: Remove smi_msg from waiting_rcv_msgs list before\n handle_one_recv_msg (Junichi Nomura)\n\n - x86/mce/AMD: Give a name to MCA bank 3 when accessed\n with legacy MSRs (Yazen Ghannam) [Orabug: 28416303]\n\n - Fix up non-directory creation in SGID directories (Linus\n Torvalds) [Orabug: 28459477] (CVE-2018-13405)\n\n - scsi: libsas: defer ata device eh commands to libata\n (Jason Yan) [Orabug: 28459685] (CVE-2018-10021)\n\n - PCI: Allocate ATS struct during enumeration (Bjorn\n Helgaas) [Orabug: 28460092]\"\n );\n # https://oss.oracle.com/pipermail/oraclevm-errata/2018-September/000888.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c8217169\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel-uek / kernel-uek-firmware packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-uek-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:vm_server:3.4\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/04/11\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/09/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"OracleVM Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleVM/release\", \"Host/OracleVM/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/OracleVM/release\");\nif (isnull(release) || \"OVS\" >!< release) audit(AUDIT_OS_NOT, \"OracleVM\");\nif (! preg(pattern:\"^OVS\" + \"3\\.4\" + \"(\\.[0-9]|$)\", string:release)) audit(AUDIT_OS_NOT, \"OracleVM 3.4\", \"OracleVM \" + release);\nif (!get_kb_item(\"Host/OracleVM/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"OracleVM\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"OVS3.4\", reference:\"kernel-uek-4.1.12-124.18.9.el6uek\")) flag++;\nif (rpm_check(release:\"OVS3.4\", reference:\"kernel-uek-firmware-4.1.12-124.18.9.el6uek\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-uek / kernel-uek-firmware\");\n}\n", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2021-04-01T06:53:42", "description": "This update for the Linux Kernel 4.4.103-92_56 fixes several issues.\n\nThe following security issues were fixed :\n\nCVE-2018-5390: Prevent very expensive calls to\ntcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming\nTCP packet which can lead to a denial of service (bsc#1102682).\n\nCVE-2018-1000026: Fixed an insufficient input validation in bnx2x\nnetwork card driver that can result in DoS via very large, specially\ncrafted packet to the bnx2x card due to a network card firmware\nassertion that will take the card offline (bsc#1096723).\n\nCVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service via crafted network packets\n(bsc#1106191).\n\nCVE-2018-10902: It was found that the raw midi kernel driver did not\nprotect against concurrent access which lead to a double realloc\n(double free) in snd_rawmidi_input_params() and\nsnd_rawmidi_output_status(), allowing a malicious local attacker to\nuse this for privilege escalation (bsc#1105323).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 26, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-09-27T00:00:00", "title": "SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2860-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-5390", "CVE-2018-10902", "CVE-2018-1000026", "CVE-2018-10938"], "modified": "2021-04-02T00:00:00", "cpe": ["cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_90-92_45-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_90-92_50-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_114-92_64-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_103-92_53-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_103-92_56-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_74-92_38-default", "p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_114-92_67-default"], "id": "SUSE_SU-2018-2860-1.NASL", "href": "https://www.tenable.com/plugins/nessus/117801", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:2860-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(117801);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/09/10 13:51:49\");\n\n script_cve_id(\"CVE-2018-1000026\", \"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-5390\");\n\n script_name(english:\"SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2860-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for the Linux Kernel 4.4.103-92_56 fixes several issues.\n\nThe following security issues were fixed :\n\nCVE-2018-5390: Prevent very expensive calls to\ntcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming\nTCP packet which can lead to a denial of service (bsc#1102682).\n\nCVE-2018-1000026: Fixed an insufficient input validation in bnx2x\nnetwork card driver that can result in DoS via very large, specially\ncrafted packet to the bnx2x card due to a network card firmware\nassertion that will take the card offline (bsc#1096723).\n\nCVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service via crafted network packets\n(bsc#1106191).\n\nCVE-2018-10902: It was found that the raw midi kernel driver did not\nprotect against concurrent access which lead to a double realloc\n(double free) in snd_rawmidi_input_params() and\nsnd_rawmidi_output_status(), allowing a malicious local attacker to\nuse this for privilege escalation (bsc#1105323).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1096723\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102682\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106191\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-1000026/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10902/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10938/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-5390/\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20182860-1/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e1d60407\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server for SAP 12-SP2:zypper in -t patch\nSUSE-SLE-SAP-12-SP2-2018-2011=1 SUSE-SLE-SAP-12-SP2-2018-2012=1\nSUSE-SLE-SAP-12-SP2-2018-2013=1 SUSE-SLE-SAP-12-SP2-2018-2014=1\nSUSE-SLE-SAP-12-SP2-2018-2015=1 SUSE-SLE-SAP-12-SP2-2018-2016=1\nSUSE-SLE-SAP-12-SP2-2018-2017=1\n\nSUSE Linux Enterprise Server 12-SP2-LTSS:zypper in -t patch\nSUSE-SLE-SERVER-12-SP2-2018-2011=1 SUSE-SLE-SERVER-12-SP2-2018-2012=1\nSUSE-SLE-SERVER-12-SP2-2018-2013=1 SUSE-SLE-SERVER-12-SP2-2018-2014=1\nSUSE-SLE-SERVER-12-SP2-2018-2015=1 SUSE-SLE-SERVER-12-SP2-2018-2016=1\nSUSE-SLE-SERVER-12-SP2-2018-2017=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_103-92_53-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_103-92_56-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_114-92_64-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_114-92_67-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_74-92_38-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_90-92_45-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_90-92_50-default\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/02/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/09/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/09/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\nif (cpu >!< \"x86_64\") audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! preg(pattern:\"^(2)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP2\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_103-92_53-default-9-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_103-92_56-default-9-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_114-92_64-default-7-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_114-92_67-default-7-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_74-92_38-default-12-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_90-92_45-default-10-2.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"kgraft-patch-4_4_90-92_50-default-10-2.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-09-18T10:57:24", "description": "Noam Rathaus discovered that a use-after-free vulnerability existed in\nthe Infiniband implementation in the Linux kernel. An attacker could\nuse this to cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM\ndriver of the Linux kernel. A local attacker could use this to expose\nsensitive information (kernel memory). (CVE-2018-16658)\n\nIt was discovered that an integer overflow existed in the HID\nBluetooth implementation in the Linux kernel that could lead to a\nbuffer overwrite. An attacker could use this to cause a denial of\nservice (system crash) or possibly execute arbitrary code.\n(CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the\nLinux kernel did not properly handle IP header options in some\nsituations. A remote attacker could use this to specially craft\nnetwork traffic that could cause a denial of service (infinite loop).\n(CVE-2018-10938).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 21, "cvss3": {"score": 8.4, "vector": "AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-10-23T00:00:00", "title": "Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3797-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "modified": "2018-10-23T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "cpe:/o:canonical:ubuntu_linux:16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic"], "id": "UBUNTU_USN-3797-1.NASL", "href": "https://www.tenable.com/plugins/nessus/118327", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-3797-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(118327);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/09/17\");\n\n script_cve_id(\"CVE-2018-10938\", \"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\");\n script_xref(name:\"USN\", value:\"3797-1\");\n\n script_name(english:\"Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3797-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"Noam Rathaus discovered that a use-after-free vulnerability existed in\nthe Infiniband implementation in the Linux kernel. An attacker could\nuse this to cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM\ndriver of the Linux kernel. A local attacker could use this to expose\nsensitive information (kernel memory). (CVE-2018-16658)\n\nIt was discovered that an integer overflow existed in the HID\nBluetooth implementation in the Linux kernel that could lead to a\nbuffer overwrite. An attacker could use this to cause a denial of\nservice (system crash) or possibly execute arbitrary code.\n(CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the\nLinux kernel did not properly handle IP header options in some\nsituations. A remote attacker could use this to specially craft\nnetwork traffic that could cause a denial of service (infinite loop).\n(CVE-2018-10938).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/3797-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/07/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/10/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/10/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2018-2020 Canonical, Inc. / NASL script (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(16\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 16.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2018-10938\", \"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-3797-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1036-kvm\", pkgver:\"4.4.0-1036.42\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1070-aws\", pkgver:\"4.4.0-1070.80\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1099-raspi2\", pkgver:\"4.4.0-1099.107\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1103-snapdragon\", pkgver:\"4.4.0-1103.108\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-138-generic\", pkgver:\"4.4.0-138.164\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-138-generic-lpae\", pkgver:\"4.4.0-138.164\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-138-lowlatency\", pkgver:\"4.4.0-138.164\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-aws\", pkgver:\"4.4.0.1070.72\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic\", pkgver:\"4.4.0.138.144\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-lpae\", pkgver:\"4.4.0.138.144\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-kvm\", pkgver:\"4.4.0.1036.35\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-lowlatency\", pkgver:\"4.4.0.138.144\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-raspi2\", pkgver:\"4.4.0.1099.99\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-snapdragon\", pkgver:\"4.4.0.1103.95\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.4-aws / linux-image-4.4-generic / etc\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-09-18T10:57:27", "description": "USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04\nLTS. This update provides the corresponding updates for the Linux\nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu\n14.04 LTS.\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in\nthe Infiniband implementation in the Linux kernel. An attacker could\nuse this to cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM\ndriver of the Linux kernel. A local attacker could use this to expose\nsensitive information (kernel memory). (CVE-2018-16658)\n\nIt was discovered that a integer overflow existed in the HID Bluetooth\nimplementation in the Linux kernel that could lead to a buffer\noverwrite. An attacker could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the\nLinux kernel did not properly handle IP header options in some\nsituations. A remote attacker could use this to specially craft\nnetwork traffic that could cause a denial of service (infinite loop).\n(CVE-2018-10938).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 21, "cvss3": {"score": 8.4, "vector": "AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-10-23T00:00:00", "title": "Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3797-2)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "modified": "2018-10-23T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "cpe:/o:canonical:ubuntu_linux:14.04"], "id": "UBUNTU_USN-3797-2.NASL", "href": "https://www.tenable.com/plugins/nessus/118328", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-3797-2. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(118328);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/09/17\");\n\n script_cve_id(\"CVE-2018-10938\", \"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\");\n script_xref(name:\"USN\", value:\"3797-2\");\n\n script_name(english:\"Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3797-2)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04\nLTS. This update provides the corresponding updates for the Linux\nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu\n14.04 LTS.\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in\nthe Infiniband implementation in the Linux kernel. An attacker could\nuse this to cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM\ndriver of the Linux kernel. A local attacker could use this to expose\nsensitive information (kernel memory). (CVE-2018-16658)\n\nIt was discovered that a integer overflow existed in the HID Bluetooth\nimplementation in the Linux kernel that could lead to a buffer\noverwrite. An attacker could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the\nLinux kernel did not properly handle IP header options in some\nsituations. A remote attacker could use this to specially craft\nnetwork traffic that could cause a denial of service (infinite loop).\n(CVE-2018-10938).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/3797-2/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/07/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/10/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/10/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2018-2020 Canonical, Inc. / NASL script (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(14\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 14.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2018-10938\", \"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-3797-2\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-4.4.0-1032-aws\", pkgver:\"4.4.0-1032.35\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-4.4.0-138-generic\", pkgver:\"4.4.0-138.164~14.04.1\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-4.4.0-138-generic-lpae\", pkgver:\"4.4.0-138.164~14.04.1\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-4.4.0-138-lowlatency\", pkgver:\"4.4.0-138.164~14.04.1\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-aws\", pkgver:\"4.4.0.1032.32\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-generic-lpae-lts-xenial\", pkgver:\"4.4.0.138.118\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-generic-lts-xenial\", pkgver:\"4.4.0.138.118\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"linux-image-lowlatency-lts-xenial\", pkgver:\"4.4.0.138.118\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.4-aws / linux-image-4.4-generic / etc\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2021-01-14T06:15:35", "description": "The SUSE Linux Enterprise 15 kernel was updated to receive various\nsecurity and bugfixes.\n\nThe following security bugs were fixed :\n\nCVE-2018-14617: Prevent NULL pointer dereference and panic in\nhfsplus_lookup() when opening a file (that is purportedly a hard link)\nin an hfs+ filesystem that has malformed catalog data, and is mounted\nread-only without a metadata directory (bsc#1102870)\n\nCVE-2018-14613: Prevent invalid pointer dereference in\nio_ctl_map_page() when mounting and operating a crafted btrfs image,\ncaused by a lack of block group item validation in check_leaf_item\n(bsc#1102896).\n\nCVE-2018-10940: The cdrom_ioctl_media_changed function allowed local\nattackers to use a incorrect bounds check in the CDROM driver\nCDROM_MEDIA_CHANGED ioctl to read out kernel memory (bsc#1092903)\n\nCVE-2018-13093: Prevent NULL pointer dereference and panic in\nlookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a\ncorrupted xfs image. This occured because of a lack of proper\nvalidation that cached inodes are free during allocation (bnc#1100001)\n\nCVE-2018-13094: Prevent OOPS that may have occured for a corrupted xfs\nimage after xfs_da_shrink_inode() is called with a NULL bp\n(bnc#1100000)\n\nCVE-2018-13095: Prevent denial of service (memory corruption and BUG)\nthat could have occurred for a corrupted xfs image upon encountering\nan inode that is in extent format, but has more extents than fit in\nthe inode fork (bnc#1099999)\n\nCVE-2018-12896: Prevent integer overflow in the POSIX timer code that\nwas caused by the way the overrun accounting works. Depending on\ninterval and expiry time values, the overrun can be larger than\nINT_MAX, but the accounting is int based. This basically made the\naccounting values, which are visible to user space via\ntimer_getoverrun(2) and siginfo::si_overrun, random. This allowed a\nlocal user to cause a denial of service (signed integer overflow) via\ncrafted mmap, futex, timer_create, and timer_settime system calls\n(bnc#1099922)\n\nCVE-2018-16658: Prevent information leak in cdrom_ioctl_drive_status\nthat could have been used by local attackers to read kernel memory\n(bnc#1107689)\n\nCVE-2018-6555: The irda_setsockopt function allowed local users to\ncause a denial of service (ias_object use-after-free and system crash)\nor possibly have unspecified other impact via an AF_IRDA socket\n(bnc#1106511)\n\nCVE-2018-6554: Prevent memory leak in the irda_bind function that\nallowed local users to cause a denial of service (memory consumption)\nby repeatedly binding an AF_IRDA socket (bnc#1106509)\n\nCVE-2018-1129: A flaw was found in the way signature calculation was\nhandled by cephx authentication protocol. An attacker having access to\nceph cluster network who is able to alter the message payload was able\nto bypass signature checks done by cephx protocol (bnc#1096748)\n\nCVE-2018-1128: It was found that cephx authentication protocol did not\nverify ceph clients correctly and was vulnerable to replay attack. Any\nattacker having access to ceph cluster network who is able to sniff\npackets on network can use this vulnerability to authenticate with\nceph service and perform actions allowed by ceph service (bnc#1096748)\n\nCVE-2018-10938: A crafted network packet sent remotely by an attacker\nforced the kernel to enter an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service (bnc#1106016)\n\nThe update package also includes non-security fixes. See advisory for\ndetails.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 10, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2019-01-02T00:00:00", "title": "SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2980-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-1129", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-6554", "CVE-2018-13094", "CVE-2018-14613"], "modified": "2019-01-02T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:kernel-default-debugsource", "p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource", "p-cpe:/a:novell:suse_linux:kernel-syms", "p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-vanilla-base", "cpe:/o:novell:suse_linux:15", "p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-default", "p-cpe:/a:novell:suse_linux:kernel-default-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource", "p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-devel", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump", "p-cpe:/a:novell:suse_linux:kernel-default-man", "p-cpe:/a:novell:suse_linux:kernel-default", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-obs-build"], "id": "SUSE_SU-2018-2980-1.NASL", "href": "https://www.tenable.com/plugins/nessus/120118", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:2980-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(120118);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/13\");\n\n script_cve_id(\"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\", \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\", \"CVE-2018-14613\", \"CVE-2018-14617\", \"CVE-2018-16658\", \"CVE-2018-6554\", \"CVE-2018-6555\");\n\n script_name(english:\"SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2980-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The SUSE Linux Enterprise 15 kernel was updated to receive various\nsecurity and bugfixes.\n\nThe following security bugs were fixed :\n\nCVE-2018-14617: Prevent NULL pointer dereference and panic in\nhfsplus_lookup() when opening a file (that is purportedly a hard link)\nin an hfs+ filesystem that has malformed catalog data, and is mounted\nread-only without a metadata directory (bsc#1102870)\n\nCVE-2018-14613: Prevent invalid pointer dereference in\nio_ctl_map_page() when mounting and operating a crafted btrfs image,\ncaused by a lack of block group item validation in check_leaf_item\n(bsc#1102896).\n\nCVE-2018-10940: The cdrom_ioctl_media_changed function allowed local\nattackers to use a incorrect bounds check in the CDROM driver\nCDROM_MEDIA_CHANGED ioctl to read out kernel memory (bsc#1092903)\n\nCVE-2018-13093: Prevent NULL pointer dereference and panic in\nlookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a\ncorrupted xfs image. This occured because of a lack of proper\nvalidation that cached inodes are free during allocation (bnc#1100001)\n\nCVE-2018-13094: Prevent OOPS that may have occured for a corrupted xfs\nimage after xfs_da_shrink_inode() is called with a NULL bp\n(bnc#1100000)\n\nCVE-2018-13095: Prevent denial of service (memory corruption and BUG)\nthat could have occurred for a corrupted xfs image upon encountering\nan inode that is in extent format, but has more extents than fit in\nthe inode fork (bnc#1099999)\n\nCVE-2018-12896: Prevent integer overflow in the POSIX timer code that\nwas caused by the way the overrun accounting works. Depending on\ninterval and expiry time values, the overrun can be larger than\nINT_MAX, but the accounting is int based. This basically made the\naccounting values, which are visible to user space via\ntimer_getoverrun(2) and siginfo::si_overrun, random. This allowed a\nlocal user to cause a denial of service (signed integer overflow) via\ncrafted mmap, futex, timer_create, and timer_settime system calls\n(bnc#1099922)\n\nCVE-2018-16658: Prevent information leak in cdrom_ioctl_drive_status\nthat could have been used by local attackers to read kernel memory\n(bnc#1107689)\n\nCVE-2018-6555: The irda_setsockopt function allowed local users to\ncause a denial of service (ias_object use-after-free and system crash)\nor possibly have unspecified other impact via an AF_IRDA socket\n(bnc#1106511)\n\nCVE-2018-6554: Prevent memory leak in the irda_bind function that\nallowed local users to cause a denial of service (memory consumption)\nby repeatedly binding an AF_IRDA socket (bnc#1106509)\n\nCVE-2018-1129: A flaw was found in the way signature calculation was\nhandled by cephx authentication protocol. An attacker having access to\nceph cluster network who is able to alter the message payload was able\nto bypass signature checks done by cephx protocol (bnc#1096748)\n\nCVE-2018-1128: It was found that cephx authentication protocol did not\nverify ceph clients correctly and was vulnerable to replay attack. Any\nattacker having access to ceph cluster network who is able to sniff\npackets on network can use this vulnerability to authenticate with\nceph service and perform actions allowed by ceph service (bnc#1096748)\n\nCVE-2018-10938: A crafted network packet sent remotely by an attacker\nforced the kernel to enter an infinite loop in the cipso_v4_optptr()\nfunction leading to a denial-of-service (bnc#1106016)\n\nThe update package also includes non-security fixes. See advisory for\ndetails.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1012382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1043912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1044189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1046302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1046306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1046307\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1046543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1050244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1055014\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1055117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1058659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1060463\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1064232\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1068032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1069138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1071995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1077761\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1077989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1078720\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1080157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1083647\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1083663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1084332\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085042\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085262\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1086282\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1089663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1090528\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1092903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1093389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1094244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1095344\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1096748\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1097105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1098459\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1098822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1099922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1099999\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1100000\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1100001\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1100132\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1101557\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1101669\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102875\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102877\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102879\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103387\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103421\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103949\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103961\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104172\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104824\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105247\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105672\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1105907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106007\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106121\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106191\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106229\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106230\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106231\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106233\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106236\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106237\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106240\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106509\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106594\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106636\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106697\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106743\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106779\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106800\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106891\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106892\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106893\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106898\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106900\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106901\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107008\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107060\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107061\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107065\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107073\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107265\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107319\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107320\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107535\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107735\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107924\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1107966\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108243\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108520\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1109269\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1109511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=920344\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10938/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-10940/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-1128/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-1129/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-12896/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-13093/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-13094/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-13095/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-14613/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-14617/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-16658/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-6554/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-6555/\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20182980-1/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f2ea94df\"\n );\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Workstation Extension 15:zypper in -t patch\nSUSE-SLE-Product-WE-15-2018-2120=1\n\nSUSE Linux Enterprise Module for Legacy Software 15:zypper in -t patch\nSUSE-SLE-Module-Legacy-15-2018-2120=1\n\nSUSE Linux Enterprise Module for Development Tools 15:zypper in -t\npatch SUSE-SLE-Module-Development-Tools-15-2018-2120=1\n\nSUSE Linux Enterprise Module for Basesystem 15:zypper in -t patch\nSUSE-SLE-Module-Basesystem-15-2018-2120=1\n\nSUSE Linux Enterprise High Availability 15:zypper in -t patch\nSUSE-SLE-Product-HA-15-2018-2120=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/05/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/10/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/01/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED15|SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED15 / SLES15\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(0)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP0\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED15\" && (! preg(pattern:\"^(0)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED15 SP0\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-default-man-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-default-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-default-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-default-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-default-devel-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-default-devel-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-obs-build-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-obs-build-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-syms-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-vanilla-base-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-vanilla-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"kernel-vanilla-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"reiserfs-kmp-default-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"0\", reference:\"reiserfs-kmp-default-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-default-man-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-default-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-default-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-default-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-default-devel-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-default-devel-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-obs-build-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-obs-build-debugsource-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-syms-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-vanilla-base-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-vanilla-debuginfo-4.12.14-25.19.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"0\", reference:\"kernel-vanilla-debugsource-4.12.14-25.19.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2021-01-20T12:33:44", "description": "The openSUSE Leap 42.3 kernel was updated to 4.4.155 to receive\nvarious security and bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-13093: Prevent NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occured because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13095: Prevent denial of service (memory\n corruption and BUG) that could have occured for a\n corrupted xfs image upon encountering an inode that is\n in extent format, but has more extents than fit in the\n inode fork (bnc#1099999).\n\n - CVE-2018-13094: Prevent OOPS that might have occured for\n a corrupted xfs image after xfs_da_shrink_inode() is\n called with a NULL bp (bnc#1100000).\n\n - CVE-2018-12896: Prevent integer overflow in the POSIX\n timer code is caused by the way the overrun accounting\n works. Depending on interval and expiry time values, the\n overrun could have been larger than INT_MAX, but the\n accounting is int based. This basically made the\n accounting values, which are visible to user space via\n timer_getoverrun(2) and siginfo::si_overrun, random. For\n example, a local user could have caused a denial of\n service (signed integer overflow) via crafted mmap,\n futex, timer_create, and timer_settime system calls\n (bnc#1099922).\n\n - CVE-2018-16658: Prevent information leak in\n cdrom_ioctl_drive_status that could have been used by\n local attackers to read kernel memory because a cast\n from unsigned long to int interferes with bounds\n checking (bnc#1107689).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n allowed local attackers to use a incorrect bounds check\n in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read\n out kernel memory (bsc#1092903).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Prevent memory leak in the irda_bind\n function that allowed local users to cause a denial of\n service (memory consumption) by repeatedly binding an\n AF_IRDA socket (bnc#1106509).\n\n - CVE-2018-1129: A flaw was found in the way signature\n calculation was handled by cephx authentication\n protocol. An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol\n (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph service\n (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker could have forced the kernel to enter an\n infinite loop in the cipso_v4_optptr() function leading\n to a denial-of-service (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function did not always fill RSB upon a context switch,\n which made it easier for attackers to conduct\n userspace-userspace spectreRSB attacks (bnc#1102517).\n\n - CVE-2018-10902: The raw midi kernel driver did not\n protect against concurrent access which lead to a double\n realloc (double free) in snd_rawmidi_input_params() and\n snd_rawmidi_output_status(), allowing a malicious local\n attacker to use this for privilege escalation\n (bnc#1105322).\n\n - CVE-2018-9363: Prevent buffer overflow in\n hidp_process_report (bsc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bnc#1012382).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bnc#1012382).\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bnc#1012382).\n\n - ACPI / LPSS: Add missing prv_offset setting for byt/cht\n PWM devices (bnc#1012382).\n\n - ACPI / PCI: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bnc#1012382).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bnc#1012382).\n\n - ACPI: save NVS memory for Lenovo G50-45 (bnc#1012382).\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bnc#1012382).\n\n - ALSA: emu10k1: Rate-limit error messages about page\n errors (bnc#1012382).\n\n - ALSA: emu10k1: add error handling for snd_ctl_add\n (bnc#1012382).\n\n - ALSA: fm801: add error handling for snd_ctl_add\n (bnc#1012382).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bnc#1012382).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bnc#1012382).\n\n - ALSA: hda/ca0132: fix build failure when a local macro\n is defined (bnc#1012382).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bnc#1012382).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bnc#1012382).\n\n - ALSA: rawmidi: Change resized buffers atomically\n (bnc#1012382).\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1099810).\n\n - ALSA: usb-audio: Apply rate limit to warning messages in\n URB complete callback (bnc#1012382).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bnc#1012382).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bnc#1012382).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bnc#1012382).\n\n - ARC: Enable machine_desc->init_per_cpu for !CONFIG_SMP\n (bnc#1012382).\n\n - ARC: Explicitly add -mmedium-calls to CFLAGS\n (bnc#1012382).\n\n - ARC: Fix CONFIG_SWAP (bnc#1012382).\n\n - ARC: mm: allow mprotect to make stack mappings\n executable (bnc#1012382).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bnc#1012382).\n\n - ARM: dts: Cygnus: Fix I2C controller interrupt type\n (bnc#1012382).\n\n - ARM: dts: am3517.dtsi: Disable reference to OMAP3 OTG\n controller (bnc#1012382).\n\n - ARM: dts: am437x: make edt-ft5x06 a wakeup source\n (bnc#1012382).\n\n - ARM: dts: da850: Fix interrups property for gpio\n (bnc#1012382).\n\n - ARM: dts: imx6sx: fix irq for pcie bridge (bnc#1012382).\n\n - ARM: fix put_user() for gcc-8 (bnc#1012382).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bnc#1012382).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bnc#1012382).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bnc#1012382).\n\n - ARM: tegra: Fix Tegra30 Cardhu PCA954x reset\n (bnc#1012382).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (git-fixes).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bnc#1012382).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bnc#1012382).\n\n - ASoC: dpcm: fix BE dai not hw_free and shutdown\n (bnc#1012382).\n\n - ASoC: pxa: Fix module autoload for platform drivers\n (bnc#1012382).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bnc#1012382).\n\n - Add reference to bsc#1091171 (bnc#1012382; bsc#1091171).\n\n - Bluetooth: avoid killing an already killed socket\n (bnc#1012382).\n\n - Bluetooth: btusb: Add a new Realtek 8723DE ID 2ff8:b011\n (bnc#1012382).\n\n - Bluetooth: btusb: Remove Yoga 920 from the\n btusb_needs_reset_resume_table (bsc#1087092).\n\n - Bluetooth: btusb: Use DMI matching for QCA reset_resume\n quirking (bsc#1087092).\n\n - Bluetooth: hci_qca: Fix 'Sleep inside atomic section'\n warning (bnc#1012382).\n\n - Documentation/spec_ctrl: Do some minor cleanups\n (bnc#1012382).\n\n - HID: hid-plantronics: Re-resend Update to map button for\n PTT products (bnc#1012382).\n\n - HID: i2c-hid: check if device is there before really\n probing (bnc#1012382).\n\n - HID: wacom: Correct touch maximum XY of 2nd-gen Intuos\n (bnc#1012382).\n\n - IB/core: Make testing MR flags for writability a static\n inline function (bnc#1012382).\n\n - IB/core: Remove duplicate declaration of gid_cache_wq\n (bsc#1056596).\n\n - IB/iser: Do not reduce max_sectors (bsc#1063646).\n\n - IB/mlx4: Fix an error handling path in\n 'mlx4_ib_rereg_user_mr()' (git-fixes).\n\n - IB/mlx4: Mark user MR as writable if actual virtual\n memory is writable (bnc#1012382).\n\n - IB/mlx5: Fetch soft WQE's on fatal error state\n (bsc#1015342 bsc#1015343).\n\n - IB/mlx5: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1015342 bsc#1015343).\n\n - IB/ocrdma: fix out of bounds access to local buffer\n (bnc#1012382).\n\n - Input: elan_i2c - add ACPI ID for lenovo ideapad 330\n (bnc#1012382).\n\n - Input: elan_i2c - add another ACPI ID for Lenovo Ideapad\n 330-15AST (bnc#1012382).\n\n - Input: i8042 - add Lenovo LaVie Z to the i8042 reset\n list (bnc#1012382).\n\n - KVM/Eventfd: Avoid crash when assign and deassign\n specific eventfd in parallel (bnc#1012382).\n\n - KVM: MMU: always terminate page walks at level 1\n (bsc#1062604).\n\n - KVM: MMU: simplify last_pte_bitmap (bsc#1062604).\n\n - KVM: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - KVM: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - KVM: arm/arm64: Skip updating PMD entry if no change\n (bnc#1012382).\n\n - KVM: arm/arm64: Skip updating PTE entry if no change\n (bnc#1012382).\n\n - KVM: irqfd: fix race between EPOLLHUP and\n irq_bypass_register_consumer (bnc#1012382).\n\n - KVM: nVMX: update last_nonleaf_level when initializing\n nested EPT (bsc#1062604).\n\n - MIPS: Correct the 64-bit DSP accumulator register size\n (bnc#1012382).\n\n - MIPS: Fix off-by-one in pci_resource_to_user()\n (bnc#1012382).\n\n - MIPS: ath79: fix register address in\n ath79_ddr_wb_flush() (bnc#1012382).\n\n - MIPS: lib: Provide MIPS64r6 __multi3() for GCC lower\n than 7 (bnc#1012382).\n\n - NET: stmmac: align DMA stuff to largest cache line\n length (bnc#1012382).\n\n - PCI: Prevent sysfs disable of device while driver is\n attached (bnc#1012382).\n\n - PCI: Skip MPS logic for Virtual Functions (VFs)\n (bnc#1012382).\n\n - PCI: hotplug: Do not leak pci_slot on registration\n failure (bnc#1012382).\n\n - PCI: pciehp: Fix use-after-free on unplug (bnc#1012382).\n\n - PCI: pciehp: Request control of native hotplug only if\n supported (bnc#1012382).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bnc#1012382).\n\n - RDMA/i40iw: Avoid panic when objects are being created\n and destroyed (bsc#969476 bsc#969477).\n\n - RDMA/i40iw: Avoid panic when reading back the IRQ\n affinity hint (bsc#969476 bsc#969477).\n\n - RDMA/i40iw: Avoid reference leaks when processing the\n AEQ (bsc#969476 bsc#969477).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1024376).\n\n - RDMA/mad: Convert BUG_ONs to error flows (bnc#1012382).\n\n - RDMA/mlx5: Use proper spec flow label type (bsc#1015342\n bsc#1015343).\n\n - Revert 'MIPS: BCM47XX: Enable 74K Core ExternalSync for\n PCIe erratum' (bnc#1012382).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bnc#1012382).\n\n - Revert 'f2fs: handle dirty segments inside\n refresh_sit_entry' (bsc#1106281).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Smack: Mark inode instant in smack_task_to_inode\n (bnc#1012382).\n\n - USB: musb: fix external abort on suspend (bsc#1085536).\n\n - USB: option: add support for DW5821e (bnc#1012382).\n\n - USB: serial: metro-usb: stop I/O after failed open\n (bsc#1085539).\n\n - USB: serial: sierra: fix potential deadlock at close\n (bnc#1012382).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1107319).\n\n - afs: Fix directory permissions check (bsc#1106283).\n\n - arc: fix build errors in arc/include/asm/delay.h\n (bnc#1012382).\n\n - arc: fix type warnings in arc/mm/cache.c (bnc#1012382).\n\n - arm64: make secondary_start_kernel() notrace\n (bnc#1012382).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bnc#1012382).\n\n - ath: Add regulatory mapping for APL13_WORLD\n (bnc#1012382).\n\n - ath: Add regulatory mapping for APL2_FCCA (bnc#1012382).\n\n - ath: Add regulatory mapping for Bahamas (bnc#1012382).\n\n - ath: Add regulatory mapping for Bermuda (bnc#1012382).\n\n - ath: Add regulatory mapping for ETSI8_WORLD\n (bnc#1012382).\n\n - ath: Add regulatory mapping for FCC3_ETSIC\n (bnc#1012382).\n\n - ath: Add regulatory mapping for Serbia (bnc#1012382).\n\n - ath: Add regulatory mapping for Tanzania (bnc#1012382).\n\n - ath: Add regulatory mapping for Uganda (bnc#1012382).\n\n - atl1c: reserve min skb headroom (bnc#1012382).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (bsc#1089066).\n\n - audit: allow not equal op for audit by executable\n (bnc#1012382).\n\n - backlight: as3711_bl: Fix Device Tree node leaks\n (bsc#1106929).\n\n - backlight: lm3630a: Bump REG_MAX value to 0x50 instead\n of 0x1F (bsc#1106929).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get() (bsc#1064232).\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes (bsc#1064232).\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running (bsc#1064232).\n\n - bcache: do not check return value of\n debugfs_create_dir() (bsc#1064232).\n\n - bcache: finish incremental GC (bsc#1064232).\n\n - bcache: fix I/O significant decline while backend\n devices registering (bsc#1064232).\n\n - bcache: fix error setting writeback_rate through sysfs\n interface (bsc#1064232).\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free (bsc#1064232).\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section (bsc#1064232).\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread() (bsc#1064232).\n\n - bcache: set max writeback rate when I/O request is idle\n (bsc#1064232).\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data (bsc#1064232).\n\n - be2net: remove unused old custom busy-poll fields\n (bsc#1021121 ).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block: do not use interruptible wait anywhere\n (bnc#1012382).\n\n - bnx2x: Fix invalid memory access in rss hash config path\n (bnc#1012382).\n\n - bnx2x: Fix receiving tx-timeout in error or recovery\n state (bnc#1012382).\n\n - bnxt_en: Always set output parameters in\n bnxt_get_max_rings() (bsc#963575).\n\n - bnxt_en: Fix for system hang if request_irq fails\n (bnc#1012382).\n\n - bnxt_en: Fix inconsistent BNXT_FLAG_AGG_RINGS logic\n (bsc#1020412 ).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bnc#1012382).\n\n - brcmfmac: Add support for bcm43364 wireless chipset\n (bnc#1012382).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bnc#1012382).\n\n - bridge: Propagate vlan add failure to user\n (bnc#1012382).\n\n - btrfs: add barriers to btrfs_sync_log before\n log_commit_wait wakeups (bnc#1012382).\n\n - btrfs: do not leak ret from do_chunk_alloc\n (bnc#1012382).\n\n - btrfs: qgroup: Finish rescan when hit the last leaf of\n extent tree (bnc#1012382).\n\n - btrfs: quota: Set rescan progress to (u64)-1 if we hit\n last leaf (git-fixes).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - can: ems_usb: Fix memory leak on ems_usb_disconnect()\n (bnc#1012382).\n\n - can: mpc5xxx_can: check of_iomap return before use\n (bnc#1012382).\n\n - can: xilinx_can: fix RX loop if RXNEMP is asserted\n without RXOK (bnc#1012382).\n\n - can: xilinx_can: fix RX overflow interrupt not being\n enabled (bnc#1012382).\n\n - can: xilinx_can: fix device dropping off bus on RX\n overrun (bnc#1012382).\n\n - can: xilinx_can: fix incorrect clear of non-processed\n interrupts (bnc#1012382).\n\n - can: xilinx_can: fix recovery from error states not\n being propagated (bnc#1012382).\n\n - can: xilinx_can: keep only 1-2 frames in TX FIFO to fix\n TX accounting (bnc#1012382).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bnc#1012382).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cifs: Fix stack out-of-bounds in\n smb(2,3)_create_lease_buf() (bsc#1012382).\n\n - cifs: add missing debug entries for kconfig options\n (bnc#1012382).\n\n - cifs: check kmalloc before use (bsc#1012382).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1012382).\n\n - clk: tegra: Fix PLL_U post divider and initial rate on\n Tegra30 (bnc#1012382).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bnc#1012382).\n\n - crypto: authenc - do not leak pointers to authenc keys\n (bnc#1012382).\n\n - crypto: authencesn - do not leak pointers to authenc\n keys (bnc#1012382).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bnc#1012382).\n\n - crypto: padlock-aes - Fix Nano workaround data\n corruption (bnc#1012382).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bnc#1012382).\n\n - crypto: vmac - separate tfm and request context\n (bnc#1012382).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1048317).\n\n - cxgb4: when disabling dcb set txq dcb priority to 0\n (bnc#1012382).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014.\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (bnc#1012382).\n\n - disable loading f2fs module on PAGE_SIZE > 4KB\n (bnc#1012382).\n\n - dm cache metadata: save in-core policy_hint_size to\n on-disk superblock (bnc#1012382).\n\n - dma-iommu: Fix compilation when !CONFIG_IOMMU_DMA\n (bnc#1012382).\n\n - dmaengine: k3dma: Off by one in k3_of_dma_simple_xlate()\n (bnc#1012382).\n\n - dmaengine: pxa_dma: remove duplicate const qualifier\n (bnc#1012382).\n\n - driver core: Partially revert 'driver core: correct\n device's shutdown order' (bnc#1012382).\n\n - drivers: net: lmc: fix case value for target abort error\n (bnc#1012382).\n\n - drm/armada: fix colorkey mode property (bnc#1012382).\n\n - drm/atmel-hlcdc: check stride values in the first plane\n (bsc#1106929).\n\n - drm/atomic: Handling the case when setting old crtc for\n plane (bnc#1012382).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bnc#1012382).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/drivers: add support for using the arch wc mapping\n API (git-fixes).\n\n - drm/exynos/dsi: mask frame-done interrupt (bsc#1106929).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bnc#1012382).\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bnc#1012382).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bnc#1012382).\n\n - drm/gma500: fix psb_intel_lvds_mode_valid()'s return\n type (bnc#1012382).\n\n - drm/i915/userptr: reject zero user_size (bsc#1090888).\n\n - drm/i915: Correctly handle limited range YCbCr data on\n VLV/CHV (bsc#1087092).\n\n - drm/imx: fix typo in ipu_plane_formats (bsc#1106929).\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bnc#1012382).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bnc#1012382).\n\n - drm/msm/hdmi: Use bitwise operators when building\n register values (bsc#1106929).\n\n - drm/nouveau/gem: off by one bugs in\n nouveau_gem_pushbuf_reloc_apply() (bnc#1012382).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1105769).\n\n - drm/radeon: fix mode_valid's return type (bnc#1012382).\n\n - drm: Add DP PSR2 sink enable bit (bnc#1012382).\n\n - drm: Reject getfb for multi-plane framebuffers\n (bsc#1106929).\n\n - enic: do not call enic_change_mtu in enic_probe\n (git-fixes).\n\n - enic: handle mtu change for vf properly (bnc#1012382).\n\n - enic: initialize enic->rfs_h.lock in enic_probe\n (bnc#1012382).\n\n - ext4: check for NUL characters in extended attribute's\n name (bnc#1012382).\n\n - ext4: fix spectre gadget in ext4_mb_regular_allocator()\n (bnc#1012382).\n\n - ext4: reset error code in ext4_find_entry in fallback\n (bnc#1012382).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - f2fs: fix to do not trigger writeback during recovery\n (bnc#1012382).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bnc#1012382).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bnc#1012382).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1106929).\n\n - fix __legitimize_mnt()/mntput() race (bnc#1012382).\n\n - fix mntput/mntput race (bnc#1012382).\n\n - fork: unconditionally clear stack on fork (bnc#1012382).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bnc#1012382).\n\n - fs/dax.c: fix inefficiency in\n dax_writeback_mapping_range() (bsc#1106185).\n\n - fs/quota: Fix spectre gadget in do_quotactl\n (bnc#1012382).\n\n - fs: aio: fix the increment of aio-nr and counting\n against aio-max-nr (bsc#1068075, bsc#1078921).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bnc#1012382).\n\n - fuse: Do not access pipe->buffers without pipe_lock()\n (bnc#1012382).\n\n - fuse: Fix oops at process_init_reply() (bnc#1012382).\n\n - fuse: fix double request_end() (bnc#1012382).\n\n - fuse: fix unlocked access to processing queue\n (bnc#1012382).\n\n - fuse: umount should wait for all requests (bnc#1012382).\n\n - genirq/proc: Return proper error code when\n irq_set_affinity() fails (bnc#1105392).\n\n - getxattr: use correct xattr length (bnc#1012382).\n\n - hfsplus: Do not clear SGID when inheriting ACLs\n (bsc#1030552).\n\n - hvc_opal: do not set tb_ticks_per_usec in\n udbg_init_opal_common() (bnc#1012382).\n\n - hwrng: exynos - Disable runtime PM on driver unbind\n (git-fixes).\n\n - i2c: davinci: Avoid zero value of CLKH (bnc#1012382).\n\n - i2c: imx: Fix race condition in dma read (bnc#1012382).\n\n - i2c: imx: Fix reinit_completion() use (bnc#1012382).\n\n - i2c: ismt: fix wrong device address when unmap the data\n buffer (bnc#1012382).\n\n - i40e: use cpumask_copy instead of direct assignment\n (bsc#1053685).\n\n - i40iw: Fix memory leak in error path of create QP\n (bsc#969476 bsc#969477).\n\n - i40iw: Use correct address in dst_neigh_lookup for IPv6\n (bsc#969476 bsc#969477).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ieee802154: at86rf230: switch from BUG_ON() to WARN_ON()\n on problem (bnc#1012382).\n\n - ieee802154: at86rf230: use __func__ macro for debug\n messages (bnc#1012382).\n\n - ieee802154: fakelb: switch from BUG_ON() to WARN_ON() on\n problem (bnc#1012382).\n\n - igb: Fix not adding filter elements to the list\n (bsc#1024361 bsc#1024365).\n\n - iio: ad9523: Fix displayed phase (bnc#1012382).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bnc#1012382).\n\n - inet: frag: enforce memory limits earlier (bnc#1012382\n bsc#970506).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/vt-d: Add definitions for PFSID (bnc#1012382).\n\n - iommu/vt-d: Fix dev iotlb pfsid use (bnc#1012382).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bnc#1012382).\n\n - ip: hash fragments consistently (bnc#1012382).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (bnc#1012382).\n\n - ipconfig: Correctly initialise ic_nameservers\n (bnc#1012382).\n\n - ipv4+ipv6: Make INET*_ESP select CRYPTO_ECHAINIV\n (bnc#1012382).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (bnc#1012382).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (bnc#1012382).\n\n - ipv6: fix useless rol32 call on hash (bnc#1012382).\n\n - ipv6: mcast: fix unsolicited report interval after\n receiving querys (bnc#1012382).\n\n - ipvlan: use ETH_MAX_MTU as max mtu (bsc#1033962).\n\n - iscsi target: fix session creation failure handling\n (bnc#1012382).\n\n - isdn: Disable IIOCDBGVAR (bnc#1012382).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#969476 bsc#969477).\n\n - iwlwifi: pcie: fix race in Rx buffer allocator\n (bnc#1012382).\n\n - ixgbe: Be more careful when modifying MAC filters\n (bnc#1012382).\n\n - jfs: Do not clear SGID when inheriting ACLs\n (bsc#1030552).\n\n - jump_label: Add RELEASE barrier after text changes\n (bsc#1105271).\n\n - jump_label: Fix concurrent static_key_enable/disable()\n (bsc#1105271).\n\n - jump_label: Move CPU hotplug locking (bsc#1105271).\n\n - jump_label: Provide hotplug context variants\n (bsc#1105271).\n\n - jump_label: Reduce the size of struct static_key\n (bsc#1105271).\n\n - jump_label: Reorder hotplug lock and jump_label_lock\n (bsc#1105271).\n\n - jump_label: Split out code under the hotplug lock\n (bsc#1105271).\n\n - jump_label: remove bug.h, atomic.h dependencies for\n HAVE_JUMP_LABEL (bsc#1105271).\n\n - kabi/severities: Ignore missing cpu_tss_tramp\n (bsc#1099597)\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kasan: do not emit builtin calls when sanitization is\n off (bnc#1012382).\n\n - kasan: fix shadow_size calculation error in\n kasan_module_alloc (bnc#1012382).\n\n - kbuild: verify that $DEPMOD is installed (bnc#1012382).\n\n - kernel: improve spectre mitigation (bnc#1106934,\n LTC#171029).\n\n - kprobes/x86: Fix %p uses in error messages\n (bnc#1012382).\n\n - kprobes: Make list and blacklist root user read only\n (bnc#1012382).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: x86: vmx: fix vpid leak (bnc#1012382).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (bnc#1012382).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bnc#1012382).\n\n - libata: Fix command retry decision (bnc#1012382).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (bnc#1012382).\n\n - locking/lockdep: Do not record IRQ state within lockdep\n code (bnc#1012382).\n\n - locks: pass inode pointer to locks_free_lock_context\n (bsc@1099832).\n\n - locks: prink more detail when there are leaked locks\n (bsc#1099832).\n\n - locks: restore a warn for leaked locks on close\n (bsc#1099832).\n\n - m68k: fix 'bad page state' oops on ColdFire boot\n (bnc#1012382).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bnc#1012382).\n\n - md/raid10: fix that replacement cannot complete recovery\n after reassemble (bnc#1012382).\n\n - md: fix NULL dereference of mddev->pers in\n remove_and_add_spares() (bnc#1012382).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bnc#1012382).\n\n - media: rcar_jpu: Add missing clk_disable_unprepare() on\n error in jpu_open() (bnc#1012382).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1050431).\n\n - media: s5p-jpeg: fix number of components macro\n (bsc#1050431).\n\n - media: saa7164: Fix driver name in debug output\n (bnc#1012382).\n\n - media: si470x: fix __be16 annotations (bnc#1012382).\n\n - media: siano: get rid of __le32/__le16 cast warnings\n (bnc#1012382).\n\n - media: staging: omap4iss: Include asm/cacheflush.h after\n generic includes (bnc#1012382).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bnc#1012382).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bnc#1012382).\n\n - memory: tegra: Do not handle spurious interrupts\n (bnc#1012382).\n\n - mfd: cros_ec: Fail early if we cannot identify the EC\n (bnc#1012382).\n\n - microblaze: Fix simpleImage format generation\n (bnc#1012382).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm/memory.c: check return value of ioremap_prot\n (bnc#1012382).\n\n - mm/slub.c: add __printf verification to slab_err()\n (bnc#1012382).\n\n - mm/tlb: Remove tlb_remove_table() non-concurrent\n condition (bnc#1012382).\n\n - mm: Add vm_insert_pfn_prot() (bnc#1012382).\n\n - mm: fix cache mode tracking in vm_insert_mixed()\n (bnc#1012382).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1012382).\n\n - mm: vmalloc: avoid racy handling of debugobjects in\n vunmap (bnc#1012382).\n\n - mm: x86: move _PAGE_SWP_SOFT_DIRTY from bit 7 to bit 1\n (bnc#1012382).\n\n - mtd: rawnand: fsl_ifc: fix FSL NAND driver to read all\n ONFI parameter pages (bnc#1012382).\n\n - mtd: ubi: wl: Fix error return code in ubi_wl_init()\n (git-fixes).\n\n - mwifiex: correct histogram data with appropriate index\n (bnc#1012382).\n\n - mwifiex: handle race during mwifiex_usb_disconnect\n (bnc#1012382).\n\n - net/9p/client.c: version pointer uninitialized\n (bnc#1012382).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bnc#1012382).\n\n - net/ethernet/freescale/fman: fix cross-build error\n (bnc#1012382).\n\n - net/ipv4: Set oif in fib_compute_spec_dst (bnc#1012382).\n\n - net/mlx4_core: Save the qpn from the input modifier in\n RST2INIT wrapper (bnc#1012382).\n\n - net/mlx5: Add missing SET_DRIVER_VERSION command\n translation (bsc#1015342 bsc#1015343).\n\n - net/mlx5: E-Switch, Include VF RDMA stats in vport\n statistics (bsc#966170 bsc#966172).\n\n - net/mlx5: Eswitch, Use 'kvfree()' for memory allocated\n by 'kvzalloc()' (bsc#1015342 bsc#1015343).\n\n - net/mlx5: Fix wrong size allocation for QoS ETC TC\n regitster (bsc#966170 bsc#966172).\n\n - net/mlx5: Vport, Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#966170 bsc#966172).\n\n - net/mlx5e: Do not allow aRFS for encapsulated packets\n (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Err if asked to offload TC match on frag\n being first (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Fix quota counting in aRFS expire flow\n (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Refine ets validation function (bsc#966170\n bsc#966172).\n\n - net: 6lowpan: fix reserved space for single frames\n (bnc#1012382).\n\n - net: Do not copy pfmemalloc flag in __copy_skb_header()\n (bnc#1012382).\n\n - net: add skb_condense() helper (bsc#1089066).\n\n - net: adjust skb->truesize in ___pskb_trim()\n (bsc#1089066).\n\n - net: adjust skb->truesize in pskb_expand_head()\n (bsc#1089066).\n\n - net: axienet: Fix double deregister of mdio\n (bnc#1012382).\n\n - net: caif: Add a missing rcu_read_unlock() in\n caif_flow_cb (bnc#1012382).\n\n - net: davinci_emac: match the mdio device against its\n compatible if possible (bnc#1012382).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (bnc#1012382).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (bsc#1027968).\n\n - net: fix amd-xgbe flow-control issue (bnc#1012382).\n\n - net: hamradio: use eth_broadcast_addr (bnc#1012382).\n\n - net: lan78xx: Fix misplaced tasklet_schedule() call\n (bnc#1012382).\n\n - net: lan78xx: fix rx handling before first packet is\n send (bnc#1012382).\n\n - net: mac802154: tx: expand tailroom if necessary\n (bnc#1012382).\n\n - net: phy: fix flag masking in __set_phy_supported\n (bnc#1012382).\n\n - net: prevent ISA drivers from building on PPC32\n (bnc#1012382).\n\n - net: propagate dev_get_valid_name return code\n (bnc#1012382).\n\n - net: qca_spi: Avoid packet drop during initial sync\n (bnc#1012382).\n\n - net: qca_spi: Fix log level if probe fails\n (bnc#1012382).\n\n - net: qca_spi: Make sure the QCA7000 reset is triggered\n (bnc#1012382).\n\n - net: socket: fix potential spectre v1 gadget in\n socketcall (bnc#1012382).\n\n - net: usb: rtl8150: demote allmulti message to dev_dbg()\n (bnc#1012382).\n\n - net: vmxnet3: use new api\n ethtool_(get|set)_link_ksettings (bsc#1091860\n bsc#1098253).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (bnc#1012382).\n\n - net_sched: fix NULL pointer dereference when delete\n tcindex filter (bnc#1012382).\n\n - netfilter: conntrack: dccp: treat SYNC/SYNCACK as\n invalid if no prior state (bnc#1012382).\n\n - netfilter: ipset: List timing out entries with 'timeout\n 1' instead of zero (bnc#1012382).\n\n - netfilter: ipv6: nf_defrag: reduce struct net memory\n waste (bnc#1012382).\n\n - netfilter: ipvs: do not create conn for ABORT packet in\n sctp_conn_schedule (bsc#1102797).\n\n - netfilter: ipvs: fix the issue that sctp_conn_schedule\n drops non-INIT packet (bsc#1102797).\n\n - netfilter: x_tables: set module owner for icmp(6)\n matches (bnc#1012382).\n\n - netlink: Do not shift on 64 for ngroups (bnc#1012382).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (bnc#1012382).\n\n - netlink: Do not subscribe to non-existent groups\n (bnc#1012382).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (bnc#1012382).\n\n - netlink: do not enter direct reclaim from netlink_trim()\n (bsc#1042286).\n\n - nfsd: fix potential use-after-free in\n nfsd4_decode_getdeviceinfo (bnc#1012382).\n\n - nl80211: Add a missing break in parse_station_flags\n (bnc#1012382).\n\n - nohz: Fix local_timer_softirq_pending() (bnc#1012382).\n\n - nvme-fc: release io queues to allow fast fail\n (bsc#1102486).\n\n - nvme: if_ready checks to fail io to deleting controller\n (bsc#1102486).\n\n - nvme: kABI-compliant version of\n nvmf_fail_nonready_command() (bsc#1102486).\n\n - nvmet-fc: fix target sgl list on large transfers\n (bsc#1102486).\n\n - osf_getdomainname(): use copy_to_user() (bnc#1012382).\n\n - ovl: Do d_type check only if work dir creation was\n successful (bnc#1012382).\n\n - ovl: Ensure upper filesystem supports d_type\n (bnc#1012382).\n\n - ovl: warn instead of error if d_type is not supported\n (bnc#1012382).\n\n - packet: refine ring v3 block size test to hold one frame\n (bnc#1012382).\n\n - packet: reset network header if packet shorter than ll\n reserved space (bnc#1012382).\n\n - parisc: Define mb() and add memory barriers to assembler\n unlock sequences (bnc#1012382).\n\n - parisc: Enable CONFIG_MLONGCALLS by default\n (bnc#1012382).\n\n - parisc: Remove ordered stores from syscall.S\n (bnc#1012382).\n\n - parisc: Remove unnecessary barriers from spinlock.h\n (bnc#1012382).\n\n - perf auxtrace: Fix queue resize (bnc#1012382).\n\n - perf llvm-utils: Remove bashism from kernel include\n fetch script (bnc#1012382).\n\n - perf report powerpc: Fix crash if callchain is empty\n (bnc#1012382).\n\n - perf test session topology: Fix test on s390\n (bnc#1012382).\n\n - perf/x86/intel/uncore: Correct fixed counter index check\n for NHM (bnc#1012382).\n\n - perf/x86/intel/uncore: Correct fixed counter index check\n in generic code (bnc#1012382).\n\n - perf: fix invalid bit in diagnostic entry (bnc#1012382).\n\n - pinctrl: at91-pio4: add missing of_node_put\n (bnc#1012382).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bnc#1012382).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (bnc#1012382).\n\n - powerpc/32: Add a missing include header (bnc#1012382).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032.\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bnc#1012382).\n\n - powerpc/8xx: fix invalid register expression in\n head_8xx.S (bnc#1012382).\n\n - powerpc/chrp/time: Make some functions static, add\n missing header include (bnc#1012382).\n\n - powerpc/embedded6xx/hlwd-pic: Prevent interrupts from\n being handled by Starlet (bnc#1012382).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1066223).\n\n - powerpc/powermac: Add missing prototype for\n note_bootable_part() (bnc#1012382).\n\n - powerpc/powermac: Mark variable x as unused\n (bnc#1012382).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bnc#1012382).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157.\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1066223).\n\n - provide special timeout module parameters for EC2\n (bsc#1065364).\n\n - ptp: fix missing break in switch (bnc#1012382).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bnc#1012382).\n\n - qed: Add sanity check for SIMD fastpath handler\n (bnc#1012382).\n\n - qed: Correct Multicast API to reflect existence of 256\n approximate buckets (bsc#1019695 bsc#1019699\n bsc#1022604).\n\n - qed: Do not advertise DCBX_LLD_MANAGED capability\n (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qed: Fix possible memory leak in Rx error path handling\n (bsc#1019695 bsc#1019699 bsc#1022604 ).\n\n - qed: Fix possible race for the link state value\n (bnc#1012382).\n\n - qed: Fix setting of incorrect eswitch mode (bsc#1019695\n bsc#1019699 bsc#1022604).\n\n - qed: Fix use of incorrect size in memcpy call\n (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qede: Adverstise software timestamp caps when PHC is not\n available (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - qlogic: check kstrtoul() for errors (bnc#1012382).\n\n - random: mix rdrand with entropy sent in from userspace\n (bnc#1012382).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality).\n\n - regulator: pfuze100: add .is_enable() for\n pfuze100_swb_regulator_ops (bnc#1012382).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bnc#1012382).\n\n - ring_buffer: tracing: Inherit the tracing setting to\n next ring buffer (bnc#1012382).\n\n - root dentries need RCU-delayed freeing (bnc#1012382).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bnc#1012382).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bnc#1012382).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (bnc#1012382).\n\n - s390/cpum_sf: Add data entry sizes to sampling trailer\n entry (bnc#1012382).\n\n - s390/kvm: fix deadlock when killed by oom (bnc#1012382).\n\n - s390/lib: use expoline for all bcr instructions\n (bnc#1106934, LTC#171029).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1012382).\n\n - s390/qdio: reset old sbal_state flags (bnc#1012382).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bnc#1104485, LTC#170349).\n\n - s390/qeth: fix race when setting MAC address\n (bnc#1104485, LTC#170726).\n\n - s390: add explicit linux/stringify.h for jump label\n (bsc#1105271).\n\n - s390: detect etoken facility (bnc#1106934, LTC#171029).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (bnc#1012382 bnc#1106934 LTC#171029).\n\n - sched/fair: Avoid divide by zero when rebalancing\n domains (bsc#1096254).\n\n - scripts/tar-up.sh: Do not package gitlog-excludes file\n Also fix the evaluation of gitlog-excludes file, too\n\n - scsi: 3w-9xxx: fix a missing-check bug (bnc#1012382).\n\n - scsi: 3w-xxxx: fix a missing-check bug (bnc#1012382).\n\n - scsi: core: Avoid that SCSI device removal through sysfs\n triggers a deadlock (bnc#1012382).\n\n - scsi: fcoe: drop frames in ELS LOGO error path\n (bnc#1012382).\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: libiscsi: fix possible NULL pointer dereference in\n case of TMF (bnc#1012382).\n\n - scsi: megaraid: silence a static checker bug\n (bnc#1012382).\n\n - scsi: megaraid_sas: Increase timeout by 1 sec for\n non-RAID fastpath IOs (bnc#1012382).\n\n - scsi: qla2xxx: Fix ISP recovery on unload (bnc#1012382).\n\n - scsi: qla2xxx: Return error when TMF returns\n (bnc#1012382).\n\n - scsi: scsi_dh: replace too broad 'TP9' string with the\n exact models (bnc#1012382).\n\n - scsi: sr: Avoid that opening a CD-ROM hangs with runtime\n power management enabled (bnc#1012382).\n\n - scsi: sysfs: Introduce\n sysfs_(un,)break_active_protection() (bnc#1012382).\n\n - scsi: ufs: fix exception event handling (bnc#1012382).\n\n - scsi: vmw_pvscsi: Return DID_RESET for status\n SAM_STAT_COMMAND_TERMINATED (bnc#1012382).\n\n - scsi: xen-scsifront: add error handling for\n xenbus_printf (bnc#1012382).\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138).\n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - selftest/seccomp: Fix the flag name\n SECCOMP_FILTER_FLAG_TSYNC (bnc#1012382).\n\n - selftest/seccomp: Fix the seccomp(2) signature\n (bnc#1012382).\n\n - selftests/ftrace: Add snapshot and tracing_on test case\n (bnc#1012382).\n\n - selftests/x86/sigreturn/64: Fix spurious failures on AMD\n CPUs (bnc#1012382).\n\n - selftests: pstore: return Kselftest Skip code for\n skipped tests (bnc#1012382).\n\n - selftests: static_keys: return Kselftest Skip code for\n skipped tests (bnc#1012382).\n\n - selftests: sync: add config fragment for testing sync\n framework (bnc#1012382).\n\n - selftests: user: return Kselftest Skip code for skipped\n tests (bnc#1012382).\n\n - selftests: zram: return Kselftest Skip code for skipped\n tests (bnc#1012382).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bnc#1012382).\n\n - sfc: stop the TX queue before pushing new buffers\n (bsc#1017967 ).\n\n - skbuff: Unconditionally copy pfmemalloc in __skb_clone()\n (bnc#1012382).\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smb3: Do not send SMB3 SET_INFO if nothing changed\n (bnc#1012382).\n\n - smb3: do not request leases in symlink creation and\n query (bnc#1012382).\n\n - spi: davinci: fix a NULL pointer dereference\n (bnc#1012382).\n\n - squashfs: be more careful about metadata corruption\n (bnc#1012382).\n\n - squashfs: more metadata hardening (bnc#1012382).\n\n - squashfs: more metadata hardenings (bnc#1012382).\n\n - staging: android: ion: check for kref overflow\n (bnc#1012382).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1107319).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: Fix missing range_truesize enlargement in the\n backport (bnc#1012382).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (bnc#1012382).\n\n - tcp: add one more quick ack after after ECN events\n (bnc#1012382).\n\n - tcp: do not aggressively quick ack after ECN events\n (bnc#1012382).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (bnc#1012382).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (bnc#1012382).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (bnc#1012382).\n\n - tcp: fix dctcp delayed ACK schedule (bnc#1012382).\n\n - tcp: helpers to send special DCTCP ack (bnc#1012382).\n\n - tcp: identify cryptic messages as TCP seq # bugs\n (bnc#1012382).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (bnc#1012382).\n\n - tcp: remove DELAYED ACK events in DCTCP (bnc#1012382).\n\n - tg3: Add higher cpu clock for 5762 (bnc#1012382).\n\n - thermal: exynos: fix setting rising_threshold for\n Exynos5433 (bnc#1012382).\n\n - timekeeping: Eliminate the stale declaration of\n ktime_get_raw_and_real_ts64() (bsc#969470).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bnc#1012382).\n\n - tools/power turbostat: fix -S on UP systems\n (bnc#1012382).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bnc#1012382).\n\n - tpm: fix race condition in tpm_common_write()\n (bnc#1012382).\n\n - tracing/blktrace: Fix to allow setting same value\n (bnc#1012382).\n\n - tracing/kprobes: Fix trace_probe flags on\n enable_trace_kprobe() failure (bnc#1012382).\n\n - tracing: Do not call start/stop() functions when\n tracing_on does not change (bnc#1012382).\n\n - tracing: Fix double free of event_trigger_data\n (bnc#1012382).\n\n - tracing: Fix possible double free in\n event_enable_trigger_func() (bnc#1012382).\n\n - tracing: Quiet gcc warning about maybe unused link\n variable (bnc#1012382).\n\n - tracing: Use __printf markup to silence compiler\n (bnc#1012382).\n\n - tty: Fix data race in tty_insert_flip_string_fixed_flag\n (bnc#1012382).\n\n - turn off -Wattribute-alias (bnc#1012382).\n\n - ubi: Be more paranoid while seaching for the most recent\n Fastmap (bnc#1012382).\n\n - ubi: Fix Fastmap's update_vol() (bnc#1012382).\n\n - ubi: Fix races around ubi_refill_pools() (bnc#1012382).\n\n - ubi: Introduce vol_ignored() (bnc#1012382).\n\n - ubi: Rework Fastmap attach base code (bnc#1012382).\n\n - ubi: fastmap: Erase outdated anchor PEBs during attach\n (bnc#1012382).\n\n - ubifs: Check data node size before truncate\n (bsc#1106276).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1106278).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1106275).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1106271).\n\n - udl-kms: change down_interruptible to down\n (bnc#1012382).\n\n - udl-kms: fix crash due to uninitialized memory\n (bnc#1012382).\n\n - udl-kms: handle allocation failure (bnc#1012382).\n\n - udlfb: set optimal write delay (bnc#1012382).\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bnc#1012382).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bnc#1012382).\n\n - usb: audio-v2: Correct the comment for struct\n uac_clock_selector_descriptor (bsc#1099810).\n\n - usb: cdc_acm: Add quirk for Castles VEGA3000\n (bnc#1012382).\n\n - usb: dwc2: debugfs: Do not touch RX FIFO during register\n dump (bsc#1100132).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bnc#1012382).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bnc#1012382).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bnc#1012382).\n\n - usb: gadget: f_fs: Only return delayed status when len\n is 0 (bnc#1012382).\n\n - usb: gadget: f_uac2: fix endianness of 'struct\n cntrl_*_lay3' (bnc#1012382).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bnc#1012382).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bnc#1012382).\n\n - usb: hub: Do not wait for connect state at resume for\n powered-off ports (bnc#1012382).\n\n - usb: renesas_usbhs: gadget: fix spin_lock_init() for\n uep->lock (bsc#1085536).\n\n - usb: xhci: increase CRS timeout value (bnc#1012382).\n\n - usbip: usbip_detach: Fix memory, udev context and udev\n leak (bnc#1012382).\n\n - userns: move user access out of the mutex (bnc#1012382).\n\n - virtio_balloon: fix another race between migration and\n ballooning (bnc#1012382).\n\n - virtio_console: fix uninitialized variable use\n (git-fixes).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bnc#1012382).\n\n - vmw_balloon: do not use 2MB without batching\n (bnc#1012382).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bnc#1012382).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bnc#1012382).\n\n - vmxnet3: Replace msleep(1) with usleep_range()\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: add receive data ring support (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: add support for get_coalesce, set_coalesce\n ethtool operations (bsc#1091860 bsc#1098253).\n\n - vmxnet3: allow variable length transmit data ring buffer\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid assumption about invalid dma_pa in\n vmxnet3_set_mc() (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid format strint overflow warning\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid xmit reset due to a race in vmxnet3\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: fix incorrect dereference when rxvlan is\n disabled (bsc#1091860 bsc#1098253).\n\n - vmxnet3: fix non static symbol warning (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: fix tx data ring copy for variable size\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: increase default rx ring sizes (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: introduce command to register memory region\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: introduce generalized command interface to\n configure the device (bsc#1091860 bsc#1098253).\n\n - vmxnet3: prepare for version 3 changes (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: remove redundant initialization of pointer 'rq'\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: remove unused flag 'rxcsum' from struct\n vmxnet3_adapter (bsc#1091860 bsc#1098253).\n\n - vmxnet3: set the DMA mask before the first DMA map\n operation (bsc#1091860 bsc#1098253).\n\n - vmxnet3: update to version 3 (bsc#1091860 bsc#1098253).\n\n - vmxnet3: use DMA memory barriers where required\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: use correct flag to indicate LRO feature\n (bsc#1091860 bsc#1098253).\n\n - vsock: split dwork to avoid reinitializations\n (bnc#1012382).\n\n - vti6: Fix dev->max_mtu setting (bsc#1033962).\n\n - vti6: fix PMTU caching and reporting on xmit\n (bnc#1012382).\n\n - wlcore: sdio: check for valid platform device data\n before suspend (bnc#1012382).\n\n - x86/MCE: Remove min interval polling limitation\n (bnc#1012382).\n\n - x86/amd: do not set X86_BUG_SYSRET_SS_ATTRS when running\n under Xen (bnc#1012382).\n\n - x86/asm/entry/32: Simplify pushes of zeroed\n pt_regs->REGs (bnc#1012382).\n\n - x86/bugs: Move the l1tf function and define pr_fmt\n properly (bnc#1012382).\n\n - x86/bugs: Respect nospec command line option\n (bsc#1068032).\n\n - x86/cpu/AMD: Fix erratum 1076 (CPB bit) (bnc#1012382).\n\n - x86/cpu: Make alternative_msr_write work for 32-bit code\n (bnc#1012382).\n\n - x86/cpu: Re-apply forced caps every time CPU caps are\n re-read (bnc#1012382).\n\n - x86/cpufeature: preserve numbers (kabi).\n\n - x86/cpufeatures: Add CPUID_7_EDX CPUID leaf\n (bnc#1012382).\n\n - x86/cpufeatures: Clean up Spectre v2 related CPUID flags\n (bnc#1012382).\n\n - x86/entry/64/compat: Clear registers for compat\n syscalls, to reduce speculation attack surface\n (bnc#1012382).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1012382).\n\n - x86/irqflags: Mark native_restore_fl extern inline\n (bnc#1012382).\n\n - x86/irqflags: Provide a declaration for native_save_fl\n (git-fixes).\n\n - x86/mm/kmmio: Make the tracer robust against L1TF\n (bnc#1012382).\n\n - x86/mm/pat: Fix L1TF stable backport for CPA\n (bnc#1012382).\n\n - x86/mm/pat: Fix L1TF stable backport for CPA, 2nd call\n (bnc#1012382).\n\n - x86/mm/pat: Make set_memory_np() L1TF safe\n (bnc#1012382).\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bnc#1012382).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bnc#1012382).\n\n - x86/mm: Give each mm TLB flush generation a unique ID\n (bnc#1012382).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1012382).\n\n - x86/paravirt: Make native_save_fl() extern inline\n (bnc#1012382).\n\n - x86/process: Correct and optimize TIF_BLOCKSTEP switch\n (bnc#1012382).\n\n - x86/process: Optimize TIF checks in __switch_to_xtra()\n (bnc#1012382).\n\n - x86/process: Optimize TIF_NOTSC switch (bnc#1012382).\n\n - x86/process: Re-export start_thread() (bnc#1012382).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (bnc#1012382).\n\n - x86/spectre_v2: Do not check microcode versions when\n running under hypervisors (bnc#1012382).\n\n - x86/speculation/l1tf: Exempt zeroed PTEs from inversion\n (bnc#1012382).\n\n - x86/speculation/l1tf: Extend 64bit swap file size limit\n (bnc#1012382).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit()\n on 32bit (bnc#1012382).\n\n - x86/speculation/l1tf: Fix up CPU feature flags\n (bnc#1012382).\n\n - x86/speculation/l1tf: Fix up pte->pfn conversion for PAE\n (bnc#1012382).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Invert all not present mappings\n (bnc#1012382).\n\n - x86/speculation/l1tf: Make pmd/pud_mknotpresent() invert\n (bnc#1012382).\n\n - x86/speculation/l1tf: Protect PAE swap entries against\n L1TF (bnc#1012382).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Unbreak\n !__HAVE_ARCH_PFN_MODIFY_ALLOWED architectures\n (bnc#1012382).\n\n - x86/speculation: Add asm/msr-index.h dependency\n (bnc#1012382).\n\n - x86/speculation: Add basic IBPB (Indirect Branch\n Prediction Barrier) support (bnc#1012382).\n\n - x86/speculation: Clean up various Spectre related\n details (bnc#1012382).\n\n - x86/speculation: Correct Speculation Control microcode\n blacklist again (bnc#1012382).\n\n - x86/speculation: Move\n firmware_restrict_branch_speculation_*() from C to CPP\n (bnc#1012382).\n\n - x86/speculation: Update Speculation Control microcode\n blacklist (bnc#1012382).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/speculation: Use IBRS if available before calling\n into firmware (bnc#1012382).\n\n - x86/speculation: Use Indirect Branch Prediction Barrier\n in context switch (bnc#1012382).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1012382).\n\n - xen-netfront: wait xenbus state change when load module\n manually (bnc#1012382).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xen/netfront: do not cache skb_shinfo() (bnc#1012382).\n\n - xen: set cpu capabilities from xen_start_kernel()\n (bnc#1012382).\n\n - xfrm: fix missing dst_release() after policy blocking\n lbcast and multicast (bnc#1012382).\n\n - xfrm: free skb if nlsk pointer is NULL (bnc#1012382).\n\n - xfrm_user: prevent leaking 2 bytes of kernel memory\n (bnc#1012382).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bnc#1012382).\n\n - zswap: re-check zswap_is_full() after do zswap_shrink()\n (bnc#1012382).", "edition": 19, "cvss3": {"score": 8.4, "vector": "AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-09-17T00:00:00", "title": "openSUSE Security Update : the Linux Kernel (openSUSE-2018-1016)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-1129", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-15572", "CVE-2018-6554", "CVE-2018-13094"], "modified": "2018-09-17T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:kernel-source", "p-cpe:/a:novell:opensuse:kernel-source-vanilla", "p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-debugsource", "p-cpe:/a:novell:opensuse:kernel-default-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-base", "p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-devel", "p-cpe:/a:novell:opensuse:kernel-devel", "p-cpe:/a:novell:opensuse:kernel-docs-html", "p-cpe:/a:novell:opensuse:kernel-obs-qa", "p-cpe:/a:novell:opensuse:kernel-docs-pdf", "p-cpe:/a:novell:opensuse:kernel-macros", "p-cpe:/a:novell:opensuse:kernel-syms", "p-cpe:/a:novell:opensuse:kernel-vanilla", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel", "p-cpe:/a:novell:opensuse:kernel-debug-base", "p-cpe:/a:novell:opensuse:kernel-debug-debugsource", "p-cpe:/a:novell:opensuse:kernel-default", "p-cpe:/a:novell:opensuse:kernel-debug-devel", "cpe:/o:novell:opensuse:42.3", "p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug", "p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource", "p-cpe:/a:novell:opensuse:kernel-default-base", "p-cpe:/a:novell:opensuse:kernel-obs-build", "p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo"], "id": "OPENSUSE-2018-1016.NASL", "href": "https://www.tenable.com/plugins/nessus/117523", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2018-1016.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(117523);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\", \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\", \"CVE-2018-15572\", \"CVE-2018-16658\", \"CVE-2018-6554\", \"CVE-2018-6555\", \"CVE-2018-9363\");\n\n script_name(english:\"openSUSE Security Update : the Linux Kernel (openSUSE-2018-1016)\");\n script_summary(english:\"Check for the openSUSE-2018-1016 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The openSUSE Leap 42.3 kernel was updated to 4.4.155 to receive\nvarious security and bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-13093: Prevent NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occured because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13095: Prevent denial of service (memory\n corruption and BUG) that could have occured for a\n corrupted xfs image upon encountering an inode that is\n in extent format, but has more extents than fit in the\n inode fork (bnc#1099999).\n\n - CVE-2018-13094: Prevent OOPS that might have occured for\n a corrupted xfs image after xfs_da_shrink_inode() is\n called with a NULL bp (bnc#1100000).\n\n - CVE-2018-12896: Prevent integer overflow in the POSIX\n timer code is caused by the way the overrun accounting\n works. Depending on interval and expiry time values, the\n overrun could have been larger than INT_MAX, but the\n accounting is int based. This basically made the\n accounting values, which are visible to user space via\n timer_getoverrun(2) and siginfo::si_overrun, random. For\n example, a local user could have caused a denial of\n service (signed integer overflow) via crafted mmap,\n futex, timer_create, and timer_settime system calls\n (bnc#1099922).\n\n - CVE-2018-16658: Prevent information leak in\n cdrom_ioctl_drive_status that could have been used by\n local attackers to read kernel memory because a cast\n from unsigned long to int interferes with bounds\n checking (bnc#1107689).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n allowed local attackers to use a incorrect bounds check\n in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read\n out kernel memory (bsc#1092903).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Prevent memory leak in the irda_bind\n function that allowed local users to cause a denial of\n service (memory consumption) by repeatedly binding an\n AF_IRDA socket (bnc#1106509).\n\n - CVE-2018-1129: A flaw was found in the way signature\n calculation was handled by cephx authentication\n protocol. An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol\n (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph service\n (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker could have forced the kernel to enter an\n infinite loop in the cipso_v4_optptr() function leading\n to a denial-of-service (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function did not always fill RSB upon a context switch,\n which made it easier for attackers to conduct\n userspace-userspace spectreRSB attacks (bnc#1102517).\n\n - CVE-2018-10902: The raw midi kernel driver did not\n protect against concurrent access which lead to a double\n realloc (double free) in snd_rawmidi_input_params() and\n snd_rawmidi_output_status(), allowing a malicious local\n attacker to use this for privilege escalation\n (bnc#1105322).\n\n - CVE-2018-9363: Prevent buffer overflow in\n hidp_process_report (bsc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bnc#1012382).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bnc#1012382).\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bnc#1012382).\n\n - ACPI / LPSS: Add missing prv_offset setting for byt/cht\n PWM devices (bnc#1012382).\n\n - ACPI / PCI: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bnc#1012382).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bnc#1012382).\n\n - ACPI: save NVS memory for Lenovo G50-45 (bnc#1012382).\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bnc#1012382).\n\n - ALSA: emu10k1: Rate-limit error messages about page\n errors (bnc#1012382).\n\n - ALSA: emu10k1: add error handling for snd_ctl_add\n (bnc#1012382).\n\n - ALSA: fm801: add error handling for snd_ctl_add\n (bnc#1012382).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bnc#1012382).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bnc#1012382).\n\n - ALSA: hda/ca0132: fix build failure when a local macro\n is defined (bnc#1012382).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bnc#1012382).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bnc#1012382).\n\n - ALSA: rawmidi: Change resized buffers atomically\n (bnc#1012382).\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1099810).\n\n - ALSA: usb-audio: Apply rate limit to warning messages in\n URB complete callback (bnc#1012382).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bnc#1012382).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bnc#1012382).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bnc#1012382).\n\n - ARC: Enable machine_desc->init_per_cpu for !CONFIG_SMP\n (bnc#1012382).\n\n - ARC: Explicitly add -mmedium-calls to CFLAGS\n (bnc#1012382).\n\n - ARC: Fix CONFIG_SWAP (bnc#1012382).\n\n - ARC: mm: allow mprotect to make stack mappings\n executable (bnc#1012382).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bnc#1012382).\n\n - ARM: dts: Cygnus: Fix I2C controller interrupt type\n (bnc#1012382).\n\n - ARM: dts: am3517.dtsi: Disable reference to OMAP3 OTG\n controller (bnc#1012382).\n\n - ARM: dts: am437x: make edt-ft5x06 a wakeup source\n (bnc#1012382).\n\n - ARM: dts: da850: Fix interrups property for gpio\n (bnc#1012382).\n\n - ARM: dts: imx6sx: fix irq for pcie bridge (bnc#1012382).\n\n - ARM: fix put_user() for gcc-8 (bnc#1012382).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bnc#1012382).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bnc#1012382).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bnc#1012382).\n\n - ARM: tegra: Fix Tegra30 Cardhu PCA954x reset\n (bnc#1012382).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (git-fixes).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bnc#1012382).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bnc#1012382).\n\n - ASoC: dpcm: fix BE dai not hw_free and shutdown\n (bnc#1012382).\n\n - ASoC: pxa: Fix module autoload for platform drivers\n (bnc#1012382).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bnc#1012382).\n\n - Add reference to bsc#1091171 (bnc#1012382; bsc#1091171).\n\n - Bluetooth: avoid killing an already killed socket\n (bnc#1012382).\n\n - Bluetooth: btusb: Add a new Realtek 8723DE ID 2ff8:b011\n (bnc#1012382).\n\n - Bluetooth: btusb: Remove Yoga 920 from the\n btusb_needs_reset_resume_table (bsc#1087092).\n\n - Bluetooth: btusb: Use DMI matching for QCA reset_resume\n quirking (bsc#1087092).\n\n - Bluetooth: hci_qca: Fix 'Sleep inside atomic section'\n warning (bnc#1012382).\n\n - Documentation/spec_ctrl: Do some minor cleanups\n (bnc#1012382).\n\n - HID: hid-plantronics: Re-resend Update to map button for\n PTT products (bnc#1012382).\n\n - HID: i2c-hid: check if device is there before really\n probing (bnc#1012382).\n\n - HID: wacom: Correct touch maximum XY of 2nd-gen Intuos\n (bnc#1012382).\n\n - IB/core: Make testing MR flags for writability a static\n inline function (bnc#1012382).\n\n - IB/core: Remove duplicate declaration of gid_cache_wq\n (bsc#1056596).\n\n - IB/iser: Do not reduce max_sectors (bsc#1063646).\n\n - IB/mlx4: Fix an error handling path in\n 'mlx4_ib_rereg_user_mr()' (git-fixes).\n\n - IB/mlx4: Mark user MR as writable if actual virtual\n memory is writable (bnc#1012382).\n\n - IB/mlx5: Fetch soft WQE's on fatal error state\n (bsc#1015342 bsc#1015343).\n\n - IB/mlx5: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1015342 bsc#1015343).\n\n - IB/ocrdma: fix out of bounds access to local buffer\n (bnc#1012382).\n\n - Input: elan_i2c - add ACPI ID for lenovo ideapad 330\n (bnc#1012382).\n\n - Input: elan_i2c - add another ACPI ID for Lenovo Ideapad\n 330-15AST (bnc#1012382).\n\n - Input: i8042 - add Lenovo LaVie Z to the i8042 reset\n list (bnc#1012382).\n\n - KVM/Eventfd: Avoid crash when assign and deassign\n specific eventfd in parallel (bnc#1012382).\n\n - KVM: MMU: always terminate page walks at level 1\n (bsc#1062604).\n\n - KVM: MMU: simplify last_pte_bitmap (bsc#1062604).\n\n - KVM: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - KVM: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - KVM: arm/arm64: Skip updating PMD entry if no change\n (bnc#1012382).\n\n - KVM: arm/arm64: Skip updating PTE entry if no change\n (bnc#1012382).\n\n - KVM: irqfd: fix race between EPOLLHUP and\n irq_bypass_register_consumer (bnc#1012382).\n\n - KVM: nVMX: update last_nonleaf_level when initializing\n nested EPT (bsc#1062604).\n\n - MIPS: Correct the 64-bit DSP accumulator register size\n (bnc#1012382).\n\n - MIPS: Fix off-by-one in pci_resource_to_user()\n (bnc#1012382).\n\n - MIPS: ath79: fix register address in\n ath79_ddr_wb_flush() (bnc#1012382).\n\n - MIPS: lib: Provide MIPS64r6 __multi3() for GCC lower\n than 7 (bnc#1012382).\n\n - NET: stmmac: align DMA stuff to largest cache line\n length (bnc#1012382).\n\n - PCI: Prevent sysfs disable of device while driver is\n attached (bnc#1012382).\n\n - PCI: Skip MPS logic for Virtual Functions (VFs)\n (bnc#1012382).\n\n - PCI: hotplug: Do not leak pci_slot on registration\n failure (bnc#1012382).\n\n - PCI: pciehp: Fix use-after-free on unplug (bnc#1012382).\n\n - PCI: pciehp: Request control of native hotplug only if\n supported (bnc#1012382).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bnc#1012382).\n\n - RDMA/i40iw: Avoid panic when objects are being created\n and destroyed (bsc#969476 bsc#969477).\n\n - RDMA/i40iw: Avoid panic when reading back the IRQ\n affinity hint (bsc#969476 bsc#969477).\n\n - RDMA/i40iw: Avoid reference leaks when processing the\n AEQ (bsc#969476 bsc#969477).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1024376).\n\n - RDMA/mad: Convert BUG_ONs to error flows (bnc#1012382).\n\n - RDMA/mlx5: Use proper spec flow label type (bsc#1015342\n bsc#1015343).\n\n - Revert 'MIPS: BCM47XX: Enable 74K Core ExternalSync for\n PCIe erratum' (bnc#1012382).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bnc#1012382).\n\n - Revert 'f2fs: handle dirty segments inside\n refresh_sit_entry' (bsc#1106281).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Smack: Mark inode instant in smack_task_to_inode\n (bnc#1012382).\n\n - USB: musb: fix external abort on suspend (bsc#1085536).\n\n - USB: option: add support for DW5821e (bnc#1012382).\n\n - USB: serial: metro-usb: stop I/O after failed open\n (bsc#1085539).\n\n - USB: serial: sierra: fix potential deadlock at close\n (bnc#1012382).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1107319).\n\n - afs: Fix directory permissions check (bsc#1106283).\n\n - arc: fix build errors in arc/include/asm/delay.h\n (bnc#1012382).\n\n - arc: fix type warnings in arc/mm/cache.c (bnc#1012382).\n\n - arm64: make secondary_start_kernel() notrace\n (bnc#1012382).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bnc#1012382).\n\n - ath: Add regulatory mapping for APL13_WORLD\n (bnc#1012382).\n\n - ath: Add regulatory mapping for APL2_FCCA (bnc#1012382).\n\n - ath: Add regulatory mapping for Bahamas (bnc#1012382).\n\n - ath: Add regulatory mapping for Bermuda (bnc#1012382).\n\n - ath: Add regulatory mapping for ETSI8_WORLD\n (bnc#1012382).\n\n - ath: Add regulatory mapping for FCC3_ETSIC\n (bnc#1012382).\n\n - ath: Add regulatory mapping for Serbia (bnc#1012382).\n\n - ath: Add regulatory mapping for Tanzania (bnc#1012382).\n\n - ath: Add regulatory mapping for Uganda (bnc#1012382).\n\n - atl1c: reserve min skb headroom (bnc#1012382).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (bsc#1089066).\n\n - audit: allow not equal op for audit by executable\n (bnc#1012382).\n\n - backlight: as3711_bl: Fix Device Tree node leaks\n (bsc#1106929).\n\n - backlight: lm3630a: Bump REG_MAX value to 0x50 instead\n of 0x1F (bsc#1106929).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get() (bsc#1064232).\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes (bsc#1064232).\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running (bsc#1064232).\n\n - bcache: do not check return value of\n debugfs_create_dir() (bsc#1064232).\n\n - bcache: finish incremental GC (bsc#1064232).\n\n - bcache: fix I/O significant decline while backend\n devices registering (bsc#1064232).\n\n - bcache: fix error setting writeback_rate through sysfs\n interface (bsc#1064232).\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free (bsc#1064232).\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section (bsc#1064232).\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread() (bsc#1064232).\n\n - bcache: set max writeback rate when I/O request is idle\n (bsc#1064232).\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data (bsc#1064232).\n\n - be2net: remove unused old custom busy-poll fields\n (bsc#1021121 ).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block: do not use interruptible wait anywhere\n (bnc#1012382).\n\n - bnx2x: Fix invalid memory access in rss hash config path\n (bnc#1012382).\n\n - bnx2x: Fix receiving tx-timeout in error or recovery\n state (bnc#1012382).\n\n - bnxt_en: Always set output parameters in\n bnxt_get_max_rings() (bsc#963575).\n\n - bnxt_en: Fix for system hang if request_irq fails\n (bnc#1012382).\n\n - bnxt_en: Fix inconsistent BNXT_FLAG_AGG_RINGS logic\n (bsc#1020412 ).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bnc#1012382).\n\n - brcmfmac: Add support for bcm43364 wireless chipset\n (bnc#1012382).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bnc#1012382).\n\n - bridge: Propagate vlan add failure to user\n (bnc#1012382).\n\n - btrfs: add barriers to btrfs_sync_log before\n log_commit_wait wakeups (bnc#1012382).\n\n - btrfs: do not leak ret from do_chunk_alloc\n (bnc#1012382).\n\n - btrfs: qgroup: Finish rescan when hit the last leaf of\n extent tree (bnc#1012382).\n\n - btrfs: quota: Set rescan progress to (u64)-1 if we hit\n last leaf (git-fixes).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - can: ems_usb: Fix memory leak on ems_usb_disconnect()\n (bnc#1012382).\n\n - can: mpc5xxx_can: check of_iomap return before use\n (bnc#1012382).\n\n - can: xilinx_can: fix RX loop if RXNEMP is asserted\n without RXOK (bnc#1012382).\n\n - can: xilinx_can: fix RX overflow interrupt not being\n enabled (bnc#1012382).\n\n - can: xilinx_can: fix device dropping off bus on RX\n overrun (bnc#1012382).\n\n - can: xilinx_can: fix incorrect clear of non-processed\n interrupts (bnc#1012382).\n\n - can: xilinx_can: fix recovery from error states not\n being propagated (bnc#1012382).\n\n - can: xilinx_can: keep only 1-2 frames in TX FIFO to fix\n TX accounting (bnc#1012382).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bnc#1012382).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cifs: Fix stack out-of-bounds in\n smb(2,3)_create_lease_buf() (bsc#1012382).\n\n - cifs: add missing debug entries for kconfig options\n (bnc#1012382).\n\n - cifs: check kmalloc before use (bsc#1012382).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1012382).\n\n - clk: tegra: Fix PLL_U post divider and initial rate on\n Tegra30 (bnc#1012382).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bnc#1012382).\n\n - crypto: authenc - do not leak pointers to authenc keys\n (bnc#1012382).\n\n - crypto: authencesn - do not leak pointers to authenc\n keys (bnc#1012382).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bnc#1012382).\n\n - crypto: padlock-aes - Fix Nano workaround data\n corruption (bnc#1012382).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bnc#1012382).\n\n - crypto: vmac - separate tfm and request context\n (bnc#1012382).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1048317).\n\n - cxgb4: when disabling dcb set txq dcb priority to 0\n (bnc#1012382).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014.\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (bnc#1012382).\n\n - disable loading f2fs module on PAGE_SIZE > 4KB\n (bnc#1012382).\n\n - dm cache metadata: save in-core policy_hint_size to\n on-disk superblock (bnc#1012382).\n\n - dma-iommu: Fix compilation when !CONFIG_IOMMU_DMA\n (bnc#1012382).\n\n - dmaengine: k3dma: Off by one in k3_of_dma_simple_xlate()\n (bnc#1012382).\n\n - dmaengine: pxa_dma: remove duplicate const qualifier\n (bnc#1012382).\n\n - driver core: Partially revert 'driver core: correct\n device's shutdown order' (bnc#1012382).\n\n - drivers: net: lmc: fix case value for target abort error\n (bnc#1012382).\n\n - drm/armada: fix colorkey mode property (bnc#1012382).\n\n - drm/atmel-hlcdc: check stride values in the first plane\n (bsc#1106929).\n\n - drm/atomic: Handling the case when setting old crtc for\n plane (bnc#1012382).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bnc#1012382).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/drivers: add support for using the arch wc mapping\n API (git-fixes).\n\n - drm/exynos/dsi: mask frame-done interrupt (bsc#1106929).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bnc#1012382).\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bnc#1012382).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bnc#1012382).\n\n - drm/gma500: fix psb_intel_lvds_mode_valid()'s return\n type (bnc#1012382).\n\n - drm/i915/userptr: reject zero user_size (bsc#1090888).\n\n - drm/i915: Correctly handle limited range YCbCr data on\n VLV/CHV (bsc#1087092).\n\n - drm/imx: fix typo in ipu_plane_formats (bsc#1106929).\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bnc#1012382).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bnc#1012382).\n\n - drm/msm/hdmi: Use bitwise operators when building\n register values (bsc#1106929).\n\n - drm/nouveau/gem: off by one bugs in\n nouveau_gem_pushbuf_reloc_apply() (bnc#1012382).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1105769).\n\n - drm/radeon: fix mode_valid's return type (bnc#1012382).\n\n - drm: Add DP PSR2 sink enable bit (bnc#1012382).\n\n - drm: Reject getfb for multi-plane framebuffers\n (bsc#1106929).\n\n - enic: do not call enic_change_mtu in enic_probe\n (git-fixes).\n\n - enic: handle mtu change for vf properly (bnc#1012382).\n\n - enic: initialize enic->rfs_h.lock in enic_probe\n (bnc#1012382).\n\n - ext4: check for NUL characters in extended attribute's\n name (bnc#1012382).\n\n - ext4: fix spectre gadget in ext4_mb_regular_allocator()\n (bnc#1012382).\n\n - ext4: reset error code in ext4_find_entry in fallback\n (bnc#1012382).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - f2fs: fix to do not trigger writeback during recovery\n (bnc#1012382).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bnc#1012382).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bnc#1012382).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1106929).\n\n - fix __legitimize_mnt()/mntput() race (bnc#1012382).\n\n - fix mntput/mntput race (bnc#1012382).\n\n - fork: unconditionally clear stack on fork (bnc#1012382).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bnc#1012382).\n\n - fs/dax.c: fix inefficiency in\n dax_writeback_mapping_range() (bsc#1106185).\n\n - fs/quota: Fix spectre gadget in do_quotactl\n (bnc#1012382).\n\n - fs: aio: fix the increment of aio-nr and counting\n against aio-max-nr (bsc#1068075, bsc#1078921).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bnc#1012382).\n\n - fuse: Do not access pipe->buffers without pipe_lock()\n (bnc#1012382).\n\n - fuse: Fix oops at process_init_reply() (bnc#1012382).\n\n - fuse: fix double request_end() (bnc#1012382).\n\n - fuse: fix unlocked access to processing queue\n (bnc#1012382).\n\n - fuse: umount should wait for all requests (bnc#1012382).\n\n - genirq/proc: Return proper error code when\n irq_set_affinity() fails (bnc#1105392).\n\n - getxattr: use correct xattr length (bnc#1012382).\n\n - hfsplus: Do not clear SGID when inheriting ACLs\n (bsc#1030552).\n\n - hvc_opal: do not set tb_ticks_per_usec in\n udbg_init_opal_common() (bnc#1012382).\n\n - hwrng: exynos - Disable runtime PM on driver unbind\n (git-fixes).\n\n - i2c: davinci: Avoid zero value of CLKH (bnc#1012382).\n\n - i2c: imx: Fix race condition in dma read (bnc#1012382).\n\n - i2c: imx: Fix reinit_completion() use (bnc#1012382).\n\n - i2c: ismt: fix wrong device address when unmap the data\n buffer (bnc#1012382).\n\n - i40e: use cpumask_copy instead of direct assignment\n (bsc#1053685).\n\n - i40iw: Fix memory leak in error path of create QP\n (bsc#969476 bsc#969477).\n\n - i40iw: Use correct address in dst_neigh_lookup for IPv6\n (bsc#969476 bsc#969477).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ieee802154: at86rf230: switch from BUG_ON() to WARN_ON()\n on problem (bnc#1012382).\n\n - ieee802154: at86rf230: use __func__ macro for debug\n messages (bnc#1012382).\n\n - ieee802154: fakelb: switch from BUG_ON() to WARN_ON() on\n problem (bnc#1012382).\n\n - igb: Fix not adding filter elements to the list\n (bsc#1024361 bsc#1024365).\n\n - iio: ad9523: Fix displayed phase (bnc#1012382).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bnc#1012382).\n\n - inet: frag: enforce memory limits earlier (bnc#1012382\n bsc#970506).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/vt-d: Add definitions for PFSID (bnc#1012382).\n\n - iommu/vt-d: Fix dev iotlb pfsid use (bnc#1012382).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bnc#1012382).\n\n - ip: hash fragments consistently (bnc#1012382).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (bnc#1012382).\n\n - ipconfig: Correctly initialise ic_nameservers\n (bnc#1012382).\n\n - ipv4+ipv6: Make INET*_ESP select CRYPTO_ECHAINIV\n (bnc#1012382).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (bnc#1012382).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (bnc#1012382).\n\n - ipv6: fix useless rol32 call on hash (bnc#1012382).\n\n - ipv6: mcast: fix unsolicited report interval after\n receiving querys (bnc#1012382).\n\n - ipvlan: use ETH_MAX_MTU as max mtu (bsc#1033962).\n\n - iscsi target: fix session creation failure handling\n (bnc#1012382).\n\n - isdn: Disable IIOCDBGVAR (bnc#1012382).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#969476 bsc#969477).\n\n - iwlwifi: pcie: fix race in Rx buffer allocator\n (bnc#1012382).\n\n - ixgbe: Be more careful when modifying MAC filters\n (bnc#1012382).\n\n - jfs: Do not clear SGID when inheriting ACLs\n (bsc#1030552).\n\n - jump_label: Add RELEASE barrier after text changes\n (bsc#1105271).\n\n - jump_label: Fix concurrent static_key_enable/disable()\n (bsc#1105271).\n\n - jump_label: Move CPU hotplug locking (bsc#1105271).\n\n - jump_label: Provide hotplug context variants\n (bsc#1105271).\n\n - jump_label: Reduce the size of struct static_key\n (bsc#1105271).\n\n - jump_label: Reorder hotplug lock and jump_label_lock\n (bsc#1105271).\n\n - jump_label: Split out code under the hotplug lock\n (bsc#1105271).\n\n - jump_label: remove bug.h, atomic.h dependencies for\n HAVE_JUMP_LABEL (bsc#1105271).\n\n - kabi/severities: Ignore missing cpu_tss_tramp\n (bsc#1099597)\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kasan: do not emit builtin calls when sanitization is\n off (bnc#1012382).\n\n - kasan: fix shadow_size calculation error in\n kasan_module_alloc (bnc#1012382).\n\n - kbuild: verify that $DEPMOD is installed (bnc#1012382).\n\n - kernel: improve spectre mitigation (bnc#1106934,\n LTC#171029).\n\n - kprobes/x86: Fix %p uses in error messages\n (bnc#1012382).\n\n - kprobes: Make list and blacklist root user read only\n (bnc#1012382).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: x86: vmx: fix vpid leak (bnc#1012382).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (bnc#1012382).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bnc#1012382).\n\n - libata: Fix command retry decision (bnc#1012382).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (bnc#1012382).\n\n - locking/lockdep: Do not record IRQ state within lockdep\n code (bnc#1012382).\n\n - locks: pass inode pointer to locks_free_lock_context\n (bsc@1099832).\n\n - locks: prink more detail when there are leaked locks\n (bsc#1099832).\n\n - locks: restore a warn for leaked locks on close\n (bsc#1099832).\n\n - m68k: fix 'bad page state' oops on ColdFire boot\n (bnc#1012382).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bnc#1012382).\n\n - md/raid10: fix that replacement cannot complete recovery\n after reassemble (bnc#1012382).\n\n - md: fix NULL dereference of mddev->pers in\n remove_and_add_spares() (bnc#1012382).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bnc#1012382).\n\n - media: rcar_jpu: Add missing clk_disable_unprepare() on\n error in jpu_open() (bnc#1012382).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1050431).\n\n - media: s5p-jpeg: fix number of components macro\n (bsc#1050431).\n\n - media: saa7164: Fix driver name in debug output\n (bnc#1012382).\n\n - media: si470x: fix __be16 annotations (bnc#1012382).\n\n - media: siano: get rid of __le32/__le16 cast warnings\n (bnc#1012382).\n\n - media: staging: omap4iss: Include asm/cacheflush.h after\n generic includes (bnc#1012382).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bnc#1012382).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bnc#1012382).\n\n - memory: tegra: Do not handle spurious interrupts\n (bnc#1012382).\n\n - mfd: cros_ec: Fail early if we cannot identify the EC\n (bnc#1012382).\n\n - microblaze: Fix simpleImage format generation\n (bnc#1012382).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm/memory.c: check return value of ioremap_prot\n (bnc#1012382).\n\n - mm/slub.c: add __printf verification to slab_err()\n (bnc#1012382).\n\n - mm/tlb: Remove tlb_remove_table() non-concurrent\n condition (bnc#1012382).\n\n - mm: Add vm_insert_pfn_prot() (bnc#1012382).\n\n - mm: fix cache mode tracking in vm_insert_mixed()\n (bnc#1012382).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1012382).\n\n - mm: vmalloc: avoid racy handling of debugobjects in\n vunmap (bnc#1012382).\n\n - mm: x86: move _PAGE_SWP_SOFT_DIRTY from bit 7 to bit 1\n (bnc#1012382).\n\n - mtd: rawnand: fsl_ifc: fix FSL NAND driver to read all\n ONFI parameter pages (bnc#1012382).\n\n - mtd: ubi: wl: Fix error return code in ubi_wl_init()\n (git-fixes).\n\n - mwifiex: correct histogram data with appropriate index\n (bnc#1012382).\n\n - mwifiex: handle race during mwifiex_usb_disconnect\n (bnc#1012382).\n\n - net/9p/client.c: version pointer uninitialized\n (bnc#1012382).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bnc#1012382).\n\n - net/ethernet/freescale/fman: fix cross-build error\n (bnc#1012382).\n\n - net/ipv4: Set oif in fib_compute_spec_dst (bnc#1012382).\n\n - net/mlx4_core: Save the qpn from the input modifier in\n RST2INIT wrapper (bnc#1012382).\n\n - net/mlx5: Add missing SET_DRIVER_VERSION command\n translation (bsc#1015342 bsc#1015343).\n\n - net/mlx5: E-Switch, Include VF RDMA stats in vport\n statistics (bsc#966170 bsc#966172).\n\n - net/mlx5: Eswitch, Use 'kvfree()' for memory allocated\n by 'kvzalloc()' (bsc#1015342 bsc#1015343).\n\n - net/mlx5: Fix wrong size allocation for QoS ETC TC\n regitster (bsc#966170 bsc#966172).\n\n - net/mlx5: Vport, Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#966170 bsc#966172).\n\n - net/mlx5e: Do not allow aRFS for encapsulated packets\n (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Err if asked to offload TC match on frag\n being first (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Fix quota counting in aRFS expire flow\n (bsc#1015342 bsc#1015343).\n\n - net/mlx5e: Refine ets validation function (bsc#966170\n bsc#966172).\n\n - net: 6lowpan: fix reserved space for single frames\n (bnc#1012382).\n\n - net: Do not copy pfmemalloc flag in __copy_skb_header()\n (bnc#1012382).\n\n - net: add skb_condense() helper (bsc#1089066).\n\n - net: adjust skb->truesize in ___pskb_trim()\n (bsc#1089066).\n\n - net: adjust skb->truesize in pskb_expand_head()\n (bsc#1089066).\n\n - net: axienet: Fix double deregister of mdio\n (bnc#1012382).\n\n - net: caif: Add a missing rcu_read_unlock() in\n caif_flow_cb (bnc#1012382).\n\n - net: davinci_emac: match the mdio device against its\n compatible if possible (bnc#1012382).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (bnc#1012382).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (bsc#1027968).\n\n - net: fix amd-xgbe flow-control issue (bnc#1012382).\n\n - net: hamradio: use eth_broadcast_addr (bnc#1012382).\n\n - net: lan78xx: Fix misplaced tasklet_schedule() call\n (bnc#1012382).\n\n - net: lan78xx: fix rx handling before first packet is\n send (bnc#1012382).\n\n - net: mac802154: tx: expand tailroom if necessary\n (bnc#1012382).\n\n - net: phy: fix flag masking in __set_phy_supported\n (bnc#1012382).\n\n - net: prevent ISA drivers from building on PPC32\n (bnc#1012382).\n\n - net: propagate dev_get_valid_name return code\n (bnc#1012382).\n\n - net: qca_spi: Avoid packet drop during initial sync\n (bnc#1012382).\n\n - net: qca_spi: Fix log level if probe fails\n (bnc#1012382).\n\n - net: qca_spi: Make sure the QCA7000 reset is triggered\n (bnc#1012382).\n\n - net: socket: fix potential spectre v1 gadget in\n socketcall (bnc#1012382).\n\n - net: usb: rtl8150: demote allmulti message to dev_dbg()\n (bnc#1012382).\n\n - net: vmxnet3: use new api\n ethtool_(get|set)_link_ksettings (bsc#1091860\n bsc#1098253).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (bnc#1012382).\n\n - net_sched: fix NULL pointer dereference when delete\n tcindex filter (bnc#1012382).\n\n - netfilter: conntrack: dccp: treat SYNC/SYNCACK as\n invalid if no prior state (bnc#1012382).\n\n - netfilter: ipset: List timing out entries with 'timeout\n 1' instead of zero (bnc#1012382).\n\n - netfilter: ipv6: nf_defrag: reduce struct net memory\n waste (bnc#1012382).\n\n - netfilter: ipvs: do not create conn for ABORT packet in\n sctp_conn_schedule (bsc#1102797).\n\n - netfilter: ipvs: fix the issue that sctp_conn_schedule\n drops non-INIT packet (bsc#1102797).\n\n - netfilter: x_tables: set module owner for icmp(6)\n matches (bnc#1012382).\n\n - netlink: Do not shift on 64 for ngroups (bnc#1012382).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (bnc#1012382).\n\n - netlink: Do not subscribe to non-existent groups\n (bnc#1012382).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (bnc#1012382).\n\n - netlink: do not enter direct reclaim from netlink_trim()\n (bsc#1042286).\n\n - nfsd: fix potential use-after-free in\n nfsd4_decode_getdeviceinfo (bnc#1012382).\n\n - nl80211: Add a missing break in parse_station_flags\n (bnc#1012382).\n\n - nohz: Fix local_timer_softirq_pending() (bnc#1012382).\n\n - nvme-fc: release io queues to allow fast fail\n (bsc#1102486).\n\n - nvme: if_ready checks to fail io to deleting controller\n (bsc#1102486).\n\n - nvme: kABI-compliant version of\n nvmf_fail_nonready_command() (bsc#1102486).\n\n - nvmet-fc: fix target sgl list on large transfers\n (bsc#1102486).\n\n - osf_getdomainname(): use copy_to_user() (bnc#1012382).\n\n - ovl: Do d_type check only if work dir creation was\n successful (bnc#1012382).\n\n - ovl: Ensure upper filesystem supports d_type\n (bnc#1012382).\n\n - ovl: warn instead of error if d_type is not supported\n (bnc#1012382).\n\n - packet: refine ring v3 block size test to hold one frame\n (bnc#1012382).\n\n - packet: reset network header if packet shorter than ll\n reserved space (bnc#1012382).\n\n - parisc: Define mb() and add memory barriers to assembler\n unlock sequences (bnc#1012382).\n\n - parisc: Enable CONFIG_MLONGCALLS by default\n (bnc#1012382).\n\n - parisc: Remove ordered stores from syscall.S\n (bnc#1012382).\n\n - parisc: Remove unnecessary barriers from spinlock.h\n (bnc#1012382).\n\n - perf auxtrace: Fix queue resize (bnc#1012382).\n\n - perf llvm-utils: Remove bashism from kernel include\n fetch script (bnc#1012382).\n\n - perf report powerpc: Fix crash if callchain is empty\n (bnc#1012382).\n\n - perf test session topology: Fix test on s390\n (bnc#1012382).\n\n - perf/x86/intel/uncore: Correct fixed counter index check\n for NHM (bnc#1012382).\n\n - perf/x86/intel/uncore: Correct fixed counter index check\n in generic code (bnc#1012382).\n\n - perf: fix invalid bit in diagnostic entry (bnc#1012382).\n\n - pinctrl: at91-pio4: add missing of_node_put\n (bnc#1012382).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bnc#1012382).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (bnc#1012382).\n\n - powerpc/32: Add a missing include header (bnc#1012382).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032.\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bnc#1012382).\n\n - powerpc/8xx: fix invalid register expression in\n head_8xx.S (bnc#1012382).\n\n - powerpc/chrp/time: Make some functions static, add\n missing header include (bnc#1012382).\n\n - powerpc/embedded6xx/hlwd-pic: Prevent interrupts from\n being handled by Starlet (bnc#1012382).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1066223).\n\n - powerpc/powermac: Add missing prototype for\n note_bootable_part() (bnc#1012382).\n\n - powerpc/powermac: Mark variable x as unused\n (bnc#1012382).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bnc#1012382).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157.\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1066223).\n\n - provide special timeout module parameters for EC2\n (bsc#1065364).\n\n - ptp: fix missing break in switch (bnc#1012382).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bnc#1012382).\n\n - qed: Add sanity check for SIMD fastpath handler\n (bnc#1012382).\n\n - qed: Correct Multicast API to reflect existence of 256\n approximate buckets (bsc#1019695 bsc#1019699\n bsc#1022604).\n\n - qed: Do not advertise DCBX_LLD_MANAGED capability\n (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qed: Fix possible memory leak in Rx error path handling\n (bsc#1019695 bsc#1019699 bsc#1022604 ).\n\n - qed: Fix possible race for the link state value\n (bnc#1012382).\n\n - qed: Fix setting of incorrect eswitch mode (bsc#1019695\n bsc#1019699 bsc#1022604).\n\n - qed: Fix use of incorrect size in memcpy call\n (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qede: Adverstise software timestamp caps when PHC is not\n available (bsc#1019695 bsc#1019699 bsc#1022604).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - qlogic: check kstrtoul() for errors (bnc#1012382).\n\n - random: mix rdrand with entropy sent in from userspace\n (bnc#1012382).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality).\n\n - regulator: pfuze100: add .is_enable() for\n pfuze100_swb_regulator_ops (bnc#1012382).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bnc#1012382).\n\n - ring_buffer: tracing: Inherit the tracing setting to\n next ring buffer (bnc#1012382).\n\n - root dentries need RCU-delayed freeing (bnc#1012382).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bnc#1012382).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bnc#1012382).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (bnc#1012382).\n\n - s390/cpum_sf: Add data entry sizes to sampling trailer\n entry (bnc#1012382).\n\n - s390/kvm: fix deadlock when killed by oom (bnc#1012382).\n\n - s390/lib: use expoline for all bcr instructions\n (bnc#1106934, LTC#171029).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1012382).\n\n - s390/qdio: reset old sbal_state flags (bnc#1012382).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bnc#1104485, LTC#170349).\n\n - s390/qeth: fix race when setting MAC address\n (bnc#1104485, LTC#170726).\n\n - s390: add explicit linux/stringify.h for jump label\n (bsc#1105271).\n\n - s390: detect etoken facility (bnc#1106934, LTC#171029).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (bnc#1012382 bnc#1106934 LTC#171029).\n\n - sched/fair: Avoid divide by zero when rebalancing\n domains (bsc#1096254).\n\n - scripts/tar-up.sh: Do not package gitlog-excludes file\n Also fix the evaluation of gitlog-excludes file, too\n\n - scsi: 3w-9xxx: fix a missing-check bug (bnc#1012382).\n\n - scsi: 3w-xxxx: fix a missing-check bug (bnc#1012382).\n\n - scsi: core: Avoid that SCSI device removal through sysfs\n triggers a deadlock (bnc#1012382).\n\n - scsi: fcoe: drop frames in ELS LOGO error path\n (bnc#1012382).\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: libiscsi: fix possible NULL pointer dereference in\n case of TMF (bnc#1012382).\n\n - scsi: megaraid: silence a static checker bug\n (bnc#1012382).\n\n - scsi: megaraid_sas: Increase timeout by 1 sec for\n non-RAID fastpath IOs (bnc#1012382).\n\n - scsi: qla2xxx: Fix ISP recovery on unload (bnc#1012382).\n\n - scsi: qla2xxx: Return error when TMF returns\n (bnc#1012382).\n\n - scsi: scsi_dh: replace too broad 'TP9' string with the\n exact models (bnc#1012382).\n\n - scsi: sr: Avoid that opening a CD-ROM hangs with runtime\n power management enabled (bnc#1012382).\n\n - scsi: sysfs: Introduce\n sysfs_(un,)break_active_protection() (bnc#1012382).\n\n - scsi: ufs: fix exception event handling (bnc#1012382).\n\n - scsi: vmw_pvscsi: Return DID_RESET for status\n SAM_STAT_COMMAND_TERMINATED (bnc#1012382).\n\n - scsi: xen-scsifront: add error handling for\n xenbus_printf (bnc#1012382).\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138).\n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - selftest/seccomp: Fix the flag name\n SECCOMP_FILTER_FLAG_TSYNC (bnc#1012382).\n\n - selftest/seccomp: Fix the seccomp(2) signature\n (bnc#1012382).\n\n - selftests/ftrace: Add snapshot and tracing_on test case\n (bnc#1012382).\n\n - selftests/x86/sigreturn/64: Fix spurious failures on AMD\n CPUs (bnc#1012382).\n\n - selftests: pstore: return Kselftest Skip code for\n skipped tests (bnc#1012382).\n\n - selftests: static_keys: return Kselftest Skip code for\n skipped tests (bnc#1012382).\n\n - selftests: sync: add config fragment for testing sync\n framework (bnc#1012382).\n\n - selftests: user: return Kselftest Skip code for skipped\n tests (bnc#1012382).\n\n - selftests: zram: return Kselftest Skip code for skipped\n tests (bnc#1012382).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bnc#1012382).\n\n - sfc: stop the TX queue before pushing new buffers\n (bsc#1017967 ).\n\n - skbuff: Unconditionally copy pfmemalloc in __skb_clone()\n (bnc#1012382).\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smb3: Do not send SMB3 SET_INFO if nothing changed\n (bnc#1012382).\n\n - smb3: do not request leases in symlink creation and\n query (bnc#1012382).\n\n - spi: davinci: fix a NULL pointer dereference\n (bnc#1012382).\n\n - squashfs: be more careful about metadata corruption\n (bnc#1012382).\n\n - squashfs: more metadata hardening (bnc#1012382).\n\n - squashfs: more metadata hardenings (bnc#1012382).\n\n - staging: android: ion: check for kref overflow\n (bnc#1012382).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1107319).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: Fix missing range_truesize enlargement in the\n backport (bnc#1012382).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (bnc#1012382).\n\n - tcp: add one more quick ack after after ECN events\n (bnc#1012382).\n\n - tcp: do not aggressively quick ack after ECN events\n (bnc#1012382).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (bnc#1012382).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (bnc#1012382).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (bnc#1012382).\n\n - tcp: fix dctcp delayed ACK schedule (bnc#1012382).\n\n - tcp: helpers to send special DCTCP ack (bnc#1012382).\n\n - tcp: identify cryptic messages as TCP seq # bugs\n (bnc#1012382).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (bnc#1012382).\n\n - tcp: remove DELAYED ACK events in DCTCP (bnc#1012382).\n\n - tg3: Add higher cpu clock for 5762 (bnc#1012382).\n\n - thermal: exynos: fix setting rising_threshold for\n Exynos5433 (bnc#1012382).\n\n - timekeeping: Eliminate the stale declaration of\n ktime_get_raw_and_real_ts64() (bsc#969470).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bnc#1012382).\n\n - tools/power turbostat: fix -S on UP systems\n (bnc#1012382).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bnc#1012382).\n\n - tpm: fix race condition in tpm_common_write()\n (bnc#1012382).\n\n - tracing/blktrace: Fix to allow setting same value\n (bnc#1012382).\n\n - tracing/kprobes: Fix trace_probe flags on\n enable_trace_kprobe() failure (bnc#1012382).\n\n - tracing: Do not call start/stop() functions when\n tracing_on does not change (bnc#1012382).\n\n - tracing: Fix double free of event_trigger_data\n (bnc#1012382).\n\n - tracing: Fix possible double free in\n event_enable_trigger_func() (bnc#1012382).\n\n - tracing: Quiet gcc warning about maybe unused link\n variable (bnc#1012382).\n\n - tracing: Use __printf markup to silence compiler\n (bnc#1012382).\n\n - tty: Fix data race in tty_insert_flip_string_fixed_flag\n (bnc#1012382).\n\n - turn off -Wattribute-alias (bnc#1012382).\n\n - ubi: Be more paranoid while seaching for the most recent\n Fastmap (bnc#1012382).\n\n - ubi: Fix Fastmap's update_vol() (bnc#1012382).\n\n - ubi: Fix races around ubi_refill_pools() (bnc#1012382).\n\n - ubi: Introduce vol_ignored() (bnc#1012382).\n\n - ubi: Rework Fastmap attach base code (bnc#1012382).\n\n - ubi: fastmap: Erase outdated anchor PEBs during attach\n (bnc#1012382).\n\n - ubifs: Check data node size before truncate\n (bsc#1106276).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1106278).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1106275).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1106271).\n\n - udl-kms: change down_interruptible to down\n (bnc#1012382).\n\n - udl-kms: fix crash due to uninitialized memory\n (bnc#1012382).\n\n - udl-kms: handle allocation failure (bnc#1012382).\n\n - udlfb: set optimal write delay (bnc#1012382).\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bnc#1012382).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bnc#1012382).\n\n - usb: audio-v2: Correct the comment for struct\n uac_clock_selector_descriptor (bsc#1099810).\n\n - usb: cdc_acm: Add quirk for Castles VEGA3000\n (bnc#1012382).\n\n - usb: dwc2: debugfs: Do not touch RX FIFO during register\n dump (bsc#1100132).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bnc#1012382).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bnc#1012382).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bnc#1012382).\n\n - usb: gadget: f_fs: Only return delayed status when len\n is 0 (bnc#1012382).\n\n - usb: gadget: f_uac2: fix endianness of 'struct\n cntrl_*_lay3' (bnc#1012382).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bnc#1012382).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bnc#1012382).\n\n - usb: hub: Do not wait for connect state at resume for\n powered-off ports (bnc#1012382).\n\n - usb: renesas_usbhs: gadget: fix spin_lock_init() for\n uep->lock (bsc#1085536).\n\n - usb: xhci: increase CRS timeout value (bnc#1012382).\n\n - usbip: usbip_detach: Fix memory, udev context and udev\n leak (bnc#1012382).\n\n - userns: move user access out of the mutex (bnc#1012382).\n\n - virtio_balloon: fix another race between migration and\n ballooning (bnc#1012382).\n\n - virtio_console: fix uninitialized variable use\n (git-fixes).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bnc#1012382).\n\n - vmw_balloon: do not use 2MB without batching\n (bnc#1012382).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bnc#1012382).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bnc#1012382).\n\n - vmxnet3: Replace msleep(1) with usleep_range()\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: add receive data ring support (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: add support for get_coalesce, set_coalesce\n ethtool operations (bsc#1091860 bsc#1098253).\n\n - vmxnet3: allow variable length transmit data ring buffer\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid assumption about invalid dma_pa in\n vmxnet3_set_mc() (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid format strint overflow warning\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: avoid xmit reset due to a race in vmxnet3\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: fix incorrect dereference when rxvlan is\n disabled (bsc#1091860 bsc#1098253).\n\n - vmxnet3: fix non static symbol warning (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: fix tx data ring copy for variable size\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: increase default rx ring sizes (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: introduce command to register memory region\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: introduce generalized command interface to\n configure the device (bsc#1091860 bsc#1098253).\n\n - vmxnet3: prepare for version 3 changes (bsc#1091860\n bsc#1098253).\n\n - vmxnet3: remove redundant initialization of pointer 'rq'\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: remove unused flag 'rxcsum' from struct\n vmxnet3_adapter (bsc#1091860 bsc#1098253).\n\n - vmxnet3: set the DMA mask before the first DMA map\n operation (bsc#1091860 bsc#1098253).\n\n - vmxnet3: update to version 3 (bsc#1091860 bsc#1098253).\n\n - vmxnet3: use DMA memory barriers where required\n (bsc#1091860 bsc#1098253).\n\n - vmxnet3: use correct flag to indicate LRO feature\n (bsc#1091860 bsc#1098253).\n\n - vsock: split dwork to avoid reinitializations\n (bnc#1012382).\n\n - vti6: Fix dev->max_mtu setting (bsc#1033962).\n\n - vti6: fix PMTU caching and reporting on xmit\n (bnc#1012382).\n\n - wlcore: sdio: check for valid platform device data\n before suspend (bnc#1012382).\n\n - x86/MCE: Remove min interval polling limitation\n (bnc#1012382).\n\n - x86/amd: do not set X86_BUG_SYSRET_SS_ATTRS when running\n under Xen (bnc#1012382).\n\n - x86/asm/entry/32: Simplify pushes of zeroed\n pt_regs->REGs (bnc#1012382).\n\n - x86/bugs: Move the l1tf function and define pr_fmt\n properly (bnc#1012382).\n\n - x86/bugs: Respect nospec command line option\n (bsc#1068032).\n\n - x86/cpu/AMD: Fix erratum 1076 (CPB bit) (bnc#1012382).\n\n - x86/cpu: Make alternative_msr_write work for 32-bit code\n (bnc#1012382).\n\n - x86/cpu: Re-apply forced caps every time CPU caps are\n re-read (bnc#1012382).\n\n - x86/cpufeature: preserve numbers (kabi).\n\n - x86/cpufeatures: Add CPUID_7_EDX CPUID leaf\n (bnc#1012382).\n\n - x86/cpufeatures: Clean up Spectre v2 related CPUID flags\n (bnc#1012382).\n\n - x86/entry/64/compat: Clear registers for compat\n syscalls, to reduce speculation attack surface\n (bnc#1012382).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1012382).\n\n - x86/irqflags: Mark native_restore_fl extern inline\n (bnc#1012382).\n\n - x86/irqflags: Provide a declaration for native_save_fl\n (git-fixes).\n\n - x86/mm/kmmio: Make the tracer robust against L1TF\n (bnc#1012382).\n\n - x86/mm/pat: Fix L1TF stable backport for CPA\n (bnc#1012382).\n\n - x86/mm/pat: Fix L1TF stable backport for CPA, 2nd call\n (bnc#1012382).\n\n - x86/mm/pat: Make set_memory_np() L1TF safe\n (bnc#1012382).\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bnc#1012382).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bnc#1012382).\n\n - x86/mm: Give each mm TLB flush generation a unique ID\n (bnc#1012382).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1012382).\n\n - x86/paravirt: Make native_save_fl() extern inline\n (bnc#1012382).\n\n - x86/process: Correct and optimize TIF_BLOCKSTEP switch\n (bnc#1012382).\n\n - x86/process: Optimize TIF checks in __switch_to_xtra()\n (bnc#1012382).\n\n - x86/process: Optimize TIF_NOTSC switch (bnc#1012382).\n\n - x86/process: Re-export start_thread() (bnc#1012382).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (bnc#1012382).\n\n - x86/spectre_v2: Do not check microcode versions when\n running under hypervisors (bnc#1012382).\n\n - x86/speculation/l1tf: Exempt zeroed PTEs from inversion\n (bnc#1012382).\n\n - x86/speculation/l1tf: Extend 64bit swap file size limit\n (bnc#1012382).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit()\n on 32bit (bnc#1012382).\n\n - x86/speculation/l1tf: Fix up CPU feature flags\n (bnc#1012382).\n\n - x86/speculation/l1tf: Fix up pte->pfn conversion for PAE\n (bnc#1012382).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Invert all not present mappings\n (bnc#1012382).\n\n - x86/speculation/l1tf: Make pmd/pud_mknotpresent() invert\n (bnc#1012382).\n\n - x86/speculation/l1tf: Protect PAE swap entries against\n L1TF (bnc#1012382).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Unbreak\n !__HAVE_ARCH_PFN_MODIFY_ALLOWED architectures\n (bnc#1012382).\n\n - x86/speculation: Add asm/msr-index.h dependency\n (bnc#1012382).\n\n - x86/speculation: Add basic IBPB (Indirect Branch\n Prediction Barrier) support (bnc#1012382).\n\n - x86/speculation: Clean up various Spectre related\n details (bnc#1012382).\n\n - x86/speculation: Correct Speculation Control microcode\n blacklist again (bnc#1012382).\n\n - x86/speculation: Move\n firmware_restrict_branch_speculation_*() from C to CPP\n (bnc#1012382).\n\n - x86/speculation: Update Speculation Control microcode\n blacklist (bnc#1012382).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/speculation: Use IBRS if available before calling\n into firmware (bnc#1012382).\n\n - x86/speculation: Use Indirect Branch Prediction Barrier\n in context switch (bnc#1012382).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1012382).\n\n - xen-netfront: wait xenbus state change when load module\n manually (bnc#1012382).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xen/netfront: do not cache skb_shinfo() (bnc#1012382).\n\n - xen: set cpu capabilities from xen_start_kernel()\n (bnc#1012382).\n\n - xfrm: fix missing dst_release() after policy blocking\n lbcast and multicast (bnc#1012382).\n\n - xfrm: free skb if nlsk pointer is NULL (bnc#1012382).\n\n - xfrm_user: prevent leaking 2 bytes of kernel memory\n (bnc#1012382).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bnc#1012382).\n\n - zswap: re-check zswap_is_full() after do zswap_shrink()\n (bnc#1012382).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1012382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1015342\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1015343\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1017967\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1019695\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1019699\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1020412\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1021121\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1022604\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1024361\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1024365\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1024376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1027968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1030552\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031492\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1033962\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1042286\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1048317\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1050431\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1053685\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055014\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1056596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1062604\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1063646\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1064232\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065364\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1066223\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1068032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1068075\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1069138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1078921\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1080157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1083663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085042\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1087092\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1089066\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090888\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1091171\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1091860\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1092903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1096254\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1096748\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098253\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099810\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099832\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099999\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100000\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100001\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100132\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102517\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102715\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102797\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104485\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104683\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105271\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105292\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105769\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106185\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106191\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106229\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106271\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106275\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106276\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106278\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106281\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106283\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106509\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106697\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106929\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106934\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107060\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107319\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107320\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107735\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107937\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107966\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=963575\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=966170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=966172\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=969470\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=969476\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=969477\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=970506\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected the Linux Kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-docs-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-docs-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-macros\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-qa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.3\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/05/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/09/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/09/17\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE42\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"42.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(x86_64)$\") audit(AUDIT_ARCH_NOT, \"x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-base-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-base-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-debugsource-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-devel-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-debug-devel-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-base-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-base-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-debugsource-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-default-devel-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-devel-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-docs-html-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-docs-pdf-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-macros-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-obs-build-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-obs-build-debugsource-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-obs-qa-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-source-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-source-vanilla-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-syms-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-base-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-base-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-debuginfo-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-debugsource-4.4.155-68.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"kernel-vanilla-devel-4.4.155-68.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-devel / kernel-macros / kernel-source / etc\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2021-01-20T12:34:04", "description": "The openSUSE Leap 15.0 kernel was updated to receive various security\nand bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-14633: A security flaw was found in the\n chap_server_compute_md5() function in the ISCSI target\n code in a way an authentication request from an ISCSI\n initiator is processed. An unauthenticated remote\n attacker can cause a stack-based buffer overflow and\n smash up to 17 bytes of the stack. The attack requires\n the iSCSI target to be enabled on the victim host.\n Depending on how the target's code was built (i.e.\n depending on a compiler, compile flags and hardware\n architecture) an attack may lead to a system crash and\n thus to a denial-of-service or possibly to a\n non-authorized access to data exported by an iSCSI\n target. Due to the nature of the flaw, privilege\n escalation cannot be fully ruled out, although we\n believe it is highly unlikely. Kernel versions 4.18.x,\n 4.14.x and 3.10.x are believed to be vulnerable\n (bnc#1107829).\n\n - CVE-2018-17182: The vmacache_flush_all function in\n mm/vmacache.c mishandled sequence number overflows. An\n attacker can trigger a use-after-free (and possibly gain\n privileges) via certain thread creation, map, unmap,\n invalidation, and dereference operations (bnc#1108399).\n\n - CVE-2018-14617: There is a NULL pointer dereference and\n panic in hfsplus_lookup() in fs/hfsplus/dir.c when\n opening a file (that is purportedly a hard link) in an\n hfs+ filesystem that has malformed catalog data, and is\n mounted read-only without a metadata directory\n (bnc#1102870).\n\n - CVE-2018-14613: There is an invalid pointer dereference\n in io_ctl_map_page() when mounting and operating a\n crafted btrfs image, because of a lack of block group\n item validation in check_leaf_item in\n fs/btrfs/tree-checker.c (bnc#1102896).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n in drivers/cdrom/cdrom.c allowed local attackers to use\n a incorrect bounds check in the CDROM driver\n CDROM_MEDIA_CHANGED ioctl to read out kernel memory\n (bnc#1092903).\n\n - CVE-2018-13093: There is a NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occurs because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13094: An OOPS may occur for a corrupted xfs\n image after xfs_da_shrink_inode() is called with a NULL\n bp (bnc#1100000).\n\n - CVE-2018-13095: A denial of service (memory corruption\n and BUG) can occur for a corrupted xfs image upon\n encountering an inode that is in extent format, but has\n more extents than fit in the inode fork (bnc#1099999).\n\n - CVE-2018-12896: An Integer Overflow in\n kernel/time/posix-timers.c in the POSIX timer code is\n caused by the way the overrun accounting works.\n Depending on interval and expiry time values, the\n overrun can be larger than INT_MAX, but the accounting\n is int based. This basically made the accounting values,\n which are visible to user space via timer_getoverrun(2)\n and siginfo::si_overrun, random. For example, a local\n user can cause a denial of service (signed integer\n overflow) via crafted mmap, futex, timer_create, and\n timer_settime system calls (bnc#1099922).\n\n - CVE-2018-16658: An information leak in\n cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could\n be used by local attackers to read kernel memory because\n a cast from unsigned long to int interferes with bounds\n checking. This is similar to CVE-2018-10940\n (bnc#1107689).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Memory leak in the irda_bind function\n kernel allowed local users to cause a denial of service\n (memory consumption) by repeatedly binding an AF_IRDA\n socket (bnc#1106509).\n\n - CVE-2018-1129: An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol.\n Ceph branches master, mimic, luminous and jewel are\n believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph\n service. Ceph branches master, mimic, luminous and jewel\n are believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker may force the kernel to enter an infinite\n loop in the cipso_v4_optptr() function in\n net/ipv4/cipso_ipv4.c leading to a denial-of-service. A\n certain non-default configuration of LSM (Linux Security\n Module) and NetLabel should be set up on a system before\n an attacker could leverage this flaw (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function in arch/x86/kernel/cpu/bugs.c did not always\n fill RSB upon a context switch, which made it easier for\n attackers to conduct userspace-userspace spectreRSB\n attacks (bnc#1102517 bnc#1105296).\n\n - CVE-2018-10902: It was found that the raw midi kernel\n driver did not protect against concurrent access which\n leads to a double realloc (double free) in\n snd_rawmidi_input_params() and\n snd_rawmidi_output_status() which are part of\n snd_rawmidi_ioctl() handler in rawmidi.c file. A\n malicious local attacker could possibly use this for\n privilege escalation (bnc#1105322).\n\n - CVE-2018-9363: A buffer overflow in bluetooth HID report\n processing could be used by malicious bluetooth devices\n to crash the kernel or potentially execute code\n (bnc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bsc#1051510).\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bsc#1051510).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bsc#1051510).\n\n - ACPI / APEI: Remove ghes_ioremap_area (bsc#1051510).\n\n - ACPI / bus: Only call dmi_check_system on X86\n (bsc#1105597, bsc#1106178).\n\n - ACPICA: iasl: Add SMMUv3 device ID mapping index support\n (bsc#1103387).\n\n - ACPI / EC: Add another entry for Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Add parameter to force disable the GPE on\n suspend (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on more Thinkpad X1 Carbon\n 6th systems (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on ThinkPad X1 Yoga 3rd\n (bsc#1051510).\n\n - ACPI/IORT: Remove temporary iort_get_id_mapping_index()\n ACPICA guard (bsc#1103387).\n\n - ACPI / pci: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bsc#1051510).\n\n - ACPI / pci: pci_link: Allow the absence of _PRS and\n change log level (bsc#1104172).\n\n - ACPI/pci: pci_link: reduce verbosity when IRQ is enabled\n (bsc#1104172).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bsc#1051510).\n\n - ACPI / scan: Initialize status to ACPI_STA_DEFAULT\n (bsc#1051510).\n\n - affs_lookup(): close a race with affs_remove_link()\n (bsc#1105355).\n\n - ahci: Add Intel Ice Lake LP PCI ID (bsc#1051510).\n\n - ALSA: bebob: fix memory leak for M-Audio FW1814 and\n ProjectMix I/O at error path (bsc#1051510).\n\n - ALSA: bebob: use address returned by kmalloc() instead\n of kernel stack for streaming DMA mapping (bsc#1051510).\n\n - ALSA: cs46xx: Deliver indirect-PCM transfer error ().\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bsc#1051510).\n\n - ALSA: emu10k1: Deliver indirect-PCM transfer error ().\n\n - ALSA: emu10k1: fix possible info leak to userspace on\n SNDRV_EMU10K1_IOCTL_INFO (bsc#1051510).\n\n - ALSA: fireface: fix memory leak in\n ff400_switch_fetching_mode() (bsc#1051510).\n\n - ALSA: firewire-digi00x: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: firewire-tascam: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: fireworks: fix memory leak of response buffer at\n error path (bsc#1051510).\n\n - ALSA: hda: Add AZX_DCAPS_PM_RUNTIME for AMD Raven Ridge\n (bsc#1051510).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bsc#1051510).\n\n - ALSA: hda - Fix cancel_work_sync() stall from jackpoll\n work (bsc#1051510).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bsc#1051510).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bsc#1051510).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bsc#1051510).\n\n - ALSA: mips: Deliver indirect-PCM transfer error ().\n\n - ALSA: msnd: Fix the default sample sizes (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak for model-dependent data at\n error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of discovered stream formats\n at error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: pcm: Fix negative appl_ptr handling in\n pcm-indirect helpers ().\n\n - ALSA: pcm: Fix snd_interval_refine first/last with open\n min/max (bsc#1051510).\n\n - ALSA: pcm: Simplify forward/rewind codes ().\n\n - ALSA: pcm: Use a common helper for PCM state check and\n hwsync ().\n\n - ALSA: pcm: Workaround for weird PulseAudio behavior on\n rewind error ().\n\n - ALSA: rme32: Deliver indirect-PCM transfer error ().\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1051510).\n\n - ALSA: usb-audio: Fix multiple definitions in\n AU0828_DEVICE() macro (bsc#1051510).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bsc#1051510).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bsc#1051510).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bsc#1051510).\n\n - apparmor: ensure that undecidable profile attachments\n fail (bsc#1106427).\n\n - apparmor: fix an error code in __aa_create_ns()\n (bsc#1106427).\n\n - apparmor: Fix regression in profile conflict logic\n (bsc#1106427)\n\n - apparmor: remove no-op permission check in policy_unpack\n (bsc#1106427).\n\n - arm64/acpi: Create arch specific cpu to acpi id helper\n (bsc#1106903).\n\n - arm64: dma-mapping: clear buffers allocated with\n FORCE_CONTIGUOUS flag (bsc#1106902).\n\n - arm64: enable thunderx gpio driver\n\n - arm64: Enforce BBM for huge IO/VMAP mappings\n (bsc#1106890).\n\n - arm64: export memblock_reserve()d regions via\n /proc/iomem (bsc#1106892).\n\n - arm64: fix unwind_frame() for filtered out fn for\n function graph tracing (bsc#1106900).\n\n - arm64: fix vmemmap BUILD_BUG_ON() triggering on !vmemmap\n setups (bsc#1106896).\n\n - arm64: fpsimd: Avoid FPSIMD context leakage for the init\n task (bsc#1106894).\n\n - arm64: Ignore hardware dirty bit updates in\n ptep_set_wrprotect() (bsc#1108010).\n\n - arm64: kasan: avoid pfn_to_nid() before page array is\n initialized (bsc#1106899).\n\n - arm64/kasan: do not allocate extra shadow memory\n (bsc#1106897).\n\n - arm64: Make sure permission updates happen for pmd/pud\n (bsc#1106891).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bsc#1106893).\n\n - arm64: mm: Ensure writes to swapper are ordered wrt\n subsequent cache maintenance (bsc#1106906).\n\n - arm64/mm/kasan: do not use vmemmap_populate() to\n initialize shadow (bsc#1106898).\n\n - arm64: numa: rework ACPI NUMA initialization\n (bsc#1106905).\n\n - arm64: Update config files. (bsc#1110716) Enable ST\n LPS25H pressure sensor.\n\n - arm64: vgic-v2: Fix proxying of cpuif access\n (bsc#1106901).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bsc#1051510).\n\n - arm/asm/tlb.h: Fix build error implicit func declaration\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - ARM: DRA7/OMAP5: Enable ACTLR[0] (Enable invalidates of\n BTB) for secondary cores (bsc#1051510).\n\n - ARM: hisi: fix error handling and missing of_node_put\n (bsc#1051510).\n\n - ARM: hisi: handle of_iomap and fix missing of_node_put\n (bsc#1051510).\n\n - ARM: imx: flag failure of of_iomap (bsc#1051510).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bsc#1051510).\n\n - ASoC: cs4265: fix MMTLR Data switch control\n (bsc#1051510).\n\n - ASoC: dapm: Fix potential DAI widget pointer deref when\n linking DAIs (bsc#1051510).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bsc#1051510).\n\n - ASoC: es7134: remove 64kHz rate from the supported rates\n (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bsc#1051510).\n\n - ASoC: msm8916-wcd-digital: fix RX2 MIX1 and RX3 MIX1\n (bsc#1051510).\n\n - ASoC: rsnd: cmd: Add missing newline to debug message\n (bsc#1051510).\n\n - ASoC: rsnd: fixup not to call clk_get/set under\n non-atomic (bsc#1051510).\n\n - ASoC: rsnd: move rsnd_ssi_config_init() execute\n condition into it (bsc#1051510).\n\n - ASoC: rsnd: update pointer more accurate (bsc#1051510).\n\n - ASoC: rt5514: Add the I2S ASRC support (bsc#1051510).\n\n - ASoC: rt5514: Add the missing register in the readable\n table (bsc#1051510).\n\n - ASoC: rt5514: Eliminate the noise in the ASRC case\n (bsc#1051510).\n\n - ASoC: rt5514: Fix the issue of the delay volume applied\n (bsc#1051510).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bsc#1051510).\n\n - ASoC: wm8994: Fix missing break in switch (bsc#1051510).\n\n - ASoC: zte: Fix incorrect PCM format bit usages\n (bsc#1051510).\n\n - ata: Fix ZBC_OUT all bit handling (bsc#1051510).\n\n - ata: Fix ZBC_OUT command block check (bsc#1051510).\n\n - ata: libahci: Allow reconfigure of DEVSLP register\n (bsc#1051510).\n\n - ata: libahci: Correct setting of DEVSLP register\n (bsc#1051510).\n\n - ath10k: disable bundle mgmt tx completion event support\n (bsc#1051510).\n\n - ath10k: prevent active scans on potential unusable\n channels (bsc#1051510).\n\n - ath10k: update the phymode along with bandwidth change\n request (bsc#1051510).\n\n - ath9k: add MSI support ().\n\n - ath9k_hw: fix channel maximum power level test\n (bsc#1051510).\n\n - ath9k: report tx status on EOSP (bsc#1051510).\n\n - atm: horizon: Fix irq release error (bsc#1105355).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (networking-stable-18_07_19).\n\n - atm: zatm: fix memcmp casting (bsc#1105355).\n\n - atm: zatm: Fix potential Spectre v1\n (networking-stable-18_07_19).\n\n - audit: allow not equal op for audit by executable\n (bsc#1051510).\n\n - audit: Fix extended comparison of GID/EGID\n (bsc#1051510).\n\n - ax88179_178a: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - b43/leds: Ensure NUL-termination of LED name string\n (bsc#1051510).\n\n - b43legacy/leds: Ensure NUL-termination of LED name\n string (bsc#1051510).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get().\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes.\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running.\n\n - bcache: do not check return value of\n debugfs_create_dir().\n\n - bcache: finish incremental GC.\n\n - bcache: fix error setting writeback_rate through sysfs\n interface.\n\n - bcache: fix I/O significant decline while backend\n devices registering.\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free.\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section.\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread().\n\n - bcache: set max writeback rate when I/O request is idle.\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data.\n\n - binfmt_elf: Respect error return from `regset->active'\n (bsc#1051510).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - blk-mq: avoid to synchronize rcu inside\n blk_cleanup_queue() (bsc#1077989).\n\n - block, bfq: return nbytes and not zero from struct\n cftype .write() method (bsc#1106238).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block, dax: remove dead code in blkdev_writepages()\n (bsc#1104888).\n\n - block: do not print a message when the device went away\n (bsc#1098459).\n\n - block: do not warn for flush on read-only device\n (bsc#1107756).\n\n - block: fix warning when I/O elevator is changed as\n request_queue is being removed (bsc#1109979).\n\n - block: Invalidate cache on discard v2 (bsc#1109992).\n\n - block: pass inclusive 'lend' parameter to\n truncate_inode_pages_range (bsc#1109992).\n\n - block: properly protect the 'queue' kobj in\n blk_unregister_queue (bsc#1109979).\n\n - bluetooth: Add a new Realtek 8723DE ID 0bda:b009\n (bsc#1051510).\n\n - bluetooth: avoid killing an already killed socket\n (bsc#1051510).\n\n - bluetooth: btsdio: Do not bind to non-removable BCM43430\n (bsc#1103587).\n\n - bluetooth: h5: Fix missing dependency on\n BT_HCIUART_SERDEV (bsc#1051510).\n\n - bluetooth: hidp: buffer overflow in hidp_process_report\n (bsc#1051510).\n\n - bluetooth: hidp: Fix handling of strncpy for hid->name\n information (bsc#1051510).\n\n - bluetooth: Use lock_sock_nested in bt_accept_enqueue\n (bsc#1051510).\n\n - bnxt_en: Clean up unused functions (bsc#1086282).\n\n - bnxt_en: Do not adjust max_cp_rings by the ones used by\n RDMA (bsc#1086282).\n\n - bnxt_en: Fix VF mac address regression (bsc#1086282 ).\n\n - bnxt_re: Fix couple of memory leaks that could lead to\n IOMMU call traces (bsc#1050244).\n\n - bonding: avoid lockdep confusion in bond_get_stats()\n (netfilter-stable-18_08_04).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bsc#1083647).\n\n - bpf: fix uninitialized variable in bpf tools\n (bsc#1083647).\n\n - bpf: hash map: decrement counter on error (bsc#1083647).\n\n - bpf: powerpc64: pad function address loads with NOPs\n (bsc#1083647).\n\n - bpf, s390: fix potential memleak when later bpf_jit_prog\n fails (bsc#1083647).\n\n - bpf: use GFP_ATOMIC instead of GFP_KERNEL in\n bpf_parse_prog() (bsc#1083647).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bsc#1051510).\n\n - brcmsmac: fix wrap around in conversion from constant to\n s16 (bsc#1051510).\n\n - btrfs: add a comp_refs() helper (dependency for\n bsc#1031392).\n\n - btrfs: Add checker for EXTENT_CSUM (bsc#1102882,\n bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: Add sanity check for EXTENT_DATA when reading out\n leaf (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: add tracepoints for outstanding extents mods\n (dependency for bsc#1031392).\n\n - btrfs: Check if item pointer overlaps with the item\n itself (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: check-integrity: Fix NULL pointer dereference for\n degraded mount (bsc#1107947).\n\n - btrfs: Check that each block group has corresponding\n chunk at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: cleanup extent locking sequence (dependency for\n bsc#1031392).\n\n - btrfs: delayed-inode: Remove wrong qgroup meta\n reservation calls (bsc#1031392).\n\n - btrfs: delayed-inode: Use new qgroup meta rsv for\n delayed inode and item (bsc#1031392).\n\n - btrfs: fix data corruption when deduplicating between\n different files (bsc#1110647).\n\n - btrfs: fix duplicate extents after fsync of file with\n prealloc extents (bsc#1110644).\n\n - btrfs: fix error handling in btrfs_dev_replace_start\n (bsc#1107535).\n\n - btrfs: fix fsync after hole punching when using no-holes\n feature (bsc#1110642).\n\n - btrfs: fix loss of prealloc extents past i_size after\n fsync log replay (bsc#1110643).\n\n - btrfs: fix return value on rename exchange failure\n (bsc#1110645).\n\n - btrfs: fix send failure when root has deleted files\n still open (bsc#1110650).\n\n - btrfs: Fix use-after-free when cleaning up fs_devs with\n a single stale device (bsc#1097105).\n\n - btrfs: Fix wrong btrfs_delalloc_release_extents\n parameter (bsc#1031392).\n\n - btrfs: Handle error from btrfs_uuid_tree_rem call in\n _btrfs_ioctl_set_received_subvol (bsc#1097105).\n\n - btrfs: Introduce mount time chunk <-> dev extent mapping\n check (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: log csums for all modified extents (bsc#1110639).\n\n - btrfs: make the delalloc block rsv per inode (dependency\n for bsc#1031392).\n\n - btrfs: Manually implement device_total_bytes\n getter/setter (bsc#1043912).\n\n - btrfs: Move leaf and node validation checker to\n tree-checker.c (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: qgroup: Add quick exit for non-fs extents\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup\n btrfs_qgroup_prepare_account_extents function\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup the remaining old reservation\n counters (bsc#1031392).\n\n - btrfs: qgroup: Commit transaction in advance to reduce\n early EDQUOT (bsc#1031392).\n\n - btrfs: qgroup: Do not use root->qgroup_meta_rsv for\n qgroup (bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow by\n only freeing reserved ranges (dependency for\n bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow\n caused by buffered write and quotas being enabled\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Fix wrong qgroup reservation update for\n relationship modification (bsc#1031392).\n\n - btrfs: qgroup: Introduce extent changeset for qgroup\n reserve functions (dependency for bsc#1031392).\n\n - btrfs: qgroup: Introduce function to convert\n META_PREALLOC into META_PERTRANS (bsc#1031392).\n\n - btrfs: qgroup: Introduce helpers to update and access\n new qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Make qgroup_reserve and its callers to\n use separate reservation type (bsc#1031392).\n\n - btrfs: qgroup: Return actually freed bytes for qgroup\n release or free data (dependency for bsc#1031392).\n\n - btrfs: qgroup: Skeleton to support separate qgroup\n reservation type (bsc#1031392).\n\n - btrfs: qgroup: Split meta rsv type into meta_prealloc\n and meta_pertrans (bsc#1031392).\n\n - btrfs: qgroup: Update trace events for metadata\n reservation (bsc#1031392).\n\n - btrfs: qgroup: Update trace events to use new separate\n rsv types (bsc#1031392).\n\n - btrfs: qgroup: Use independent and accurate per inode\n qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Use root::qgroup_meta_rsv_* to record\n qgroup meta reserved space (bsc#1031392).\n\n - btrfs: qgroup: Use separate meta reservation type for\n delalloc (bsc#1031392).\n\n - btrfs: remove type argument from comp_tree_refs\n (dependency for bsc#1031392).\n\n - btrfs: Remove unused parameters from various functions\n (bsc#1110649).\n\n - btrfs: rework outstanding_extents (dependency for\n bsc#1031392).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - btrfs: Round down values which are written for\n total_bytes_size (bsc#1043912).\n\n - btrfs: scrub: Do not use inode page cache in\n scrub_handle_errored_block() (follow up for\n bsc#1108096).\n\n - btrfs: scrub: Do not use inode pages for device replace\n (follow up for bsc#1108096).\n\n - btrfs: switch args for comp_*_refs (dependency for\n bsc#1031392).\n\n - btrfs: sync log after logging new name (bsc#1110646).\n\n - btrfs: tests/qgroup: Fix wrong tree backref level\n (bsc#1107928).\n\n - btrfs: tree-checker: Add checker for dir item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Detect invalid and empty essential\n trees (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Enhance btrfs_check_node output\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for btrfs_check_leaf\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for check_csum_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for\n check_extent_data_item (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Fix false panic for sanity test\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Replace root parameter with fs_info\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Verify block_group_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: Verify that every chunk has corresponding block\n group at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bsc#1051510).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cfg80211: nl80211_update_ft_ies() to validate\n NL80211_ATTR_IE (bsc#1051510).\n\n - cfg80211: reg: Init wiphy_idx in regulatory_hint_core()\n (bsc#1051510).\n\n - cgroup: avoid copying strings longer than the buffers\n (bsc#1051510).\n\n - cifs: check kmalloc before use (bsc#1051510).\n\n - cifs: Fix stack out-of-bounds in\n smb{2,3}_create_lease_buf() (bsc#1051510).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1051510).\n\n - clk: core: Potentially free connection id (bsc#1051510).\n\n - clk: imx6ul: fix missing of_node_put() (bsc#1051510).\n\n - clk: meson: gxbb: remove HHI_GEN_CLK_CTNL duplicate\n definition (bsc#1051510).\n\n - clk: mvebu: armada-38x: add support for 1866MHz variants\n (bsc#1105355).\n\n - clk: mvebu: armada-38x: add support for missing clocks\n (bsc#1105355).\n\n - clk: rockchip: fix clk_i2sout parent selection bits on\n rk3399 (bsc#1051510).\n\n - cls_matchall: fix tcf_unbind_filter missing\n (networking-stable-18_08_21).\n\n - coresight: Handle errors in finding input/output ports\n (bsc#1051510).\n\n - coresight: tpiu: Fix disabling timeouts (bsc#1051510).\n\n - cpufreq: CPPC: Do not set transition_latency\n (bsc#1101480).\n\n - cpufreq / CPPC: Set platform specific\n transition_delay_us (bsc#1101480).\n\n - cpufreq: CPPC: Use transition_delay_us depending\n transition_latency (bsc#1101480).\n\n - cpufreq: remove setting of policy->cpu in policy->cpus\n during init (bsc#1101480).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: caam/jr - fix descriptor DMA unmapping\n (bsc#1051510).\n\n - crypto: caam/qi - fix error path in xts setkey\n (bsc#1051510).\n\n - crypto: ccp - Check for NULL PSP pointer at module\n unload (bsc#1051510).\n\n - crypto: ccp - Fix command completion detection race\n (bsc#1051510).\n\n - crypto: clarify licensing of OpenSSL asm code ().\n\n - crypto: sharah - Unregister correct algorithms for\n SAHARA 3 (bsc#1051510).\n\n - crypto: skcipher - fix aligning block size in\n skcipher_copy_iv() (bsc#1051510).\n\n - crypto: skcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: skcipher - Fix -Wstringop-truncation warnings\n (bsc#1051510).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bsc#1051510).\n\n - crypto: vmac - separate tfm and request context\n (bsc#1051510).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1051510).\n\n - crypto: vmx - Use skcipher for ctr fallback to SLE12-SP4\n (bsc#1106464).\n\n - crypto: x86/sha256-mb - fix digest copy in\n sha256_mb_mgr_get_comp_job_avx2() (bsc#1051510).\n\n - cxgb4: Fix the condition to check if the card is T5\n (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588\n bsc#1097583 bsc#1097584).\n\n - cxl: Configure PSL to not use APC virtual machines\n (bsc#1055014, git-fixes).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014, git-fixes).\n\n - dax: Introduce a ->copy_to_iter dax operation\n (bsc#1098782).\n\n - dax: Make extension of dax_operations transparent\n (bsc#1098782).\n\n - dax: remove default copy_from_iter fallback\n (bsc#1098782).\n\n - dax: remove VM_MIXEDMAP for fsdax and device dax\n (bsc#1106007).\n\n - dax: Report bytes remaining in dax_iomap_actor()\n (bsc#1098782).\n\n - dax: require 'struct page' by default for filesystem dax\n (bsc#1104888).\n\n - dax: store pfns in the radix (bsc#1104888).\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (netfilter-stable-18_08_17).\n\n - devicectree: bindings: fix location of leds common file\n (bsc#1051510).\n\n - device-dax: Add missing address_space_operations\n (bsc#1107783).\n\n - device-dax: Enable page_mapping() (bsc#1107783).\n\n - device-dax: Set page->index (bsc#1107783).\n\n - /dev/mem: Add bounce buffer for copy-out (git-fixes).\n\n - /dev/mem: Avoid overwriting 'err' in read_mem()\n (git-fixes).\n\n - dma-buf: remove redundant initialization of sg_table\n (bsc#1051510).\n\n - dmaengine: hsu: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: idma64: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: mv_xor_v2: kill the tasklets upon exit\n (bsc#1051510).\n\n - doc/README.SUSE: Remove mentions of cloneconfig\n (bsc#1103636).\n\n - docs: zh_CN: fix location of oops-tracing.txt\n (bsc#1051510).\n\n - Documentation: add some docs for errseq_t (bsc#1107008).\n\n - Documentation: ip-sysctl.txt: document addr_gen_mode\n (bsc#1051510).\n\n - driver core: add __printf verification to\n __ata_ehi_pushv_desc (bsc#1051510).\n\n - drivers: hv: vmbus: do not mark HV_PCIE as perf_device\n (bsc#1051510).\n\n - drivers: hv: vmbus: Fix the offer_in_progress in\n vmbus_process_offer() (bsc#1051510).\n\n - drm: Add and handle new aspect ratios in DRM layer ().\n\n - drm: Add aspect ratio parsing in DRM layer ().\n\n - drm: Add DRM client cap for aspect-ratio ().\n\n - drm/amdgpu:add new firmware id for VCN (bsc#1051510).\n\n - drm/amdgpu:add tmr mc address into amdgpu_firmware_info\n (bsc#1051510).\n\n - drm/amdgpu: Fix RLC safe mode test in\n gfx_v9_0_enter_rlc_safe_mode (bsc#1051510).\n\n - drm/amdgpu: fix swapped emit_ib_size in vce3\n (bsc#1051510).\n\n - drm/amdgpu: update tmr mc address (bsc#1100132).\n\n - drm/amd/pp/Polaris12: Fix a chunk of registers missed to\n program (bsc#1051510).\n\n - drm/armada: fix colorkey mode property (bsc#1051510).\n\n - drm/armada: fix irq handling (bsc#1051510).\n\n - drm/arm/malidp: Preserve LAYER_FORMAT contents when\n setting format (bsc#1051510).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bsc#1051510).\n\n - drm/bridge/sii8620: Fix display of packed pixel modes\n (bsc#1051510).\n\n - drm/bridge/sii8620: fix display of packed pixel modes in\n MHL2 (bsc#1051510).\n\n - drm/bridge/sii8620: fix loops in EDID fetch logic\n (bsc#1051510).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/edid: Add 6 bpc quirk for SDC panel in Lenovo B50-80\n (bsc#1051510).\n\n - drm: Expose modes with aspect ratio, only if requested\n ().\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bsc#1051510).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bsc#1051510).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bsc#1051510).\n\n - drm/fb-helper: Fix typo on kerneldoc (bsc#1051510).\n\n - drm: Handle aspect ratio info in legacy modeset path ().\n\n - drm/i915/aml: Introducing Amber Lake platform ().\n\n - drm/i915/audio: Fix audio enumeration issue on BXT ().\n\n - drm/i915/cfl: Add a new CFL PCI ID ().\n\n - drm/i915/gvt: clear ggtt entries when destroy vgpu\n (bsc#1051510).\n\n - drm/i915/gvt: Fix the incorrect length of\n child_device_config issue (bsc#1051510).\n\n - drm/i915/gvt: Off by one in intel_vgpu_write_fence()\n (bsc#1051510).\n\n - drm/i915/gvt: request srcu_read_lock before checking if\n one gfn is valid (bsc#1051510).\n\n - drm/i915: Increase LSPCON timeout (bsc#1051510).\n\n - drm/i915/kvmgt: Fix potential Spectre v1 (bsc#1051510).\n\n - drm/i915/lpe: Mark LPE audio runtime pm as 'no\n callbacks' (bsc#1051510).\n\n - drm/i915: Nuke the LVDS lid notifier (bsc#1051510).\n\n - drm/i915: Only show debug for state changes when banning\n (bsc#1051510).\n\n - drm/i915/overlay: Allocate physical registers from\n stolen (bsc#1051510).\n\n - drm/i915: Restore user forcewake domains across suspend\n (bsc#1100132).\n\n - drm/i915: set DP Main Stream Attribute for color range\n on DDI platforms (bsc#1051510).\n\n - drm/i915: Unmask user interrupts writes into HWSP on\n snb/ivb/vlv/hsw (bsc#1051510).\n\n - drm/i915/whl: Introducing Whiskey Lake platform ().\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bsc#1051510).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bsc#1051510).\n\n - drm: mali-dp: Enable Global SE interrupts mask for DP500\n (bsc#1051510).\n\n - drm/modes: Introduce drm_mode_match() ().\n\n - drm/nouveau/drm/nouveau: Fix bogus\n drm_kms_helper_poll_enable() placement (bsc#1051510).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1051510).\n\n - drm/rockchip: lvds: add missing of_node_put\n (bsc#1051510).\n\n - drm/tegra: Check for malformed offsets and sizes in the\n 'submit' IOCTL (bsc#1106170).\n\n - drm/tegra: Fix comparison operator for buffer size\n (bsc#1100132).\n\n - drm/vc4: Fix the 'no scaling' case on multi-planar YUV\n formats (bsc#1051510).\n\n - dwc2: gadget: Fix ISOC IN DDMA PID bitfield value\n calculation (bsc#1051510).\n\n - EDAC, altera: Fix ARM64 build warning (bsc#1051510).\n\n - EDAC: Fix memleak in module init error path\n (bsc#1051510).\n\n - EDAC, i7core: Fix memleaks and use-after-free on probe\n and remove (bsc#1051510).\n\n - EDAC, mv64x60: Fix an error handling path (bsc#1051510).\n\n - EDAC, octeon: Fix an uninitialized variable warning\n (bsc#1051510).\n\n - EDAC, sb_edac: Fix missing break in switch\n (bsc#1051510).\n\n - errseq: Add to documentation tree (bsc#1107008).\n\n - errseq: Always report a writeback error once\n (bsc#1107008).\n\n - ext2: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext2, dax: introduce ext2_dax_aops (bsc#1104888).\n\n - ext4: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext4, dax: add ext4_bmap to ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: introduce ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: set ext4_dax_aops for dax files\n (bsc#1104888).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - extcon: Release locking when sending the notification of\n connector state (bsc#1051510).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106233).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106297).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106231).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106297).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bsc#1051510).\n\n - fbdev: Distinguish between interlaced and progressive\n modes (bsc#1051510).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1051510).\n\n - fbdev/via: fix defined but not used warning\n (bsc#1051510).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bsc#1051510).\n\n - filesystem-dax: Introduce dax_lock_mapping_entry()\n (bsc#1107783).\n\n - filesystem-dax: Set page->index (bsc#1107783).\n\n - fix a page leak in vhost_scsi_iov_to_sgl() error\n recovery (bsc#1051510).\n\n - Fix buggy backport in\n patches.fixes/dax-check-for-queue_flag_dax-in-bdev_dax_s\n upported.patch (bsc#1109859)\n\n - Fix kABI breakage due to enum addition for ath10k\n (bsc#1051510).\n\n - Fix kABI breakage with libertas dev field addition\n (bsc#1051510).\n\n - Fix kABI breakage with removing field addition to\n power_supply (bsc#1051510).\n\n - Fix kexec forbidding kernels signed with keys in the\n secondary keyring to boot (bsc#1110006).\n\n - fix __legitimize_mnt()/mntput() race (bsc#1106297).\n\n - fix mntput/mntput race (bsc#1106297).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bsc#1051510).\n\n - fs, dax: prepare for dax-specific\n address_space_operations (bsc#1104888).\n\n - fs, dax: use page->mapping to warn if truncate collides\n with a busy page (bsc#1104888).\n\n - fs/proc/proc_sysctl.c: fix potential page fault while\n unregistering sysctl table (bsc#1106297).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bsc#1106291).\n\n - fuse: fix double request_end() (bsc#1106291).\n\n - fuse: fix initial parallel dirops (bsc#1106291).\n\n - fuse: Fix oops at process_init_reply() (bsc#1106291).\n\n - fuse: fix unlocked access to processing queue\n (bsc#1106291).\n\n - fuse: umount should wait for all requests (bsc#1106291).\n\n - geneve: update skb dst pmtu on tx path (bsc#1051510).\n\n - genirq: Add handle_fasteoi_{level,edge}_irq flow\n handlers (bsc#1105378).\n\n - genirq: Export more irq_chip_*_parent() functions\n (bsc#1105378).\n\n - genirq: Fix editing error in a comment (bsc#1051510).\n\n - genirq: Make force irq threading setup more robust\n (bsc#1051510).\n\n - gen_stats: Fix netlink stats dumping in the presence of\n padding (netfilter-stable-18_07_23).\n\n - getxattr: use correct xattr length (bsc#1106235).\n\n - getxattr: use correct xattr length (bsc#1106297).\n\n - gpio: Add gpio driver support for ThunderX and OCTEON-TX\n (bsc#1105378).\n\n - gpio: Fix wrong rounding in gpio-menz127 (bsc#1051510).\n\n - gpiolib-acpi: make sure we trigger edge events at least\n once on boot (bsc#1051510).\n\n - gpiolib: acpi: Switch to cansleep version of GPIO\n library call (bsc#1051510).\n\n - gpiolib: Mark gpio_suffixes array with __maybe_unused\n (bsc#1051510).\n\n - gpio: ml-ioh: Fix buffer underwrite on probe error path\n (bsc#1051510).\n\n - gpio: pxa: Fix potential NULL dereference (bsc#1051510).\n\n - gpio: tegra: Move driver registration to subsys_init\n level (bsc#1051510).\n\n - gpio: thunderx: fix error return code in\n thunderx_gpio_probe() (bsc#1105378).\n\n - gpio: thunderx: remove unused .map() hook from\n irq_domain_ops (bsc#1105378).\n\n - gpu: host1x: Check whether size of unpin isn't 0\n (bsc#1051510).\n\n - gpu: ipu-v3: csi: pass back mbus_code_to_bus_cfg error\n codes (bsc#1051510).\n\n - gpu: ipu-v3: default to id 0 on missing OF alias\n (bsc#1051510).\n\n - gtp: Initialize 64-bit per-cpu stats correctly\n (bsc#1051510).\n\n - HID: add quirk for another PIXART OEM mouse used by HP\n (bsc#1051510).\n\n - HID: hid-ntrig: add error handling for\n sysfs_create_group (bsc#1051510).\n\n - HID: i2c-hid: Add no-irq-after-reset quirk for 0911:5288\n device ().\n\n - hotplug/cpu: Add operation queuing function ().\n\n - hotplug/cpu: Conditionally acquire/release DRC index ().\n\n - hotplug/cpu: Provide CPU readd operation ().\n\n - i2c: core: ACPI: Properly set status byte to 0 for\n multi-byte writes (bsc#1051510).\n\n - i2c: davinci: Avoid zero value of CLKH (bsc#1051510).\n\n - i2c: i801: Add missing documentation entries for\n Braswell and Kaby Lake (bsc#1051510).\n\n - i2c: i801: Add support for Intel Cedar Fork\n (bsc#1051510).\n\n - i2c: i801: Add support for Intel Ice Lake (bsc#1051510).\n\n - i2c: i801: Allow ACPI AML access I/O ports not reserved\n for SMBus (bsc#1051510).\n\n - i2c: i801: Consolidate chipset names in documentation\n and Kconfig (bsc#1051510).\n\n - i2c: i801: fix DNV's SMBCTRL register offset\n (bsc#1051510).\n\n - i2c: imx: Fix race condition in dma read (bsc#1051510).\n\n - i2c: imx: Fix reinit_completion() use (bsc#1051510).\n\n - i2c: uniphier-f: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: uniphier: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: xiic: Make the start and the byte count write\n atomic (bsc#1051510).\n\n - i2c: xlp9xx: Fix case where SSIF read transaction\n completes early (bsc#1105907).\n\n - i2c: xlp9xx: Fix issue seen when updating receive length\n (bsc#1105907).\n\n - i2c: xlp9xx: Make sure the transfer size is not more\n than I2C_SMBUS_BLOCK_SIZE (bsc#1105907).\n\n - i40e: fix condition of WARN_ONCE for stat strings\n (bsc#1107522).\n\n - IB/core: type promotion bug in rdma_rw_init_one_mr()\n (bsc#1046306).\n\n - IB/hfi1: Invalid NUMA node information can cause a\n divide by zero (bsc#1060463).\n\n - IB/hfi1: Remove incorrect call to do_interrupt callback\n (bsc#1060463).\n\n - IB/hfi1: Set in_use_ctxts bits for user ctxts only\n (bsc#1060463 ).\n\n - IB/ipoib: Avoid a race condition between start_xmit and\n cm_rep_handler (bsc#1046307).\n\n - IB/ipoib: Fix error return code in ipoib_dev_init()\n (bsc#1046307 ).\n\n - IB/IPoIB: Set ah valid flag in multicast send flow\n (bsc#1046307 ).\n\n - IB/mlx4: Test port number before querying type\n (bsc#1046302 ).\n\n - IB/mlx4: Use 4K pages for kernel QP's WQE buffer\n (bsc#1046302 ).\n\n - IB/mlx5: fix uaccess beyond 'count' in debugfs\n read/write handlers (bsc#1046305).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ib_srpt: Fix a use-after-free in srpt_close_ch()\n (bsc#1046306 ).\n\n - ieee802154: ca8210: fix uninitialised data read\n (bsc#1051510).\n\n - ieee802154: fix gcc-4.9 warnings (bsc#1051510).\n\n - ieee802154: mrf24j40: fix incorrect mask in\n mrf24j40_stop (bsc#1051510).\n\n - iio: 104-quad-8: Fix off-by-one error in register\n selection (bsc#1051510).\n\n - iio: ad9523: Fix displayed phase (bsc#1051510).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bsc#1051510).\n\n - iio: adc: ina2xx: avoid kthread_stop() with stale\n task_struct (bsc#1051510).\n\n - iio: adc: sun4i-gpadc: select REGMAP_IRQ (bsc#1051510).\n\n - iio: sca3000: Fix an error handling path in\n 'sca3000_probe()' (bsc#1051510).\n\n - iio: sca3000: Fix missing return in switch\n (bsc#1051510).\n\n - ima: based on policy verify firmware signatures\n (pre-allocated buffer) (bsc#1051510).\n\n - include/rdma/opa_addr.h: Fix an endianness issue\n (bsc#1046306 ).\n\n - init: rename and re-order boot_cpu_state_init()\n (bsc#1104365).\n\n - Input: atmel_mxt_ts - only use first T9 instance\n (bsc#1051510).\n\n - Input: edt-ft5x06 - fix error handling for factory mode\n on non-M06 (bsc#1051510).\n\n - Input: edt-ft5x06 - implement support for the EDT-M12\n series (bsc#1051510).\n\n - Input: edt-ft5x06 - make distinction between\n m06/m09/generic more clear (bsc#1051510).\n\n - Input: elantech - enable middle button of touchpad on\n ThinkPad P72 (bsc#1051510).\n\n - input: rohm_bu21023: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - Input: synaptics-rmi4 - fix axis-swap behavior\n (bsc#1051510).\n\n - intel_th: Fix device removal logic (bsc#1051510).\n\n - iommu/amd: Add support for higher 64-bit IOMMU Control\n Register ().\n\n - iommu/amd: Add support for IOMMU XT mode ().\n\n - iommu/amd: Finish TLB flush in amd_iommu_unmap()\n (bsc#1106105).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/amd: Return devid as alias for ACPI HID devices\n (bsc#1106105).\n\n - iommu/arm-smmu-v3: Do not free page table ops twice\n (bsc#1106237).\n\n - iommu/vt-d: Fix a potential memory leak (bsc#1106105).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bsc#1110006).\n\n - ipc/shm: fix shmat() nil address after round-down when\n remapping (bsc#1090078).\n\n - ip: hash fragments consistently\n (netfilter-stable-18_07_27).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (netfilter-stable-18_07_27).\n\n - ipmi:bt: Set the timeout before doing a capabilities\n check (bsc#1051510).\n\n - ipmi: Fix some counter issues (bsc#1105907).\n\n - ipmi: Move BT capabilities detection to the detect call\n (bsc#1106779).\n\n - ipmi/powernv: Fix error return code in\n ipmi_powernv_probe() (git-fixes).\n\n - ipmi: Remove ACPI SPMI probing from the SSIF (I2C)\n driver (bsc#1105907).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (netfilter-stable-18_08_01).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (netfilter-stable-18_07_23).\n\n - ipv6: fix useless rol32 call on hash\n (netfilter-stable-18_07_23).\n\n - ipv6: ila: select CONFIG_DST_CACHE\n (netfilter-stable-18_07_23).\n\n - ipv6: make DAD fail with enhanced DAD when nonce length\n differs (netfilter-stable-18_07_23).\n\n - ipv6: sr: fix passing wrong flags to\n crypto_alloc_shash() (networking-stable-18_07_19).\n\n - ipvlan: fix IFLA_MTU ignored on NEWLINK\n (networking-stable-18_07_19).\n\n - irqchip/bcm7038-l1: Hide cpu offline callback when\n building for !SMP (bsc#1051510).\n\n - irqdomain: Add irq_domain_{push,pop}_irq() functions\n (bsc#1105378).\n\n - irqdomain: Check for NULL function pointer in\n irq_domain_free_irqs_hierarchy() (bsc#1105378).\n\n - irqdomain: Factor out code to add and remove items to\n and from the revmap (bsc#1105378).\n\n - irqdomain: Prevent potential NULL pointer dereference in\n irq_domain_push_irq() (bsc#1105378).\n\n - irqdomain: Update the comments of fwnode field of\n irq_domain structure (bsc#1051510).\n\n - isdn: Disable IIOCDBGVAR (bsc#1051510).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#1046543).\n\n - iwlwifi: pcie: do not access periphery registers when\n not available (bsc#1051510).\n\n - ixgbe: Refactor queue disable logic to take completion\n time into account (bsc#1101557).\n\n - ixgbe: Reorder Tx/Rx shutdown to reduce time needed to\n stop device (bsc#1101557).\n\n - kabi fix for check_disk_size_change() (bsc#1098459).\n\n - kabi: move s390 mm_context_t lock to mm_struct and\n ignore the change (bsc#1103421).\n\n - kabi: move the new handler to end of machdep_calls and\n hide it from genksyms (bsc#1094244).\n\n - kabi protect hnae_ae_ops (bsc#1107924).\n\n - kabi protect struct kvm_sync_regs (bsc#1106948).\n\n - kabi/severities: Whitelist libceph, rbd, and ceph\n (bsc#1096748).\n\n - kabi: tpm: change relinquish_locality return value back\n to void (bsc#1082555).\n\n - kabi: tpm: do keep the cmd_ready and go_idle as pm ops\n (bsc#1082555).\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kprobes/x86: Release insn_slot in failure path\n (bsc#1110006).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline\n asm to cmpxchg() (bsc#1108010).\n\n - kvm: Enforce error in ioctl for compat tasks when\n !KVM_COMPAT (bsc#1106240).\n\n - kvm: nVMX: Do not flush TLB when vmcs12 uses VPID\n (bsc#1106240).\n\n - kvm: nVMX: Fix fault vector for VMX operation at CPL > 0\n (bsc#1106105).\n\n - kvm: nVMX: Fix injection to L2 when L1 do not intercept\n external-interrupts (bsc#1106240).\n\n - kvm: nVMX: Fix races when sending nested PI while dest\n enters/leaves L2 (bsc#1106240).\n\n - kvm: nVMX: Re-evaluate L1 pending events when running L2\n and L1 got posted-interrupt (bsc#1106240).\n\n - kvm: nVMX: Use nested_run_pending rather than\n from_vmentry (bsc#1106240).\n\n - kvm: PPC: Book3S: Fix guest DMA when guest partially\n backed by THP pages (bsc#1077761, git-fixes,\n bsc#1103948, bsc#1103949).\n\n - kvm: PPC: Book3S HV: Use correct pagesize in\n kvm_unmap_radix() (bsc#1061840, git-fixes).\n\n - kvm: s390: add etoken support for guests (bsc#1106948,\n LTC#171029).\n\n - kvm: s390: force bp isolation for VSIE (bsc#1103421).\n\n - kvm: s390: implement CPU model only facilities\n (bsc#1106948, LTC#171029).\n\n - kvm: VMX: Do not allow reexecute_instruction() when\n skipping MMIO instr (bsc#1106240).\n\n - kvm: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - kvm: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - kvm: x86: Change __kvm_apic_update_irr() to also return\n if max IRR updated (bsc#1106240).\n\n - kvm: x86: Default to not allowing emulation retry in\n kvm_mmu_page_fault (bsc#1106240).\n\n - kvm: x86: Do not re-{try,execute} after failed emulation\n in L2 (bsc#1106240).\n\n - kvm: x86: fix APIC page invalidation (bsc#1106240).\n\n - kvm: x86: Invert emulation re-execute behavior to make\n it opt-in (bsc#1106240).\n\n - kvm: x86: Merge EMULTYPE_RETRY and\n EMULTYPE_ALLOW_REEXECUTE (bsc#1106240).\n\n - kvm/x86: remove WARN_ON() for when vm_munmap() fails\n (bsc#1106240).\n\n - kvm: x86: SVM: Call x86_spec_ctrl_set_guest/host() with\n interrupts disabled (git-fixes 1f50ddb4f418).\n\n - kvm: x86: vmx: fix vpid leak (bsc#1106240).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (netfilter-stable-18_08_17).\n\n - lan78xx: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - lan78xx: Lan7801 Support for Fixed PHY (bsc#1085262).\n\n - lan78xx: remove redundant initialization of pointer\n 'phydev' (bsc#1085262).\n\n - lan78xx: Set ASD in MAC_CR when EEE is enabled\n (bsc#1085262).\n\n - leds: max8997: use mode when calling\n max8997_led_set_mode (bsc#1051510).\n\n - libahci: Fix possible Spectre-v1 pmp indexing in\n ahci_led_store() (bsc#1051510).\n\n - libata: Fix command retry decision (bsc#1051510).\n\n - libata: Fix compile warning with ATA_DEBUG enabled\n (bsc#1051510).\n\n - libbpf: Makefile set specified permission mode\n (bsc#1083647).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - libertas: fix suspend and resume for SDIO connected\n cards (bsc#1051510).\n\n - lib/iov_iter: Fix pipe handling in\n _copy_to_iter_mcsafe() (bsc#1098782).\n\n - libnvdimm, btt: fix uninitialized err_lock\n (bsc#1103961).\n\n - libnvdimm: fix ars_status output length calculation\n (bsc#1104890).\n\n - libnvdimm, nfit: enable support for volatile ranges\n (bsc#1103961).\n\n - libnvdimm, nfit: move the check on nd_reserved2 to the\n endpoint (bsc#1103961).\n\n - libnvdimm, pmem: Fix memcpy_mcsafe() return code\n handling in nsio_rw_bytes() (bsc#1098782).\n\n - libnvdimm, pmem: Restore page attributes when clearing\n errors (bsc#1107783).\n\n - libnvdimm: rename nd_sector_size_{show,store} to\n nd_size_select_{show,store} (bsc#1103961).\n\n - libnvdimm: Use max contiguous area for namespace size\n (git-fixes).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bsc#1051510).\n\n - lib/test_hexdump.c: fix failure on big endian cpu\n (bsc#1051510).\n\n - lib/vsprintf: Remove atomic-unsafe support for %pCr\n (bsc#1051510).\n\n - Limit kernel-source build to architectures for which we\n build binaries (bsc#1108281).\n\n - livepatch: Remove reliable stacktrace check in\n klp_try_switch_task() (bsc#1071995).\n\n - livepatch: Validate module/old func name length\n (bsc#1071995).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (netfilter-stable-18_08_17).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bsc#1051510).\n\n - mac80211: always account for A-MSDU header changes\n (bsc#1051510).\n\n - mac80211: avoid kernel panic when building AMSDU from\n non-linear SKB (bsc#1051510).\n\n - mac80211: fix an off-by-one issue in A-MSDU max_subframe\n computation (bsc#1051510).\n\n - mac80211: fix pending queue hang due to TX_DROP\n (bsc#1051510).\n\n - mac80211: restrict delayed tailroom needed decrement\n (bsc#1051510).\n\n - macros.kernel-source: pass -b properly in kernel module\n package (bsc#1107870).\n\n - mailbox: xgene-slimpro: Fix potential NULL pointer\n dereference (bsc#1051510).\n\n - MAINTAINERS: fix location of ina2xx.txt device tree file\n (bsc#1051510).\n\n - md-cluster: clear another node's suspend_area after the\n copy is finished (bsc#1106333).\n\n - md-cluster: do not send msg if array is closing\n (bsc#1106333).\n\n - md-cluster: release RESYNC lock after the last resync\n message (bsc#1106688).\n\n - md-cluster: show array's status more accurate\n (bsc#1106333).\n\n - media: exynos4-is: Prevent NULL pointer dereference in\n __isp_video_try_fmt() (bsc#1051510).\n\n - media: mem2mem: Remove excessive try_run call\n (bsc#1051510).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bsc#1051510).\n\n - media: omap3isp: zero-initialize the isp cam_xclk{a,b}\n initial data (bsc#1051510).\n\n - media: Revert '[media] tvp5150: fix pad format frame\n height' (bsc#1051510).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1051510).\n\n - media: tw686x: Fix oops on buffer alloc failure\n (bsc#1051510).\n\n - media: v4l2-mem2mem: Fix missing v4l2_m2m_try_run call\n (bsc#1051510).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bsc#1051510).\n\n - mei: bus: type promotion bug in mei_nfc_if_version()\n (bsc#1051510).\n\n - mei: do not update offset in write (bsc#1051510).\n\n - mei: ignore not found client in the enumeration\n (bsc#1051510).\n\n - mei: me: enable asynchronous probing ().\n\n - memcg, thp: do not invoke oom killer on thp charges\n (bnc#1089663).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bsc#1051510).\n\n - memory: tegra: Do not handle spurious interrupts\n (bsc#1051510).\n\n - mfd: 88pm860x-i2c: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - mfd: arizona: Do not use regmap_read_poll_timeout\n (bsc#1051510).\n\n - mfd: intel-lpss: Add Ice Lake PCI IDs (bsc#1051510).\n\n - mfd: lpc_ich: Do not touch SPI-NOR write protection bit\n on Apollo Lake (bsc#1051510).\n\n - mfd: sm501: Set coherent_dma_mask when creating\n subdevices (bsc#1051510).\n\n - mfd: ti_am335x_tscadc: Fix struct clk memory leak\n (bsc#1051510).\n\n - mlxsw: core_acl_flex_actions: Return error for\n conflicting actions (netfilter-stable-18_08_17).\n\n - mmc: omap_hsmmc: fix wakeirq handling on removal\n (bsc#1051510).\n\n - mmc: sdhci: do not try to use 3.3V signaling if not\n supported (bsc#1051510).\n\n - mmc: sdhci-of-esdhc: set proper dma mask for ls104x\n chips (bsc#1051510).\n\n - mmc: tegra: prevent HS200 on Tegra 3 (bsc#1051510).\n\n - mm, dax: introduce pfn_t_special() (bsc#1104888).\n\n - mm: fix devmem_is_allowed() for sub-page System RAM\n intersections (bsc#1106800).\n\n - mm/huge_memory.c: fix data loss when splitting a file\n pmd (bnc#1107074).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm, madvise_inject_error: Disable MADV_SOFT_OFFLINE for\n ZONE_DEVICE pages (bsc#1107783).\n\n - mm, madvise_inject_error: Let memory_failure()\n optionally take a page reference (bsc#1107783).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1107065).\n\n - mm, memory_failure: Collect mapping size in\n collect_procs() (bsc#1107783).\n\n - mm, memory_failure: Teach memory_failure() about\n dev_pagemap pages (bsc#1107783).\n\n - mm, numa: Migrate pages to local nodes quicker early in\n the lifetime of a task (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, page_alloc: double zone's batchsize (bnc#971975 VM\n performance -- page allocator).\n\n - mm/vmalloc: add interfaces to free unmapped page table\n (bsc#1110006).\n\n - mm/vmscan: wake up flushers for legacy cgroups too\n (bnc#1107061).\n\n - module: exclude SHN_UNDEF symbols from kallsyms api\n (bsc#1071995).\n\n - Move the previous hv netvsc fix to the sorted section\n (bsc#1104708)\n\n - net/9p/client.c: version pointer uninitialized\n (bsc#1051510).\n\n - net/9p: fix error path of p9_virtio_probe (bsc#1051510).\n\n - net/9p: Switch to wait_event_killable() (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race by holding the lock\n (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bsc#1051510).\n\n - net: bcmgenet: correct bad merge (bsc#1051510).\n\n - net: bcmgenet: enable loopback during UniMAC sw_reset\n (bsc#1051510).\n\n - net: bcmgenet: Fix sparse warnings in\n bcmgenet_put_tx_csum() (bsc#1051510).\n\n - net: bcmgenet: Fix unmapping of fragments in\n bcmgenet_xmit() (bsc#1051510).\n\n - net: bcmgenet: prevent duplicate calls of\n bcmgenet_dma_teardown (bsc#1051510).\n\n - net: dccp: avoid crash in ccid3_hc_rx_send_feedback()\n (networking-stable-18_07_19).\n\n - net: dccp: switch rx_tstamp_last_feedback to monotonic\n clock (networking-stable-18_07_19).\n\n - net: diag: Do not double-free TCP_NEW_SYN_RECV sockets\n in tcp_abort (netfilter-stable-18_07_23).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (netfilter-stable-18_08_04).\n\n - net: ena: Eliminate duplicate barriers on weakly-ordered\n archs (bsc#1108093).\n\n - net: ena: fix device destruction to gracefully free\n resources (bsc#1108093).\n\n - net: ena: fix driver when PAGE_SIZE == 64kB\n (bsc#1108093).\n\n - net: ena: fix incorrect usage of memory barriers\n (bsc#1108093).\n\n - net: ena: fix missing calls to READ_ONCE (bsc#1108093).\n\n - net: ena: fix missing lock during device destruction\n (bsc#1108093).\n\n - net: ena: fix potential double ena_destroy_device()\n (bsc#1108093).\n\n - net: ena: fix surprise unplug NULL dereference kernel\n crash (bsc#1108093).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (netfilter-stable-18_08_01).\n\n - net: ethernet: mvneta: Fix napi structure mixup on\n armada 3700 (networking-stable-18_08_21).\n\n - netfilter: do not set F_IFACE on ipv6 fib lookups\n (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: provide input interface for\n route lookup (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: set F_IFACE for linklocal\n addresses (git-fixes).\n\n - netfilter: nat: Revert 'netfilter: nat: convert nat\n bysrc hash to rhashtable' (netfilter-stable-17_11_16).\n\n - netfilter: nf_tables: add missing netlink attrs to\n policies (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: do not assume chain stats are set\n when jumplabel is set (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: fix memory leak on error exit\n return (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: nft_compat: fix refcount leak on\n xt module (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON\n in nft_do_chain() (netfilter-stable-18_06_25).\n\n - netfilter: nft_compat: fix handling of large matchinfo\n size (netfilter-stable-18_06_27).\n\n - netfilter: nft_compat: prepare for indirect info storage\n (netfilter-stable-18_06_27).\n\n - netfilter: nft_meta: fix wrong value dereference in\n nft_meta_set_eval (netfilter-stable-18_06_27).\n\n - net: fix amd-xgbe flow-control issue\n (netfilter-stable-18_08_01).\n\n - net: fix use-after-free in GRO with ESP\n (networking-stable-18_07_19).\n\n - net: hns3: add unlikely for error check (bsc#1104353 ).\n\n - net: hns3: Fix comments for\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix desc num set to default when setting\n channel (bsc#1104353).\n\n - net: hns3: Fix for command format parsing error in\n hclge_is_all_function_id_zero (bsc#1104353).\n\n - net: hns3: Fix for information of phydev lost problem\n when down/up (bsc#1104353).\n\n - net: hns3: Fix for l4 checksum offload bug (bsc#1104353\n ).\n\n - net: hns3: Fix for mac pause not disable in pfc mode\n (bsc#1104353).\n\n - net: hns3: Fix for mailbox message truncated problem\n (bsc#1104353).\n\n - net: hns3: Fix for phy link issue when using marvell phy\n driver (bsc#1104353).\n\n - net: hns3: Fix for reset_level default assignment\n probelm (bsc#1104353).\n\n - net: hns3: Fix for using wrong mask and shift in\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix for waterline not setting correctly\n (bsc#1104353 ).\n\n - net: hns3: Fix get_vector ops in hclgevf_main module\n (bsc#1104353).\n\n - net: hns3: Fix MSIX allocation issue for VF (bsc#1104353\n ).\n\n - net: hns3: fix page_offset overflow when\n CONFIG_ARM64_64K_PAGES (bsc#1104353).\n\n - net: hns3: Fix return value error in\n hns3_reset_notify_down_enet (bsc#1104353).\n\n - net: hns3: fix return value error while\n hclge_cmd_csq_clean failed (bsc#1104353).\n\n - net: hns3: Fix warning bug when doing lp selftest\n (bsc#1104353 ).\n\n - net: hns3: modify hnae_ to hnae3_ (bsc#1104353).\n\n - net: hns3: Prevent sending command during global or core\n reset (bsc#1104353).\n\n - net: hns3: remove some redundant assignments\n (bsc#1104353 ).\n\n - net: hns3: remove unnecessary ring configuration\n operation while resetting (bsc#1104353).\n\n - net: hns3: simplify hclge_cmd_csq_clean (bsc#1104353 ).\n\n - net: hns3: Standardize the handle of return value\n (bsc#1104353 ).\n\n - net: hns: add netif_carrier_off before change speed and\n duplex (bsc#1107924).\n\n - net: hns: add the code for cleaning pkt in chip\n (bsc#1107924).\n\n - net/ipv4: Set oif in fib_compute_spec_dst\n (netfilter-stable-18_07_23).\n\n - netlink: Do not shift on 64 for ngroups (git-fixes).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (netfilter-stable-18_08_01).\n\n - netlink: Do not subscribe to non-existent groups\n (netfilter-stable-18_08_01).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (netfilter-stable-18_08_04).\n\n - net: mdio-mux: bcm-iproc: fix wrong getter and setter\n pair (netfilter-stable-18_08_01).\n\n - net/mlx5e: Avoid dealing with vport representors if not\n being e-switch manager (networking-stable-18_07_19).\n\n - net/mlx5: E-Switch, Avoid setup attempt if not being\n e-switch manager (networking-stable-18_07_19).\n\n - net: mvneta: fix mvneta_config_rss on armada 3700\n (networking-stable-18_08_21).\n\n - net: mvneta: fix the Rx desc DMA address in the Rx path\n (networking-stable-18_07_19).\n\n - net/packet: fix use-after-free\n (networking-stable-18_07_19).\n\n - Netperf performance issue due to AppArmor net mediation\n (bsc#1108520)\n\n - net: phy: consider PHY_IGNORE_INTERRUPT in\n phy_start_aneg_priv (netfilter-stable-18_07_27).\n\n - net: phy: fix flag masking in __set_phy_supported\n (netfilter-stable-18_07_23).\n\n - net: rtnl_configure_link: fix dev flags changes arg to\n __dev_notify_flags (git-fixes).\n\n - net_sched: blackhole: tell upper qdisc about dropped\n packets (networking-stable-18_07_19).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (netfilter-stable-18_08_17).\n\n - net: skb_segment() should not return NULL\n (netfilter-stable-18_07_27).\n\n - net: stmmac: align DMA stuff to largest cache line\n length (netfilter-stable-18_08_01).\n\n - net: stmmac: Fix WoL for PCI-based setups\n (netfilter-stable-18_08_04).\n\n - net: stmmac: mark PM functions as __maybe_unused\n (git-fixes).\n\n - net: sungem: fix rx checksum support\n (networking-stable-18_07_19).\n\n - net: systemport: Fix CRC forwarding check for SYSTEMPORT\n Lite (netfilter-stable-18_07_23).\n\n - nfc: Fix possible memory corruption when handling SHDLC\n I-Frame commands (bsc#1051510).\n\n - nfs41: do not return ENOMEM on LAYOUTUNAVAILABLE\n (git-fixes).\n\n - nfsd: remove blocked locks on client teardown\n (git-fixes).\n\n - nfs/filelayout: fix oops when freeing filelayout segment\n (bsc#1105190).\n\n - nfs/filelayout: Fix racy setting of fl->dsaddr in\n filelayout_check_deviceid() (bsc#1105190).\n\n - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls\n back to the mds (git-fixes).\n\n - nfs: Use an appropriate work queue for direct-write\n completion (bsc#1082519).\n\n - nfsv4 client live hangs after live data migration\n recovery (git-fixes).\n\n - nfsv4: Fix a sleep in atomic context in\n nfs4_callback_sequence() (git-fixes).\n\n - nfsv4: Fix possible 1-byte stack overflow in\n nfs_idmap_read_and_verify_message (git-fixes).\n\n - nl80211: Add a missing break in parse_station_flags\n (bsc#1051510).\n\n - nl80211: check nla_parse_nested() return values\n (bsc#1051510).\n\n - nvme_fc: add 'nvme_discovery' sysfs attribute to fc\n transport device (bsc#1044189).\n\n - nvme: register ns_id attributes as default sysfs groups\n (bsc#1105247).\n\n - parport: sunbpp: fix error return code (bsc#1051510).\n\n - partitions/aix: append null character to print data from\n disk (bsc#1051510).\n\n - partitions/aix: fix usage of uninitialized lv_info and\n lvname structures (bsc#1051510).\n\n - pci: aardvark: Fix I/O space page leak (git-fixes).\n\n - pci: aardvark: Size bridges before resources allocation\n (bsc#1109806).\n\n - pci: Add pci_resize_resource() for resizing BARs\n (bsc#1105355).\n\n - pci: Add PCI resource type mask #define (bsc#1105355).\n\n - pci: Add resizable BAR infrastructure (bsc#1105355).\n\n - pci: Allow release of resources that were never assigned\n (bsc#1105355).\n\n - pci: Cleanup PCI_REBAR_CTRL_BAR_SHIFT handling\n (bsc#1105355).\n\n - pci: designware: Fix I/O space page leak (bsc#1109806).\n\n - pci: faraday: Add missing of_node_put() (bsc#1109806).\n\n - pci: faraday: Fix I/O space page leak (bsc#1109806).\n\n - pci: hotplug: Do not leak pci_slot on registration\n failure (bsc#1051510).\n\n - pci: hv: Make sure the bus domain is really unique\n (git-fixes).\n\n - pci: Match Root Port's MPS to endpoint's MPSS as\n necessary (bsc#1109269).\n\n - pci: mvebu: Fix I/O space end address calculation\n (bsc#1051510).\n\n - pci: OF: Fix I/O space page leak (git-fixes).\n\n - pci: pciehp: Fix unprotected list iteration in IRQ\n handler (bsc#1051510).\n\n - pci: pciehp: Fix use-after-free on unplug (bsc#1051510).\n\n - PCI/portdrv: Compute MSI/MSI-X IRQ vectors after final\n allocation (bsc#1109806).\n\n - PCI/portdrv: Factor out Interrupt Message Number lookup\n (bsc#1109806).\n\n - pci: Restore resized BAR state on resume (bsc#1105355).\n\n - pci: Skip MPS logic for Virtual Functions (VFs)\n (bsc#1051510).\n\n - pci: versatile: Fix I/O space page leak (bsc#1109806).\n\n - pci: xgene: Fix I/O space page leak (bsc#1109806).\n\n - pci: xilinx: Add missing of_node_put() (bsc#1109806).\n\n - pci: xilinx-nwl: Add missing of_node_put()\n (bsc#1109806).\n\n - pinctrl/amd: only handle irq if it is pending and\n unmasked (bsc#1051510).\n\n - pinctrl: cannonlake: Fix community ordering for H\n variant (bsc#1051510).\n\n - pinctrl: cannonlake: Fix HOSTSW_OWN register offset of H\n variant (bsc#1051510).\n\n - pinctrl: core: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bsc#1051510).\n\n - pinctrl: imx: off by one in imx_pinconf_group_dbg_show()\n (bsc#1051510).\n\n - pinctrl: pinmux: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: qcom: spmi-gpio: Fix pmic_gpio_config_get() to\n be compliant (bsc#1051510).\n\n - pinctrl: single: Fix group and function selector use\n (bsc#1051510).\n\n - pipe: actually allow root to exceed the pipe buffer\n limits (bsc#1106297).\n\n - platform/x86: alienware-wmi: Correct a memory leak\n (bsc#1051510).\n\n - platform/x86: asus-nb-wmi: Add keymap entry for lid flip\n action on UX360 (bsc#1051510).\n\n - platform/x86: thinkpad_acpi: Proper model/release\n matching (bsc#1051510).\n\n - platform/x86: toshiba_acpi: Fix defined but not used\n build warnings (bsc#1051510).\n\n - PM / clk: signedness bug in of_pm_clk_add_clks()\n (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: Fix duplicated opp table on\n reload (bsc#1051510).\n\n - PM / Domains: Fix error path during attach in genpd\n (bsc#1051510).\n\n - pmem: Switch to copy_to_iter_mcsafe() (bsc#1098782).\n\n - PM / runtime: Drop usage count for suppliers at device\n link removal (bsc#1100132).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bsc#1051510).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (git-fixes).\n\n - power: gemini-poweroff: Avoid more spurious poweroffs\n (bsc#1051510).\n\n - power: generic-adc-battery: check for duplicate\n properties copied from iio channels (bsc#1051510).\n\n - power: generic-adc-battery: fix out-of-bounds write when\n copying channel properties (bsc#1051510).\n\n - powernv/pseries: consolidate code for mce early handling\n (bsc#1094244).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032, git-fixes).\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bsc#1094244).\n\n - powerpc/64s: Fix DT CPU features Power9 DD2.1 logic\n (bsc#1055117).\n\n - powerpc/64s: move machine check SLB flushing to mm/slb.c\n (bsc#1094244).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157, git-fixes).\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc/fadump: cleanup crash memory ranges support\n (bsc#1103269).\n\n - powerpc/fadump: re-register firmware-assisted dump if\n already registered (bsc#1108170, bsc#1108823).\n\n - powerpc: Fix size calculation using resource_size()\n (bnc#1012382).\n\n - powerpc: KABI add aux_ptr to hole in paca_struct to\n extend it with additional members (bsc#1094244).\n\n - powerpc: kabi: move mce_data_buf into paca_aux\n (bsc#1094244).\n\n - powerpc/kprobes: Fix call trace due to incorrect preempt\n count (bsc#1065729).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1065729).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1065729).\n\n - powerpc/mce: Fix SLB rebolting during MCE recovery path\n (bsc#1094244).\n\n - powerpc/numa: Use associativity if VPHN hcall is\n successful (bsc#1110363).\n\n - powerpc/perf: Fix IMC allocation routine (bsc#1054914).\n\n - powerpc/perf: Fix memory allocation for core-imc based\n on num_possible_cpus() (bsc#1054914).\n\n - powerpc/perf: Remove sched_task function defined for\n thread-imc (bsc#1054914).\n\n - powerpc/pkeys: Fix reading of ibm,\n processor-storage-keys property (bsc#1109244).\n\n - powerpc/powernv/npu: Do a PID GPU TLB flush when\n invalidating a large address range (bsc#1055120).\n\n - powerpc/pseries: Avoid using the size greater than\n RTAS_ERROR_LOG_MAX (bsc#1094244).\n\n - powerpc/pseries: Defer the logging of rtas error to irq\n work queue (bsc#1094244).\n\n - powerpc/pseries: Define MCE error event section\n (bsc#1094244).\n\n - powerpc/pseries: Disable CPU hotplug across migrations\n (bsc#1065729).\n\n - powerpc/pseries: Display machine check error details\n (bsc#1094244).\n\n - powerpc/pseries: Dump the SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: fix EEH recovery of some IOV devices\n (bsc#1078720, git-fixes).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bsc#1094244).\n\n - powerpc/pseries: Flush SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: Remove prrn_work workqueue\n (bsc#1102495, bsc#1109337).\n\n - powerpc/pseries: Remove unneeded uses of dlpar work\n queue (bsc#1102495, bsc#1109337).\n\n - powerpc/tm: Avoid possible userspace r1 corruption on\n reclaim (bsc#1109333).\n\n - powerpc/tm: Fix userspace r13 corruption (bsc#1109333).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc/xive: Fix trying to 'push' an already active\n pool VP (bsc#1085030, git-fixes).\n\n - power: remove possible deadlock when unregistering\n power_supply (bsc#1051510).\n\n - power: supply: axp288_charger: Fix initial\n constant_charge_current value (bsc#1051510).\n\n - power: supply: max77693_charger: fix unintentional\n fall-through (bsc#1051510).\n\n - power: vexpress: fix corruption in notifier registration\n (bsc#1051510).\n\n - ppp: Destroy the mutex when cleanup (bsc#1051510).\n\n - ppp: fix __percpu annotation (bsc#1051510).\n\n - pstore: Fix incorrect persistent ram buffer mapping\n (bsc#1051510).\n\n - ptp: fix missing break in switch (bsc#1105355).\n\n - ptr_ring: fail early if queue occupies more than\n KMALLOC_MAX_SIZE (bsc#1105355).\n\n - ptr_ring: fix up after recent ptr_ring changes\n (bsc#1105355).\n\n - ptr_ring: prevent integer overflow when calculating size\n (bsc#1105355).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bsc#1051510).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - r8152: Check for supported Wake-on-LAN Modes\n (bsc#1051510).\n\n - r8169: add support for NCube 8168 network card\n (bsc#1051510).\n\n - random: add new ioctl RNDRESEEDCRNG (bsc#1051510).\n\n - random: fix possible sleeping allocation from irq\n context (bsc#1051510).\n\n - random: mix rdrand with entropy sent in from userspace\n (bsc#1051510).\n\n - random: set up the NUMA crng instances after the CRNG is\n fully initialized (bsc#1051510).\n\n - RDMA/bnxt_re: Fix a bunch of off by one bugs in\n qplib_fp.c (bsc#1050244).\n\n - RDMA/bnxt_re: Fix a couple off by one bugs (bsc#1050244\n ).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1058659).\n\n - RDMA/uverbs: Expand primary and alt AV port checks\n (bsc#1046306 ).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality, git fixes).\n\n - regulator: fix crash caused by null driver data\n (bsc#1051510).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bsc#1106236).\n\n - Replace magic for trusting the secondary keyring with\n #define (bsc#1051510).\n\n - Revert 'btrfs: qgroups: Retry after commit on getting\n EDQUOT' (bsc#1031392).\n\n - Revert 'ipc/shm: Fix shmat mmap nil-page protection'\n (bsc#1090078).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Revert 'pci: Add ACS quirk for Intel 300 series'\n (bsc#1051510).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bsc#1051510).\n\n - Revert 'vhost: cache used event for better performance'\n (bsc#1090528).\n\n - Revert 'vmalloc: back off when the current task is\n killed' (bnc#1107073).\n\n - rhashtable: add schedule points (bsc#1051510).\n\n - rndis_wlan: potential buffer overflow in\n rndis_wlan_auth_indication() (bsc#1051510).\n\n - root dentries need RCU-delayed freeing (bsc#1106297).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bsc#1051510).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bsc#1051510).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (netfilter-stable-18_07_27).\n\n - rxrpc: Fix user call ID check in\n rxrpc_service_prealloc_one (netfilter-stable-18_08_04).\n\n - s390: always save and restore all registers on context\n switch (bsc#1103421).\n\n - s390/crypto: Fix return code checking in\n cbc_paes_crypt() (bnc#1108323, LTC#171709).\n\n - s390: detect etoken facility (bsc#1103421).\n\n - s390/entry.S: use assembler alternatives (bsc#1103421).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (git-fixes, bsc#1103421).\n\n - s390: fix compat system call table (bsc#1103421).\n\n - s390: fix handling of -1 in set{,fs}id16 syscalls\n (bsc#1103421).\n\n - s390/lib: use expoline for all bcr instructions\n (git-fixes, bsc#1103421).\n\n - s390/mm: fix local TLB flushing vs. detach of an mm\n address space (bsc#1103421).\n\n - s390/mm: fix race on mm->context.flush_mm (bsc#1103421).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1108323, LTC#171068).\n\n - s390: Prevent hotplug rwsem recursion (bsc#1105731).\n\n - s390/qdio: reset old sbal_state flags (LTC#171525,\n bsc#1106948).\n\n - s390/qeth: consistently re-enable device features\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: rely on kernel for feature recovery\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: use vzalloc for QUERY OAT buffer (LTC#171527,\n bsc#1106948).\n\n - s390/runtime instrumentation: simplify task exit\n handling (bsc#1103421).\n\n - s390: use expoline thunks for all branches generated by\n the BPF JIT (bsc#1103421).\n\n - samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1\n (bsc#1083647).\n\n - sched/debug: Reverse the order of printing faults\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/fair: Fix bandwidth timer clock drift condition\n (Git-fixes).\n\n - sched/fair: Fix vruntime_normalized() for remote\n non-migration wakeup (git-fixes).\n\n - sched/numa: Avoid task migration for small NUMA\n improvement (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Do not move imbalanced load purely on the\n basis of an idle CPU (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Modify migrate_swap() to accept additional\n parameters (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Move task_numa_placement() closer to\n numa_migrate_preferred() (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Remove numa_has_capacity() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field (bnc#1101669 optimise\n numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field -kabi (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused code from update_numa_stats()\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused nr_running field (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Reset scan rate whenever task moves across\n nodes (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Set preferred_node based on best_cpu\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Simplify load_too_imbalanced() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Skip nodes that are at 'hoplimit'\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Stop comparing tasks for NUMA placement\n after selecting an idle core (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Update the scan period without holding the\n numa_group lock (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Use group_weights to identify if migration\n degrades locality (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Use task faults only if numa_group is not\n yet set up (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - scripts/git_sort/git_sort.py: Add fixes branch from\n mkp/scsi.git.\n\n - scripts/git_sort/git_sort.py: add libnvdimm-for-next\n branch\n\n - scripts/git_sort/git_sort.py: add mkp 4.20/scsi-queue\n\n - scripts: modpost: check memory allocation results\n (bsc#1051510).\n\n - scsi: cxlflash: Abstract hardware dependent assignments\n ().\n\n - scsi: cxlflash: Acquire semaphore before invoking ioctl\n services ().\n\n - scsi: cxlflash: Adapter context init can return error\n ().\n\n - scsi: cxlflash: Adapter context support for OCXL ().\n\n - scsi: cxlflash: Add argument identifier names ().\n\n - scsi: cxlflash: Add include guards to backend.h ().\n\n - scsi: cxlflash: Avoid clobbering context control\n register value ().\n\n - scsi: cxlflash: Enable OCXL operations ().\n\n - scsi: cxlflash: Explicitly cache number of interrupts\n per context ().\n\n - scsi: cxlflash: Handle spurious interrupts ().\n\n - scsi: cxlflash: Hardware AFU for OCXL ().\n\n - scsi: cxlflash: Introduce object handle fop ().\n\n - scsi: cxlflash: Introduce OCXL backend ().\n\n - scsi: cxlflash: Introduce OCXL context state machine ().\n\n - scsi: cxlflash: Isolate external module dependencies ().\n\n - scsi: cxlflash: Limit the debug logs in the IO path ().\n\n - scsi: cxlflash: MMIO map the AFU ().\n\n - scsi: cxlflash: Preserve number of interrupts for master\n contexts ().\n\n - scsi: cxlflash: Read host AFU configuration ().\n\n - scsi: cxlflash: Read host function configuration ().\n\n - scsi: cxlflash: Register for translation errors ().\n\n - scsi: cxlflash: Remove commmands from pending list on\n timeout ().\n\n - scsi: cxlflash: Remove embedded CXL work structures ().\n\n - scsi: cxlflash: Setup AFU acTag range ().\n\n - scsi: cxlflash: Setup AFU PASID ().\n\n - scsi: cxlflash: Setup function acTag range ().\n\n - scsi: cxlflash: Setup function OCXL link ().\n\n - scsi: cxlflash: Setup LISNs for master contexts ().\n\n - scsi: cxlflash: Setup LISNs for user contexts ().\n\n - scsi: cxlflash: Setup OCXL transaction layer ().\n\n - scsi: cxlflash: Staging to support future accelerators\n ().\n\n - scsi: cxlflash: Support adapter context discovery ().\n\n - scsi: cxlflash: Support adapter context mmap and release\n ().\n\n - scsi: cxlflash: Support adapter context polling ().\n\n - scsi: cxlflash: Support adapter context reading ().\n\n - scsi: cxlflash: Support adapter file descriptors for\n OCXL ().\n\n - scsi: cxlflash: Support AFU interrupt management ().\n\n - scsi: cxlflash: Support AFU interrupt mapping and\n registration ().\n\n - scsi: cxlflash: Support AFU reset ().\n\n - scsi: cxlflash: Support AFU state toggling ().\n\n - scsi: cxlflash: Support file descriptor mapping ().\n\n - scsi: cxlflash: Support image reload policy modification\n ().\n\n - scsi: cxlflash: Support process element lifecycle ().\n\n - scsi: cxlflash: Support process specific mappings ().\n\n - scsi: cxlflash: Support reading adapter VPD data ().\n\n - scsi: cxlflash: Support starting an adapter context ().\n\n - scsi: cxlflash: Support starting user contexts ().\n\n - scsi: cxlflash: Synchronize reset and remove ops ().\n\n - scsi: cxlflash: Use IDR to manage adapter contexts ().\n\n - scsi: cxlflash: Use local mutex for AFU serialization\n ().\n\n - scsi: cxlflash: Yield to active send threads ().\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138). \n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - scsi: fcoe: hold disc_mutex when traversing rport lists\n (bsc#1077989).\n\n - scsi: hisi_sas: Add a flag to filter PHY events during\n reset ().\n\n - scsi: hisi_sas: add memory barrier in task delivery\n function ().\n\n - scsi: hisi_sas: Add missing PHY spinlock init ().\n\n - scsi: hisi_sas: Add SATA FIS check for v3 hw ().\n\n - scsi: hisi_sas: Adjust task reject period during host\n reset ().\n\n - scsi: hisi_sas: Drop hisi_sas_slot_abort() ().\n\n - scsi: hisi_sas: Fix the conflict between dev gone and\n host reset ().\n\n - scsi: hisi_sas: Fix the failure of recovering PHY from\n STP link timeout ().\n\n - scsi: hisi_sas: Implement handlers of PCIe FLR for v3 hw\n ().\n\n - scsi: hisi_sas: Only process broadcast change in\n phy_bcast_v3_hw() ().\n\n - scsi: hisi_sas: Pre-allocate slot DMA buffers ().\n\n - scsi: hisi_sas: Release all remaining resources in clear\n nexus ha ().\n\n - scsi: hisi_sas: relocate some common code for v3 hw ().\n\n - scsi: hisi_sas: tidy channel interrupt handler for v3 hw\n ().\n\n - scsi: hisi_sas: Tidy hisi_sas_task_prep() ().\n\n - scsi: hisi_sas: tidy host controller reset function a\n bit ().\n\n - scsi: hisi_sas: Update a couple of register settings for\n v3 hw ().\n\n - scsi: hisi_sas: Use dmam_alloc_coherent() ().\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: ipr: System hung while dlpar adding primary ipr\n adapter back (bsc#1109336).\n\n - scsi: libfc: Add lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup 'sleeping function called from\n invalid context' (bsc#1077989).\n\n - scsi: libfc: hold disc_mutex in fc_disc_stop_rports()\n (bsc#1077989).\n\n - scsi: lpfc: Correct MDS diag and nvmet configuration\n (bsc#1106636).\n\n - scsi: mpt3sas: Fix calltrace observed while running IO &\n reset (bsc#1077989).\n\n - scsi: qla2xxx: Add appropriate debug info for invalid\n RX_ID (bsc#1108870).\n\n - scsi: qla2xxx: Add logic to detect ABTS hang and\n response completion (bsc#1108870).\n\n - scsi: qla2xxx: Add longer window for chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Add mode control for each physical port\n (bsc#1108870).\n\n - scsi: qla2xxx: Add support for ZIO6 interrupt threshold\n (bsc#1108870).\n\n - scsi: qla2xxx: Allow FC-NVMe underrun to be handled by\n transport (bsc#1108870).\n\n - scsi: qla2xxx: Check for Register disconnect\n (bsc#1108870).\n\n - scsi: qla2xxx: Cleanup for N2N code (bsc#1086327,).\n\n - scsi: qla2xxx: Decrement login retry count for only\n plogi (bsc#1108870).\n\n - scsi: qla2xxx: Defer chip reset until target mode is\n enabled (bsc#1108870).\n\n - scsi: qla2xxx: Fix deadlock between ATIO and HW lock\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix double increment of switch scan retry\n count (bsc#1108870).\n\n - scsi: qla2xxx: Fix dropped srb resource (bsc#1108870).\n\n - scsi: qla2xxx: Fix duplicate switch's Nport ID entries\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix early srb free on abort\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix iIDMA error (bsc#1108870).\n\n - scsi: qla2xxx: Fix incorrect port speed being set for FC\n adapters (bsc#1108870).\n\n - scsi: qla2xxx: Fix ISP recovery on unload\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix issue reported by static checker for\n qla2x00_els_dcmd2_sp_done() (bsc#1086327,).\n\n - scsi: qla2xxx: Fix login retry count (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Management Server NPort handle\n reservation logic (bsc#1086327,).\n\n - scsi: qla2xxx: Fix N2N link re-connect (bsc#1086327,).\n\n - scsi: qla2xxx: Fix out of order Termination and ABTS\n response (bsc#1108870).\n\n - scsi: qla2xxx: Fix port speed display on chip reset\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix premature command free (bsc#1108870).\n\n - scsi: qla2xxx: Fix process response queue for ISP26XX\n and above (bsc#1108870).\n\n - scsi: qla2xxx: Fix race between switch cmd completion\n and timeout (bsc#1086327,).\n\n - scsi: qla2xxx: Fix race condition for resource cleanup\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix redundant fc_rport registration\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Remote port registration\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix session state stuck in Get Port DB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stalled relogin (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stuck session in PLOGI state\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix unintended Logout (bsc#1086327,).\n\n - scsi: qla2xxx: Flush mailbox commands on chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Force fw cleanup on ADISC error\n (bsc#1108870).\n\n - scsi: qla2xxx: Increase abort timeout value\n (bsc#1108870).\n\n - scsi: qla2xxx: Migrate NVME N2N handling into state\n machine (bsc#1086327,).\n\n - scsi: qla2xxx: Move ABTS code behind qpair\n (bsc#1108870).\n\n - scsi: qla2xxx: Move {get|rel}_sp to base_qpair struct\n (bsc#1108870).\n\n - scsi: qla2xxx: Move rport registration out of internal\n work_list (bsc#1108870).\n\n - scsi: qla2xxx: Prevent sysfs access when chip is down\n (bsc#1086327,).\n\n - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU\n lock-up (bsc#1108870).\n\n - scsi: qla2xxx: Reject bsg request if chip is down\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove all rports if fabric scan retry\n fails (bsc#1108870).\n\n - scsi: qla2xxx: Remove ASYNC GIDPN switch command\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove redundant check for fcport\n deletion (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale ADISC_DONE event\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale debug trace message from\n tcm_qla2xxx (bsc#1108870).\n\n - scsi: qla2xxx: Save frame payload size from ICB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Serialize mailbox request (bsc#1108870).\n\n - scsi: qla2xxx: shutdown chip if reset fail\n (bsc#1108870).\n\n - scsi: qla2xxx: Silent erroneous message (bsc#1086327,).\n\n - scsi: qla2xxx: Spinlock recursion in qla_target\n (bsc#1086327,).\n\n - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0\n (bsc#1108870).\n\n - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB\n completion (bsc#1108870).\n\n - scsi: qla2xxx: Update driver to version 10.00.00.09-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.08-k\n (bsc#1086327,).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.10-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.11-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update rscn_rcvd field to more meaningful\n scan_needed (bsc#1108870).\n\n - scsi: qla2xxx: Use correct qpair for ABTS/CMD\n (bsc#1108870).\n\n - security: check for kstrdup() failure in lsm_append()\n (bsc#1051510).\n\n - selftests/bpf: fix a typo in map in map test\n (bsc#1083647).\n\n - selftests/bpf/test_maps: exit child process without\n error in ENOMEM case (bsc#1083647).\n\n - serial: 8250: Do not service RX FIFO if interrupts are\n disabled (bsc#1051510).\n\n - serial: 8250_dw: Add ACPI support for uart on Broadcom\n SoC (bsc#1051510).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bsc#1051510).\n\n - serial: core: mark port as initialized after successful\n IRQ change (bsc#1051510).\n\n - serial: enable spi in sc16is7xx driver References:\n bsc#1105672\n\n - serial: make sc16is7xx driver supported References:\n bsc#1105672\n\n - serial: pxa: Fix an error handling path in\n 'serial_pxa_probe()' (bsc#1051510).\n\n - serial: sh-sci: Stop RX FIFO timer during port shutdown\n (bsc#1051510).\n\n - serial: xuartps: fix typo in cdns_uart_startup\n (bsc#1051510).\n\n - series.conf: Sort automatic NUMA balancing related patch\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smsc75xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - smsc95xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - spi: cadence: Change usleep_range() to udelay(), for\n atomic context (bsc#1051510).\n\n - spi: davinci: fix a NULL pointer dereference\n (bsc#1051510).\n\n - spi-nor: intel-spi: Fix number of protected range\n registers for BYT/LPT ().\n\n - spi: pxa2xx: Add support for Intel Ice Lake\n (bsc#1051510).\n\n - spi: spi-fsl-dspi: Fix imprecise abort on VF500 during\n probe (bsc#1051510).\n\n - sr9800: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - sr: get/drop reference to device in revalidate and\n check_events (bsc#1109979).\n\n - staging: bcm2835-audio: Check if workqueue allocation\n failed ().\n\n - staging: bcm2835-audio: constify snd_pcm_ops structures\n ().\n\n - staging: bcm2835-audio: Deliver indirect-PCM transfer\n error ().\n\n - staging: bcm2835-audio: Disconnect and free\n vchi_instance on module_exit() ().\n\n - staging: bcm2835-audio: Do not leak workqueue if open\n fails ().\n\n - staging: bcm2835-audio: make snd_pcm_hardware const ().\n\n - staging: bcm2835-camera: fix timeout handling in\n wait_for_completion_timeout (bsc#1051510).\n\n - staging: bcm2835-camera: handle\n wait_for_completion_timeout return properly\n (bsc#1051510).\n\n - staging: comedi: ni_mio_common: fix subdevice flags for\n PFI subdevice (bsc#1051510).\n\n - staging: lustre: disable preempt while sampling\n processor id (bsc#1051510).\n\n - staging: lustre: fix bug in osc_enter_cache_try\n (bsc#1051510).\n\n - staging: lustre: ldlm: free resource when\n ldlm_lock_create() fails (bsc#1051510).\n\n - staging: lustre: libcfs: fix test for libcfs_ioctl_hdr\n minimum size (bsc#1051510).\n\n - staging: lustre: libcfs: Prevent harmless read underflow\n (bsc#1051510).\n\n - staging: lustre: llite: correct removexattr detection\n (bsc#1051510).\n\n - staging: lustre: llite: initialize xattr->xe_namelen\n (bsc#1051510).\n\n - staging: lustre: lmv: correctly iput lmo_root\n (bsc#1051510).\n\n - staging: lustre: lov: use correct env in\n lov_io_data_version_end() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix crash in\n kiblnd_handle_early_rxs() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix FastReg map/unmap for MLX5\n (bsc#1051510).\n\n - staging: lustre: o2iblnd: fix race at\n kiblnd_connect_peer (bsc#1051510).\n\n - staging: lustre: obdclass: return -EFAULT if\n copy_from_user() fails (bsc#1051510).\n\n - staging: lustre: obd_mount: use correct niduuid suffix\n (bsc#1051510).\n\n - staging: lustre: ptlrpc: kfree used instead of kvfree\n (bsc#1051510).\n\n - staging: lustre: remove invariant in cl_io_read_ahead()\n (bsc#1051510).\n\n - staging: lustre: statahead: remove incorrect test on\n agl_list_empty() (bsc#1051510).\n\n - staging: lustre: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1051510).\n\n - staging: rts5208: fix missing error check on call to\n rtsx_write_register (bsc#1051510).\n\n - staging: vc04_services: bcm2835-audio: Add blank line\n after declaration ().\n\n - staging: vc04_services: bcm2835-audio: add SPDX\n identifiers ().\n\n - staging: vc04_services: bcm2835-audio: Change to\n unsigned int * ().\n\n - staging: vc04_services: bcm2835-audio Format multiline\n comment ().\n\n - staging: vc04_services: bcm2835-audio: remove redundant\n license text ().\n\n - staging: vc04_services: Fix platform_no_drv_owner.cocci\n warnings ().\n\n - staging: vc04_services: please do not use multiple blank\n lines ().\n\n - stmmac: fix DMA channel hang in half-duplex mode\n (networking-stable-18_07_19).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1051510).\n\n - strparser: Remove early eaten to fix full tcp receive\n buffer stall (networking-stable-18_07_19).\n\n - sunxi-rsb: Include OF based modalias in device uevent\n (bsc#1051510).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: break up free_device callback\n (bsc#1105524).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (netfilter-stable-18_08_01).\n\n - tcp: add one more quick ack after after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp_bbr: fix bw probing to raise in-flight data for very\n small BDPs (netfilter-stable-18_08_01).\n\n - tcp: do not aggressively quick ack after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (netfilter-stable-18_07_27).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (netfilter-stable-18_07_27).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (netfilter-stable-18_08_01).\n\n - tcp: fix dctcp delayed ACK schedule\n (netfilter-stable-18_07_27).\n\n - tcp: fix Fast Open key endianness\n (networking-stable-18_07_19).\n\n - tcp: helpers to send special DCTCP ack\n (netfilter-stable-18_07_27).\n\n - tcp: prevent bogus FRTO undos with non-SACK flows\n (networking-stable-18_07_19).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (netfilter-stable-18_08_01).\n\n - tg3: Add higher cpu clock for 5762\n (netfilter-stable-18_07_23).\n\n - thermal_hwmon: Pass the originating device down to\n hwmon_device_register_with_info (bsc#1103363).\n\n - thermal_hwmon: Sanitize attribute name passed to hwmon\n (bsc#1103363).\n\n - thermal: thermal_hwmon: Convert to\n hwmon_device_register_with_info() (bsc#1103363).\n\n - ti: ethernet: cpdma: Use correct format for genpool_*\n (bsc#1051510).\n\n - tools/power turbostat: fix -S on UP systems\n (bsc#1051510).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bsc#1051510).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bsc#1051510).\n\n - tpm: cmd_ready command can be issued only after granting\n locality (bsc#1082555).\n\n - tpm: fix race condition in tpm_common_write()\n (bsc#1082555).\n\n - tpm: fix use after free in tpm2_load_context()\n (bsc#1082555).\n\n - tpm: Introduce flag TPM_TRANSMIT_RAW (bsc#1082555).\n\n - tpm: separate cmd_ready/go_idle from runtime_pm\n (bsc#1082555).\n\n - tpm: tpm_crb: relinquish locality on error path\n (bsc#1082555).\n\n - tpm: vtpm_proxy: Implement request_locality function\n (bsc#1082555).\n\n - tracepoint: Do not warn on ENOMEM (bsc#1051510).\n\n - tty: fix termios input-speed encoding (bsc#1051510).\n\n - tty: fix termios input-speed encoding when using BOTHER\n (bsc#1051510).\n\n - tty: serial: 8250: Revert NXP SC16C2552 workaround\n (bsc#1051510).\n\n - uart: fix race between uart_put_char() and\n uart_shutdown() (bsc#1051510).\n\n - ubifs: Check data node size before truncate\n (bsc#1051510).\n\n - ubifs: Fix directory size calculation for symlinks\n (bsc#1106230).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1051510).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1051510).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1051510).\n\n - udlfb: set optimal write delay (bsc#1051510).\n\n - udl-kms: avoid division (bsc#1051510).\n\n - udl-kms: change down_interruptible to down\n (bsc#1051510).\n\n - udl-kms: fix crash due to uninitialized memory\n (bsc#1051510).\n\n - udl-kms: handle allocation failure (bsc#1051510).\n\n - uio, lib: Fix CONFIG_ARCH_HAS_UACCESS_MCSAFE compilation\n (bsc#1098782).\n\n - uio: potential double frees if __uio_register_device()\n fails (bsc#1051510).\n\n - Update config files, make CRYPTO_CRCT10DIF_PCLMUL\n built-in (bsc#1105603).\n\n - Update\n patches.drivers/0016-arm64-vgic-v2-Fix-proxying-of-cpuif\n -access.patch (bsc#1106901, bsc#1107265).\n\n - Update\n patches.fixes/4.4.139-043-powerpc-mm-hash-Add-missing-is\n ync-prior-to-ke.patch (bnc#1012382, bsc#1094244).\n\n - Update patch tag of dmi fix (bsc#1105597) Also moved to\n the sorted section.\n\n - Update patch tags of recent security fixes (bsc#1106426)\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bsc#1051510).\n\n - uprobes/x86: Remove incorrect WARN_ON() in\n uprobe_init_insn() (bsc#1051510).\n\n - usb: cdc-wdm: do not enable interrupts in USB-giveback\n (bsc#1051510).\n\n - usb: Do not die twice if PCI xhci host is not responding\n in resume (bsc#1051510).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bsc#1051510).\n\n - usb: dwc2: gadget: Fix issue in dwc2_gadget_start_isoc()\n (bsc#1051510).\n\n - usb: dwc3: change stream event enable bit back to 13\n (bsc#1051510).\n\n - usb: dwc3: pci: add support for Intel IceLake\n (bsc#1051510).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bsc#1051510).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: fix maxpacket size of\n ep0 (bsc#1051510).\n\n - usb: net2280: Fix erroneous synchronization change\n (bsc#1051510).\n\n - usb: option: add support for DW5821e (bsc#1051510).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bsc#1051510).\n\n - usb: serial: io_ti: fix array underflow in completion\n handler (bsc#1051510).\n\n - usb: serial: kobil_sct: fix modem-status error handling\n (bsc#1051510).\n\n - usb: serial: pl2303: add a new device id for ATEN\n (bsc#1051510).\n\n - usb: serial: sierra: fix potential deadlock at close\n (bsc#1051510).\n\n - usb: serial: ti_usb_3410_5052: fix array underflow in\n completion handler (bsc#1051510).\n\n - usb: xhci: increase CRS timeout value (bsc#1051510).\n\n - userns: move user access out of the mutex (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Payload Size (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Read Request Size\n (bsc#1051510).\n\n - vfio/type1: Fix task tracking for QEMU vCPU hotplug\n (bsc#1051510).\n\n - vfs: do not test owner for NFS in set_posix_acl()\n (bsc#1103405).\n\n - vhost: correctly check the iova range when waking\n virtqueue (bsc#1051510).\n\n - vhost: do not try to access device IOTLB when not\n initialized (bsc#1051510).\n\n - vhost_net: validate sock before trying to put its fd\n (networking-stable-18_07_19).\n\n - vhost: reset metadata cache when initializing new IOTLB\n (netfilter-stable-18_08_17).\n\n - vhost: use mutex_lock_nested() in vhost_dev_lock_vqs()\n (bsc#1051510).\n\n - video: fbdev: pxafb: clear allocated memory for video\n modes (bsc#1051510).\n\n - video: goldfishfb: fix memory leak on driver remove\n (bsc#1051510).\n\n - vmci: type promotion bug in qp_host_get_user_memory()\n (bsc#1105355).\n\n - vmw_balloon: do not use 2MB without batching\n (bsc#1051510).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bsc#1051510).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bsc#1051510).\n\n - vmw_balloon: remove inflation rate limiting\n (bsc#1051510).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bsc#1051510).\n\n - VSOCK: fix loopback on big-endian systems\n (networking-stable-18_07_19).\n\n - vsock: split dwork to avoid reinitializations\n (netfilter-stable-18_08_17).\n\n - vxlan: add new fdb alloc and create helpers\n (netfilter-stable-18_07_27).\n\n - vxlan: fix default fdb entry netlink notify ordering\n during netdev create (netfilter-stable-18_07_27).\n\n - vxlan: make netlink notify in vxlan_fdb_destroy optional\n (netfilter-stable-18_07_27).\n\n - wan/fsl_ucc_hdlc: use IS_ERR_VALUE() to check return\n value of qe_muram_alloc (bsc#1051510).\n\n - watchdog: Mark watchdog touch functions as notrace\n (git-fixes).\n\n - wlcore: Add missing PM call for\n wlcore_cmd_wait_for_event_or_timeout() (bsc#1051510).\n\n - wlcore: Set rx_status boottime_ns field on rx\n (bsc#1051510).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1051510).\n\n - x86/apic: Fix restoring boot IRQ mode in reboot and\n kexec/kdump (bsc#1110006).\n\n - x86/apic: Split disable_IO_APIC() into two functions to\n fix CONFIG_KEXEC_JUMP=y (bsc#1110006).\n\n - x86/apic: Split out restore_boot_irq_mode() from\n disable_IO_APIC() (bsc#1110006).\n\n - x86/apic/vector: Fix off by one in error path\n (bsc#1110006).\n\n - x86/asm/memcpy_mcsafe: Add labels for __memcpy_mcsafe()\n write fault handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Add write-protection-fault\n handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Define copy_to_iter_mcsafe()\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Fix copy_to_user_mcsafe()\n exception handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Provide original\n memcpy_mcsafe_unrolled (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Remove loop unrolling\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Return bytes remaining\n (bsc#1098782).\n\n - x86/boot: Fix kexec booting failure in the SEV bit\n detection code (bsc#1110301).\n\n - x86/build/64: Force the linker to use 2MB page size\n (bsc#1109603).\n\n - x86/CPU/AMD: Derive CPU topology from CPUID function 0xB\n when available ().\n\n - x86/CPU: Modify detect_extended_topology() to return\n result ().\n\n - x86/dumpstack: Save first regs set for the executive\n summary (bsc#1110006).\n\n - x86/dumpstack: Unify show_regs() (bsc#1110006).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/entry/64: Wipe KASAN stack shadow before\n rewind_stack_do_exit() (bsc#1110006).\n\n - x86/espfix/64: Fix espfix double-fault handling on\n 5-level systems (bsc#1110006).\n\n - x86/events/intel/ds: Fix bts_interrupt_threshold\n alignment (git-fixes c1961a4631da).\n\n - x86/idt: Load idt early in start_secondary\n (bsc#1110006).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1106121).\n\n - x86: irq_remapping: Move irq remapping mode enum ().\n\n - x86/kasan/64: Teach KASAN about the cpu_entry_area\n (kasan).\n\n - x86/kexec: Avoid double free_page() upon do_kexec_load()\n failure (bsc#1110006).\n\n - x86/kvm: fix LAPIC timer drift when guest uses periodic\n mode (bsc#1106240).\n\n - x86/mce: Fix set_mce_nospec() to avoid #GP fault\n (bsc#1107783).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110006).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110301).\n\n - x86/mcelog: Get rid of RCU remnants (git-fixes\n 5de97c9f6d85).\n\n - x86/memory_failure: Introduce {set, clear}_mce_nospec()\n (bsc#1107783).\n\n -\n x86-memory_failure-Introduce-set-clear-_mce_nospec.patch\n : Fixup compilation breakage on s390 and arm due to\n missing clear_mce_nospec().\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bsc#1110006).\n\n - x86/mm: Drop TS_COMPAT on 64-bit exec() syscall\n (bsc#1110006).\n\n - x86/mm: Expand static page table for fixmap space\n (bsc#1110006).\n\n - x86/mm: Fix ELF_ET_DYN_BASE for 5-level paging\n (bsc#1110006).\n\n - x86/mm: implement free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm/kasan: Do not use vmemmap_populate() to\n initialize shadow (kasan).\n\n - x86/mm/memory_hotplug: determine block size based on the\n end of boot memory (bsc#1108243).\n\n - x86/mm/pat: Prepare {reserve, free}_memtype() for\n 'decoy' addresses (bsc#1107783).\n\n - x86/mm/tlb: Always use lazy TLB mode (bnc#1105467 Reduce\n IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Leave lazy TLB mode at page table free time\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Make lazy TLB mode lazier (bnc#1105467\n Reduce IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Only send page table free TLB flush to lazy\n TLB CPUs (bnc#1105467 Reduce IPIs and atomic ops with\n improved lazy TLB).\n\n - x86/mm/tlb: Restructure switch_mm_irqs_off()\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Skip atomic operations for 'init_mm' in\n switch_mm_irqs_off() (bnc#1105467 Reduce IPIs and atomic\n ops with improved lazy TLB).\n\n - x86/mpx: Do not allow MPX if we have mappings above\n 47-bit (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110301).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1065600).\n\n - x86/pci: Make broadcom_postcore_init() check\n acpi_disabled (bsc#1110006).\n\n - x86/pkeys: Do not special case protection key 0\n (bsc#1110006).\n\n - x86/pkeys: Override pkey when moving away from PROT_EXEC\n (bsc#1110006).\n\n - x86/platform/UV: Add adjustable set memory block size\n function (bsc#1108243).\n\n - x86/platform/UV: Add kernel parameter to set memory\n block size (bsc#1108243).\n\n - x86/platform/UV: Mark memblock related init code and\n data correctly (bsc#1108243).\n\n - x86/platform/UV: Use new set memory block size function\n (bsc#1108243).\n\n - x86/process: Do not mix user/kernel regs in 64bit\n __show_regs() (bsc#1110006).\n\n - x86/process: Re-export start_thread() (bsc#1110006).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (git-fixes a5b296636453).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/vdso: Fix lsl operand order (bsc#1110006).\n\n - x86/vdso: Fix lsl operand order (bsc#1110301).\n\n - x86/vdso: Fix vDSO build if a retpoline is emitted\n (git-fixes 76b043848fd2).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1065600).\n\n - x86/xen/efi: Initialize only the EFI struct members used\n by Xen (bnc#1107945).\n\n - xen: avoid crash in disable_hotplug_cpu (bsc#1106594).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkback: remove unused pers_gnts_lock from struct\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xenbus: track caller request id (bnc#1065600).\n\n - xen: issue warning message when out of grant maptrack\n entries (bsc#1105795).\n\n - xen-netfront-dont-bug-in-case-of-too-many-frags.patch:\n (bnc#1104824).\n\n - xen-netfront: fix queue name setting (bnc#1065600).\n\n - xen-netfront: fix warn message as irq device name has\n '/' (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Fix XS_TRANSACTION_END\n handling (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Really return response string\n (bnc#1065600).\n\n - xfs: add a new xfs_iext_lookup_extent_before helper\n (bsc#1095344).\n\n - xfs: add asserts for the mmap lock in\n xfs_{insert,collapse}_file_space (bsc#1095344).\n\n - xfs: add a xfs_bmap_fork_to_state helper (bsc#1095344).\n\n - xfs: add a xfs_iext_update_extent helper (bsc#1095344).\n\n - xfs: add comments documenting the rebalance algorithm\n (bsc#1095344).\n\n - xfs: add some comments to\n xfs_iext_insert/xfs_iext_insert_node (bsc#1095344).\n\n - xfs: allow unaligned extent records in\n xfs_bmbt_disk_set_all (bsc#1095344).\n\n - xfs, dax: introduce xfs_dax_aops (bsc#1104888).\n\n - xfs: do not create overlapping extents in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_collapse_extents (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_insert_extents (bsc#1095344).\n\n - xfs: do not set XFS_BTCUR_BPRV_WASDEL in xfs_bunmapi\n (bsc#1095344).\n\n - xfs: fix memory leak in xfs_iext_free_last_leaf\n (bsc#1095344).\n\n - xfs: fix number of records handling in\n xfs_iext_split_leaf (bsc#1095344).\n\n - xfs: Fix per-inode DAX flag inheritance (Git-fixes\n bsc#1109511).\n\n - xfs: fix type usage (bsc#1095344).\n\n - xfs: handle zero entries case in xfs_iext_rebalance_leaf\n (bsc#1095344).\n\n - xfs: inline xfs_shift_file_space into callers\n (bsc#1095344).\n\n - xfs: introduce the xfs_iext_cursor abstraction\n (bsc#1095344).\n\n - xfs: iterate backwards in xfs_reflink_cancel_cow_blocks\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_bmap_extents_to_btree\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_iextents_copy\n (bsc#1095344).\n\n - xfs: make better use of the 'state' variable in\n xfs_bmap_del_extent_real (bsc#1095344).\n\n - xfs: merge xfs_bmap_read_extents into xfs_iread_extents\n (bsc#1095344).\n\n - xfs: move pre/post-bmap tracing into\n xfs_iext_update_extent (bsc#1095344).\n\n - xfs: move some code around inside xfs_bmap_shift_extents\n (bsc#1095344).\n\n - xfs: move some more code into xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: move xfs_bmbt_irec and xfs_exntst_t to xfs_types.h\n (bsc#1095344).\n\n - xfs: move xfs_iext_insert tracepoint to report useful\n information (bsc#1095344).\n\n - xfs: pass an on-disk extent to xfs_bmbt_validate_extent\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_lookup_eq\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_update\n (bsc#1095344).\n\n - xfs: pass struct xfs_bmbt_irec to\n xfs_bmbt_validate_extent (bsc#1095344).\n\n - xfs: preserve i_rdev when recycling a reclaimable inode\n (bsc#1095344).\n\n - xfs: refactor delalloc accounting in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: refactor dir2 leaf readahead shadow buffer\n cleverness (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_delay_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_delay\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_unwritten_real\n (bsc#1095344).\n\n - xfs: refactor xfs_del_extent_real (bsc#1095344).\n\n - xfs: remove a duplicate assignment in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: remove all xfs_bmbt_set_* helpers except for\n xfs_bmbt_set_all (bsc#1095344).\n\n - xfs: remove a superflous assignment in\n xfs_iext_remove_node (bsc#1095344).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: remove if_rdev (bsc#1095344).\n\n - xfs: remove post-bmap tracing in\n xfs_bmap_local_to_extents (bsc#1095344).\n\n - xfs: remove support for inlining data/extents into the\n inode fork (bsc#1095344).\n\n - xfs: remove the never fully implemented UUID fork format\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_insert\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_remove\n (bsc#1095344).\n\n - xfs: remove XFS_BMAP_MAX_SHIFT_EXTENTS (bsc#1095344).\n\n - xfs: remove XFS_BMAP_TRACE_EXLIST (bsc#1095344).\n\n - xfs: remove xfs_bmbt_get_state (bsc#1095344).\n\n - xfs: remove xfs_bmse_shift_one (bsc#1095344).\n\n - xfs: rename bno to end in __xfs_bunmapi (bsc#1095344).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xfs: replace xfs_bmbt_lookup_ge with\n xfs_bmbt_lookup_first (bsc#1095344).\n\n - xfs: replace xfs_qm_get_rtblks with a direct call to\n xfs_bmap_count_leaves (bsc#1095344).\n\n - xfs: rewrite getbmap using the xfs_iext_* helpers\n (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_count_leaves using\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_first_unused to make better use of\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: simplify the xfs_getbmap interface (bsc#1095344).\n\n - xfs: simplify xfs_reflink_convert_cow (bsc#1095344).\n\n - xfs: split xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: switch xfs_bmap_local_to_extents to use\n xfs_iext_insert (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_delay (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_collapse_extents\n (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_del_extent_*\n (bsc#1095344).\n\n - xfs: trivial indentation fixup for xfs_iext_remove_node\n (bsc#1095344).\n\n - xfs: update got in xfs_bmap_shift_update_extent\n (bsc#1095344).\n\n - xfs: use a b+tree for the in-core extent list\n (bsc#1095344).\n\n - xfs: use correct state defines in\n xfs_bmap_del_extent_{cow,delay} (bsc#1095344).\n\n - xfs: use the state defines in xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: use xfs_bmap_del_extent_delay for the data fork as\n well (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_split_extent_at (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent instead of open coding it\n (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent in xfs_bmap_first_unused\n (bsc#1095344).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bsc#1051510).\n\n - xhci: Fix use after free for URB cancellation on a\n reallocated endpoint (bsc#1051510).\n\n - zram: fix null dereference of handle (bsc#1105355).", "edition": 20, "cvss3": {"score": 8.4, "vector": "AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "published": "2018-10-09T00:00:00", "title": "openSUSE Security Update : the Linux Kernel (openSUSE-2018-1140)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-17182", "CVE-2018-9363", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-14633", "CVE-2018-1129", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-15572", "CVE-2018-6554", "CVE-2018-13094", "CVE-2018-14613"], "modified": "2018-10-09T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:kernel-source", "p-cpe:/a:novell:opensuse:kernel-source-vanilla", "p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo", "cpe:/o:novell:opensuse:15.0", "p-cpe:/a:novell:opensuse:kernel-default-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-base", "p-cpe:/a:novell:opensuse:kernel-kvmsmall", "p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-devel", "p-cpe:/a:novell:opensuse:kernel-devel", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel", "p-cpe:/a:novell:opensuse:kernel-docs-html", "p-cpe:/a:novell:opensuse:kernel-obs-qa", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base", "p-cpe:/a:novell:opensuse:kernel-macros", "p-cpe:/a:novell:opensuse:kernel-syms", "p-cpe:/a:novell:opensuse:kernel-vanilla", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel", "p-cpe:/a:novell:opensuse:kernel-debug-base", "p-cpe:/a:novell:opensuse:kernel-debug-debugsource", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default", "p-cpe:/a:novell:opensuse:kernel-debug-devel", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug", "p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource", "p-cpe:/a:novell:opensuse:kernel-default-base", "p-cpe:/a:novell:opensuse:kernel-obs-build", "p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo"], "id": "OPENSUSE-2018-1140.NASL", "href": "https://www.tenable.com/plugins/nessus/117988", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2018-1140.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(117988);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\", \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\", \"CVE-2018-14613\", \"CVE-2018-14617\", \"CVE-2018-14633\", \"CVE-2018-15572\", \"CVE-2018-16658\", \"CVE-2018-17182\", \"CVE-2018-6554\", \"CVE-2018-6555\", \"CVE-2018-9363\");\n\n script_name(english:\"openSUSE Security Update : the Linux Kernel (openSUSE-2018-1140)\");\n script_summary(english:\"Check for the openSUSE-2018-1140 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The openSUSE Leap 15.0 kernel was updated to receive various security\nand bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-14633: A security flaw was found in the\n chap_server_compute_md5() function in the ISCSI target\n code in a way an authentication request from an ISCSI\n initiator is processed. An unauthenticated remote\n attacker can cause a stack-based buffer overflow and\n smash up to 17 bytes of the stack. The attack requires\n the iSCSI target to be enabled on the victim host.\n Depending on how the target's code was built (i.e.\n depending on a compiler, compile flags and hardware\n architecture) an attack may lead to a system crash and\n thus to a denial-of-service or possibly to a\n non-authorized access to data exported by an iSCSI\n target. Due to the nature of the flaw, privilege\n escalation cannot be fully ruled out, although we\n believe it is highly unlikely. Kernel versions 4.18.x,\n 4.14.x and 3.10.x are believed to be vulnerable\n (bnc#1107829).\n\n - CVE-2018-17182: The vmacache_flush_all function in\n mm/vmacache.c mishandled sequence number overflows. An\n attacker can trigger a use-after-free (and possibly gain\n privileges) via certain thread creation, map, unmap,\n invalidation, and dereference operations (bnc#1108399).\n\n - CVE-2018-14617: There is a NULL pointer dereference and\n panic in hfsplus_lookup() in fs/hfsplus/dir.c when\n opening a file (that is purportedly a hard link) in an\n hfs+ filesystem that has malformed catalog data, and is\n mounted read-only without a metadata directory\n (bnc#1102870).\n\n - CVE-2018-14613: There is an invalid pointer dereference\n in io_ctl_map_page() when mounting and operating a\n crafted btrfs image, because of a lack of block group\n item validation in check_leaf_item in\n fs/btrfs/tree-checker.c (bnc#1102896).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n in drivers/cdrom/cdrom.c allowed local attackers to use\n a incorrect bounds check in the CDROM driver\n CDROM_MEDIA_CHANGED ioctl to read out kernel memory\n (bnc#1092903).\n\n - CVE-2018-13093: There is a NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occurs because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13094: An OOPS may occur for a corrupted xfs\n image after xfs_da_shrink_inode() is called with a NULL\n bp (bnc#1100000).\n\n - CVE-2018-13095: A denial of service (memory corruption\n and BUG) can occur for a corrupted xfs image upon\n encountering an inode that is in extent format, but has\n more extents than fit in the inode fork (bnc#1099999).\n\n - CVE-2018-12896: An Integer Overflow in\n kernel/time/posix-timers.c in the POSIX timer code is\n caused by the way the overrun accounting works.\n Depending on interval and expiry time values, the\n overrun can be larger than INT_MAX, but the accounting\n is int based. This basically made the accounting values,\n which are visible to user space via timer_getoverrun(2)\n and siginfo::si_overrun, random. For example, a local\n user can cause a denial of service (signed integer\n overflow) via crafted mmap, futex, timer_create, and\n timer_settime system calls (bnc#1099922).\n\n - CVE-2018-16658: An information leak in\n cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could\n be used by local attackers to read kernel memory because\n a cast from unsigned long to int interferes with bounds\n checking. This is similar to CVE-2018-10940\n (bnc#1107689).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Memory leak in the irda_bind function\n kernel allowed local users to cause a denial of service\n (memory consumption) by repeatedly binding an AF_IRDA\n socket (bnc#1106509).\n\n - CVE-2018-1129: An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol.\n Ceph branches master, mimic, luminous and jewel are\n believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph\n service. Ceph branches master, mimic, luminous and jewel\n are believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker may force the kernel to enter an infinite\n loop in the cipso_v4_optptr() function in\n net/ipv4/cipso_ipv4.c leading to a denial-of-service. A\n certain non-default configuration of LSM (Linux Security\n Module) and NetLabel should be set up on a system before\n an attacker could leverage this flaw (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function in arch/x86/kernel/cpu/bugs.c did not always\n fill RSB upon a context switch, which made it easier for\n attackers to conduct userspace-userspace spectreRSB\n attacks (bnc#1102517 bnc#1105296).\n\n - CVE-2018-10902: It was found that the raw midi kernel\n driver did not protect against concurrent access which\n leads to a double realloc (double free) in\n snd_rawmidi_input_params() and\n snd_rawmidi_output_status() which are part of\n snd_rawmidi_ioctl() handler in rawmidi.c file. A\n malicious local attacker could possibly use this for\n privilege escalation (bnc#1105322).\n\n - CVE-2018-9363: A buffer overflow in bluetooth HID report\n processing could be used by malicious bluetooth devices\n to crash the kernel or potentially execute code\n (bnc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bsc#1051510).\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bsc#1051510).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bsc#1051510).\n\n - ACPI / APEI: Remove ghes_ioremap_area (bsc#1051510).\n\n - ACPI / bus: Only call dmi_check_system on X86\n (bsc#1105597, bsc#1106178).\n\n - ACPICA: iasl: Add SMMUv3 device ID mapping index support\n (bsc#1103387).\n\n - ACPI / EC: Add another entry for Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Add parameter to force disable the GPE on\n suspend (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on more Thinkpad X1 Carbon\n 6th systems (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on ThinkPad X1 Yoga 3rd\n (bsc#1051510).\n\n - ACPI/IORT: Remove temporary iort_get_id_mapping_index()\n ACPICA guard (bsc#1103387).\n\n - ACPI / pci: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bsc#1051510).\n\n - ACPI / pci: pci_link: Allow the absence of _PRS and\n change log level (bsc#1104172).\n\n - ACPI/pci: pci_link: reduce verbosity when IRQ is enabled\n (bsc#1104172).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bsc#1051510).\n\n - ACPI / scan: Initialize status to ACPI_STA_DEFAULT\n (bsc#1051510).\n\n - affs_lookup(): close a race with affs_remove_link()\n (bsc#1105355).\n\n - ahci: Add Intel Ice Lake LP PCI ID (bsc#1051510).\n\n - ALSA: bebob: fix memory leak for M-Audio FW1814 and\n ProjectMix I/O at error path (bsc#1051510).\n\n - ALSA: bebob: use address returned by kmalloc() instead\n of kernel stack for streaming DMA mapping (bsc#1051510).\n\n - ALSA: cs46xx: Deliver indirect-PCM transfer error ().\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bsc#1051510).\n\n - ALSA: emu10k1: Deliver indirect-PCM transfer error ().\n\n - ALSA: emu10k1: fix possible info leak to userspace on\n SNDRV_EMU10K1_IOCTL_INFO (bsc#1051510).\n\n - ALSA: fireface: fix memory leak in\n ff400_switch_fetching_mode() (bsc#1051510).\n\n - ALSA: firewire-digi00x: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: firewire-tascam: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: fireworks: fix memory leak of response buffer at\n error path (bsc#1051510).\n\n - ALSA: hda: Add AZX_DCAPS_PM_RUNTIME for AMD Raven Ridge\n (bsc#1051510).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bsc#1051510).\n\n - ALSA: hda - Fix cancel_work_sync() stall from jackpoll\n work (bsc#1051510).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bsc#1051510).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bsc#1051510).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bsc#1051510).\n\n - ALSA: mips: Deliver indirect-PCM transfer error ().\n\n - ALSA: msnd: Fix the default sample sizes (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak for model-dependent data at\n error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of discovered stream formats\n at error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: pcm: Fix negative appl_ptr handling in\n pcm-indirect helpers ().\n\n - ALSA: pcm: Fix snd_interval_refine first/last with open\n min/max (bsc#1051510).\n\n - ALSA: pcm: Simplify forward/rewind codes ().\n\n - ALSA: pcm: Use a common helper for PCM state check and\n hwsync ().\n\n - ALSA: pcm: Workaround for weird PulseAudio behavior on\n rewind error ().\n\n - ALSA: rme32: Deliver indirect-PCM transfer error ().\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1051510).\n\n - ALSA: usb-audio: Fix multiple definitions in\n AU0828_DEVICE() macro (bsc#1051510).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bsc#1051510).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bsc#1051510).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bsc#1051510).\n\n - apparmor: ensure that undecidable profile attachments\n fail (bsc#1106427).\n\n - apparmor: fix an error code in __aa_create_ns()\n (bsc#1106427).\n\n - apparmor: Fix regression in profile conflict logic\n (bsc#1106427)\n\n - apparmor: remove no-op permission check in policy_unpack\n (bsc#1106427).\n\n - arm64/acpi: Create arch specific cpu to acpi id helper\n (bsc#1106903).\n\n - arm64: dma-mapping: clear buffers allocated with\n FORCE_CONTIGUOUS flag (bsc#1106902).\n\n - arm64: enable thunderx gpio driver\n\n - arm64: Enforce BBM for huge IO/VMAP mappings\n (bsc#1106890).\n\n - arm64: export memblock_reserve()d regions via\n /proc/iomem (bsc#1106892).\n\n - arm64: fix unwind_frame() for filtered out fn for\n function graph tracing (bsc#1106900).\n\n - arm64: fix vmemmap BUILD_BUG_ON() triggering on !vmemmap\n setups (bsc#1106896).\n\n - arm64: fpsimd: Avoid FPSIMD context leakage for the init\n task (bsc#1106894).\n\n - arm64: Ignore hardware dirty bit updates in\n ptep_set_wrprotect() (bsc#1108010).\n\n - arm64: kasan: avoid pfn_to_nid() before page array is\n initialized (bsc#1106899).\n\n - arm64/kasan: do not allocate extra shadow memory\n (bsc#1106897).\n\n - arm64: Make sure permission updates happen for pmd/pud\n (bsc#1106891).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bsc#1106893).\n\n - arm64: mm: Ensure writes to swapper are ordered wrt\n subsequent cache maintenance (bsc#1106906).\n\n - arm64/mm/kasan: do not use vmemmap_populate() to\n initialize shadow (bsc#1106898).\n\n - arm64: numa: rework ACPI NUMA initialization\n (bsc#1106905).\n\n - arm64: Update config files. (bsc#1110716) Enable ST\n LPS25H pressure sensor.\n\n - arm64: vgic-v2: Fix proxying of cpuif access\n (bsc#1106901).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bsc#1051510).\n\n - arm/asm/tlb.h: Fix build error implicit func declaration\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - ARM: DRA7/OMAP5: Enable ACTLR[0] (Enable invalidates of\n BTB) for secondary cores (bsc#1051510).\n\n - ARM: hisi: fix error handling and missing of_node_put\n (bsc#1051510).\n\n - ARM: hisi: handle of_iomap and fix missing of_node_put\n (bsc#1051510).\n\n - ARM: imx: flag failure of of_iomap (bsc#1051510).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bsc#1051510).\n\n - ASoC: cs4265: fix MMTLR Data switch control\n (bsc#1051510).\n\n - ASoC: dapm: Fix potential DAI widget pointer deref when\n linking DAIs (bsc#1051510).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bsc#1051510).\n\n - ASoC: es7134: remove 64kHz rate from the supported rates\n (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bsc#1051510).\n\n - ASoC: msm8916-wcd-digital: fix RX2 MIX1 and RX3 MIX1\n (bsc#1051510).\n\n - ASoC: rsnd: cmd: Add missing newline to debug message\n (bsc#1051510).\n\n - ASoC: rsnd: fixup not to call clk_get/set under\n non-atomic (bsc#1051510).\n\n - ASoC: rsnd: move rsnd_ssi_config_init() execute\n condition into it (bsc#1051510).\n\n - ASoC: rsnd: update pointer more accurate (bsc#1051510).\n\n - ASoC: rt5514: Add the I2S ASRC support (bsc#1051510).\n\n - ASoC: rt5514: Add the missing register in the readable\n table (bsc#1051510).\n\n - ASoC: rt5514: Eliminate the noise in the ASRC case\n (bsc#1051510).\n\n - ASoC: rt5514: Fix the issue of the delay volume applied\n (bsc#1051510).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bsc#1051510).\n\n - ASoC: wm8994: Fix missing break in switch (bsc#1051510).\n\n - ASoC: zte: Fix incorrect PCM format bit usages\n (bsc#1051510).\n\n - ata: Fix ZBC_OUT all bit handling (bsc#1051510).\n\n - ata: Fix ZBC_OUT command block check (bsc#1051510).\n\n - ata: libahci: Allow reconfigure of DEVSLP register\n (bsc#1051510).\n\n - ata: libahci: Correct setting of DEVSLP register\n (bsc#1051510).\n\n - ath10k: disable bundle mgmt tx completion event support\n (bsc#1051510).\n\n - ath10k: prevent active scans on potential unusable\n channels (bsc#1051510).\n\n - ath10k: update the phymode along with bandwidth change\n request (bsc#1051510).\n\n - ath9k: add MSI support ().\n\n - ath9k_hw: fix channel maximum power level test\n (bsc#1051510).\n\n - ath9k: report tx status on EOSP (bsc#1051510).\n\n - atm: horizon: Fix irq release error (bsc#1105355).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (networking-stable-18_07_19).\n\n - atm: zatm: fix memcmp casting (bsc#1105355).\n\n - atm: zatm: Fix potential Spectre v1\n (networking-stable-18_07_19).\n\n - audit: allow not equal op for audit by executable\n (bsc#1051510).\n\n - audit: Fix extended comparison of GID/EGID\n (bsc#1051510).\n\n - ax88179_178a: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - b43/leds: Ensure NUL-termination of LED name string\n (bsc#1051510).\n\n - b43legacy/leds: Ensure NUL-termination of LED name\n string (bsc#1051510).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get().\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes.\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running.\n\n - bcache: do not check return value of\n debugfs_create_dir().\n\n - bcache: finish incremental GC.\n\n - bcache: fix error setting writeback_rate through sysfs\n interface.\n\n - bcache: fix I/O significant decline while backend\n devices registering.\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free.\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section.\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread().\n\n - bcache: set max writeback rate when I/O request is idle.\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data.\n\n - binfmt_elf: Respect error return from `regset->active'\n (bsc#1051510).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - blk-mq: avoid to synchronize rcu inside\n blk_cleanup_queue() (bsc#1077989).\n\n - block, bfq: return nbytes and not zero from struct\n cftype .write() method (bsc#1106238).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block, dax: remove dead code in blkdev_writepages()\n (bsc#1104888).\n\n - block: do not print a message when the device went away\n (bsc#1098459).\n\n - block: do not warn for flush on read-only device\n (bsc#1107756).\n\n - block: fix warning when I/O elevator is changed as\n request_queue is being removed (bsc#1109979).\n\n - block: Invalidate cache on discard v2 (bsc#1109992).\n\n - block: pass inclusive 'lend' parameter to\n truncate_inode_pages_range (bsc#1109992).\n\n - block: properly protect the 'queue' kobj in\n blk_unregister_queue (bsc#1109979).\n\n - bluetooth: Add a new Realtek 8723DE ID 0bda:b009\n (bsc#1051510).\n\n - bluetooth: avoid killing an already killed socket\n (bsc#1051510).\n\n - bluetooth: btsdio: Do not bind to non-removable BCM43430\n (bsc#1103587).\n\n - bluetooth: h5: Fix missing dependency on\n BT_HCIUART_SERDEV (bsc#1051510).\n\n - bluetooth: hidp: buffer overflow in hidp_process_report\n (bsc#1051510).\n\n - bluetooth: hidp: Fix handling of strncpy for hid->name\n information (bsc#1051510).\n\n - bluetooth: Use lock_sock_nested in bt_accept_enqueue\n (bsc#1051510).\n\n - bnxt_en: Clean up unused functions (bsc#1086282).\n\n - bnxt_en: Do not adjust max_cp_rings by the ones used by\n RDMA (bsc#1086282).\n\n - bnxt_en: Fix VF mac address regression (bsc#1086282 ).\n\n - bnxt_re: Fix couple of memory leaks that could lead to\n IOMMU call traces (bsc#1050244).\n\n - bonding: avoid lockdep confusion in bond_get_stats()\n (netfilter-stable-18_08_04).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bsc#1083647).\n\n - bpf: fix uninitialized variable in bpf tools\n (bsc#1083647).\n\n - bpf: hash map: decrement counter on error (bsc#1083647).\n\n - bpf: powerpc64: pad function address loads with NOPs\n (bsc#1083647).\n\n - bpf, s390: fix potential memleak when later bpf_jit_prog\n fails (bsc#1083647).\n\n - bpf: use GFP_ATOMIC instead of GFP_KERNEL in\n bpf_parse_prog() (bsc#1083647).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bsc#1051510).\n\n - brcmsmac: fix wrap around in conversion from constant to\n s16 (bsc#1051510).\n\n - btrfs: add a comp_refs() helper (dependency for\n bsc#1031392).\n\n - btrfs: Add checker for EXTENT_CSUM (bsc#1102882,\n bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: Add sanity check for EXTENT_DATA when reading out\n leaf (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: add tracepoints for outstanding extents mods\n (dependency for bsc#1031392).\n\n - btrfs: Check if item pointer overlaps with the item\n itself (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: check-integrity: Fix NULL pointer dereference for\n degraded mount (bsc#1107947).\n\n - btrfs: Check that each block group has corresponding\n chunk at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: cleanup extent locking sequence (dependency for\n bsc#1031392).\n\n - btrfs: delayed-inode: Remove wrong qgroup meta\n reservation calls (bsc#1031392).\n\n - btrfs: delayed-inode: Use new qgroup meta rsv for\n delayed inode and item (bsc#1031392).\n\n - btrfs: fix data corruption when deduplicating between\n different files (bsc#1110647).\n\n - btrfs: fix duplicate extents after fsync of file with\n prealloc extents (bsc#1110644).\n\n - btrfs: fix error handling in btrfs_dev_replace_start\n (bsc#1107535).\n\n - btrfs: fix fsync after hole punching when using no-holes\n feature (bsc#1110642).\n\n - btrfs: fix loss of prealloc extents past i_size after\n fsync log replay (bsc#1110643).\n\n - btrfs: fix return value on rename exchange failure\n (bsc#1110645).\n\n - btrfs: fix send failure when root has deleted files\n still open (bsc#1110650).\n\n - btrfs: Fix use-after-free when cleaning up fs_devs with\n a single stale device (bsc#1097105).\n\n - btrfs: Fix wrong btrfs_delalloc_release_extents\n parameter (bsc#1031392).\n\n - btrfs: Handle error from btrfs_uuid_tree_rem call in\n _btrfs_ioctl_set_received_subvol (bsc#1097105).\n\n - btrfs: Introduce mount time chunk <-> dev extent mapping\n check (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: log csums for all modified extents (bsc#1110639).\n\n - btrfs: make the delalloc block rsv per inode (dependency\n for bsc#1031392).\n\n - btrfs: Manually implement device_total_bytes\n getter/setter (bsc#1043912).\n\n - btrfs: Move leaf and node validation checker to\n tree-checker.c (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: qgroup: Add quick exit for non-fs extents\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup\n btrfs_qgroup_prepare_account_extents function\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup the remaining old reservation\n counters (bsc#1031392).\n\n - btrfs: qgroup: Commit transaction in advance to reduce\n early EDQUOT (bsc#1031392).\n\n - btrfs: qgroup: Do not use root->qgroup_meta_rsv for\n qgroup (bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow by\n only freeing reserved ranges (dependency for\n bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow\n caused by buffered write and quotas being enabled\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Fix wrong qgroup reservation update for\n relationship modification (bsc#1031392).\n\n - btrfs: qgroup: Introduce extent changeset for qgroup\n reserve functions (dependency for bsc#1031392).\n\n - btrfs: qgroup: Introduce function to convert\n META_PREALLOC into META_PERTRANS (bsc#1031392).\n\n - btrfs: qgroup: Introduce helpers to update and access\n new qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Make qgroup_reserve and its callers to\n use separate reservation type (bsc#1031392).\n\n - btrfs: qgroup: Return actually freed bytes for qgroup\n release or free data (dependency for bsc#1031392).\n\n - btrfs: qgroup: Skeleton to support separate qgroup\n reservation type (bsc#1031392).\n\n - btrfs: qgroup: Split meta rsv type into meta_prealloc\n and meta_pertrans (bsc#1031392).\n\n - btrfs: qgroup: Update trace events for metadata\n reservation (bsc#1031392).\n\n - btrfs: qgroup: Update trace events to use new separate\n rsv types (bsc#1031392).\n\n - btrfs: qgroup: Use independent and accurate per inode\n qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Use root::qgroup_meta_rsv_* to record\n qgroup meta reserved space (bsc#1031392).\n\n - btrfs: qgroup: Use separate meta reservation type for\n delalloc (bsc#1031392).\n\n - btrfs: remove type argument from comp_tree_refs\n (dependency for bsc#1031392).\n\n - btrfs: Remove unused parameters from various functions\n (bsc#1110649).\n\n - btrfs: rework outstanding_extents (dependency for\n bsc#1031392).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - btrfs: Round down values which are written for\n total_bytes_size (bsc#1043912).\n\n - btrfs: scrub: Do not use inode page cache in\n scrub_handle_errored_block() (follow up for\n bsc#1108096).\n\n - btrfs: scrub: Do not use inode pages for device replace\n (follow up for bsc#1108096).\n\n - btrfs: switch args for comp_*_refs (dependency for\n bsc#1031392).\n\n - btrfs: sync log after logging new name (bsc#1110646).\n\n - btrfs: tests/qgroup: Fix wrong tree backref level\n (bsc#1107928).\n\n - btrfs: tree-checker: Add checker for dir item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Detect invalid and empty essential\n trees (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Enhance btrfs_check_node output\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for btrfs_check_leaf\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for check_csum_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for\n check_extent_data_item (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Fix false panic for sanity test\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Replace root parameter with fs_info\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Verify block_group_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: Verify that every chunk has corresponding block\n group at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bsc#1051510).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cfg80211: nl80211_update_ft_ies() to validate\n NL80211_ATTR_IE (bsc#1051510).\n\n - cfg80211: reg: Init wiphy_idx in regulatory_hint_core()\n (bsc#1051510).\n\n - cgroup: avoid copying strings longer than the buffers\n (bsc#1051510).\n\n - cifs: check kmalloc before use (bsc#1051510).\n\n - cifs: Fix stack out-of-bounds in\n smb{2,3}_create_lease_buf() (bsc#1051510).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1051510).\n\n - clk: core: Potentially free connection id (bsc#1051510).\n\n - clk: imx6ul: fix missing of_node_put() (bsc#1051510).\n\n - clk: meson: gxbb: remove HHI_GEN_CLK_CTNL duplicate\n definition (bsc#1051510).\n\n - clk: mvebu: armada-38x: add support for 1866MHz variants\n (bsc#1105355).\n\n - clk: mvebu: armada-38x: add support for missing clocks\n (bsc#1105355).\n\n - clk: rockchip: fix clk_i2sout parent selection bits on\n rk3399 (bsc#1051510).\n\n - cls_matchall: fix tcf_unbind_filter missing\n (networking-stable-18_08_21).\n\n - coresight: Handle errors in finding input/output ports\n (bsc#1051510).\n\n - coresight: tpiu: Fix disabling timeouts (bsc#1051510).\n\n - cpufreq: CPPC: Do not set transition_latency\n (bsc#1101480).\n\n - cpufreq / CPPC: Set platform specific\n transition_delay_us (bsc#1101480).\n\n - cpufreq: CPPC: Use transition_delay_us depending\n transition_latency (bsc#1101480).\n\n - cpufreq: remove setting of policy->cpu in policy->cpus\n during init (bsc#1101480).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: caam/jr - fix descriptor DMA unmapping\n (bsc#1051510).\n\n - crypto: caam/qi - fix error path in xts setkey\n (bsc#1051510).\n\n - crypto: ccp - Check for NULL PSP pointer at module\n unload (bsc#1051510).\n\n - crypto: ccp - Fix command completion detection race\n (bsc#1051510).\n\n - crypto: clarify licensing of OpenSSL asm code ().\n\n - crypto: sharah - Unregister correct algorithms for\n SAHARA 3 (bsc#1051510).\n\n - crypto: skcipher - fix aligning block size in\n skcipher_copy_iv() (bsc#1051510).\n\n - crypto: skcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: skcipher - Fix -Wstringop-truncation warnings\n (bsc#1051510).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bsc#1051510).\n\n - crypto: vmac - separate tfm and request context\n (bsc#1051510).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1051510).\n\n - crypto: vmx - Use skcipher for ctr fallback to SLE12-SP4\n (bsc#1106464).\n\n - crypto: x86/sha256-mb - fix digest copy in\n sha256_mb_mgr_get_comp_job_avx2() (bsc#1051510).\n\n - cxgb4: Fix the condition to check if the card is T5\n (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588\n bsc#1097583 bsc#1097584).\n\n - cxl: Configure PSL to not use APC virtual machines\n (bsc#1055014, git-fixes).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014, git-fixes).\n\n - dax: Introduce a ->copy_to_iter dax operation\n (bsc#1098782).\n\n - dax: Make extension of dax_operations transparent\n (bsc#1098782).\n\n - dax: remove default copy_from_iter fallback\n (bsc#1098782).\n\n - dax: remove VM_MIXEDMAP for fsdax and device dax\n (bsc#1106007).\n\n - dax: Report bytes remaining in dax_iomap_actor()\n (bsc#1098782).\n\n - dax: require 'struct page' by default for filesystem dax\n (bsc#1104888).\n\n - dax: store pfns in the radix (bsc#1104888).\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (netfilter-stable-18_08_17).\n\n - devicectree: bindings: fix location of leds common file\n (bsc#1051510).\n\n - device-dax: Add missing address_space_operations\n (bsc#1107783).\n\n - device-dax: Enable page_mapping() (bsc#1107783).\n\n - device-dax: Set page->index (bsc#1107783).\n\n - /dev/mem: Add bounce buffer for copy-out (git-fixes).\n\n - /dev/mem: Avoid overwriting 'err' in read_mem()\n (git-fixes).\n\n - dma-buf: remove redundant initialization of sg_table\n (bsc#1051510).\n\n - dmaengine: hsu: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: idma64: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: mv_xor_v2: kill the tasklets upon exit\n (bsc#1051510).\n\n - doc/README.SUSE: Remove mentions of cloneconfig\n (bsc#1103636).\n\n - docs: zh_CN: fix location of oops-tracing.txt\n (bsc#1051510).\n\n - Documentation: add some docs for errseq_t (bsc#1107008).\n\n - Documentation: ip-sysctl.txt: document addr_gen_mode\n (bsc#1051510).\n\n - driver core: add __printf verification to\n __ata_ehi_pushv_desc (bsc#1051510).\n\n - drivers: hv: vmbus: do not mark HV_PCIE as perf_device\n (bsc#1051510).\n\n - drivers: hv: vmbus: Fix the offer_in_progress in\n vmbus_process_offer() (bsc#1051510).\n\n - drm: Add and handle new aspect ratios in DRM layer ().\n\n - drm: Add aspect ratio parsing in DRM layer ().\n\n - drm: Add DRM client cap for aspect-ratio ().\n\n - drm/amdgpu:add new firmware id for VCN (bsc#1051510).\n\n - drm/amdgpu:add tmr mc address into amdgpu_firmware_info\n (bsc#1051510).\n\n - drm/amdgpu: Fix RLC safe mode test in\n gfx_v9_0_enter_rlc_safe_mode (bsc#1051510).\n\n - drm/amdgpu: fix swapped emit_ib_size in vce3\n (bsc#1051510).\n\n - drm/amdgpu: update tmr mc address (bsc#1100132).\n\n - drm/amd/pp/Polaris12: Fix a chunk of registers missed to\n program (bsc#1051510).\n\n - drm/armada: fix colorkey mode property (bsc#1051510).\n\n - drm/armada: fix irq handling (bsc#1051510).\n\n - drm/arm/malidp: Preserve LAYER_FORMAT contents when\n setting format (bsc#1051510).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bsc#1051510).\n\n - drm/bridge/sii8620: Fix display of packed pixel modes\n (bsc#1051510).\n\n - drm/bridge/sii8620: fix display of packed pixel modes in\n MHL2 (bsc#1051510).\n\n - drm/bridge/sii8620: fix loops in EDID fetch logic\n (bsc#1051510).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/edid: Add 6 bpc quirk for SDC panel in Lenovo B50-80\n (bsc#1051510).\n\n - drm: Expose modes with aspect ratio, only if requested\n ().\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bsc#1051510).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bsc#1051510).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bsc#1051510).\n\n - drm/fb-helper: Fix typo on kerneldoc (bsc#1051510).\n\n - drm: Handle aspect ratio info in legacy modeset path ().\n\n - drm/i915/aml: Introducing Amber Lake platform ().\n\n - drm/i915/audio: Fix audio enumeration issue on BXT ().\n\n - drm/i915/cfl: Add a new CFL PCI ID ().\n\n - drm/i915/gvt: clear ggtt entries when destroy vgpu\n (bsc#1051510).\n\n - drm/i915/gvt: Fix the incorrect length of\n child_device_config issue (bsc#1051510).\n\n - drm/i915/gvt: Off by one in intel_vgpu_write_fence()\n (bsc#1051510).\n\n - drm/i915/gvt: request srcu_read_lock before checking if\n one gfn is valid (bsc#1051510).\n\n - drm/i915: Increase LSPCON timeout (bsc#1051510).\n\n - drm/i915/kvmgt: Fix potential Spectre v1 (bsc#1051510).\n\n - drm/i915/lpe: Mark LPE audio runtime pm as 'no\n callbacks' (bsc#1051510).\n\n - drm/i915: Nuke the LVDS lid notifier (bsc#1051510).\n\n - drm/i915: Only show debug for state changes when banning\n (bsc#1051510).\n\n - drm/i915/overlay: Allocate physical registers from\n stolen (bsc#1051510).\n\n - drm/i915: Restore user forcewake domains across suspend\n (bsc#1100132).\n\n - drm/i915: set DP Main Stream Attribute for color range\n on DDI platforms (bsc#1051510).\n\n - drm/i915: Unmask user interrupts writes into HWSP on\n snb/ivb/vlv/hsw (bsc#1051510).\n\n - drm/i915/whl: Introducing Whiskey Lake platform ().\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bsc#1051510).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bsc#1051510).\n\n - drm: mali-dp: Enable Global SE interrupts mask for DP500\n (bsc#1051510).\n\n - drm/modes: Introduce drm_mode_match() ().\n\n - drm/nouveau/drm/nouveau: Fix bogus\n drm_kms_helper_poll_enable() placement (bsc#1051510).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1051510).\n\n - drm/rockchip: lvds: add missing of_node_put\n (bsc#1051510).\n\n - drm/tegra: Check for malformed offsets and sizes in the\n 'submit' IOCTL (bsc#1106170).\n\n - drm/tegra: Fix comparison operator for buffer size\n (bsc#1100132).\n\n - drm/vc4: Fix the 'no scaling' case on multi-planar YUV\n formats (bsc#1051510).\n\n - dwc2: gadget: Fix ISOC IN DDMA PID bitfield value\n calculation (bsc#1051510).\n\n - EDAC, altera: Fix ARM64 build warning (bsc#1051510).\n\n - EDAC: Fix memleak in module init error path\n (bsc#1051510).\n\n - EDAC, i7core: Fix memleaks and use-after-free on probe\n and remove (bsc#1051510).\n\n - EDAC, mv64x60: Fix an error handling path (bsc#1051510).\n\n - EDAC, octeon: Fix an uninitialized variable warning\n (bsc#1051510).\n\n - EDAC, sb_edac: Fix missing break in switch\n (bsc#1051510).\n\n - errseq: Add to documentation tree (bsc#1107008).\n\n - errseq: Always report a writeback error once\n (bsc#1107008).\n\n - ext2: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext2, dax: introduce ext2_dax_aops (bsc#1104888).\n\n - ext4: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext4, dax: add ext4_bmap to ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: introduce ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: set ext4_dax_aops for dax files\n (bsc#1104888).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - extcon: Release locking when sending the notification of\n connector state (bsc#1051510).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106233).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106297).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106231).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106297).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bsc#1051510).\n\n - fbdev: Distinguish between interlaced and progressive\n modes (bsc#1051510).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1051510).\n\n - fbdev/via: fix defined but not used warning\n (bsc#1051510).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bsc#1051510).\n\n - filesystem-dax: Introduce dax_lock_mapping_entry()\n (bsc#1107783).\n\n - filesystem-dax: Set page->index (bsc#1107783).\n\n - fix a page leak in vhost_scsi_iov_to_sgl() error\n recovery (bsc#1051510).\n\n - Fix buggy backport in\n patches.fixes/dax-check-for-queue_flag_dax-in-bdev_dax_s\n upported.patch (bsc#1109859)\n\n - Fix kABI breakage due to enum addition for ath10k\n (bsc#1051510).\n\n - Fix kABI breakage with libertas dev field addition\n (bsc#1051510).\n\n - Fix kABI breakage with removing field addition to\n power_supply (bsc#1051510).\n\n - Fix kexec forbidding kernels signed with keys in the\n secondary keyring to boot (bsc#1110006).\n\n - fix __legitimize_mnt()/mntput() race (bsc#1106297).\n\n - fix mntput/mntput race (bsc#1106297).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bsc#1051510).\n\n - fs, dax: prepare for dax-specific\n address_space_operations (bsc#1104888).\n\n - fs, dax: use page->mapping to warn if truncate collides\n with a busy page (bsc#1104888).\n\n - fs/proc/proc_sysctl.c: fix potential page fault while\n unregistering sysctl table (bsc#1106297).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bsc#1106291).\n\n - fuse: fix double request_end() (bsc#1106291).\n\n - fuse: fix initial parallel dirops (bsc#1106291).\n\n - fuse: Fix oops at process_init_reply() (bsc#1106291).\n\n - fuse: fix unlocked access to processing queue\n (bsc#1106291).\n\n - fuse: umount should wait for all requests (bsc#1106291).\n\n - geneve: update skb dst pmtu on tx path (bsc#1051510).\n\n - genirq: Add handle_fasteoi_{level,edge}_irq flow\n handlers (bsc#1105378).\n\n - genirq: Export more irq_chip_*_parent() functions\n (bsc#1105378).\n\n - genirq: Fix editing error in a comment (bsc#1051510).\n\n - genirq: Make force irq threading setup more robust\n (bsc#1051510).\n\n - gen_stats: Fix netlink stats dumping in the presence of\n padding (netfilter-stable-18_07_23).\n\n - getxattr: use correct xattr length (bsc#1106235).\n\n - getxattr: use correct xattr length (bsc#1106297).\n\n - gpio: Add gpio driver support for ThunderX and OCTEON-TX\n (bsc#1105378).\n\n - gpio: Fix wrong rounding in gpio-menz127 (bsc#1051510).\n\n - gpiolib-acpi: make sure we trigger edge events at least\n once on boot (bsc#1051510).\n\n - gpiolib: acpi: Switch to cansleep version of GPIO\n library call (bsc#1051510).\n\n - gpiolib: Mark gpio_suffixes array with __maybe_unused\n (bsc#1051510).\n\n - gpio: ml-ioh: Fix buffer underwrite on probe error path\n (bsc#1051510).\n\n - gpio: pxa: Fix potential NULL dereference (bsc#1051510).\n\n - gpio: tegra: Move driver registration to subsys_init\n level (bsc#1051510).\n\n - gpio: thunderx: fix error return code in\n thunderx_gpio_probe() (bsc#1105378).\n\n - gpio: thunderx: remove unused .map() hook from\n irq_domain_ops (bsc#1105378).\n\n - gpu: host1x: Check whether size of unpin isn't 0\n (bsc#1051510).\n\n - gpu: ipu-v3: csi: pass back mbus_code_to_bus_cfg error\n codes (bsc#1051510).\n\n - gpu: ipu-v3: default to id 0 on missing OF alias\n (bsc#1051510).\n\n - gtp: Initialize 64-bit per-cpu stats correctly\n (bsc#1051510).\n\n - HID: add quirk for another PIXART OEM mouse used by HP\n (bsc#1051510).\n\n - HID: hid-ntrig: add error handling for\n sysfs_create_group (bsc#1051510).\n\n - HID: i2c-hid: Add no-irq-after-reset quirk for 0911:5288\n device ().\n\n - hotplug/cpu: Add operation queuing function ().\n\n - hotplug/cpu: Conditionally acquire/release DRC index ().\n\n - hotplug/cpu: Provide CPU readd operation ().\n\n - i2c: core: ACPI: Properly set status byte to 0 for\n multi-byte writes (bsc#1051510).\n\n - i2c: davinci: Avoid zero value of CLKH (bsc#1051510).\n\n - i2c: i801: Add missing documentation entries for\n Braswell and Kaby Lake (bsc#1051510).\n\n - i2c: i801: Add support for Intel Cedar Fork\n (bsc#1051510).\n\n - i2c: i801: Add support for Intel Ice Lake (bsc#1051510).\n\n - i2c: i801: Allow ACPI AML access I/O ports not reserved\n for SMBus (bsc#1051510).\n\n - i2c: i801: Consolidate chipset names in documentation\n and Kconfig (bsc#1051510).\n\n - i2c: i801: fix DNV's SMBCTRL register offset\n (bsc#1051510).\n\n - i2c: imx: Fix race condition in dma read (bsc#1051510).\n\n - i2c: imx: Fix reinit_completion() use (bsc#1051510).\n\n - i2c: uniphier-f: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: uniphier: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: xiic: Make the start and the byte count write\n atomic (bsc#1051510).\n\n - i2c: xlp9xx: Fix case where SSIF read transaction\n completes early (bsc#1105907).\n\n - i2c: xlp9xx: Fix issue seen when updating receive length\n (bsc#1105907).\n\n - i2c: xlp9xx: Make sure the transfer size is not more\n than I2C_SMBUS_BLOCK_SIZE (bsc#1105907).\n\n - i40e: fix condition of WARN_ONCE for stat strings\n (bsc#1107522).\n\n - IB/core: type promotion bug in rdma_rw_init_one_mr()\n (bsc#1046306).\n\n - IB/hfi1: Invalid NUMA node information can cause a\n divide by zero (bsc#1060463).\n\n - IB/hfi1: Remove incorrect call to do_interrupt callback\n (bsc#1060463).\n\n - IB/hfi1: Set in_use_ctxts bits for user ctxts only\n (bsc#1060463 ).\n\n - IB/ipoib: Avoid a race condition between start_xmit and\n cm_rep_handler (bsc#1046307).\n\n - IB/ipoib: Fix error return code in ipoib_dev_init()\n (bsc#1046307 ).\n\n - IB/IPoIB: Set ah valid flag in multicast send flow\n (bsc#1046307 ).\n\n - IB/mlx4: Test port number before querying type\n (bsc#1046302 ).\n\n - IB/mlx4: Use 4K pages for kernel QP's WQE buffer\n (bsc#1046302 ).\n\n - IB/mlx5: fix uaccess beyond 'count' in debugfs\n read/write handlers (bsc#1046305).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ib_srpt: Fix a use-after-free in srpt_close_ch()\n (bsc#1046306 ).\n\n - ieee802154: ca8210: fix uninitialised data read\n (bsc#1051510).\n\n - ieee802154: fix gcc-4.9 warnings (bsc#1051510).\n\n - ieee802154: mrf24j40: fix incorrect mask in\n mrf24j40_stop (bsc#1051510).\n\n - iio: 104-quad-8: Fix off-by-one error in register\n selection (bsc#1051510).\n\n - iio: ad9523: Fix displayed phase (bsc#1051510).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bsc#1051510).\n\n - iio: adc: ina2xx: avoid kthread_stop() with stale\n task_struct (bsc#1051510).\n\n - iio: adc: sun4i-gpadc: select REGMAP_IRQ (bsc#1051510).\n\n - iio: sca3000: Fix an error handling path in\n 'sca3000_probe()' (bsc#1051510).\n\n - iio: sca3000: Fix missing return in switch\n (bsc#1051510).\n\n - ima: based on policy verify firmware signatures\n (pre-allocated buffer) (bsc#1051510).\n\n - include/rdma/opa_addr.h: Fix an endianness issue\n (bsc#1046306 ).\n\n - init: rename and re-order boot_cpu_state_init()\n (bsc#1104365).\n\n - Input: atmel_mxt_ts - only use first T9 instance\n (bsc#1051510).\n\n - Input: edt-ft5x06 - fix error handling for factory mode\n on non-M06 (bsc#1051510).\n\n - Input: edt-ft5x06 - implement support for the EDT-M12\n series (bsc#1051510).\n\n - Input: edt-ft5x06 - make distinction between\n m06/m09/generic more clear (bsc#1051510).\n\n - Input: elantech - enable middle button of touchpad on\n ThinkPad P72 (bsc#1051510).\n\n - input: rohm_bu21023: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - Input: synaptics-rmi4 - fix axis-swap behavior\n (bsc#1051510).\n\n - intel_th: Fix device removal logic (bsc#1051510).\n\n - iommu/amd: Add support for higher 64-bit IOMMU Control\n Register ().\n\n - iommu/amd: Add support for IOMMU XT mode ().\n\n - iommu/amd: Finish TLB flush in amd_iommu_unmap()\n (bsc#1106105).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/amd: Return devid as alias for ACPI HID devices\n (bsc#1106105).\n\n - iommu/arm-smmu-v3: Do not free page table ops twice\n (bsc#1106237).\n\n - iommu/vt-d: Fix a potential memory leak (bsc#1106105).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bsc#1110006).\n\n - ipc/shm: fix shmat() nil address after round-down when\n remapping (bsc#1090078).\n\n - ip: hash fragments consistently\n (netfilter-stable-18_07_27).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (netfilter-stable-18_07_27).\n\n - ipmi:bt: Set the timeout before doing a capabilities\n check (bsc#1051510).\n\n - ipmi: Fix some counter issues (bsc#1105907).\n\n - ipmi: Move BT capabilities detection to the detect call\n (bsc#1106779).\n\n - ipmi/powernv: Fix error return code in\n ipmi_powernv_probe() (git-fixes).\n\n - ipmi: Remove ACPI SPMI probing from the SSIF (I2C)\n driver (bsc#1105907).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (netfilter-stable-18_08_01).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (netfilter-stable-18_07_23).\n\n - ipv6: fix useless rol32 call on hash\n (netfilter-stable-18_07_23).\n\n - ipv6: ila: select CONFIG_DST_CACHE\n (netfilter-stable-18_07_23).\n\n - ipv6: make DAD fail with enhanced DAD when nonce length\n differs (netfilter-stable-18_07_23).\n\n - ipv6: sr: fix passing wrong flags to\n crypto_alloc_shash() (networking-stable-18_07_19).\n\n - ipvlan: fix IFLA_MTU ignored on NEWLINK\n (networking-stable-18_07_19).\n\n - irqchip/bcm7038-l1: Hide cpu offline callback when\n building for !SMP (bsc#1051510).\n\n - irqdomain: Add irq_domain_{push,pop}_irq() functions\n (bsc#1105378).\n\n - irqdomain: Check for NULL function pointer in\n irq_domain_free_irqs_hierarchy() (bsc#1105378).\n\n - irqdomain: Factor out code to add and remove items to\n and from the revmap (bsc#1105378).\n\n - irqdomain: Prevent potential NULL pointer dereference in\n irq_domain_push_irq() (bsc#1105378).\n\n - irqdomain: Update the comments of fwnode field of\n irq_domain structure (bsc#1051510).\n\n - isdn: Disable IIOCDBGVAR (bsc#1051510).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#1046543).\n\n - iwlwifi: pcie: do not access periphery registers when\n not available (bsc#1051510).\n\n - ixgbe: Refactor queue disable logic to take completion\n time into account (bsc#1101557).\n\n - ixgbe: Reorder Tx/Rx shutdown to reduce time needed to\n stop device (bsc#1101557).\n\n - kabi fix for check_disk_size_change() (bsc#1098459).\n\n - kabi: move s390 mm_context_t lock to mm_struct and\n ignore the change (bsc#1103421).\n\n - kabi: move the new handler to end of machdep_calls and\n hide it from genksyms (bsc#1094244).\n\n - kabi protect hnae_ae_ops (bsc#1107924).\n\n - kabi protect struct kvm_sync_regs (bsc#1106948).\n\n - kabi/severities: Whitelist libceph, rbd, and ceph\n (bsc#1096748).\n\n - kabi: tpm: change relinquish_locality return value back\n to void (bsc#1082555).\n\n - kabi: tpm: do keep the cmd_ready and go_idle as pm ops\n (bsc#1082555).\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kprobes/x86: Release insn_slot in failure path\n (bsc#1110006).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline\n asm to cmpxchg() (bsc#1108010).\n\n - kvm: Enforce error in ioctl for compat tasks when\n !KVM_COMPAT (bsc#1106240).\n\n - kvm: nVMX: Do not flush TLB when vmcs12 uses VPID\n (bsc#1106240).\n\n - kvm: nVMX: Fix fault vector for VMX operation at CPL > 0\n (bsc#1106105).\n\n - kvm: nVMX: Fix injection to L2 when L1 do not intercept\n external-interrupts (bsc#1106240).\n\n - kvm: nVMX: Fix races when sending nested PI while dest\n enters/leaves L2 (bsc#1106240).\n\n - kvm: nVMX: Re-evaluate L1 pending events when running L2\n and L1 got posted-interrupt (bsc#1106240).\n\n - kvm: nVMX: Use nested_run_pending rather than\n from_vmentry (bsc#1106240).\n\n - kvm: PPC: Book3S: Fix guest DMA when guest partially\n backed by THP pages (bsc#1077761, git-fixes,\n bsc#1103948, bsc#1103949).\n\n - kvm: PPC: Book3S HV: Use correct pagesize in\n kvm_unmap_radix() (bsc#1061840, git-fixes).\n\n - kvm: s390: add etoken support for guests (bsc#1106948,\n LTC#171029).\n\n - kvm: s390: force bp isolation for VSIE (bsc#1103421).\n\n - kvm: s390: implement CPU model only facilities\n (bsc#1106948, LTC#171029).\n\n - kvm: VMX: Do not allow reexecute_instruction() when\n skipping MMIO instr (bsc#1106240).\n\n - kvm: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - kvm: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - kvm: x86: Change __kvm_apic_update_irr() to also return\n if max IRR updated (bsc#1106240).\n\n - kvm: x86: Default to not allowing emulation retry in\n kvm_mmu_page_fault (bsc#1106240).\n\n - kvm: x86: Do not re-{try,execute} after failed emulation\n in L2 (bsc#1106240).\n\n - kvm: x86: fix APIC page invalidation (bsc#1106240).\n\n - kvm: x86: Invert emulation re-execute behavior to make\n it opt-in (bsc#1106240).\n\n - kvm: x86: Merge EMULTYPE_RETRY and\n EMULTYPE_ALLOW_REEXECUTE (bsc#1106240).\n\n - kvm/x86: remove WARN_ON() for when vm_munmap() fails\n (bsc#1106240).\n\n - kvm: x86: SVM: Call x86_spec_ctrl_set_guest/host() with\n interrupts disabled (git-fixes 1f50ddb4f418).\n\n - kvm: x86: vmx: fix vpid leak (bsc#1106240).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (netfilter-stable-18_08_17).\n\n - lan78xx: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - lan78xx: Lan7801 Support for Fixed PHY (bsc#1085262).\n\n - lan78xx: remove redundant initialization of pointer\n 'phydev' (bsc#1085262).\n\n - lan78xx: Set ASD in MAC_CR when EEE is enabled\n (bsc#1085262).\n\n - leds: max8997: use mode when calling\n max8997_led_set_mode (bsc#1051510).\n\n - libahci: Fix possible Spectre-v1 pmp indexing in\n ahci_led_store() (bsc#1051510).\n\n - libata: Fix command retry decision (bsc#1051510).\n\n - libata: Fix compile warning with ATA_DEBUG enabled\n (bsc#1051510).\n\n - libbpf: Makefile set specified permission mode\n (bsc#1083647).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - libertas: fix suspend and resume for SDIO connected\n cards (bsc#1051510).\n\n - lib/iov_iter: Fix pipe handling in\n _copy_to_iter_mcsafe() (bsc#1098782).\n\n - libnvdimm, btt: fix uninitialized err_lock\n (bsc#1103961).\n\n - libnvdimm: fix ars_status output length calculation\n (bsc#1104890).\n\n - libnvdimm, nfit: enable support for volatile ranges\n (bsc#1103961).\n\n - libnvdimm, nfit: move the check on nd_reserved2 to the\n endpoint (bsc#1103961).\n\n - libnvdimm, pmem: Fix memcpy_mcsafe() return code\n handling in nsio_rw_bytes() (bsc#1098782).\n\n - libnvdimm, pmem: Restore page attributes when clearing\n errors (bsc#1107783).\n\n - libnvdimm: rename nd_sector_size_{show,store} to\n nd_size_select_{show,store} (bsc#1103961).\n\n - libnvdimm: Use max contiguous area for namespace size\n (git-fixes).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bsc#1051510).\n\n - lib/test_hexdump.c: fix failure on big endian cpu\n (bsc#1051510).\n\n - lib/vsprintf: Remove atomic-unsafe support for %pCr\n (bsc#1051510).\n\n - Limit kernel-source build to architectures for which we\n build binaries (bsc#1108281).\n\n - livepatch: Remove reliable stacktrace check in\n klp_try_switch_task() (bsc#1071995).\n\n - livepatch: Validate module/old func name length\n (bsc#1071995).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (netfilter-stable-18_08_17).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bsc#1051510).\n\n - mac80211: always account for A-MSDU header changes\n (bsc#1051510).\n\n - mac80211: avoid kernel panic when building AMSDU from\n non-linear SKB (bsc#1051510).\n\n - mac80211: fix an off-by-one issue in A-MSDU max_subframe\n computation (bsc#1051510).\n\n - mac80211: fix pending queue hang due to TX_DROP\n (bsc#1051510).\n\n - mac80211: restrict delayed tailroom needed decrement\n (bsc#1051510).\n\n - macros.kernel-source: pass -b properly in kernel module\n package (bsc#1107870).\n\n - mailbox: xgene-slimpro: Fix potential NULL pointer\n dereference (bsc#1051510).\n\n - MAINTAINERS: fix location of ina2xx.txt device tree file\n (bsc#1051510).\n\n - md-cluster: clear another node's suspend_area after the\n copy is finished (bsc#1106333).\n\n - md-cluster: do not send msg if array is closing\n (bsc#1106333).\n\n - md-cluster: release RESYNC lock after the last resync\n message (bsc#1106688).\n\n - md-cluster: show array's status more accurate\n (bsc#1106333).\n\n - media: exynos4-is: Prevent NULL pointer dereference in\n __isp_video_try_fmt() (bsc#1051510).\n\n - media: mem2mem: Remove excessive try_run call\n (bsc#1051510).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bsc#1051510).\n\n - media: omap3isp: zero-initialize the isp cam_xclk{a,b}\n initial data (bsc#1051510).\n\n - media: Revert '[media] tvp5150: fix pad format frame\n height' (bsc#1051510).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1051510).\n\n - media: tw686x: Fix oops on buffer alloc failure\n (bsc#1051510).\n\n - media: v4l2-mem2mem: Fix missing v4l2_m2m_try_run call\n (bsc#1051510).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bsc#1051510).\n\n - mei: bus: type promotion bug in mei_nfc_if_version()\n (bsc#1051510).\n\n - mei: do not update offset in write (bsc#1051510).\n\n - mei: ignore not found client in the enumeration\n (bsc#1051510).\n\n - mei: me: enable asynchronous probing ().\n\n - memcg, thp: do not invoke oom killer on thp charges\n (bnc#1089663).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bsc#1051510).\n\n - memory: tegra: Do not handle spurious interrupts\n (bsc#1051510).\n\n - mfd: 88pm860x-i2c: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - mfd: arizona: Do not use regmap_read_poll_timeout\n (bsc#1051510).\n\n - mfd: intel-lpss: Add Ice Lake PCI IDs (bsc#1051510).\n\n - mfd: lpc_ich: Do not touch SPI-NOR write protection bit\n on Apollo Lake (bsc#1051510).\n\n - mfd: sm501: Set coherent_dma_mask when creating\n subdevices (bsc#1051510).\n\n - mfd: ti_am335x_tscadc: Fix struct clk memory leak\n (bsc#1051510).\n\n - mlxsw: core_acl_flex_actions: Return error for\n conflicting actions (netfilter-stable-18_08_17).\n\n - mmc: omap_hsmmc: fix wakeirq handling on removal\n (bsc#1051510).\n\n - mmc: sdhci: do not try to use 3.3V signaling if not\n supported (bsc#1051510).\n\n - mmc: sdhci-of-esdhc: set proper dma mask for ls104x\n chips (bsc#1051510).\n\n - mmc: tegra: prevent HS200 on Tegra 3 (bsc#1051510).\n\n - mm, dax: introduce pfn_t_special() (bsc#1104888).\n\n - mm: fix devmem_is_allowed() for sub-page System RAM\n intersections (bsc#1106800).\n\n - mm/huge_memory.c: fix data loss when splitting a file\n pmd (bnc#1107074).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm, madvise_inject_error: Disable MADV_SOFT_OFFLINE for\n ZONE_DEVICE pages (bsc#1107783).\n\n - mm, madvise_inject_error: Let memory_failure()\n optionally take a page reference (bsc#1107783).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1107065).\n\n - mm, memory_failure: Collect mapping size in\n collect_procs() (bsc#1107783).\n\n - mm, memory_failure: Teach memory_failure() about\n dev_pagemap pages (bsc#1107783).\n\n - mm, numa: Migrate pages to local nodes quicker early in\n the lifetime of a task (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, page_alloc: double zone's batchsize (bnc#971975 VM\n performance -- page allocator).\n\n - mm/vmalloc: add interfaces to free unmapped page table\n (bsc#1110006).\n\n - mm/vmscan: wake up flushers for legacy cgroups too\n (bnc#1107061).\n\n - module: exclude SHN_UNDEF symbols from kallsyms api\n (bsc#1071995).\n\n - Move the previous hv netvsc fix to the sorted section\n (bsc#1104708)\n\n - net/9p/client.c: version pointer uninitialized\n (bsc#1051510).\n\n - net/9p: fix error path of p9_virtio_probe (bsc#1051510).\n\n - net/9p: Switch to wait_event_killable() (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race by holding the lock\n (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bsc#1051510).\n\n - net: bcmgenet: correct bad merge (bsc#1051510).\n\n - net: bcmgenet: enable loopback during UniMAC sw_reset\n (bsc#1051510).\n\n - net: bcmgenet: Fix sparse warnings in\n bcmgenet_put_tx_csum() (bsc#1051510).\n\n - net: bcmgenet: Fix unmapping of fragments in\n bcmgenet_xmit() (bsc#1051510).\n\n - net: bcmgenet: prevent duplicate calls of\n bcmgenet_dma_teardown (bsc#1051510).\n\n - net: dccp: avoid crash in ccid3_hc_rx_send_feedback()\n (networking-stable-18_07_19).\n\n - net: dccp: switch rx_tstamp_last_feedback to monotonic\n clock (networking-stable-18_07_19).\n\n - net: diag: Do not double-free TCP_NEW_SYN_RECV sockets\n in tcp_abort (netfilter-stable-18_07_23).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (netfilter-stable-18_08_04).\n\n - net: ena: Eliminate duplicate barriers on weakly-ordered\n archs (bsc#1108093).\n\n - net: ena: fix device destruction to gracefully free\n resources (bsc#1108093).\n\n - net: ena: fix driver when PAGE_SIZE == 64kB\n (bsc#1108093).\n\n - net: ena: fix incorrect usage of memory barriers\n (bsc#1108093).\n\n - net: ena: fix missing calls to READ_ONCE (bsc#1108093).\n\n - net: ena: fix missing lock during device destruction\n (bsc#1108093).\n\n - net: ena: fix potential double ena_destroy_device()\n (bsc#1108093).\n\n - net: ena: fix surprise unplug NULL dereference kernel\n crash (bsc#1108093).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (netfilter-stable-18_08_01).\n\n - net: ethernet: mvneta: Fix napi structure mixup on\n armada 3700 (networking-stable-18_08_21).\n\n - netfilter: do not set F_IFACE on ipv6 fib lookups\n (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: provide input interface for\n route lookup (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: set F_IFACE for linklocal\n addresses (git-fixes).\n\n - netfilter: nat: Revert 'netfilter: nat: convert nat\n bysrc hash to rhashtable' (netfilter-stable-17_11_16).\n\n - netfilter: nf_tables: add missing netlink attrs to\n policies (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: do not assume chain stats are set\n when jumplabel is set (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: fix memory leak on error exit\n return (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: nft_compat: fix refcount leak on\n xt module (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON\n in nft_do_chain() (netfilter-stable-18_06_25).\n\n - netfilter: nft_compat: fix handling of large matchinfo\n size (netfilter-stable-18_06_27).\n\n - netfilter: nft_compat: prepare for indirect info storage\n (netfilter-stable-18_06_27).\n\n - netfilter: nft_meta: fix wrong value dereference in\n nft_meta_set_eval (netfilter-stable-18_06_27).\n\n - net: fix amd-xgbe flow-control issue\n (netfilter-stable-18_08_01).\n\n - net: fix use-after-free in GRO with ESP\n (networking-stable-18_07_19).\n\n - net: hns3: add unlikely for error check (bsc#1104353 ).\n\n - net: hns3: Fix comments for\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix desc num set to default when setting\n channel (bsc#1104353).\n\n - net: hns3: Fix for command format parsing error in\n hclge_is_all_function_id_zero (bsc#1104353).\n\n - net: hns3: Fix for information of phydev lost problem\n when down/up (bsc#1104353).\n\n - net: hns3: Fix for l4 checksum offload bug (bsc#1104353\n ).\n\n - net: hns3: Fix for mac pause not disable in pfc mode\n (bsc#1104353).\n\n - net: hns3: Fix for mailbox message truncated problem\n (bsc#1104353).\n\n - net: hns3: Fix for phy link issue when using marvell phy\n driver (bsc#1104353).\n\n - net: hns3: Fix for reset_level default assignment\n probelm (bsc#1104353).\n\n - net: hns3: Fix for using wrong mask and shift in\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix for waterline not setting correctly\n (bsc#1104353 ).\n\n - net: hns3: Fix get_vector ops in hclgevf_main module\n (bsc#1104353).\n\n - net: hns3: Fix MSIX allocation issue for VF (bsc#1104353\n ).\n\n - net: hns3: fix page_offset overflow when\n CONFIG_ARM64_64K_PAGES (bsc#1104353).\n\n - net: hns3: Fix return value error in\n hns3_reset_notify_down_enet (bsc#1104353).\n\n - net: hns3: fix return value error while\n hclge_cmd_csq_clean failed (bsc#1104353).\n\n - net: hns3: Fix warning bug when doing lp selftest\n (bsc#1104353 ).\n\n - net: hns3: modify hnae_ to hnae3_ (bsc#1104353).\n\n - net: hns3: Prevent sending command during global or core\n reset (bsc#1104353).\n\n - net: hns3: remove some redundant assignments\n (bsc#1104353 ).\n\n - net: hns3: remove unnecessary ring configuration\n operation while resetting (bsc#1104353).\n\n - net: hns3: simplify hclge_cmd_csq_clean (bsc#1104353 ).\n\n - net: hns3: Standardize the handle of return value\n (bsc#1104353 ).\n\n - net: hns: add netif_carrier_off before change speed and\n duplex (bsc#1107924).\n\n - net: hns: add the code for cleaning pkt in chip\n (bsc#1107924).\n\n - net/ipv4: Set oif in fib_compute_spec_dst\n (netfilter-stable-18_07_23).\n\n - netlink: Do not shift on 64 for ngroups (git-fixes).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (netfilter-stable-18_08_01).\n\n - netlink: Do not subscribe to non-existent groups\n (netfilter-stable-18_08_01).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (netfilter-stable-18_08_04).\n\n - net: mdio-mux: bcm-iproc: fix wrong getter and setter\n pair (netfilter-stable-18_08_01).\n\n - net/mlx5e: Avoid dealing with vport representors if not\n being e-switch manager (networking-stable-18_07_19).\n\n - net/mlx5: E-Switch, Avoid setup attempt if not being\n e-switch manager (networking-stable-18_07_19).\n\n - net: mvneta: fix mvneta_config_rss on armada 3700\n (networking-stable-18_08_21).\n\n - net: mvneta: fix the Rx desc DMA address in the Rx path\n (networking-stable-18_07_19).\n\n - net/packet: fix use-after-free\n (networking-stable-18_07_19).\n\n - Netperf performance issue due to AppArmor net mediation\n (bsc#1108520)\n\n - net: phy: consider PHY_IGNORE_INTERRUPT in\n phy_start_aneg_priv (netfilter-stable-18_07_27).\n\n - net: phy: fix flag masking in __set_phy_supported\n (netfilter-stable-18_07_23).\n\n - net: rtnl_configure_link: fix dev flags changes arg to\n __dev_notify_flags (git-fixes).\n\n - net_sched: blackhole: tell upper qdisc about dropped\n packets (networking-stable-18_07_19).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (netfilter-stable-18_08_17).\n\n - net: skb_segment() should not return NULL\n (netfilter-stable-18_07_27).\n\n - net: stmmac: align DMA stuff to largest cache line\n length (netfilter-stable-18_08_01).\n\n - net: stmmac: Fix WoL for PCI-based setups\n (netfilter-stable-18_08_04).\n\n - net: stmmac: mark PM functions as __maybe_unused\n (git-fixes).\n\n - net: sungem: fix rx checksum support\n (networking-stable-18_07_19).\n\n - net: systemport: Fix CRC forwarding check for SYSTEMPORT\n Lite (netfilter-stable-18_07_23).\n\n - nfc: Fix possible memory corruption when handling SHDLC\n I-Frame commands (bsc#1051510).\n\n - nfs41: do not return ENOMEM on LAYOUTUNAVAILABLE\n (git-fixes).\n\n - nfsd: remove blocked locks on client teardown\n (git-fixes).\n\n - nfs/filelayout: fix oops when freeing filelayout segment\n (bsc#1105190).\n\n - nfs/filelayout: Fix racy setting of fl->dsaddr in\n filelayout_check_deviceid() (bsc#1105190).\n\n - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls\n back to the mds (git-fixes).\n\n - nfs: Use an appropriate work queue for direct-write\n completion (bsc#1082519).\n\n - nfsv4 client live hangs after live data migration\n recovery (git-fixes).\n\n - nfsv4: Fix a sleep in atomic context in\n nfs4_callback_sequence() (git-fixes).\n\n - nfsv4: Fix possible 1-byte stack overflow in\n nfs_idmap_read_and_verify_message (git-fixes).\n\n - nl80211: Add a missing break in parse_station_flags\n (bsc#1051510).\n\n - nl80211: check nla_parse_nested() return values\n (bsc#1051510).\n\n - nvme_fc: add 'nvme_discovery' sysfs attribute to fc\n transport device (bsc#1044189).\n\n - nvme: register ns_id attributes as default sysfs groups\n (bsc#1105247).\n\n - parport: sunbpp: fix error return code (bsc#1051510).\n\n - partitions/aix: append null character to print data from\n disk (bsc#1051510).\n\n - partitions/aix: fix usage of uninitialized lv_info and\n lvname structures (bsc#1051510).\n\n - pci: aardvark: Fix I/O space page leak (git-fixes).\n\n - pci: aardvark: Size bridges before resources allocation\n (bsc#1109806).\n\n - pci: Add pci_resize_resource() for resizing BARs\n (bsc#1105355).\n\n - pci: Add PCI resource type mask #define (bsc#1105355).\n\n - pci: Add resizable BAR infrastructure (bsc#1105355).\n\n - pci: Allow release of resources that were never assigned\n (bsc#1105355).\n\n - pci: Cleanup PCI_REBAR_CTRL_BAR_SHIFT handling\n (bsc#1105355).\n\n - pci: designware: Fix I/O space page leak (bsc#1109806).\n\n - pci: faraday: Add missing of_node_put() (bsc#1109806).\n\n - pci: faraday: Fix I/O space page leak (bsc#1109806).\n\n - pci: hotplug: Do not leak pci_slot on registration\n failure (bsc#1051510).\n\n - pci: hv: Make sure the bus domain is really unique\n (git-fixes).\n\n - pci: Match Root Port's MPS to endpoint's MPSS as\n necessary (bsc#1109269).\n\n - pci: mvebu: Fix I/O space end address calculation\n (bsc#1051510).\n\n - pci: OF: Fix I/O space page leak (git-fixes).\n\n - pci: pciehp: Fix unprotected list iteration in IRQ\n handler (bsc#1051510).\n\n - pci: pciehp: Fix use-after-free on unplug (bsc#1051510).\n\n - PCI/portdrv: Compute MSI/MSI-X IRQ vectors after final\n allocation (bsc#1109806).\n\n - PCI/portdrv: Factor out Interrupt Message Number lookup\n (bsc#1109806).\n\n - pci: Restore resized BAR state on resume (bsc#1105355).\n\n - pci: Skip MPS logic for Virtual Functions (VFs)\n (bsc#1051510).\n\n - pci: versatile: Fix I/O space page leak (bsc#1109806).\n\n - pci: xgene: Fix I/O space page leak (bsc#1109806).\n\n - pci: xilinx: Add missing of_node_put() (bsc#1109806).\n\n - pci: xilinx-nwl: Add missing of_node_put()\n (bsc#1109806).\n\n - pinctrl/amd: only handle irq if it is pending and\n unmasked (bsc#1051510).\n\n - pinctrl: cannonlake: Fix community ordering for H\n variant (bsc#1051510).\n\n - pinctrl: cannonlake: Fix HOSTSW_OWN register offset of H\n variant (bsc#1051510).\n\n - pinctrl: core: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bsc#1051510).\n\n - pinctrl: imx: off by one in imx_pinconf_group_dbg_show()\n (bsc#1051510).\n\n - pinctrl: pinmux: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: qcom: spmi-gpio: Fix pmic_gpio_config_get() to\n be compliant (bsc#1051510).\n\n - pinctrl: single: Fix group and function selector use\n (bsc#1051510).\n\n - pipe: actually allow root to exceed the pipe buffer\n limits (bsc#1106297).\n\n - platform/x86: alienware-wmi: Correct a memory leak\n (bsc#1051510).\n\n - platform/x86: asus-nb-wmi: Add keymap entry for lid flip\n action on UX360 (bsc#1051510).\n\n - platform/x86: thinkpad_acpi: Proper model/release\n matching (bsc#1051510).\n\n - platform/x86: toshiba_acpi: Fix defined but not used\n build warnings (bsc#1051510).\n\n - PM / clk: signedness bug in of_pm_clk_add_clks()\n (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: Fix duplicated opp table on\n reload (bsc#1051510).\n\n - PM / Domains: Fix error path during attach in genpd\n (bsc#1051510).\n\n - pmem: Switch to copy_to_iter_mcsafe() (bsc#1098782).\n\n - PM / runtime: Drop usage count for suppliers at device\n link removal (bsc#1100132).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bsc#1051510).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (git-fixes).\n\n - power: gemini-poweroff: Avoid more spurious poweroffs\n (bsc#1051510).\n\n - power: generic-adc-battery: check for duplicate\n properties copied from iio channels (bsc#1051510).\n\n - power: generic-adc-battery: fix out-of-bounds write when\n copying channel properties (bsc#1051510).\n\n - powernv/pseries: consolidate code for mce early handling\n (bsc#1094244).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032, git-fixes).\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bsc#1094244).\n\n - powerpc/64s: Fix DT CPU features Power9 DD2.1 logic\n (bsc#1055117).\n\n - powerpc/64s: move machine check SLB flushing to mm/slb.c\n (bsc#1094244).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157, git-fixes).\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc/fadump: cleanup crash memory ranges support\n (bsc#1103269).\n\n - powerpc/fadump: re-register firmware-assisted dump if\n already registered (bsc#1108170, bsc#1108823).\n\n - powerpc: Fix size calculation using resource_size()\n (bnc#1012382).\n\n - powerpc: KABI add aux_ptr to hole in paca_struct to\n extend it with additional members (bsc#1094244).\n\n - powerpc: kabi: move mce_data_buf into paca_aux\n (bsc#1094244).\n\n - powerpc/kprobes: Fix call trace due to incorrect preempt\n count (bsc#1065729).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1065729).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1065729).\n\n - powerpc/mce: Fix SLB rebolting during MCE recovery path\n (bsc#1094244).\n\n - powerpc/numa: Use associativity if VPHN hcall is\n successful (bsc#1110363).\n\n - powerpc/perf: Fix IMC allocation routine (bsc#1054914).\n\n - powerpc/perf: Fix memory allocation for core-imc based\n on num_possible_cpus() (bsc#1054914).\n\n - powerpc/perf: Remove sched_task function defined for\n thread-imc (bsc#1054914).\n\n - powerpc/pkeys: Fix reading of ibm,\n processor-storage-keys property (bsc#1109244).\n\n - powerpc/powernv/npu: Do a PID GPU TLB flush when\n invalidating a large address range (bsc#1055120).\n\n - powerpc/pseries: Avoid using the size greater than\n RTAS_ERROR_LOG_MAX (bsc#1094244).\n\n - powerpc/pseries: Defer the logging of rtas error to irq\n work queue (bsc#1094244).\n\n - powerpc/pseries: Define MCE error event section\n (bsc#1094244).\n\n - powerpc/pseries: Disable CPU hotplug across migrations\n (bsc#1065729).\n\n - powerpc/pseries: Display machine check error details\n (bsc#1094244).\n\n - powerpc/pseries: Dump the SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: fix EEH recovery of some IOV devices\n (bsc#1078720, git-fixes).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bsc#1094244).\n\n - powerpc/pseries: Flush SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: Remove prrn_work workqueue\n (bsc#1102495, bsc#1109337).\n\n - powerpc/pseries: Remove unneeded uses of dlpar work\n queue (bsc#1102495, bsc#1109337).\n\n - powerpc/tm: Avoid possible userspace r1 corruption on\n reclaim (bsc#1109333).\n\n - powerpc/tm: Fix userspace r13 corruption (bsc#1109333).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc/xive: Fix trying to 'push' an already active\n pool VP (bsc#1085030, git-fixes).\n\n - power: remove possible deadlock when unregistering\n power_supply (bsc#1051510).\n\n - power: supply: axp288_charger: Fix initial\n constant_charge_current value (bsc#1051510).\n\n - power: supply: max77693_charger: fix unintentional\n fall-through (bsc#1051510).\n\n - power: vexpress: fix corruption in notifier registration\n (bsc#1051510).\n\n - ppp: Destroy the mutex when cleanup (bsc#1051510).\n\n - ppp: fix __percpu annotation (bsc#1051510).\n\n - pstore: Fix incorrect persistent ram buffer mapping\n (bsc#1051510).\n\n - ptp: fix missing break in switch (bsc#1105355).\n\n - ptr_ring: fail early if queue occupies more than\n KMALLOC_MAX_SIZE (bsc#1105355).\n\n - ptr_ring: fix up after recent ptr_ring changes\n (bsc#1105355).\n\n - ptr_ring: prevent integer overflow when calculating size\n (bsc#1105355).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bsc#1051510).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - r8152: Check for supported Wake-on-LAN Modes\n (bsc#1051510).\n\n - r8169: add support for NCube 8168 network card\n (bsc#1051510).\n\n - random: add new ioctl RNDRESEEDCRNG (bsc#1051510).\n\n - random: fix possible sleeping allocation from irq\n context (bsc#1051510).\n\n - random: mix rdrand with entropy sent in from userspace\n (bsc#1051510).\n\n - random: set up the NUMA crng instances after the CRNG is\n fully initialized (bsc#1051510).\n\n - RDMA/bnxt_re: Fix a bunch of off by one bugs in\n qplib_fp.c (bsc#1050244).\n\n - RDMA/bnxt_re: Fix a couple off by one bugs (bsc#1050244\n ).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1058659).\n\n - RDMA/uverbs: Expand primary and alt AV port checks\n (bsc#1046306 ).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality, git fixes).\n\n - regulator: fix crash caused by null driver data\n (bsc#1051510).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bsc#1106236).\n\n - Replace magic for trusting the secondary keyring with\n #define (bsc#1051510).\n\n - Revert 'btrfs: qgroups: Retry after commit on getting\n EDQUOT' (bsc#1031392).\n\n - Revert 'ipc/shm: Fix shmat mmap nil-page protection'\n (bsc#1090078).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Revert 'pci: Add ACS quirk for Intel 300 series'\n (bsc#1051510).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bsc#1051510).\n\n - Revert 'vhost: cache used event for better performance'\n (bsc#1090528).\n\n - Revert 'vmalloc: back off when the current task is\n killed' (bnc#1107073).\n\n - rhashtable: add schedule points (bsc#1051510).\n\n - rndis_wlan: potential buffer overflow in\n rndis_wlan_auth_indication() (bsc#1051510).\n\n - root dentries need RCU-delayed freeing (bsc#1106297).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bsc#1051510).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bsc#1051510).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (netfilter-stable-18_07_27).\n\n - rxrpc: Fix user call ID check in\n rxrpc_service_prealloc_one (netfilter-stable-18_08_04).\n\n - s390: always save and restore all registers on context\n switch (bsc#1103421).\n\n - s390/crypto: Fix return code checking in\n cbc_paes_crypt() (bnc#1108323, LTC#171709).\n\n - s390: detect etoken facility (bsc#1103421).\n\n - s390/entry.S: use assembler alternatives (bsc#1103421).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (git-fixes, bsc#1103421).\n\n - s390: fix compat system call table (bsc#1103421).\n\n - s390: fix handling of -1 in set{,fs}id16 syscalls\n (bsc#1103421).\n\n - s390/lib: use expoline for all bcr instructions\n (git-fixes, bsc#1103421).\n\n - s390/mm: fix local TLB flushing vs. detach of an mm\n address space (bsc#1103421).\n\n - s390/mm: fix race on mm->context.flush_mm (bsc#1103421).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1108323, LTC#171068).\n\n - s390: Prevent hotplug rwsem recursion (bsc#1105731).\n\n - s390/qdio: reset old sbal_state flags (LTC#171525,\n bsc#1106948).\n\n - s390/qeth: consistently re-enable device features\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: rely on kernel for feature recovery\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: use vzalloc for QUERY OAT buffer (LTC#171527,\n bsc#1106948).\n\n - s390/runtime instrumentation: simplify task exit\n handling (bsc#1103421).\n\n - s390: use expoline thunks for all branches generated by\n the BPF JIT (bsc#1103421).\n\n - samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1\n (bsc#1083647).\n\n - sched/debug: Reverse the order of printing faults\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/fair: Fix bandwidth timer clock drift condition\n (Git-fixes).\n\n - sched/fair: Fix vruntime_normalized() for remote\n non-migration wakeup (git-fixes).\n\n - sched/numa: Avoid task migration for small NUMA\n improvement (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Do not move imbalanced load purely on the\n basis of an idle CPU (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Modify migrate_swap() to accept additional\n parameters (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Move task_numa_placement() closer to\n numa_migrate_preferred() (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Remove numa_has_capacity() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field (bnc#1101669 optimise\n numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field -kabi (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused code from update_numa_stats()\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused nr_running field (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Reset scan rate whenever task moves across\n nodes (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Set preferred_node based on best_cpu\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Simplify load_too_imbalanced() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Skip nodes that are at 'hoplimit'\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Stop comparing tasks for NUMA placement\n after selecting an idle core (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Update the scan period without holding the\n numa_group lock (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Use group_weights to identify if migration\n degrades locality (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Use task faults only if numa_group is not\n yet set up (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - scripts/git_sort/git_sort.py: Add fixes branch from\n mkp/scsi.git.\n\n - scripts/git_sort/git_sort.py: add libnvdimm-for-next\n branch\n\n - scripts/git_sort/git_sort.py: add mkp 4.20/scsi-queue\n\n - scripts: modpost: check memory allocation results\n (bsc#1051510).\n\n - scsi: cxlflash: Abstract hardware dependent assignments\n ().\n\n - scsi: cxlflash: Acquire semaphore before invoking ioctl\n services ().\n\n - scsi: cxlflash: Adapter context init can return error\n ().\n\n - scsi: cxlflash: Adapter context support for OCXL ().\n\n - scsi: cxlflash: Add argument identifier names ().\n\n - scsi: cxlflash: Add include guards to backend.h ().\n\n - scsi: cxlflash: Avoid clobbering context control\n register value ().\n\n - scsi: cxlflash: Enable OCXL operations ().\n\n - scsi: cxlflash: Explicitly cache number of interrupts\n per context ().\n\n - scsi: cxlflash: Handle spurious interrupts ().\n\n - scsi: cxlflash: Hardware AFU for OCXL ().\n\n - scsi: cxlflash: Introduce object handle fop ().\n\n - scsi: cxlflash: Introduce OCXL backend ().\n\n - scsi: cxlflash: Introduce OCXL context state machine ().\n\n - scsi: cxlflash: Isolate external module dependencies ().\n\n - scsi: cxlflash: Limit the debug logs in the IO path ().\n\n - scsi: cxlflash: MMIO map the AFU ().\n\n - scsi: cxlflash: Preserve number of interrupts for master\n contexts ().\n\n - scsi: cxlflash: Read host AFU configuration ().\n\n - scsi: cxlflash: Read host function configuration ().\n\n - scsi: cxlflash: Register for translation errors ().\n\n - scsi: cxlflash: Remove commmands from pending list on\n timeout ().\n\n - scsi: cxlflash: Remove embedded CXL work structures ().\n\n - scsi: cxlflash: Setup AFU acTag range ().\n\n - scsi: cxlflash: Setup AFU PASID ().\n\n - scsi: cxlflash: Setup function acTag range ().\n\n - scsi: cxlflash: Setup function OCXL link ().\n\n - scsi: cxlflash: Setup LISNs for master contexts ().\n\n - scsi: cxlflash: Setup LISNs for user contexts ().\n\n - scsi: cxlflash: Setup OCXL transaction layer ().\n\n - scsi: cxlflash: Staging to support future accelerators\n ().\n\n - scsi: cxlflash: Support adapter context discovery ().\n\n - scsi: cxlflash: Support adapter context mmap and release\n ().\n\n - scsi: cxlflash: Support adapter context polling ().\n\n - scsi: cxlflash: Support adapter context reading ().\n\n - scsi: cxlflash: Support adapter file descriptors for\n OCXL ().\n\n - scsi: cxlflash: Support AFU interrupt management ().\n\n - scsi: cxlflash: Support AFU interrupt mapping and\n registration ().\n\n - scsi: cxlflash: Support AFU reset ().\n\n - scsi: cxlflash: Support AFU state toggling ().\n\n - scsi: cxlflash: Support file descriptor mapping ().\n\n - scsi: cxlflash: Support image reload policy modification\n ().\n\n - scsi: cxlflash: Support process element lifecycle ().\n\n - scsi: cxlflash: Support process specific mappings ().\n\n - scsi: cxlflash: Support reading adapter VPD data ().\n\n - scsi: cxlflash: Support starting an adapter context ().\n\n - scsi: cxlflash: Support starting user contexts ().\n\n - scsi: cxlflash: Synchronize reset and remove ops ().\n\n - scsi: cxlflash: Use IDR to manage adapter contexts ().\n\n - scsi: cxlflash: Use local mutex for AFU serialization\n ().\n\n - scsi: cxlflash: Yield to active send threads ().\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138). \n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - scsi: fcoe: hold disc_mutex when traversing rport lists\n (bsc#1077989).\n\n - scsi: hisi_sas: Add a flag to filter PHY events during\n reset ().\n\n - scsi: hisi_sas: add memory barrier in task delivery\n function ().\n\n - scsi: hisi_sas: Add missing PHY spinlock init ().\n\n - scsi: hisi_sas: Add SATA FIS check for v3 hw ().\n\n - scsi: hisi_sas: Adjust task reject period during host\n reset ().\n\n - scsi: hisi_sas: Drop hisi_sas_slot_abort() ().\n\n - scsi: hisi_sas: Fix the conflict between dev gone and\n host reset ().\n\n - scsi: hisi_sas: Fix the failure of recovering PHY from\n STP link timeout ().\n\n - scsi: hisi_sas: Implement handlers of PCIe FLR for v3 hw\n ().\n\n - scsi: hisi_sas: Only process broadcast change in\n phy_bcast_v3_hw() ().\n\n - scsi: hisi_sas: Pre-allocate slot DMA buffers ().\n\n - scsi: hisi_sas: Release all remaining resources in clear\n nexus ha ().\n\n - scsi: hisi_sas: relocate some common code for v3 hw ().\n\n - scsi: hisi_sas: tidy channel interrupt handler for v3 hw\n ().\n\n - scsi: hisi_sas: Tidy hisi_sas_task_prep() ().\n\n - scsi: hisi_sas: tidy host controller reset function a\n bit ().\n\n - scsi: hisi_sas: Update a couple of register settings for\n v3 hw ().\n\n - scsi: hisi_sas: Use dmam_alloc_coherent() ().\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: ipr: System hung while dlpar adding primary ipr\n adapter back (bsc#1109336).\n\n - scsi: libfc: Add lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup 'sleeping function called from\n invalid context' (bsc#1077989).\n\n - scsi: libfc: hold disc_mutex in fc_disc_stop_rports()\n (bsc#1077989).\n\n - scsi: lpfc: Correct MDS diag and nvmet configuration\n (bsc#1106636).\n\n - scsi: mpt3sas: Fix calltrace observed while running IO &\n reset (bsc#1077989).\n\n - scsi: qla2xxx: Add appropriate debug info for invalid\n RX_ID (bsc#1108870).\n\n - scsi: qla2xxx: Add logic to detect ABTS hang and\n response completion (bsc#1108870).\n\n - scsi: qla2xxx: Add longer window for chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Add mode control for each physical port\n (bsc#1108870).\n\n - scsi: qla2xxx: Add support for ZIO6 interrupt threshold\n (bsc#1108870).\n\n - scsi: qla2xxx: Allow FC-NVMe underrun to be handled by\n transport (bsc#1108870).\n\n - scsi: qla2xxx: Check for Register disconnect\n (bsc#1108870).\n\n - scsi: qla2xxx: Cleanup for N2N code (bsc#1086327,).\n\n - scsi: qla2xxx: Decrement login retry count for only\n plogi (bsc#1108870).\n\n - scsi: qla2xxx: Defer chip reset until target mode is\n enabled (bsc#1108870).\n\n - scsi: qla2xxx: Fix deadlock between ATIO and HW lock\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix double increment of switch scan retry\n count (bsc#1108870).\n\n - scsi: qla2xxx: Fix dropped srb resource (bsc#1108870).\n\n - scsi: qla2xxx: Fix duplicate switch's Nport ID entries\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix early srb free on abort\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix iIDMA error (bsc#1108870).\n\n - scsi: qla2xxx: Fix incorrect port speed being set for FC\n adapters (bsc#1108870).\n\n - scsi: qla2xxx: Fix ISP recovery on unload\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix issue reported by static checker for\n qla2x00_els_dcmd2_sp_done() (bsc#1086327,).\n\n - scsi: qla2xxx: Fix login retry count (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Management Server NPort handle\n reservation logic (bsc#1086327,).\n\n - scsi: qla2xxx: Fix N2N link re-connect (bsc#1086327,).\n\n - scsi: qla2xxx: Fix out of order Termination and ABTS\n response (bsc#1108870).\n\n - scsi: qla2xxx: Fix port speed display on chip reset\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix premature command free (bsc#1108870).\n\n - scsi: qla2xxx: Fix process response queue for ISP26XX\n and above (bsc#1108870).\n\n - scsi: qla2xxx: Fix race between switch cmd completion\n and timeout (bsc#1086327,).\n\n - scsi: qla2xxx: Fix race condition for resource cleanup\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix redundant fc_rport registration\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Remote port registration\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix session state stuck in Get Port DB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stalled relogin (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stuck session in PLOGI state\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix unintended Logout (bsc#1086327,).\n\n - scsi: qla2xxx: Flush mailbox commands on chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Force fw cleanup on ADISC error\n (bsc#1108870).\n\n - scsi: qla2xxx: Increase abort timeout value\n (bsc#1108870).\n\n - scsi: qla2xxx: Migrate NVME N2N handling into state\n machine (bsc#1086327,).\n\n - scsi: qla2xxx: Move ABTS code behind qpair\n (bsc#1108870).\n\n - scsi: qla2xxx: Move {get|rel}_sp to base_qpair struct\n (bsc#1108870).\n\n - scsi: qla2xxx: Move rport registration out of internal\n work_list (bsc#1108870).\n\n - scsi: qla2xxx: Prevent sysfs access when chip is down\n (bsc#1086327,).\n\n - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU\n lock-up (bsc#1108870).\n\n - scsi: qla2xxx: Reject bsg request if chip is down\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove all rports if fabric scan retry\n fails (bsc#1108870).\n\n - scsi: qla2xxx: Remove ASYNC GIDPN switch command\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove redundant check for fcport\n deletion (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale ADISC_DONE event\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale debug trace message from\n tcm_qla2xxx (bsc#1108870).\n\n - scsi: qla2xxx: Save frame payload size from ICB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Serialize mailbox request (bsc#1108870).\n\n - scsi: qla2xxx: shutdown chip if reset fail\n (bsc#1108870).\n\n - scsi: qla2xxx: Silent erroneous message (bsc#1086327,).\n\n - scsi: qla2xxx: Spinlock recursion in qla_target\n (bsc#1086327,).\n\n - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0\n (bsc#1108870).\n\n - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB\n completion (bsc#1108870).\n\n - scsi: qla2xxx: Update driver to version 10.00.00.09-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.08-k\n (bsc#1086327,).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.10-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.11-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update rscn_rcvd field to more meaningful\n scan_needed (bsc#1108870).\n\n - scsi: qla2xxx: Use correct qpair for ABTS/CMD\n (bsc#1108870).\n\n - security: check for kstrdup() failure in lsm_append()\n (bsc#1051510).\n\n - selftests/bpf: fix a typo in map in map test\n (bsc#1083647).\n\n - selftests/bpf/test_maps: exit child process without\n error in ENOMEM case (bsc#1083647).\n\n - serial: 8250: Do not service RX FIFO if interrupts are\n disabled (bsc#1051510).\n\n - serial: 8250_dw: Add ACPI support for uart on Broadcom\n SoC (bsc#1051510).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bsc#1051510).\n\n - serial: core: mark port as initialized after successful\n IRQ change (bsc#1051510).\n\n - serial: enable spi in sc16is7xx driver References:\n bsc#1105672\n\n - serial: make sc16is7xx driver supported References:\n bsc#1105672\n\n - serial: pxa: Fix an error handling path in\n 'serial_pxa_probe()' (bsc#1051510).\n\n - serial: sh-sci: Stop RX FIFO timer during port shutdown\n (bsc#1051510).\n\n - serial: xuartps: fix typo in cdns_uart_startup\n (bsc#1051510).\n\n - series.conf: Sort automatic NUMA balancing related patch\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smsc75xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - smsc95xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - spi: cadence: Change usleep_range() to udelay(), for\n atomic context (bsc#1051510).\n\n - spi: davinci: fix a NULL pointer dereference\n (bsc#1051510).\n\n - spi-nor: intel-spi: Fix number of protected range\n registers for BYT/LPT ().\n\n - spi: pxa2xx: Add support for Intel Ice Lake\n (bsc#1051510).\n\n - spi: spi-fsl-dspi: Fix imprecise abort on VF500 during\n probe (bsc#1051510).\n\n - sr9800: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - sr: get/drop reference to device in revalidate and\n check_events (bsc#1109979).\n\n - staging: bcm2835-audio: Check if workqueue allocation\n failed ().\n\n - staging: bcm2835-audio: constify snd_pcm_ops structures\n ().\n\n - staging: bcm2835-audio: Deliver indirect-PCM transfer\n error ().\n\n - staging: bcm2835-audio: Disconnect and free\n vchi_instance on module_exit() ().\n\n - staging: bcm2835-audio: Do not leak workqueue if open\n fails ().\n\n - staging: bcm2835-audio: make snd_pcm_hardware const ().\n\n - staging: bcm2835-camera: fix timeout handling in\n wait_for_completion_timeout (bsc#1051510).\n\n - staging: bcm2835-camera: handle\n wait_for_completion_timeout return properly\n (bsc#1051510).\n\n - staging: comedi: ni_mio_common: fix subdevice flags for\n PFI subdevice (bsc#1051510).\n\n - staging: lustre: disable preempt while sampling\n processor id (bsc#1051510).\n\n - staging: lustre: fix bug in osc_enter_cache_try\n (bsc#1051510).\n\n - staging: lustre: ldlm: free resource when\n ldlm_lock_create() fails (bsc#1051510).\n\n - staging: lustre: libcfs: fix test for libcfs_ioctl_hdr\n minimum size (bsc#1051510).\n\n - staging: lustre: libcfs: Prevent harmless read underflow\n (bsc#1051510).\n\n - staging: lustre: llite: correct removexattr detection\n (bsc#1051510).\n\n - staging: lustre: llite: initialize xattr->xe_namelen\n (bsc#1051510).\n\n - staging: lustre: lmv: correctly iput lmo_root\n (bsc#1051510).\n\n - staging: lustre: lov: use correct env in\n lov_io_data_version_end() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix crash in\n kiblnd_handle_early_rxs() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix FastReg map/unmap for MLX5\n (bsc#1051510).\n\n - staging: lustre: o2iblnd: fix race at\n kiblnd_connect_peer (bsc#1051510).\n\n - staging: lustre: obdclass: return -EFAULT if\n copy_from_user() fails (bsc#1051510).\n\n - staging: lustre: obd_mount: use correct niduuid suffix\n (bsc#1051510).\n\n - staging: lustre: ptlrpc: kfree used instead of kvfree\n (bsc#1051510).\n\n - staging: lustre: remove invariant in cl_io_read_ahead()\n (bsc#1051510).\n\n - staging: lustre: statahead: remove incorrect test on\n agl_list_empty() (bsc#1051510).\n\n - staging: lustre: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1051510).\n\n - staging: rts5208: fix missing error check on call to\n rtsx_write_register (bsc#1051510).\n\n - staging: vc04_services: bcm2835-audio: Add blank line\n after declaration ().\n\n - staging: vc04_services: bcm2835-audio: add SPDX\n identifiers ().\n\n - staging: vc04_services: bcm2835-audio: Change to\n unsigned int * ().\n\n - staging: vc04_services: bcm2835-audio Format multiline\n comment ().\n\n - staging: vc04_services: bcm2835-audio: remove redundant\n license text ().\n\n - staging: vc04_services: Fix platform_no_drv_owner.cocci\n warnings ().\n\n - staging: vc04_services: please do not use multiple blank\n lines ().\n\n - stmmac: fix DMA channel hang in half-duplex mode\n (networking-stable-18_07_19).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1051510).\n\n - strparser: Remove early eaten to fix full tcp receive\n buffer stall (networking-stable-18_07_19).\n\n - sunxi-rsb: Include OF based modalias in device uevent\n (bsc#1051510).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: break up free_device callback\n (bsc#1105524).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (netfilter-stable-18_08_01).\n\n - tcp: add one more quick ack after after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp_bbr: fix bw probing to raise in-flight data for very\n small BDPs (netfilter-stable-18_08_01).\n\n - tcp: do not aggressively quick ack after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (netfilter-stable-18_07_27).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (netfilter-stable-18_07_27).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (netfilter-stable-18_08_01).\n\n - tcp: fix dctcp delayed ACK schedule\n (netfilter-stable-18_07_27).\n\n - tcp: fix Fast Open key endianness\n (networking-stable-18_07_19).\n\n - tcp: helpers to send special DCTCP ack\n (netfilter-stable-18_07_27).\n\n - tcp: prevent bogus FRTO undos with non-SACK flows\n (networking-stable-18_07_19).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (netfilter-stable-18_08_01).\n\n - tg3: Add higher cpu clock for 5762\n (netfilter-stable-18_07_23).\n\n - thermal_hwmon: Pass the originating device down to\n hwmon_device_register_with_info (bsc#1103363).\n\n - thermal_hwmon: Sanitize attribute name passed to hwmon\n (bsc#1103363).\n\n - thermal: thermal_hwmon: Convert to\n hwmon_device_register_with_info() (bsc#1103363).\n\n - ti: ethernet: cpdma: Use correct format for genpool_*\n (bsc#1051510).\n\n - tools/power turbostat: fix -S on UP systems\n (bsc#1051510).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bsc#1051510).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bsc#1051510).\n\n - tpm: cmd_ready command can be issued only after granting\n locality (bsc#1082555).\n\n - tpm: fix race condition in tpm_common_write()\n (bsc#1082555).\n\n - tpm: fix use after free in tpm2_load_context()\n (bsc#1082555).\n\n - tpm: Introduce flag TPM_TRANSMIT_RAW (bsc#1082555).\n\n - tpm: separate cmd_ready/go_idle from runtime_pm\n (bsc#1082555).\n\n - tpm: tpm_crb: relinquish locality on error path\n (bsc#1082555).\n\n - tpm: vtpm_proxy: Implement request_locality function\n (bsc#1082555).\n\n - tracepoint: Do not warn on ENOMEM (bsc#1051510).\n\n - tty: fix termios input-speed encoding (bsc#1051510).\n\n - tty: fix termios input-speed encoding when using BOTHER\n (bsc#1051510).\n\n - tty: serial: 8250: Revert NXP SC16C2552 workaround\n (bsc#1051510).\n\n - uart: fix race between uart_put_char() and\n uart_shutdown() (bsc#1051510).\n\n - ubifs: Check data node size before truncate\n (bsc#1051510).\n\n - ubifs: Fix directory size calculation for symlinks\n (bsc#1106230).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1051510).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1051510).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1051510).\n\n - udlfb: set optimal write delay (bsc#1051510).\n\n - udl-kms: avoid division (bsc#1051510).\n\n - udl-kms: change down_interruptible to down\n (bsc#1051510).\n\n - udl-kms: fix crash due to uninitialized memory\n (bsc#1051510).\n\n - udl-kms: handle allocation failure (bsc#1051510).\n\n - uio, lib: Fix CONFIG_ARCH_HAS_UACCESS_MCSAFE compilation\n (bsc#1098782).\n\n - uio: potential double frees if __uio_register_device()\n fails (bsc#1051510).\n\n - Update config files, make CRYPTO_CRCT10DIF_PCLMUL\n built-in (bsc#1105603).\n\n - Update\n patches.drivers/0016-arm64-vgic-v2-Fix-proxying-of-cpuif\n -access.patch (bsc#1106901, bsc#1107265).\n\n - Update\n patches.fixes/4.4.139-043-powerpc-mm-hash-Add-missing-is\n ync-prior-to-ke.patch (bnc#1012382, bsc#1094244).\n\n - Update patch tag of dmi fix (bsc#1105597) Also moved to\n the sorted section.\n\n - Update patch tags of recent security fixes (bsc#1106426)\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bsc#1051510).\n\n - uprobes/x86: Remove incorrect WARN_ON() in\n uprobe_init_insn() (bsc#1051510).\n\n - usb: cdc-wdm: do not enable interrupts in USB-giveback\n (bsc#1051510).\n\n - usb: Do not die twice if PCI xhci host is not responding\n in resume (bsc#1051510).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bsc#1051510).\n\n - usb: dwc2: gadget: Fix issue in dwc2_gadget_start_isoc()\n (bsc#1051510).\n\n - usb: dwc3: change stream event enable bit back to 13\n (bsc#1051510).\n\n - usb: dwc3: pci: add support for Intel IceLake\n (bsc#1051510).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bsc#1051510).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: fix maxpacket size of\n ep0 (bsc#1051510).\n\n - usb: net2280: Fix erroneous synchronization change\n (bsc#1051510).\n\n - usb: option: add support for DW5821e (bsc#1051510).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bsc#1051510).\n\n - usb: serial: io_ti: fix array underflow in completion\n handler (bsc#1051510).\n\n - usb: serial: kobil_sct: fix modem-status error handling\n (bsc#1051510).\n\n - usb: serial: pl2303: add a new device id for ATEN\n (bsc#1051510).\n\n - usb: serial: sierra: fix potential deadlock at close\n (bsc#1051510).\n\n - usb: serial: ti_usb_3410_5052: fix array underflow in\n completion handler (bsc#1051510).\n\n - usb: xhci: increase CRS timeout value (bsc#1051510).\n\n - userns: move user access out of the mutex (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Payload Size (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Read Request Size\n (bsc#1051510).\n\n - vfio/type1: Fix task tracking for QEMU vCPU hotplug\n (bsc#1051510).\n\n - vfs: do not test owner for NFS in set_posix_acl()\n (bsc#1103405).\n\n - vhost: correctly check the iova range when waking\n virtqueue (bsc#1051510).\n\n - vhost: do not try to access device IOTLB when not\n initialized (bsc#1051510).\n\n - vhost_net: validate sock before trying to put its fd\n (networking-stable-18_07_19).\n\n - vhost: reset metadata cache when initializing new IOTLB\n (netfilter-stable-18_08_17).\n\n - vhost: use mutex_lock_nested() in vhost_dev_lock_vqs()\n (bsc#1051510).\n\n - video: fbdev: pxafb: clear allocated memory for video\n modes (bsc#1051510).\n\n - video: goldfishfb: fix memory leak on driver remove\n (bsc#1051510).\n\n - vmci: type promotion bug in qp_host_get_user_memory()\n (bsc#1105355).\n\n - vmw_balloon: do not use 2MB without batching\n (bsc#1051510).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bsc#1051510).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bsc#1051510).\n\n - vmw_balloon: remove inflation rate limiting\n (bsc#1051510).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bsc#1051510).\n\n - VSOCK: fix loopback on big-endian systems\n (networking-stable-18_07_19).\n\n - vsock: split dwork to avoid reinitializations\n (netfilter-stable-18_08_17).\n\n - vxlan: add new fdb alloc and create helpers\n (netfilter-stable-18_07_27).\n\n - vxlan: fix default fdb entry netlink notify ordering\n during netdev create (netfilter-stable-18_07_27).\n\n - vxlan: make netlink notify in vxlan_fdb_destroy optional\n (netfilter-stable-18_07_27).\n\n - wan/fsl_ucc_hdlc: use IS_ERR_VALUE() to check return\n value of qe_muram_alloc (bsc#1051510).\n\n - watchdog: Mark watchdog touch functions as notrace\n (git-fixes).\n\n - wlcore: Add missing PM call for\n wlcore_cmd_wait_for_event_or_timeout() (bsc#1051510).\n\n - wlcore: Set rx_status boottime_ns field on rx\n (bsc#1051510).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1051510).\n\n - x86/apic: Fix restoring boot IRQ mode in reboot and\n kexec/kdump (bsc#1110006).\n\n - x86/apic: Split disable_IO_APIC() into two functions to\n fix CONFIG_KEXEC_JUMP=y (bsc#1110006).\n\n - x86/apic: Split out restore_boot_irq_mode() from\n disable_IO_APIC() (bsc#1110006).\n\n - x86/apic/vector: Fix off by one in error path\n (bsc#1110006).\n\n - x86/asm/memcpy_mcsafe: Add labels for __memcpy_mcsafe()\n write fault handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Add write-protection-fault\n handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Define copy_to_iter_mcsafe()\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Fix copy_to_user_mcsafe()\n exception handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Provide original\n memcpy_mcsafe_unrolled (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Remove loop unrolling\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Return bytes remaining\n (bsc#1098782).\n\n - x86/boot: Fix kexec booting failure in the SEV bit\n detection code (bsc#1110301).\n\n - x86/build/64: Force the linker to use 2MB page size\n (bsc#1109603).\n\n - x86/CPU/AMD: Derive CPU topology from CPUID function 0xB\n when available ().\n\n - x86/CPU: Modify detect_extended_topology() to return\n result ().\n\n - x86/dumpstack: Save first regs set for the executive\n summary (bsc#1110006).\n\n - x86/dumpstack: Unify show_regs() (bsc#1110006).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/entry/64: Wipe KASAN stack shadow before\n rewind_stack_do_exit() (bsc#1110006).\n\n - x86/espfix/64: Fix espfix double-fault handling on\n 5-level systems (bsc#1110006).\n\n - x86/events/intel/ds: Fix bts_interrupt_threshold\n alignment (git-fixes c1961a4631da).\n\n - x86/idt: Load idt early in start_secondary\n (bsc#1110006).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1106121).\n\n - x86: irq_remapping: Move irq remapping mode enum ().\n\n - x86/kasan/64: Teach KASAN about the cpu_entry_area\n (kasan).\n\n - x86/kexec: Avoid double free_page() upon do_kexec_load()\n failure (bsc#1110006).\n\n - x86/kvm: fix LAPIC timer drift when guest uses periodic\n mode (bsc#1106240).\n\n - x86/mce: Fix set_mce_nospec() to avoid #GP fault\n (bsc#1107783).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110006).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110301).\n\n - x86/mcelog: Get rid of RCU remnants (git-fixes\n 5de97c9f6d85).\n\n - x86/memory_failure: Introduce {set, clear}_mce_nospec()\n (bsc#1107783).\n\n -\n x86-memory_failure-Introduce-set-clear-_mce_nospec.patch\n : Fixup compilation breakage on s390 and arm due to\n missing clear_mce_nospec().\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bsc#1110006).\n\n - x86/mm: Drop TS_COMPAT on 64-bit exec() syscall\n (bsc#1110006).\n\n - x86/mm: Expand static page table for fixmap space\n (bsc#1110006).\n\n - x86/mm: Fix ELF_ET_DYN_BASE for 5-level paging\n (bsc#1110006).\n\n - x86/mm: implement free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm/kasan: Do not use vmemmap_populate() to\n initialize shadow (kasan).\n\n - x86/mm/memory_hotplug: determine block size based on the\n end of boot memory (bsc#1108243).\n\n - x86/mm/pat: Prepare {reserve, free}_memtype() for\n 'decoy' addresses (bsc#1107783).\n\n - x86/mm/tlb: Always use lazy TLB mode (bnc#1105467 Reduce\n IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Leave lazy TLB mode at page table free time\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Make lazy TLB mode lazier (bnc#1105467\n Reduce IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Only send page table free TLB flush to lazy\n TLB CPUs (bnc#1105467 Reduce IPIs and atomic ops with\n improved lazy TLB).\n\n - x86/mm/tlb: Restructure switch_mm_irqs_off()\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Skip atomic operations for 'init_mm' in\n switch_mm_irqs_off() (bnc#1105467 Reduce IPIs and atomic\n ops with improved lazy TLB).\n\n - x86/mpx: Do not allow MPX if we have mappings above\n 47-bit (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110301).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1065600).\n\n - x86/pci: Make broadcom_postcore_init() check\n acpi_disabled (bsc#1110006).\n\n - x86/pkeys: Do not special case protection key 0\n (bsc#1110006).\n\n - x86/pkeys: Override pkey when moving away from PROT_EXEC\n (bsc#1110006).\n\n - x86/platform/UV: Add adjustable set memory block size\n function (bsc#1108243).\n\n - x86/platform/UV: Add kernel parameter to set memory\n block size (bsc#1108243).\n\n - x86/platform/UV: Mark memblock related init code and\n data correctly (bsc#1108243).\n\n - x86/platform/UV: Use new set memory block size function\n (bsc#1108243).\n\n - x86/process: Do not mix user/kernel regs in 64bit\n __show_regs() (bsc#1110006).\n\n - x86/process: Re-export start_thread() (bsc#1110006).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (git-fixes a5b296636453).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/vdso: Fix lsl operand order (bsc#1110006).\n\n - x86/vdso: Fix lsl operand order (bsc#1110301).\n\n - x86/vdso: Fix vDSO build if a retpoline is emitted\n (git-fixes 76b043848fd2).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1065600).\n\n - x86/xen/efi: Initialize only the EFI struct members used\n by Xen (bnc#1107945).\n\n - xen: avoid crash in disable_hotplug_cpu (bsc#1106594).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkback: remove unused pers_gnts_lock from struct\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xenbus: track caller request id (bnc#1065600).\n\n - xen: issue warning message when out of grant maptrack\n entries (bsc#1105795).\n\n - xen-netfront-dont-bug-in-case-of-too-many-frags.patch:\n (bnc#1104824).\n\n - xen-netfront: fix queue name setting (bnc#1065600).\n\n - xen-netfront: fix warn message as irq device name has\n '/' (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Fix XS_TRANSACTION_END\n handling (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Really return response string\n (bnc#1065600).\n\n - xfs: add a new xfs_iext_lookup_extent_before helper\n (bsc#1095344).\n\n - xfs: add asserts for the mmap lock in\n xfs_{insert,collapse}_file_space (bsc#1095344).\n\n - xfs: add a xfs_bmap_fork_to_state helper (bsc#1095344).\n\n - xfs: add a xfs_iext_update_extent helper (bsc#1095344).\n\n - xfs: add comments documenting the rebalance algorithm\n (bsc#1095344).\n\n - xfs: add some comments to\n xfs_iext_insert/xfs_iext_insert_node (bsc#1095344).\n\n - xfs: allow unaligned extent records in\n xfs_bmbt_disk_set_all (bsc#1095344).\n\n - xfs, dax: introduce xfs_dax_aops (bsc#1104888).\n\n - xfs: do not create overlapping extents in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_collapse_extents (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_insert_extents (bsc#1095344).\n\n - xfs: do not set XFS_BTCUR_BPRV_WASDEL in xfs_bunmapi\n (bsc#1095344).\n\n - xfs: fix memory leak in xfs_iext_free_last_leaf\n (bsc#1095344).\n\n - xfs: fix number of records handling in\n xfs_iext_split_leaf (bsc#1095344).\n\n - xfs: Fix per-inode DAX flag inheritance (Git-fixes\n bsc#1109511).\n\n - xfs: fix type usage (bsc#1095344).\n\n - xfs: handle zero entries case in xfs_iext_rebalance_leaf\n (bsc#1095344).\n\n - xfs: inline xfs_shift_file_space into callers\n (bsc#1095344).\n\n - xfs: introduce the xfs_iext_cursor abstraction\n (bsc#1095344).\n\n - xfs: iterate backwards in xfs_reflink_cancel_cow_blocks\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_bmap_extents_to_btree\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_iextents_copy\n (bsc#1095344).\n\n - xfs: make better use of the 'state' variable in\n xfs_bmap_del_extent_real (bsc#1095344).\n\n - xfs: merge xfs_bmap_read_extents into xfs_iread_extents\n (bsc#1095344).\n\n - xfs: move pre/post-bmap tracing into\n xfs_iext_update_extent (bsc#1095344).\n\n - xfs: move some code around inside xfs_bmap_shift_extents\n (bsc#1095344).\n\n - xfs: move some more code into xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: move xfs_bmbt_irec and xfs_exntst_t to xfs_types.h\n (bsc#1095344).\n\n - xfs: move xfs_iext_insert tracepoint to report useful\n information (bsc#1095344).\n\n - xfs: pass an on-disk extent to xfs_bmbt_validate_extent\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_lookup_eq\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_update\n (bsc#1095344).\n\n - xfs: pass struct xfs_bmbt_irec to\n xfs_bmbt_validate_extent (bsc#1095344).\n\n - xfs: preserve i_rdev when recycling a reclaimable inode\n (bsc#1095344).\n\n - xfs: refactor delalloc accounting in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: refactor dir2 leaf readahead shadow buffer\n cleverness (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_delay_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_delay\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_unwritten_real\n (bsc#1095344).\n\n - xfs: refactor xfs_del_extent_real (bsc#1095344).\n\n - xfs: remove a duplicate assignment in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: remove all xfs_bmbt_set_* helpers except for\n xfs_bmbt_set_all (bsc#1095344).\n\n - xfs: remove a superflous assignment in\n xfs_iext_remove_node (bsc#1095344).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: remove if_rdev (bsc#1095344).\n\n - xfs: remove post-bmap tracing in\n xfs_bmap_local_to_extents (bsc#1095344).\n\n - xfs: remove support for inlining data/extents into the\n inode fork (bsc#1095344).\n\n - xfs: remove the never fully implemented UUID fork format\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_insert\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_remove\n (bsc#1095344).\n\n - xfs: remove XFS_BMAP_MAX_SHIFT_EXTENTS (bsc#1095344).\n\n - xfs: remove XFS_BMAP_TRACE_EXLIST (bsc#1095344).\n\n - xfs: remove xfs_bmbt_get_state (bsc#1095344).\n\n - xfs: remove xfs_bmse_shift_one (bsc#1095344).\n\n - xfs: rename bno to end in __xfs_bunmapi (bsc#1095344).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xfs: replace xfs_bmbt_lookup_ge with\n xfs_bmbt_lookup_first (bsc#1095344).\n\n - xfs: replace xfs_qm_get_rtblks with a direct call to\n xfs_bmap_count_leaves (bsc#1095344).\n\n - xfs: rewrite getbmap using the xfs_iext_* helpers\n (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_count_leaves using\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_first_unused to make better use of\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: simplify the xfs_getbmap interface (bsc#1095344).\n\n - xfs: simplify xfs_reflink_convert_cow (bsc#1095344).\n\n - xfs: split xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: switch xfs_bmap_local_to_extents to use\n xfs_iext_insert (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_delay (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_collapse_extents\n (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_del_extent_*\n (bsc#1095344).\n\n - xfs: trivial indentation fixup for xfs_iext_remove_node\n (bsc#1095344).\n\n - xfs: update got in xfs_bmap_shift_update_extent\n (bsc#1095344).\n\n - xfs: use a b+tree for the in-core extent list\n (bsc#1095344).\n\n - xfs: use correct state defines in\n xfs_bmap_del_extent_{cow,delay} (bsc#1095344).\n\n - xfs: use the state defines in xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: use xfs_bmap_del_extent_delay for the data fork as\n well (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_split_extent_at (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent instead of open coding it\n (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent in xfs_bmap_first_unused\n (bsc#1095344).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bsc#1051510).\n\n - xhci: Fix use after free for URB cancellation on a\n reallocated endpoint (bsc#1051510).\n\n - zram: fix null dereference of handle (bsc#1105355).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1012382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1043912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1044189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046305\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046307\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1050244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055014\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055120\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1058659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1060463\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1061840\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1064232\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1068032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1069138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1071995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1077761\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1077989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1078720\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1080157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1083647\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1083663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1084332\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085042\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085262\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1086282\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1086327\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1089663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090528\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1092903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1093389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1094244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1095344\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1096748\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097583\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097584\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097585\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097586\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097587\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097588\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098459\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098782\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099999\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100000\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100001\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100132\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101480\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101557\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101669\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102495\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102517\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102715\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102875\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102877\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102879\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103269\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103387\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103405\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103421\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103587\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103636\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103949\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103961\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104172\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104365\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104482\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104683\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104708\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104824\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104888\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105190\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105247\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105292\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105355\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105467\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105672\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105731\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105795\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106007\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106121\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106229\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106230\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106231\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106233\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106236\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106237\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106240\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106509\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106594\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106636\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106697\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106743\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106779\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106800\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106891\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106892\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106893\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106898\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106900\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106901\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107008\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107060\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107061\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107065\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107073\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107265\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107319\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107320\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107535\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107735\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107783\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107829\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107924\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107928\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107947\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107966\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108096\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108243\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108281\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108520\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108823\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109269\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109336\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109337\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109806\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109992\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110006\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110301\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110639\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110643\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110645\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110646\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110647\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110649\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110650\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110716\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=971975\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected the Linux Kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-docs-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-macros\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-qa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/10/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/10/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE15\\.0)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"15.0\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(x86_64)$\") audit(AUDIT_ARCH_NOT, \"x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-devel-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-docs-html-4.12.14-lp150.12.19.3\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-macros-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-build-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-build-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-qa-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-source-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-source-vanilla-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-syms-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-base-debuginfo / etc\");\n}\n", "cvss": {"score": 8.3, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:C"}}, {"lastseen": "2021-01-20T12:53:56", "description": "The openSUSE Leap 15.0 kernel was updated to receive various security\nand bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-14633: A security flaw was found in the\n chap_server_compute_md5() function in the ISCSI target\n code in a way an authentication request from an ISCSI\n initiator is processed. An unauthenticated remote\n attacker can cause a stack-based buffer overflow and\n smash up to 17 bytes of the stack. The attack requires\n the iSCSI target to be enabled on the victim host.\n Depending on how the target's code was built (i.e.\n depending on a compiler, compile flags and hardware\n architecture) an attack may lead to a system crash and\n thus to a denial-of-service or possibly to a\n non-authorized access to data exported by an iSCSI\n target. Due to the nature of the flaw, privilege\n escalation cannot be fully ruled out, although we\n believe it is highly unlikely. Kernel versions 4.18.x,\n 4.14.x and 3.10.x are believed to be vulnerable\n (bnc#1107829).\n\n - CVE-2018-17182: The vmacache_flush_all function in\n mm/vmacache.c mishandled sequence number overflows. An\n attacker can trigger a use-after-free (and possibly gain\n privileges) via certain thread creation, map, unmap,\n invalidation, and dereference operations (bnc#1108399).\n\n - CVE-2018-14617: There is a NULL pointer dereference and\n panic in hfsplus_lookup() in fs/hfsplus/dir.c when\n opening a file (that is purportedly a hard link) in an\n hfs+ filesystem that has malformed catalog data, and is\n mounted read-only without a metadata directory\n (bnc#1102870).\n\n - CVE-2018-14613: There is an invalid pointer dereference\n in io_ctl_map_page() when mounting and operating a\n crafted btrfs image, because of a lack of block group\n item validation in check_leaf_item in\n fs/btrfs/tree-checker.c (bnc#1102896).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n in drivers/cdrom/cdrom.c allowed local attackers to use\n a incorrect bounds check in the CDROM driver\n CDROM_MEDIA_CHANGED ioctl to read out kernel memory\n (bnc#1092903).\n\n - CVE-2018-13093: There is a NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occurs because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13094: An OOPS may occur for a corrupted xfs\n image after xfs_da_shrink_inode() is called with a NULL\n bp (bnc#1100000).\n\n - CVE-2018-13095: A denial of service (memory corruption\n and BUG) can occur for a corrupted xfs image upon\n encountering an inode that is in extent format, but has\n more extents than fit in the inode fork (bnc#1099999).\n\n - CVE-2018-12896: An Integer Overflow in\n kernel/time/posix-timers.c in the POSIX timer code is\n caused by the way the overrun accounting works.\n Depending on interval and expiry time values, the\n overrun can be larger than INT_MAX, but the accounting\n is int based. This basically made the accounting values,\n which are visible to user space via timer_getoverrun(2)\n and siginfo::si_overrun, random. For example, a local\n user can cause a denial of service (signed integer\n overflow) via crafted mmap, futex, timer_create, and\n timer_settime system calls (bnc#1099922).\n\n - CVE-2018-16658: An information leak in\n cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could\n be used by local attackers to read kernel memory because\n a cast from unsigned long to int interferes with bounds\n checking. This is similar to CVE-2018-10940\n (bnc#1107689).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Memory leak in the irda_bind function\n kernel allowed local users to cause a denial of service\n (memory consumption) by repeatedly binding an AF_IRDA\n socket (bnc#1106509).\n\n - CVE-2018-1129: An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol.\n Ceph branches master, mimic, luminous and jewel are\n believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph\n service. Ceph branches master, mimic, luminous and jewel\n are believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker may force the kernel to enter an infinite\n loop in the cipso_v4_optptr() function in\n net/ipv4/cipso_ipv4.c leading to a denial-of-service. A\n certain non-default configuration of LSM (Linux Security\n Module) and NetLabel should be set up on a system before\n an attacker could leverage this flaw (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function in arch/x86/kernel/cpu/bugs.c did not always\n fill RSB upon a context switch, which made it easier for\n attackers to conduct userspace-userspace spectreRSB\n attacks (bnc#1102517 bnc#1105296).\n\n - CVE-2018-10902: It was found that the raw midi kernel\n driver did not protect against concurrent access which\n leads to a double realloc (double free) in\n snd_rawmidi_input_params() and\n snd_rawmidi_output_status() which are part of\n snd_rawmidi_ioctl() handler in rawmidi.c file. A\n malicious local attacker could possibly use this for\n privilege escalation (bnc#1105322).\n\n - CVE-2018-9363: A buffer overflow in bluetooth HID report\n processing could be used by malicious bluetooth devices\n to crash the kernel or potentially execute code\n (bnc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bsc#1051510).\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bsc#1051510).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bsc#1051510).\n\n - ACPI / APEI: Remove ghes_ioremap_area (bsc#1051510).\n\n - ACPI / bus: Only call dmi_check_system on X86\n (bsc#1105597, bsc#1106178).\n\n - ACPICA: iasl: Add SMMUv3 device ID mapping index support\n (bsc#1103387).\n\n - ACPI / EC: Add another entry for Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Add parameter to force disable the GPE on\n suspend (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on more Thinkpad X1 Carbon\n 6th systems (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on ThinkPad X1 Yoga 3rd\n (bsc#1051510).\n\n - ACPI/IORT: Remove temporary iort_get_id_mapping_index()\n ACPICA guard (bsc#1103387).\n\n - ACPI / pci: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bsc#1051510).\n\n - ACPI / pci: pci_link: Allow the absence of _PRS and\n change log level (bsc#1104172).\n\n - ACPI/pci: pci_link: reduce verbosity when IRQ is enabled\n (bsc#1104172).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bsc#1051510).\n\n - ACPI / scan: Initialize status to ACPI_STA_DEFAULT\n (bsc#1051510).\n\n - affs_lookup(): close a race with affs_remove_link()\n (bsc#1105355).\n\n - ahci: Add Intel Ice Lake LP PCI ID (bsc#1051510).\n\n - ALSA: bebob: fix memory leak for M-Audio FW1814 and\n ProjectMix I/O at error path (bsc#1051510).\n\n - ALSA: bebob: use address returned by kmalloc() instead\n of kernel stack for streaming DMA mapping (bsc#1051510).\n\n - ALSA: cs46xx: Deliver indirect-PCM transfer error ().\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bsc#1051510).\n\n - ALSA: emu10k1: Deliver indirect-PCM transfer error ().\n\n - ALSA: emu10k1: fix possible info leak to userspace on\n SNDRV_EMU10K1_IOCTL_INFO (bsc#1051510).\n\n - ALSA: fireface: fix memory leak in\n ff400_switch_fetching_mode() (bsc#1051510).\n\n - ALSA: firewire-digi00x: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: firewire-tascam: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: fireworks: fix memory leak of response buffer at\n error path (bsc#1051510).\n\n - ALSA: hda: Add AZX_DCAPS_PM_RUNTIME for AMD Raven Ridge\n (bsc#1051510).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bsc#1051510).\n\n - ALSA: hda - Fix cancel_work_sync() stall from jackpoll\n work (bsc#1051510).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bsc#1051510).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bsc#1051510).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bsc#1051510).\n\n - ALSA: mips: Deliver indirect-PCM transfer error ().\n\n - ALSA: msnd: Fix the default sample sizes (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak for model-dependent data at\n error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of discovered stream formats\n at error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: pcm: Fix negative appl_ptr handling in\n pcm-indirect helpers ().\n\n - ALSA: pcm: Fix snd_interval_refine first/last with open\n min/max (bsc#1051510).\n\n - ALSA: pcm: Simplify forward/rewind codes ().\n\n - ALSA: pcm: Use a common helper for PCM state check and\n hwsync ().\n\n - ALSA: pcm: Workaround for weird PulseAudio behavior on\n rewind error ().\n\n - ALSA: rme32: Deliver indirect-PCM transfer error ().\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1051510).\n\n - ALSA: usb-audio: Fix multiple definitions in\n AU0828_DEVICE() macro (bsc#1051510).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bsc#1051510).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bsc#1051510).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bsc#1051510).\n\n - apparmor: ensure that undecidable profile attachments\n fail (bsc#1106427).\n\n - apparmor: fix an error code in __aa_create_ns()\n (bsc#1106427).\n\n - apparmor: Fix regression in profile conflict logic\n (bsc#1106427)\n\n - apparmor: remove no-op permission check in policy_unpack\n (bsc#1106427).\n\n - arm64/acpi: Create arch specific cpu to acpi id helper\n (bsc#1106903).\n\n - arm64: dma-mapping: clear buffers allocated with\n FORCE_CONTIGUOUS flag (bsc#1106902).\n\n - arm64: enable thunderx gpio driver\n\n - arm64: Enforce BBM for huge IO/VMAP mappings\n (bsc#1106890).\n\n - arm64: export memblock_reserve()d regions via\n /proc/iomem (bsc#1106892).\n\n - arm64: fix unwind_frame() for filtered out fn for\n function graph tracing (bsc#1106900).\n\n - arm64: fix vmemmap BUILD_BUG_ON() triggering on !vmemmap\n setups (bsc#1106896).\n\n - arm64: fpsimd: Avoid FPSIMD context leakage for the init\n task (bsc#1106894).\n\n - arm64: Ignore hardware dirty bit updates in\n ptep_set_wrprotect() (bsc#1108010).\n\n - arm64: kasan: avoid pfn_to_nid() before page array is\n initialized (bsc#1106899).\n\n - arm64/kasan: do not allocate extra shadow memory\n (bsc#1106897).\n\n - arm64: Make sure permission updates happen for pmd/pud\n (bsc#1106891).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bsc#1106893).\n\n - arm64: mm: Ensure writes to swapper are ordered wrt\n subsequent cache maintenance (bsc#1106906).\n\n - arm64/mm/kasan: do not use vmemmap_populate() to\n initialize shadow (bsc#1106898).\n\n - arm64: numa: rework ACPI NUMA initialization\n (bsc#1106905).\n\n - arm64: Update config files. (bsc#1110716) Enable ST\n LPS25H pressure sensor.\n\n - arm64: vgic-v2: Fix proxying of cpuif access\n (bsc#1106901).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bsc#1051510).\n\n - arm/asm/tlb.h: Fix build error implicit func declaration\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - ARM: DRA7/OMAP5: Enable ACTLR[0] (Enable invalidates of\n BTB) for secondary cores (bsc#1051510).\n\n - ARM: hisi: fix error handling and missing of_node_put\n (bsc#1051510).\n\n - ARM: hisi: handle of_iomap and fix missing of_node_put\n (bsc#1051510).\n\n - ARM: imx: flag failure of of_iomap (bsc#1051510).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bsc#1051510).\n\n - ASoC: cs4265: fix MMTLR Data switch control\n (bsc#1051510).\n\n - ASoC: dapm: Fix potential DAI widget pointer deref when\n linking DAIs (bsc#1051510).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bsc#1051510).\n\n - ASoC: es7134: remove 64kHz rate from the supported rates\n (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bsc#1051510).\n\n - ASoC: msm8916-wcd-digital: fix RX2 MIX1 and RX3 MIX1\n (bsc#1051510).\n\n - ASoC: rsnd: cmd: Add missing newline to debug message\n (bsc#1051510).\n\n - ASoC: rsnd: fixup not to call clk_get/set under\n non-atomic (bsc#1051510).\n\n - ASoC: rsnd: move rsnd_ssi_config_init() execute\n condition into it (bsc#1051510).\n\n - ASoC: rsnd: update pointer more accurate (bsc#1051510).\n\n - ASoC: rt5514: Add the I2S ASRC support (bsc#1051510).\n\n - ASoC: rt5514: Add the missing register in the readable\n table (bsc#1051510).\n\n - ASoC: rt5514: Eliminate the noise in the ASRC case\n (bsc#1051510).\n\n - ASoC: rt5514: Fix the issue of the delay volume applied\n (bsc#1051510).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bsc#1051510).\n\n - ASoC: wm8994: Fix missing break in switch (bsc#1051510).\n\n - ASoC: zte: Fix incorrect PCM format bit usages\n (bsc#1051510).\n\n - ata: Fix ZBC_OUT all bit handling (bsc#1051510).\n\n - ata: Fix ZBC_OUT command block check (bsc#1051510).\n\n - ata: libahci: Allow reconfigure of DEVSLP register\n (bsc#1051510).\n\n - ata: libahci: Correct setting of DEVSLP register\n (bsc#1051510).\n\n - ath10k: disable bundle mgmt tx completion event support\n (bsc#1051510).\n\n - ath10k: prevent active scans on potential unusable\n channels (bsc#1051510).\n\n - ath10k: update the phymode along with bandwidth change\n request (bsc#1051510).\n\n - ath9k: add MSI support ().\n\n - ath9k_hw: fix channel maximum power level test\n (bsc#1051510).\n\n - ath9k: report tx status on EOSP (bsc#1051510).\n\n - atm: horizon: Fix irq release error (bsc#1105355).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (networking-stable-18_07_19).\n\n - atm: zatm: fix memcmp casting (bsc#1105355).\n\n - atm: zatm: Fix potential Spectre v1\n (networking-stable-18_07_19).\n\n - audit: allow not equal op for audit by executable\n (bsc#1051510).\n\n - audit: Fix extended comparison of GID/EGID\n (bsc#1051510).\n\n - ax88179_178a: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - b43/leds: Ensure NUL-termination of LED name string\n (bsc#1051510).\n\n - b43legacy/leds: Ensure NUL-termination of LED name\n string (bsc#1051510).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get().\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes.\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running.\n\n - bcache: do not check return value of\n debugfs_create_dir().\n\n - bcache: finish incremental GC.\n\n - bcache: fix error setting writeback_rate through sysfs\n interface.\n\n - bcache: fix I/O significant decline while backend\n devices registering.\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free.\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section.\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread().\n\n - bcache: set max writeback rate when I/O request is idle.\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data.\n\n - binfmt_elf: Respect error return from `regset->active'\n (bsc#1051510).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - blk-mq: avoid to synchronize rcu inside\n blk_cleanup_queue() (bsc#1077989).\n\n - block, bfq: return nbytes and not zero from struct\n cftype .write() method (bsc#1106238).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block, dax: remove dead code in blkdev_writepages()\n (bsc#1104888).\n\n - block: do not print a message when the device went away\n (bsc#1098459).\n\n - block: do not warn for flush on read-only device\n (bsc#1107756).\n\n - block: fix warning when I/O elevator is changed as\n request_queue is being removed (bsc#1109979).\n\n - block: Invalidate cache on discard v2 (bsc#1109992).\n\n - block: pass inclusive 'lend' parameter to\n truncate_inode_pages_range (bsc#1109992).\n\n - block: properly protect the 'queue' kobj in\n blk_unregister_queue (bsc#1109979).\n\n - bluetooth: Add a new Realtek 8723DE ID 0bda:b009\n (bsc#1051510).\n\n - bluetooth: avoid killing an already killed socket\n (bsc#1051510).\n\n - bluetooth: btsdio: Do not bind to non-removable BCM43430\n (bsc#1103587).\n\n - bluetooth: h5: Fix missing dependency on\n BT_HCIUART_SERDEV (bsc#1051510).\n\n - bluetooth: hidp: buffer overflow in hidp_process_report\n (bsc#1051510).\n\n - bluetooth: hidp: Fix handling of strncpy for hid->name\n information (bsc#1051510).\n\n - bluetooth: Use lock_sock_nested in bt_accept_enqueue\n (bsc#1051510).\n\n - bnxt_en: Clean up unused functions (bsc#1086282).\n\n - bnxt_en: Do not adjust max_cp_rings by the ones used by\n RDMA (bsc#1086282).\n\n - bnxt_en: Fix VF mac address regression (bsc#1086282 ).\n\n - bnxt_re: Fix couple of memory leaks that could lead to\n IOMMU call traces (bsc#1050244).\n\n - bonding: avoid lockdep confusion in bond_get_stats()\n (netfilter-stable-18_08_04).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bsc#1083647).\n\n - bpf: fix uninitialized variable in bpf tools\n (bsc#1083647).\n\n - bpf: hash map: decrement counter on error (bsc#1083647).\n\n - bpf: powerpc64: pad function address loads with NOPs\n (bsc#1083647).\n\n - bpf, s390: fix potential memleak when later bpf_jit_prog\n fails (bsc#1083647).\n\n - bpf: use GFP_ATOMIC instead of GFP_KERNEL in\n bpf_parse_prog() (bsc#1083647).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bsc#1051510).\n\n - brcmsmac: fix wrap around in conversion from constant to\n s16 (bsc#1051510).\n\n - btrfs: add a comp_refs() helper (dependency for\n bsc#1031392).\n\n - btrfs: Add checker for EXTENT_CSUM (bsc#1102882,\n bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: Add sanity check for EXTENT_DATA when reading out\n leaf (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: add tracepoints for outstanding extents mods\n (dependency for bsc#1031392).\n\n - btrfs: Check if item pointer overlaps with the item\n itself (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: check-integrity: Fix NULL pointer dereference for\n degraded mount (bsc#1107947).\n\n - btrfs: Check that each block group has corresponding\n chunk at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: cleanup extent locking sequence (dependency for\n bsc#1031392).\n\n - btrfs: delayed-inode: Remove wrong qgroup meta\n reservation calls (bsc#1031392).\n\n - btrfs: delayed-inode: Use new qgroup meta rsv for\n delayed inode and item (bsc#1031392).\n\n - btrfs: fix data corruption when deduplicating between\n different files (bsc#1110647).\n\n - btrfs: fix duplicate extents after fsync of file with\n prealloc extents (bsc#1110644).\n\n - btrfs: fix error handling in btrfs_dev_replace_start\n (bsc#1107535).\n\n - btrfs: fix fsync after hole punching when using no-holes\n feature (bsc#1110642).\n\n - btrfs: fix loss of prealloc extents past i_size after\n fsync log replay (bsc#1110643).\n\n - btrfs: fix return value on rename exchange failure\n (bsc#1110645).\n\n - btrfs: fix send failure when root has deleted files\n still open (bsc#1110650).\n\n - btrfs: Fix use-after-free when cleaning up fs_devs with\n a single stale device (bsc#1097105).\n\n - btrfs: Fix wrong btrfs_delalloc_release_extents\n parameter (bsc#1031392).\n\n - btrfs: Handle error from btrfs_uuid_tree_rem call in\n _btrfs_ioctl_set_received_subvol (bsc#1097105).\n\n - btrfs: Introduce mount time chunk <-> dev extent mapping\n check (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: log csums for all modified extents (bsc#1110639).\n\n - btrfs: make the delalloc block rsv per inode (dependency\n for bsc#1031392).\n\n - btrfs: Manually implement device_total_bytes\n getter/setter (bsc#1043912).\n\n - btrfs: Move leaf and node validation checker to\n tree-checker.c (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: qgroup: Add quick exit for non-fs extents\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup\n btrfs_qgroup_prepare_account_extents function\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup the remaining old reservation\n counters (bsc#1031392).\n\n - btrfs: qgroup: Commit transaction in advance to reduce\n early EDQUOT (bsc#1031392).\n\n - btrfs: qgroup: Do not use root->qgroup_meta_rsv for\n qgroup (bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow by\n only freeing reserved ranges (dependency for\n bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow\n caused by buffered write and quotas being enabled\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Fix wrong qgroup reservation update for\n relationship modification (bsc#1031392).\n\n - btrfs: qgroup: Introduce extent changeset for qgroup\n reserve functions (dependency for bsc#1031392).\n\n - btrfs: qgroup: Introduce function to convert\n META_PREALLOC into META_PERTRANS (bsc#1031392).\n\n - btrfs: qgroup: Introduce helpers to update and access\n new qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Make qgroup_reserve and its callers to\n use separate reservation type (bsc#1031392).\n\n - btrfs: qgroup: Return actually freed bytes for qgroup\n release or free data (dependency for bsc#1031392).\n\n - btrfs: qgroup: Skeleton to support separate qgroup\n reservation type (bsc#1031392).\n\n - btrfs: qgroup: Split meta rsv type into meta_prealloc\n and meta_pertrans (bsc#1031392).\n\n - btrfs: qgroup: Update trace events for metadata\n reservation (bsc#1031392).\n\n - btrfs: qgroup: Update trace events to use new separate\n rsv types (bsc#1031392).\n\n - btrfs: qgroup: Use independent and accurate per inode\n qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Use root::qgroup_meta_rsv_* to record\n qgroup meta reserved space (bsc#1031392).\n\n - btrfs: qgroup: Use separate meta reservation type for\n delalloc (bsc#1031392).\n\n - btrfs: remove type argument from comp_tree_refs\n (dependency for bsc#1031392).\n\n - btrfs: Remove unused parameters from various functions\n (bsc#1110649).\n\n - btrfs: rework outstanding_extents (dependency for\n bsc#1031392).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - btrfs: Round down values which are written for\n total_bytes_size (bsc#1043912).\n\n - btrfs: scrub: Do not use inode page cache in\n scrub_handle_errored_block() (follow up for\n bsc#1108096).\n\n - btrfs: scrub: Do not use inode pages for device replace\n (follow up for bsc#1108096).\n\n - btrfs: switch args for comp_*_refs (dependency for\n bsc#1031392).\n\n - btrfs: sync log after logging new name (bsc#1110646).\n\n - btrfs: tests/qgroup: Fix wrong tree backref level\n (bsc#1107928).\n\n - btrfs: tree-checker: Add checker for dir item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Detect invalid and empty essential\n trees (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Enhance btrfs_check_node output\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for btrfs_check_leaf\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for check_csum_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for\n check_extent_data_item (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Fix false panic for sanity test\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Replace root parameter with fs_info\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Verify block_group_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: Verify that every chunk has corresponding block\n group at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bsc#1051510).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cfg80211: nl80211_update_ft_ies() to validate\n NL80211_ATTR_IE (bsc#1051510).\n\n - cfg80211: reg: Init wiphy_idx in regulatory_hint_core()\n (bsc#1051510).\n\n - cgroup: avoid copying strings longer than the buffers\n (bsc#1051510).\n\n - cifs: check kmalloc before use (bsc#1051510).\n\n - cifs: Fix stack out-of-bounds in\n smb(2,3)_create_lease_buf() (bsc#1051510).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1051510).\n\n - clk: core: Potentially free connection id (bsc#1051510).\n\n - clk: imx6ul: fix missing of_node_put() (bsc#1051510).\n\n - clk: meson: gxbb: remove HHI_GEN_CLK_CTNL duplicate\n definition (bsc#1051510).\n\n - clk: mvebu: armada-38x: add support for 1866MHz variants\n (bsc#1105355).\n\n - clk: mvebu: armada-38x: add support for missing clocks\n (bsc#1105355).\n\n - clk: rockchip: fix clk_i2sout parent selection bits on\n rk3399 (bsc#1051510).\n\n - cls_matchall: fix tcf_unbind_filter missing\n (networking-stable-18_08_21).\n\n - coresight: Handle errors in finding input/output ports\n (bsc#1051510).\n\n - coresight: tpiu: Fix disabling timeouts (bsc#1051510).\n\n - cpufreq: CPPC: Do not set transition_latency\n (bsc#1101480).\n\n - cpufreq / CPPC: Set platform specific\n transition_delay_us (bsc#1101480).\n\n - cpufreq: CPPC: Use transition_delay_us depending\n transition_latency (bsc#1101480).\n\n - cpufreq: remove setting of policy->cpu in policy->cpus\n during init (bsc#1101480).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: caam/jr - fix descriptor DMA unmapping\n (bsc#1051510).\n\n - crypto: caam/qi - fix error path in xts setkey\n (bsc#1051510).\n\n - crypto: ccp - Check for NULL PSP pointer at module\n unload (bsc#1051510).\n\n - crypto: ccp - Fix command completion detection race\n (bsc#1051510).\n\n - crypto: clarify licensing of OpenSSL asm code ().\n\n - crypto: sharah - Unregister correct algorithms for\n SAHARA 3 (bsc#1051510).\n\n - crypto: skcipher - fix aligning block size in\n skcipher_copy_iv() (bsc#1051510).\n\n - crypto: skcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: skcipher - Fix -Wstringop-truncation warnings\n (bsc#1051510).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bsc#1051510).\n\n - crypto: vmac - separate tfm and request context\n (bsc#1051510).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1051510).\n\n - crypto: vmx - Use skcipher for ctr fallback to SLE12-SP4\n (bsc#1106464).\n\n - crypto: x86/sha256-mb - fix digest copy in\n sha256_mb_mgr_get_comp_job_avx2() (bsc#1051510).\n\n - cxgb4: Fix the condition to check if the card is T5\n (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588\n bsc#1097583 bsc#1097584).\n\n - cxl: Configure PSL to not use APC virtual machines\n (bsc#1055014, git-fixes).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014, git-fixes).\n\n - dax: Introduce a ->copy_to_iter dax operation\n (bsc#1098782).\n\n - dax: Make extension of dax_operations transparent\n (bsc#1098782).\n\n - dax: remove default copy_from_iter fallback\n (bsc#1098782).\n\n - dax: remove VM_MIXEDMAP for fsdax and device dax\n (bsc#1106007).\n\n - dax: Report bytes remaining in dax_iomap_actor()\n (bsc#1098782).\n\n - dax: require 'struct page' by default for filesystem dax\n (bsc#1104888).\n\n - dax: store pfns in the radix (bsc#1104888).\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (netfilter-stable-18_08_17).\n\n - devicectree: bindings: fix location of leds common file\n (bsc#1051510).\n\n - device-dax: Add missing address_space_operations\n (bsc#1107783).\n\n - device-dax: Enable page_mapping() (bsc#1107783).\n\n - device-dax: Set page->index (bsc#1107783).\n\n - /dev/mem: Add bounce buffer for copy-out (git-fixes).\n\n - /dev/mem: Avoid overwriting 'err' in read_mem()\n (git-fixes).\n\n - dma-buf: remove redundant initialization of sg_table\n (bsc#1051510).\n\n - dmaengine: hsu: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: idma64: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: mv_xor_v2: kill the tasklets upon exit\n (bsc#1051510).\n\n - doc/README.SUSE: Remove mentions of cloneconfig\n (bsc#1103636).\n\n - docs: zh_CN: fix location of oops-tracing.txt\n (bsc#1051510).\n\n - Documentation: add some docs for errseq_t (bsc#1107008).\n\n - Documentation: ip-sysctl.txt: document addr_gen_mode\n (bsc#1051510).\n\n - driver core: add __printf verification to\n __ata_ehi_pushv_desc (bsc#1051510).\n\n - drivers: hv: vmbus: do not mark HV_PCIE as perf_device\n (bsc#1051510).\n\n - drivers: hv: vmbus: Fix the offer_in_progress in\n vmbus_process_offer() (bsc#1051510).\n\n - drm: Add and handle new aspect ratios in DRM layer ().\n\n - drm: Add aspect ratio parsing in DRM layer ().\n\n - drm: Add DRM client cap for aspect-ratio ().\n\n - drm/amdgpu:add new firmware id for VCN (bsc#1051510).\n\n - drm/amdgpu:add tmr mc address into amdgpu_firmware_info\n (bsc#1051510).\n\n - drm/amdgpu: Fix RLC safe mode test in\n gfx_v9_0_enter_rlc_safe_mode (bsc#1051510).\n\n - drm/amdgpu: fix swapped emit_ib_size in vce3\n (bsc#1051510).\n\n - drm/amdgpu: update tmr mc address (bsc#1100132).\n\n - drm/amd/pp/Polaris12: Fix a chunk of registers missed to\n program (bsc#1051510).\n\n - drm/armada: fix colorkey mode property (bsc#1051510).\n\n - drm/armada: fix irq handling (bsc#1051510).\n\n - drm/arm/malidp: Preserve LAYER_FORMAT contents when\n setting format (bsc#1051510).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bsc#1051510).\n\n - drm/bridge/sii8620: Fix display of packed pixel modes\n (bsc#1051510).\n\n - drm/bridge/sii8620: fix display of packed pixel modes in\n MHL2 (bsc#1051510).\n\n - drm/bridge/sii8620: fix loops in EDID fetch logic\n (bsc#1051510).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/edid: Add 6 bpc quirk for SDC panel in Lenovo B50-80\n (bsc#1051510).\n\n - drm: Expose modes with aspect ratio, only if requested\n ().\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bsc#1051510).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bsc#1051510).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bsc#1051510).\n\n - drm/fb-helper: Fix typo on kerneldoc (bsc#1051510).\n\n - drm: Handle aspect ratio info in legacy modeset path ().\n\n - drm/i915/aml: Introducing Amber Lake platform ().\n\n - drm/i915/audio: Fix audio enumeration issue on BXT ().\n\n - drm/i915/cfl: Add a new CFL PCI ID ().\n\n - drm/i915/gvt: clear ggtt entries when destroy vgpu\n (bsc#1051510).\n\n - drm/i915/gvt: Fix the incorrect length of\n child_device_config issue (bsc#1051510).\n\n - drm/i915/gvt: Off by one in intel_vgpu_write_fence()\n (bsc#1051510).\n\n - drm/i915/gvt: request srcu_read_lock before checking if\n one gfn is valid (bsc#1051510).\n\n - drm/i915: Increase LSPCON timeout (bsc#1051510).\n\n - drm/i915/kvmgt: Fix potential Spectre v1 (bsc#1051510).\n\n - drm/i915/lpe: Mark LPE audio runtime pm as 'no\n callbacks' (bsc#1051510).\n\n - drm/i915: Nuke the LVDS lid notifier (bsc#1051510).\n\n - drm/i915: Only show debug for state changes when banning\n (bsc#1051510).\n\n - drm/i915/overlay: Allocate physical registers from\n stolen (bsc#1051510).\n\n - drm/i915: Restore user forcewake domains across suspend\n (bsc#1100132).\n\n - drm/i915: set DP Main Stream Attribute for color range\n on DDI platforms (bsc#1051510).\n\n - drm/i915: Unmask user interrupts writes into HWSP on\n snb/ivb/vlv/hsw (bsc#1051510).\n\n - drm/i915/whl: Introducing Whiskey Lake platform ().\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bsc#1051510).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bsc#1051510).\n\n - drm: mali-dp: Enable Global SE interrupts mask for DP500\n (bsc#1051510).\n\n - drm/modes: Introduce drm_mode_match() ().\n\n - drm/nouveau/drm/nouveau: Fix bogus\n drm_kms_helper_poll_enable() placement (bsc#1051510).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1051510).\n\n - drm/rockchip: lvds: add missing of_node_put\n (bsc#1051510).\n\n - drm/tegra: Check for malformed offsets and sizes in the\n 'submit' IOCTL (bsc#1106170).\n\n - drm/tegra: Fix comparison operator for buffer size\n (bsc#1100132).\n\n - drm/vc4: Fix the 'no scaling' case on multi-planar YUV\n formats (bsc#1051510).\n\n - dwc2: gadget: Fix ISOC IN DDMA PID bitfield value\n calculation (bsc#1051510).\n\n - EDAC, altera: Fix ARM64 build warning (bsc#1051510).\n\n - EDAC: Fix memleak in module init error path\n (bsc#1051510).\n\n - EDAC, i7core: Fix memleaks and use-after-free on probe\n and remove (bsc#1051510).\n\n - EDAC, mv64x60: Fix an error handling path (bsc#1051510).\n\n - EDAC, octeon: Fix an uninitialized variable warning\n (bsc#1051510).\n\n - EDAC, sb_edac: Fix missing break in switch\n (bsc#1051510).\n\n - errseq: Add to documentation tree (bsc#1107008).\n\n - errseq: Always report a writeback error once\n (bsc#1107008).\n\n - ext2: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext2, dax: introduce ext2_dax_aops (bsc#1104888).\n\n - ext4: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext4, dax: add ext4_bmap to ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: introduce ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: set ext4_dax_aops for dax files\n (bsc#1104888).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - extcon: Release locking when sending the notification of\n connector state (bsc#1051510).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106233).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106297).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106231).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106297).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bsc#1051510).\n\n - fbdev: Distinguish between interlaced and progressive\n modes (bsc#1051510).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1051510).\n\n - fbdev/via: fix defined but not used warning\n (bsc#1051510).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bsc#1051510).\n\n - filesystem-dax: Introduce dax_lock_mapping_entry()\n (bsc#1107783).\n\n - filesystem-dax: Set page->index (bsc#1107783).\n\n - fix a page leak in vhost_scsi_iov_to_sgl() error\n recovery (bsc#1051510).\n\n - Fix buggy backport in\n patches.fixes/dax-check-for-queue_flag_dax-in-bdev_dax_s\n upported.patch (bsc#1109859)\n\n - Fix kABI breakage due to enum addition for ath10k\n (bsc#1051510).\n\n - Fix kABI breakage with libertas dev field addition\n (bsc#1051510).\n\n - Fix kABI breakage with removing field addition to\n power_supply (bsc#1051510).\n\n - Fix kexec forbidding kernels signed with keys in the\n secondary keyring to boot (bsc#1110006).\n\n - fix __legitimize_mnt()/mntput() race (bsc#1106297).\n\n - fix mntput/mntput race (bsc#1106297).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bsc#1051510).\n\n - fs, dax: prepare for dax-specific\n address_space_operations (bsc#1104888).\n\n - fs, dax: use page->mapping to warn if truncate collides\n with a busy page (bsc#1104888).\n\n - fs/proc/proc_sysctl.c: fix potential page fault while\n unregistering sysctl table (bsc#1106297).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bsc#1106291).\n\n - fuse: fix double request_end() (bsc#1106291).\n\n - fuse: fix initial parallel dirops (bsc#1106291).\n\n - fuse: Fix oops at process_init_reply() (bsc#1106291).\n\n - fuse: fix unlocked access to processing queue\n (bsc#1106291).\n\n - fuse: umount should wait for all requests (bsc#1106291).\n\n - geneve: update skb dst pmtu on tx path (bsc#1051510).\n\n - genirq: Add handle_fasteoi_(level,edge)_irq flow\n handlers (bsc#1105378).\n\n - genirq: Export more irq_chip_*_parent() functions\n (bsc#1105378).\n\n - genirq: Fix editing error in a comment (bsc#1051510).\n\n - genirq: Make force irq threading setup more robust\n (bsc#1051510).\n\n - gen_stats: Fix netlink stats dumping in the presence of\n padding (netfilter-stable-18_07_23).\n\n - getxattr: use correct xattr length (bsc#1106235).\n\n - getxattr: use correct xattr length (bsc#1106297).\n\n - gpio: Add gpio driver support for ThunderX and OCTEON-TX\n (bsc#1105378).\n\n - gpio: Fix wrong rounding in gpio-menz127 (bsc#1051510).\n\n - gpiolib-acpi: make sure we trigger edge events at least\n once on boot (bsc#1051510).\n\n - gpiolib: acpi: Switch to cansleep version of GPIO\n library call (bsc#1051510).\n\n - gpiolib: Mark gpio_suffixes array with __maybe_unused\n (bsc#1051510).\n\n - gpio: ml-ioh: Fix buffer underwrite on probe error path\n (bsc#1051510).\n\n - gpio: pxa: Fix potential NULL dereference (bsc#1051510).\n\n - gpio: tegra: Move driver registration to subsys_init\n level (bsc#1051510).\n\n - gpio: thunderx: fix error return code in\n thunderx_gpio_probe() (bsc#1105378).\n\n - gpio: thunderx: remove unused .map() hook from\n irq_domain_ops (bsc#1105378).\n\n - gpu: host1x: Check whether size of unpin isn't 0\n (bsc#1051510).\n\n - gpu: ipu-v3: csi: pass back mbus_code_to_bus_cfg error\n codes (bsc#1051510).\n\n - gpu: ipu-v3: default to id 0 on missing OF alias\n (bsc#1051510).\n\n - gtp: Initialize 64-bit per-cpu stats correctly\n (bsc#1051510).\n\n - HID: add quirk for another PIXART OEM mouse used by HP\n (bsc#1051510).\n\n - HID: hid-ntrig: add error handling for\n sysfs_create_group (bsc#1051510).\n\n - HID: i2c-hid: Add no-irq-after-reset quirk for 0911:5288\n device ().\n\n - hotplug/cpu: Add operation queuing function ().\n\n - hotplug/cpu: Conditionally acquire/release DRC index ().\n\n - hotplug/cpu: Provide CPU readd operation ().\n\n - i2c: core: ACPI: Properly set status byte to 0 for\n multi-byte writes (bsc#1051510).\n\n - i2c: davinci: Avoid zero value of CLKH (bsc#1051510).\n\n - i2c: i801: Add missing documentation entries for\n Braswell and Kaby Lake (bsc#1051510).\n\n - i2c: i801: Add support for Intel Cedar Fork\n (bsc#1051510).\n\n - i2c: i801: Add support for Intel Ice Lake (bsc#1051510).\n\n - i2c: i801: Allow ACPI AML access I/O ports not reserved\n for SMBus (bsc#1051510).\n\n - i2c: i801: Consolidate chipset names in documentation\n and Kconfig (bsc#1051510).\n\n - i2c: i801: fix DNV's SMBCTRL register offset\n (bsc#1051510).\n\n - i2c: imx: Fix race condition in dma read (bsc#1051510).\n\n - i2c: imx: Fix reinit_completion() use (bsc#1051510).\n\n - i2c: uniphier-f: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: uniphier: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: xiic: Make the start and the byte count write\n atomic (bsc#1051510).\n\n - i2c: xlp9xx: Fix case where SSIF read transaction\n completes early (bsc#1105907).\n\n - i2c: xlp9xx: Fix issue seen when updating receive length\n (bsc#1105907).\n\n - i2c: xlp9xx: Make sure the transfer size is not more\n than I2C_SMBUS_BLOCK_SIZE (bsc#1105907).\n\n - i40e: fix condition of WARN_ONCE for stat strings\n (bsc#1107522).\n\n - IB/core: type promotion bug in rdma_rw_init_one_mr()\n (bsc#1046306).\n\n - IB/hfi1: Invalid NUMA node information can cause a\n divide by zero (bsc#1060463).\n\n - IB/hfi1: Remove incorrect call to do_interrupt callback\n (bsc#1060463).\n\n - IB/hfi1: Set in_use_ctxts bits for user ctxts only\n (bsc#1060463 ).\n\n - IB/ipoib: Avoid a race condition between start_xmit and\n cm_rep_handler (bsc#1046307).\n\n - IB/ipoib: Fix error return code in ipoib_dev_init()\n (bsc#1046307 ).\n\n - IB/IPoIB: Set ah valid flag in multicast send flow\n (bsc#1046307 ).\n\n - IB/mlx4: Test port number before querying type\n (bsc#1046302 ).\n\n - IB/mlx4: Use 4K pages for kernel QP's WQE buffer\n (bsc#1046302 ).\n\n - IB/mlx5: fix uaccess beyond 'count' in debugfs\n read/write handlers (bsc#1046305).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ib_srpt: Fix a use-after-free in srpt_close_ch()\n (bsc#1046306 ).\n\n - ieee802154: ca8210: fix uninitialised data read\n (bsc#1051510).\n\n - ieee802154: fix gcc-4.9 warnings (bsc#1051510).\n\n - ieee802154: mrf24j40: fix incorrect mask in\n mrf24j40_stop (bsc#1051510).\n\n - iio: 104-quad-8: Fix off-by-one error in register\n selection (bsc#1051510).\n\n - iio: ad9523: Fix displayed phase (bsc#1051510).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bsc#1051510).\n\n - iio: adc: ina2xx: avoid kthread_stop() with stale\n task_struct (bsc#1051510).\n\n - iio: adc: sun4i-gpadc: select REGMAP_IRQ (bsc#1051510).\n\n - iio: sca3000: Fix an error handling path in\n 'sca3000_probe()' (bsc#1051510).\n\n - iio: sca3000: Fix missing return in switch\n (bsc#1051510).\n\n - ima: based on policy verify firmware signatures\n (pre-allocated buffer) (bsc#1051510).\n\n - include/rdma/opa_addr.h: Fix an endianness issue\n (bsc#1046306 ).\n\n - init: rename and re-order boot_cpu_state_init()\n (bsc#1104365).\n\n - Input: atmel_mxt_ts - only use first T9 instance\n (bsc#1051510).\n\n - Input: edt-ft5x06 - fix error handling for factory mode\n on non-M06 (bsc#1051510).\n\n - Input: edt-ft5x06 - implement support for the EDT-M12\n series (bsc#1051510).\n\n - Input: edt-ft5x06 - make distinction between\n m06/m09/generic more clear (bsc#1051510).\n\n - Input: elantech - enable middle button of touchpad on\n ThinkPad P72 (bsc#1051510).\n\n - input: rohm_bu21023: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - Input: synaptics-rmi4 - fix axis-swap behavior\n (bsc#1051510).\n\n - intel_th: Fix device removal logic (bsc#1051510).\n\n - iommu/amd: Add support for higher 64-bit IOMMU Control\n Register ().\n\n - iommu/amd: Add support for IOMMU XT mode ().\n\n - iommu/amd: Finish TLB flush in amd_iommu_unmap()\n (bsc#1106105).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/amd: Return devid as alias for ACPI HID devices\n (bsc#1106105).\n\n - iommu/arm-smmu-v3: Do not free page table ops twice\n (bsc#1106237).\n\n - iommu/vt-d: Fix a potential memory leak (bsc#1106105).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bsc#1110006).\n\n - ipc/shm: fix shmat() nil address after round-down when\n remapping (bsc#1090078).\n\n - ip: hash fragments consistently\n (netfilter-stable-18_07_27).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (netfilter-stable-18_07_27).\n\n - ipmi:bt: Set the timeout before doing a capabilities\n check (bsc#1051510).\n\n - ipmi: Fix some counter issues (bsc#1105907).\n\n - ipmi: Move BT capabilities detection to the detect call\n (bsc#1106779).\n\n - ipmi/powernv: Fix error return code in\n ipmi_powernv_probe() (git-fixes).\n\n - ipmi: Remove ACPI SPMI probing from the SSIF (I2C)\n driver (bsc#1105907).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (netfilter-stable-18_08_01).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (netfilter-stable-18_07_23).\n\n - ipv6: fix useless rol32 call on hash\n (netfilter-stable-18_07_23).\n\n - ipv6: ila: select CONFIG_DST_CACHE\n (netfilter-stable-18_07_23).\n\n - ipv6: make DAD fail with enhanced DAD when nonce length\n differs (netfilter-stable-18_07_23).\n\n - ipv6: sr: fix passing wrong flags to\n crypto_alloc_shash() (networking-stable-18_07_19).\n\n - ipvlan: fix IFLA_MTU ignored on NEWLINK\n (networking-stable-18_07_19).\n\n - irqchip/bcm7038-l1: Hide cpu offline callback when\n building for !SMP (bsc#1051510).\n\n - irqdomain: Add irq_domain_(push,pop)_irq() functions\n (bsc#1105378).\n\n - irqdomain: Check for NULL function pointer in\n irq_domain_free_irqs_hierarchy() (bsc#1105378).\n\n - irqdomain: Factor out code to add and remove items to\n and from the revmap (bsc#1105378).\n\n - irqdomain: Prevent potential NULL pointer dereference in\n irq_domain_push_irq() (bsc#1105378).\n\n - irqdomain: Update the comments of fwnode field of\n irq_domain structure (bsc#1051510).\n\n - isdn: Disable IIOCDBGVAR (bsc#1051510).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#1046543).\n\n - iwlwifi: pcie: do not access periphery registers when\n not available (bsc#1051510).\n\n - ixgbe: Refactor queue disable logic to take completion\n time into account (bsc#1101557).\n\n - ixgbe: Reorder Tx/Rx shutdown to reduce time needed to\n stop device (bsc#1101557).\n\n - kabi fix for check_disk_size_change() (bsc#1098459).\n\n - kabi: move s390 mm_context_t lock to mm_struct and\n ignore the change (bsc#1103421).\n\n - kabi: move the new handler to end of machdep_calls and\n hide it from genksyms (bsc#1094244).\n\n - kabi protect hnae_ae_ops (bsc#1107924).\n\n - kabi protect struct kvm_sync_regs (bsc#1106948).\n\n - kabi/severities: Whitelist libceph, rbd, and ceph\n (bsc#1096748).\n\n - kabi: tpm: change relinquish_locality return value back\n to void (bsc#1082555).\n\n - kabi: tpm: do keep the cmd_ready and go_idle as pm ops\n (bsc#1082555).\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kprobes/x86: Release insn_slot in failure path\n (bsc#1110006).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline\n asm to cmpxchg() (bsc#1108010).\n\n - kvm: Enforce error in ioctl for compat tasks when\n !KVM_COMPAT (bsc#1106240).\n\n - kvm: nVMX: Do not flush TLB when vmcs12 uses VPID\n (bsc#1106240).\n\n - kvm: nVMX: Fix fault vector for VMX operation at CPL > 0\n (bsc#1106105).\n\n - kvm: nVMX: Fix injection to L2 when L1 do not intercept\n external-interrupts (bsc#1106240).\n\n - kvm: nVMX: Fix races when sending nested PI while dest\n enters/leaves L2 (bsc#1106240).\n\n - kvm: nVMX: Re-evaluate L1 pending events when running L2\n and L1 got posted-interrupt (bsc#1106240).\n\n - kvm: nVMX: Use nested_run_pending rather than\n from_vmentry (bsc#1106240).\n\n - kvm: PPC: Book3S: Fix guest DMA when guest partially\n backed by THP pages (bsc#1077761, git-fixes,\n bsc#1103948, bsc#1103949).\n\n - kvm: PPC: Book3S HV: Use correct pagesize in\n kvm_unmap_radix() (bsc#1061840, git-fixes).\n\n - kvm: s390: add etoken support for guests (bsc#1106948,\n LTC#171029).\n\n - kvm: s390: force bp isolation for VSIE (bsc#1103421).\n\n - kvm: s390: implement CPU model only facilities\n (bsc#1106948, LTC#171029).\n\n - kvm: VMX: Do not allow reexecute_instruction() when\n skipping MMIO instr (bsc#1106240).\n\n - kvm: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - kvm: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - kvm: x86: Change __kvm_apic_update_irr() to also return\n if max IRR updated (bsc#1106240).\n\n - kvm: x86: Default to not allowing emulation retry in\n kvm_mmu_page_fault (bsc#1106240).\n\n - kvm: x86: Do not re-(try,execute) after failed emulation\n in L2 (bsc#1106240).\n\n - kvm: x86: fix APIC page invalidation (bsc#1106240).\n\n - kvm: x86: Invert emulation re-execute behavior to make\n it opt-in (bsc#1106240).\n\n - kvm: x86: Merge EMULTYPE_RETRY and\n EMULTYPE_ALLOW_REEXECUTE (bsc#1106240).\n\n - kvm/x86: remove WARN_ON() for when vm_munmap() fails\n (bsc#1106240).\n\n - kvm: x86: SVM: Call x86_spec_ctrl_set_guest/host() with\n interrupts disabled (git-fixes 1f50ddb4f418).\n\n - kvm: x86: vmx: fix vpid leak (bsc#1106240).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (netfilter-stable-18_08_17).\n\n - lan78xx: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - lan78xx: Lan7801 Support for Fixed PHY (bsc#1085262).\n\n - lan78xx: remove redundant initialization of pointer\n 'phydev' (bsc#1085262).\n\n - lan78xx: Set ASD in MAC_CR when EEE is enabled\n (bsc#1085262).\n\n - leds: max8997: use mode when calling\n max8997_led_set_mode (bsc#1051510).\n\n - libahci: Fix possible Spectre-v1 pmp indexing in\n ahci_led_store() (bsc#1051510).\n\n - libata: Fix command retry decision (bsc#1051510).\n\n - libata: Fix compile warning with ATA_DEBUG enabled\n (bsc#1051510).\n\n - libbpf: Makefile set specified permission mode\n (bsc#1083647).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - libertas: fix suspend and resume for SDIO connected\n cards (bsc#1051510).\n\n - lib/iov_iter: Fix pipe handling in\n _copy_to_iter_mcsafe() (bsc#1098782).\n\n - libnvdimm, btt: fix uninitialized err_lock\n (bsc#1103961).\n\n - libnvdimm: fix ars_status output length calculation\n (bsc#1104890).\n\n - libnvdimm, nfit: enable support for volatile ranges\n (bsc#1103961).\n\n - libnvdimm, nfit: move the check on nd_reserved2 to the\n endpoint (bsc#1103961).\n\n - libnvdimm, pmem: Fix memcpy_mcsafe() return code\n handling in nsio_rw_bytes() (bsc#1098782).\n\n - libnvdimm, pmem: Restore page attributes when clearing\n errors (bsc#1107783).\n\n - libnvdimm: rename nd_sector_size_(show,store) to\n nd_size_select_(show,store) (bsc#1103961).\n\n - libnvdimm: Use max contiguous area for namespace size\n (git-fixes).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bsc#1051510).\n\n - lib/test_hexdump.c: fix failure on big endian cpu\n (bsc#1051510).\n\n - lib/vsprintf: Remove atomic-unsafe support for %pCr\n (bsc#1051510).\n\n - Limit kernel-source build to architectures for which we\n build binaries (bsc#1108281).\n\n - livepatch: Remove reliable stacktrace check in\n klp_try_switch_task() (bsc#1071995).\n\n - livepatch: Validate module/old func name length\n (bsc#1071995).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (netfilter-stable-18_08_17).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bsc#1051510).\n\n - mac80211: always account for A-MSDU header changes\n (bsc#1051510).\n\n - mac80211: avoid kernel panic when building AMSDU from\n non-linear SKB (bsc#1051510).\n\n - mac80211: fix an off-by-one issue in A-MSDU max_subframe\n computation (bsc#1051510).\n\n - mac80211: fix pending queue hang due to TX_DROP\n (bsc#1051510).\n\n - mac80211: restrict delayed tailroom needed decrement\n (bsc#1051510).\n\n - macros.kernel-source: pass -b properly in kernel module\n package (bsc#1107870).\n\n - mailbox: xgene-slimpro: Fix potential NULL pointer\n dereference (bsc#1051510).\n\n - MAINTAINERS: fix location of ina2xx.txt device tree file\n (bsc#1051510).\n\n - md-cluster: clear another node's suspend_area after the\n copy is finished (bsc#1106333).\n\n - md-cluster: do not send msg if array is closing\n (bsc#1106333).\n\n - md-cluster: release RESYNC lock after the last resync\n message (bsc#1106688).\n\n - md-cluster: show array's status more accurate\n (bsc#1106333).\n\n - media: exynos4-is: Prevent NULL pointer dereference in\n __isp_video_try_fmt() (bsc#1051510).\n\n - media: mem2mem: Remove excessive try_run call\n (bsc#1051510).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bsc#1051510).\n\n - media: omap3isp: zero-initialize the isp cam_xclk(a,b)\n initial data (bsc#1051510).\n\n - media: Revert '[media] tvp5150: fix pad format frame\n height' (bsc#1051510).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1051510).\n\n - media: tw686x: Fix oops on buffer alloc failure\n (bsc#1051510).\n\n - media: v4l2-mem2mem: Fix missing v4l2_m2m_try_run call\n (bsc#1051510).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bsc#1051510).\n\n - mei: bus: type promotion bug in mei_nfc_if_version()\n (bsc#1051510).\n\n - mei: do not update offset in write (bsc#1051510).\n\n - mei: ignore not found client in the enumeration\n (bsc#1051510).\n\n - mei: me: enable asynchronous probing ().\n\n - memcg, thp: do not invoke oom killer on thp charges\n (bnc#1089663).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bsc#1051510).\n\n - memory: tegra: Do not handle spurious interrupts\n (bsc#1051510).\n\n - mfd: 88pm860x-i2c: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - mfd: arizona: Do not use regmap_read_poll_timeout\n (bsc#1051510).\n\n - mfd: intel-lpss: Add Ice Lake PCI IDs (bsc#1051510).\n\n - mfd: lpc_ich: Do not touch SPI-NOR write protection bit\n on Apollo Lake (bsc#1051510).\n\n - mfd: sm501: Set coherent_dma_mask when creating\n subdevices (bsc#1051510).\n\n - mfd: ti_am335x_tscadc: Fix struct clk memory leak\n (bsc#1051510).\n\n - mlxsw: core_acl_flex_actions: Return error for\n conflicting actions (netfilter-stable-18_08_17).\n\n - mmc: omap_hsmmc: fix wakeirq handling on removal\n (bsc#1051510).\n\n - mmc: sdhci: do not try to use 3.3V signaling if not\n supported (bsc#1051510).\n\n - mmc: sdhci-of-esdhc: set proper dma mask for ls104x\n chips (bsc#1051510).\n\n - mmc: tegra: prevent HS200 on Tegra 3 (bsc#1051510).\n\n - mm, dax: introduce pfn_t_special() (bsc#1104888).\n\n - mm: fix devmem_is_allowed() for sub-page System RAM\n intersections (bsc#1106800).\n\n - mm/huge_memory.c: fix data loss when splitting a file\n pmd (bnc#1107074).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm, madvise_inject_error: Disable MADV_SOFT_OFFLINE for\n ZONE_DEVICE pages (bsc#1107783).\n\n - mm, madvise_inject_error: Let memory_failure()\n optionally take a page reference (bsc#1107783).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1107065).\n\n - mm, memory_failure: Collect mapping size in\n collect_procs() (bsc#1107783).\n\n - mm, memory_failure: Teach memory_failure() about\n dev_pagemap pages (bsc#1107783).\n\n - mm, numa: Migrate pages to local nodes quicker early in\n the lifetime of a task (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, page_alloc: double zone's batchsize (bnc#971975 VM\n performance -- page allocator).\n\n - mm/vmalloc: add interfaces to free unmapped page table\n (bsc#1110006).\n\n - mm/vmscan: wake up flushers for legacy cgroups too\n (bnc#1107061).\n\n - module: exclude SHN_UNDEF symbols from kallsyms api\n (bsc#1071995).\n\n - Move the previous hv netvsc fix to the sorted section\n (bsc#1104708)\n\n - net/9p/client.c: version pointer uninitialized\n (bsc#1051510).\n\n - net/9p: fix error path of p9_virtio_probe (bsc#1051510).\n\n - net/9p: Switch to wait_event_killable() (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race by holding the lock\n (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bsc#1051510).\n\n - net: bcmgenet: correct bad merge (bsc#1051510).\n\n - net: bcmgenet: enable loopback during UniMAC sw_reset\n (bsc#1051510).\n\n - net: bcmgenet: Fix sparse warnings in\n bcmgenet_put_tx_csum() (bsc#1051510).\n\n - net: bcmgenet: Fix unmapping of fragments in\n bcmgenet_xmit() (bsc#1051510).\n\n - net: bcmgenet: prevent duplicate calls of\n bcmgenet_dma_teardown (bsc#1051510).\n\n - net: dccp: avoid crash in ccid3_hc_rx_send_feedback()\n (networking-stable-18_07_19).\n\n - net: dccp: switch rx_tstamp_last_feedback to monotonic\n clock (networking-stable-18_07_19).\n\n - net: diag: Do not double-free TCP_NEW_SYN_RECV sockets\n in tcp_abort (netfilter-stable-18_07_23).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (netfilter-stable-18_08_04).\n\n - net: ena: Eliminate duplicate barriers on weakly-ordered\n archs (bsc#1108093).\n\n - net: ena: fix device destruction to gracefully free\n resources (bsc#1108093).\n\n - net: ena: fix driver when PAGE_SIZE == 64kB\n (bsc#1108093).\n\n - net: ena: fix incorrect usage of memory barriers\n (bsc#1108093).\n\n - net: ena: fix missing calls to READ_ONCE (bsc#1108093).\n\n - net: ena: fix missing lock during device destruction\n (bsc#1108093).\n\n - net: ena: fix potential double ena_destroy_device()\n (bsc#1108093).\n\n - net: ena: fix surprise unplug NULL dereference kernel\n crash (bsc#1108093).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (netfilter-stable-18_08_01).\n\n - net: ethernet: mvneta: Fix napi structure mixup on\n armada 3700 (networking-stable-18_08_21).\n\n - netfilter: do not set F_IFACE on ipv6 fib lookups\n (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: provide input interface for\n route lookup (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: set F_IFACE for linklocal\n addresses (git-fixes).\n\n - netfilter: nat: Revert 'netfilter: nat: convert nat\n bysrc hash to rhashtable' (netfilter-stable-17_11_16).\n\n - netfilter: nf_tables: add missing netlink attrs to\n policies (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: do not assume chain stats are set\n when jumplabel is set (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: fix memory leak on error exit\n return (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: nft_compat: fix refcount leak on\n xt module (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON\n in nft_do_chain() (netfilter-stable-18_06_25).\n\n - netfilter: nft_compat: fix handling of large matchinfo\n size (netfilter-stable-18_06_27).\n\n - netfilter: nft_compat: prepare for indirect info storage\n (netfilter-stable-18_06_27).\n\n - netfilter: nft_meta: fix wrong value dereference in\n nft_meta_set_eval (netfilter-stable-18_06_27).\n\n - net: fix amd-xgbe flow-control issue\n (netfilter-stable-18_08_01).\n\n - net: fix use-after-free in GRO with ESP\n (networking-stable-18_07_19).\n\n - net: hns3: add unlikely for error check (bsc#1104353 ).\n\n - net: hns3: Fix comments for\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix desc num set to default when setting\n channel (bsc#1104353).\n\n - net: hns3: Fix for command format parsing error in\n hclge_is_all_function_id_zero (bsc#1104353).\n\n - net: hns3: Fix for information of phydev lost problem\n when down/up (bsc#1104353).\n\n - net: hns3: Fix for l4 checksum offload bug (bsc#1104353\n ).\n\n - net: hns3: Fix for mac pause not disable in pfc mode\n (bsc#1104353).\n\n - net: hns3: Fix for mailbox message truncated problem\n (bsc#1104353).\n\n - net: hns3: Fix for phy link issue when using marvell phy\n driver (bsc#1104353).\n\n - net: hns3: Fix for reset_level default assignment\n probelm (bsc#1104353).\n\n - net: hns3: Fix for using wrong mask and shift in\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix for waterline not setting correctly\n (bsc#1104353 ).\n\n - net: hns3: Fix get_vector ops in hclgevf_main module\n (bsc#1104353).\n\n - net: hns3: Fix MSIX allocation issue for VF (bsc#1104353\n ).\n\n - net: hns3: fix page_offset overflow when\n CONFIG_ARM64_64K_PAGES (bsc#1104353).\n\n - net: hns3: Fix return value error in\n hns3_reset_notify_down_enet (bsc#1104353).\n\n - net: hns3: fix return value error while\n hclge_cmd_csq_clean failed (bsc#1104353).\n\n - net: hns3: Fix warning bug when doing lp selftest\n (bsc#1104353 ).\n\n - net: hns3: modify hnae_ to hnae3_ (bsc#1104353).\n\n - net: hns3: Prevent sending command during global or core\n reset (bsc#1104353).\n\n - net: hns3: remove some redundant assignments\n (bsc#1104353 ).\n\n - net: hns3: remove unnecessary ring configuration\n operation while resetting (bsc#1104353).\n\n - net: hns3: simplify hclge_cmd_csq_clean (bsc#1104353 ).\n\n - net: hns3: Standardize the handle of return value\n (bsc#1104353 ).\n\n - net: hns: add netif_carrier_off before change speed and\n duplex (bsc#1107924).\n\n - net: hns: add the code for cleaning pkt in chip\n (bsc#1107924).\n\n - net/ipv4: Set oif in fib_compute_spec_dst\n (netfilter-stable-18_07_23).\n\n - netlink: Do not shift on 64 for ngroups (git-fixes).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (netfilter-stable-18_08_01).\n\n - netlink: Do not subscribe to non-existent groups\n (netfilter-stable-18_08_01).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (netfilter-stable-18_08_04).\n\n - net: mdio-mux: bcm-iproc: fix wrong getter and setter\n pair (netfilter-stable-18_08_01).\n\n - net/mlx5e: Avoid dealing with vport representors if not\n being e-switch manager (networking-stable-18_07_19).\n\n - net/mlx5: E-Switch, Avoid setup attempt if not being\n e-switch manager (networking-stable-18_07_19).\n\n - net: mvneta: fix mvneta_config_rss on armada 3700\n (networking-stable-18_08_21).\n\n - net: mvneta: fix the Rx desc DMA address in the Rx path\n (networking-stable-18_07_19).\n\n - net/packet: fix use-after-free\n (networking-stable-18_07_19).\n\n - Netperf performance issue due to AppArmor net mediation\n (bsc#1108520)\n\n - net: phy: consider PHY_IGNORE_INTERRUPT in\n phy_start_aneg_priv (netfilter-stable-18_07_27).\n\n - net: phy: fix flag masking in __set_phy_supported\n (netfilter-stable-18_07_23).\n\n - net: rtnl_configure_link: fix dev flags changes arg to\n __dev_notify_flags (git-fixes).\n\n - net_sched: blackhole: tell upper qdisc about dropped\n packets (networking-stable-18_07_19).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (netfilter-stable-18_08_17).\n\n - net: skb_segment() should not return NULL\n (netfilter-stable-18_07_27).\n\n - net: stmmac: align DMA stuff to largest cache line\n length (netfilter-stable-18_08_01).\n\n - net: stmmac: Fix WoL for PCI-based setups\n (netfilter-stable-18_08_04).\n\n - net: stmmac: mark PM functions as __maybe_unused\n (git-fixes).\n\n - net: sungem: fix rx checksum support\n (networking-stable-18_07_19).\n\n - net: systemport: Fix CRC forwarding check for SYSTEMPORT\n Lite (netfilter-stable-18_07_23).\n\n - nfc: Fix possible memory corruption when handling SHDLC\n I-Frame commands (bsc#1051510).\n\n - nfs41: do not return ENOMEM on LAYOUTUNAVAILABLE\n (git-fixes).\n\n - nfsd: remove blocked locks on client teardown\n (git-fixes).\n\n - nfs/filelayout: fix oops when freeing filelayout segment\n (bsc#1105190).\n\n - nfs/filelayout: Fix racy setting of fl->dsaddr in\n filelayout_check_deviceid() (bsc#1105190).\n\n - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls\n back to the mds (git-fixes).\n\n - nfs: Use an appropriate work queue for direct-write\n completion (bsc#1082519).\n\n - nfsv4 client live hangs after live data migration\n recovery (git-fixes).\n\n - nfsv4: Fix a sleep in atomic context in\n nfs4_callback_sequence() (git-fixes).\n\n - nfsv4: Fix possible 1-byte stack overflow in\n nfs_idmap_read_and_verify_message (git-fixes).\n\n - nl80211: Add a missing break in parse_station_flags\n (bsc#1051510).\n\n - nl80211: check nla_parse_nested() return values\n (bsc#1051510).\n\n - nvme_fc: add 'nvme_discovery' sysfs attribute to fc\n transport device (bsc#1044189).\n\n - nvme: register ns_id attributes as default sysfs groups\n (bsc#1105247).\n\n - parport: sunbpp: fix error return code (bsc#1051510).\n\n - partitions/aix: append null character to print data from\n disk (bsc#1051510).\n\n - partitions/aix: fix usage of uninitialized lv_info and\n lvname structures (bsc#1051510).\n\n - pci: aardvark: Fix I/O space page leak (git-fixes).\n\n - pci: aardvark: Size bridges before resources allocation\n (bsc#1109806).\n\n - pci: Add pci_resize_resource() for resizing BARs\n (bsc#1105355).\n\n - pci: Add PCI resource type mask #define (bsc#1105355).\n\n - pci: Add resizable BAR infrastructure (bsc#1105355).\n\n - pci: Allow release of resources that were never assigned\n (bsc#1105355).\n\n - pci: Cleanup PCI_REBAR_CTRL_BAR_SHIFT handling\n (bsc#1105355).\n\n - pci: designware: Fix I/O space page leak (bsc#1109806).\n\n - pci: faraday: Add missing of_node_put() (bsc#1109806).\n\n - pci: faraday: Fix I/O space page leak (bsc#1109806).\n\n - pci: hotplug: Do not leak pci_slot on registration\n failure (bsc#1051510).\n\n - pci: hv: Make sure the bus domain is really unique\n (git-fixes).\n\n - pci: Match Root Port's MPS to endpoint's MPSS as\n necessary (bsc#1109269).\n\n - pci: mvebu: Fix I/O space end address calculation\n (bsc#1051510).\n\n - pci: OF: Fix I/O space page leak (git-fixes).\n\n - pci: pciehp: Fix unprotected list iteration in IRQ\n handler (bsc#1051510).\n\n - pci: pciehp: Fix use-after-free on unplug (bsc#1051510).\n\n - PCI/portdrv: Compute MSI/MSI-X IRQ vectors after final\n allocation (bsc#1109806).\n\n - PCI/portdrv: Factor out Interrupt Message Number lookup\n (bsc#1109806).\n\n - pci: Restore resized BAR state on resume (bsc#1105355).\n\n - pci: Skip MPS logic for Virtual Functions (VFs)\n (bsc#1051510).\n\n - pci: versatile: Fix I/O space page leak (bsc#1109806).\n\n - pci: xgene: Fix I/O space page leak (bsc#1109806).\n\n - pci: xilinx: Add missing of_node_put() (bsc#1109806).\n\n - pci: xilinx-nwl: Add missing of_node_put()\n (bsc#1109806).\n\n - pinctrl/amd: only handle irq if it is pending and\n unmasked (bsc#1051510).\n\n - pinctrl: cannonlake: Fix community ordering for H\n variant (bsc#1051510).\n\n - pinctrl: cannonlake: Fix HOSTSW_OWN register offset of H\n variant (bsc#1051510).\n\n - pinctrl: core: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bsc#1051510).\n\n - pinctrl: imx: off by one in imx_pinconf_group_dbg_show()\n (bsc#1051510).\n\n - pinctrl: pinmux: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: qcom: spmi-gpio: Fix pmic_gpio_config_get() to\n be compliant (bsc#1051510).\n\n - pinctrl: single: Fix group and function selector use\n (bsc#1051510).\n\n - pipe: actually allow root to exceed the pipe buffer\n limits (bsc#1106297).\n\n - platform/x86: alienware-wmi: Correct a memory leak\n (bsc#1051510).\n\n - platform/x86: asus-nb-wmi: Add keymap entry for lid flip\n action on UX360 (bsc#1051510).\n\n - platform/x86: thinkpad_acpi: Proper model/release\n matching (bsc#1051510).\n\n - platform/x86: toshiba_acpi: Fix defined but not used\n build warnings (bsc#1051510).\n\n - PM / clk: signedness bug in of_pm_clk_add_clks()\n (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: Fix duplicated opp table on\n reload (bsc#1051510).\n\n - PM / Domains: Fix error path during attach in genpd\n (bsc#1051510).\n\n - pmem: Switch to copy_to_iter_mcsafe() (bsc#1098782).\n\n - PM / runtime: Drop usage count for suppliers at device\n link removal (bsc#1100132).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bsc#1051510).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (git-fixes).\n\n - power: gemini-poweroff: Avoid more spurious poweroffs\n (bsc#1051510).\n\n - power: generic-adc-battery: check for duplicate\n properties copied from iio channels (bsc#1051510).\n\n - power: generic-adc-battery: fix out-of-bounds write when\n copying channel properties (bsc#1051510).\n\n - powernv/pseries: consolidate code for mce early handling\n (bsc#1094244).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032, git-fixes).\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bsc#1094244).\n\n - powerpc/64s: Fix DT CPU features Power9 DD2.1 logic\n (bsc#1055117).\n\n - powerpc/64s: move machine check SLB flushing to mm/slb.c\n (bsc#1094244).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157, git-fixes).\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc/fadump: cleanup crash memory ranges support\n (bsc#1103269).\n\n - powerpc/fadump: re-register firmware-assisted dump if\n already registered (bsc#1108170, bsc#1108823).\n\n - powerpc: Fix size calculation using resource_size()\n (bnc#1012382).\n\n - powerpc: KABI add aux_ptr to hole in paca_struct to\n extend it with additional members (bsc#1094244).\n\n - powerpc: kabi: move mce_data_buf into paca_aux\n (bsc#1094244).\n\n - powerpc/kprobes: Fix call trace due to incorrect preempt\n count (bsc#1065729).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1065729).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1065729).\n\n - powerpc/mce: Fix SLB rebolting during MCE recovery path\n (bsc#1094244).\n\n - powerpc/numa: Use associativity if VPHN hcall is\n successful (bsc#1110363).\n\n - powerpc/perf: Fix IMC allocation routine (bsc#1054914).\n\n - powerpc/perf: Fix memory allocation for core-imc based\n on num_possible_cpus() (bsc#1054914).\n\n - powerpc/perf: Remove sched_task function defined for\n thread-imc (bsc#1054914).\n\n - powerpc/pkeys: Fix reading of ibm,\n processor-storage-keys property (bsc#1109244).\n\n - powerpc/powernv/npu: Do a PID GPU TLB flush when\n invalidating a large address range (bsc#1055120).\n\n - powerpc/pseries: Avoid using the size greater than\n RTAS_ERROR_LOG_MAX (bsc#1094244).\n\n - powerpc/pseries: Defer the logging of rtas error to irq\n work queue (bsc#1094244).\n\n - powerpc/pseries: Define MCE error event section\n (bsc#1094244).\n\n - powerpc/pseries: Disable CPU hotplug across migrations\n (bsc#1065729).\n\n - powerpc/pseries: Display machine check error details\n (bsc#1094244).\n\n - powerpc/pseries: Dump the SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: fix EEH recovery of some IOV devices\n (bsc#1078720, git-fixes).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bsc#1094244).\n\n - powerpc/pseries: Flush SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: Remove prrn_work workqueue\n (bsc#1102495, bsc#1109337).\n\n - powerpc/pseries: Remove unneeded uses of dlpar work\n queue (bsc#1102495, bsc#1109337).\n\n - powerpc/tm: Avoid possible userspace r1 corruption on\n reclaim (bsc#1109333).\n\n - powerpc/tm: Fix userspace r13 corruption (bsc#1109333).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc/xive: Fix trying to 'push' an already active\n pool VP (bsc#1085030, git-fixes).\n\n - power: remove possible deadlock when unregistering\n power_supply (bsc#1051510).\n\n - power: supply: axp288_charger: Fix initial\n constant_charge_current value (bsc#1051510).\n\n - power: supply: max77693_charger: fix unintentional\n fall-through (bsc#1051510).\n\n - power: vexpress: fix corruption in notifier registration\n (bsc#1051510).\n\n - ppp: Destroy the mutex when cleanup (bsc#1051510).\n\n - ppp: fix __percpu annotation (bsc#1051510).\n\n - pstore: Fix incorrect persistent ram buffer mapping\n (bsc#1051510).\n\n - ptp: fix missing break in switch (bsc#1105355).\n\n - ptr_ring: fail early if queue occupies more than\n KMALLOC_MAX_SIZE (bsc#1105355).\n\n - ptr_ring: fix up after recent ptr_ring changes\n (bsc#1105355).\n\n - ptr_ring: prevent integer overflow when calculating size\n (bsc#1105355).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bsc#1051510).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - r8152: Check for supported Wake-on-LAN Modes\n (bsc#1051510).\n\n - r8169: add support for NCube 8168 network card\n (bsc#1051510).\n\n - random: add new ioctl RNDRESEEDCRNG (bsc#1051510).\n\n - random: fix possible sleeping allocation from irq\n context (bsc#1051510).\n\n - random: mix rdrand with entropy sent in from userspace\n (bsc#1051510).\n\n - random: set up the NUMA crng instances after the CRNG is\n fully initialized (bsc#1051510).\n\n - RDMA/bnxt_re: Fix a bunch of off by one bugs in\n qplib_fp.c (bsc#1050244).\n\n - RDMA/bnxt_re: Fix a couple off by one bugs (bsc#1050244\n ).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1058659).\n\n - RDMA/uverbs: Expand primary and alt AV port checks\n (bsc#1046306 ).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality, git fixes).\n\n - regulator: fix crash caused by null driver data\n (bsc#1051510).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bsc#1106236).\n\n - Replace magic for trusting the secondary keyring with\n #define (bsc#1051510).\n\n - Revert 'btrfs: qgroups: Retry after commit on getting\n EDQUOT' (bsc#1031392).\n\n - Revert 'ipc/shm: Fix shmat mmap nil-page protection'\n (bsc#1090078).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Revert 'pci: Add ACS quirk for Intel 300 series'\n (bsc#1051510).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bsc#1051510).\n\n - Revert 'vhost: cache used event for better performance'\n (bsc#1090528).\n\n - Revert 'vmalloc: back off when the current task is\n killed' (bnc#1107073).\n\n - rhashtable: add schedule points (bsc#1051510).\n\n - rndis_wlan: potential buffer overflow in\n rndis_wlan_auth_indication() (bsc#1051510).\n\n - root dentries need RCU-delayed freeing (bsc#1106297).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bsc#1051510).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bsc#1051510).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (netfilter-stable-18_07_27).\n\n - rxrpc: Fix user call ID check in\n rxrpc_service_prealloc_one (netfilter-stable-18_08_04).\n\n - s390: always save and restore all registers on context\n switch (bsc#1103421).\n\n - s390/crypto: Fix return code checking in\n cbc_paes_crypt() (bnc#1108323, LTC#171709).\n\n - s390: detect etoken facility (bsc#1103421).\n\n - s390/entry.S: use assembler alternatives (bsc#1103421).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (git-fixes, bsc#1103421).\n\n - s390: fix compat system call table (bsc#1103421).\n\n - s390: fix handling of -1 in set(,fs)id16 syscalls\n (bsc#1103421).\n\n - s390/lib: use expoline for all bcr instructions\n (git-fixes, bsc#1103421).\n\n - s390/mm: fix local TLB flushing vs. detach of an mm\n address space (bsc#1103421).\n\n - s390/mm: fix race on mm->context.flush_mm (bsc#1103421).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1108323, LTC#171068).\n\n - s390: Prevent hotplug rwsem recursion (bsc#1105731).\n\n - s390/qdio: reset old sbal_state flags (LTC#171525,\n bsc#1106948).\n\n - s390/qeth: consistently re-enable device features\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: rely on kernel for feature recovery\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: use vzalloc for QUERY OAT buffer (LTC#171527,\n bsc#1106948).\n\n - s390/runtime instrumentation: simplify task exit\n handling (bsc#1103421).\n\n - s390: use expoline thunks for all branches generated by\n the BPF JIT (bsc#1103421).\n\n - samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1\n (bsc#1083647).\n\n - sched/debug: Reverse the order of printing faults\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/fair: Fix bandwidth timer clock drift condition\n (Git-fixes).\n\n - sched/fair: Fix vruntime_normalized() for remote\n non-migration wakeup (git-fixes).\n\n - sched/numa: Avoid task migration for small NUMA\n improvement (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Do not move imbalanced load purely on the\n basis of an idle CPU (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Modify migrate_swap() to accept additional\n parameters (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Move task_numa_placement() closer to\n numa_migrate_preferred() (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Remove numa_has_capacity() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field (bnc#1101669 optimise\n numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field -kabi (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused code from update_numa_stats()\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused nr_running field (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Reset scan rate whenever task moves across\n nodes (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Set preferred_node based on best_cpu\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Simplify load_too_imbalanced() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Skip nodes that are at 'hoplimit'\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Stop comparing tasks for NUMA placement\n after selecting an idle core (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Update the scan period without holding the\n numa_group lock (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Use group_weights to identify if migration\n degrades locality (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Use task faults only if numa_group is not\n yet set up (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - scripts/git_sort/git_sort.py: Add fixes branch from\n mkp/scsi.git.\n\n - scripts/git_sort/git_sort.py: add libnvdimm-for-next\n branch\n\n - scripts/git_sort/git_sort.py: add mkp 4.20/scsi-queue\n\n - scripts: modpost: check memory allocation results\n (bsc#1051510).\n\n - scsi: cxlflash: Abstract hardware dependent assignments\n ().\n\n - scsi: cxlflash: Acquire semaphore before invoking ioctl\n services ().\n\n - scsi: cxlflash: Adapter context init can return error\n ().\n\n - scsi: cxlflash: Adapter context support for OCXL ().\n\n - scsi: cxlflash: Add argument identifier names ().\n\n - scsi: cxlflash: Add include guards to backend.h ().\n\n - scsi: cxlflash: Avoid clobbering context control\n register value ().\n\n - scsi: cxlflash: Enable OCXL operations ().\n\n - scsi: cxlflash: Explicitly cache number of interrupts\n per context ().\n\n - scsi: cxlflash: Handle spurious interrupts ().\n\n - scsi: cxlflash: Hardware AFU for OCXL ().\n\n - scsi: cxlflash: Introduce object handle fop ().\n\n - scsi: cxlflash: Introduce OCXL backend ().\n\n - scsi: cxlflash: Introduce OCXL context state machine ().\n\n - scsi: cxlflash: Isolate external module dependencies ().\n\n - scsi: cxlflash: Limit the debug logs in the IO path ().\n\n - scsi: cxlflash: MMIO map the AFU ().\n\n - scsi: cxlflash: Preserve number of interrupts for master\n contexts ().\n\n - scsi: cxlflash: Read host AFU configuration ().\n\n - scsi: cxlflash: Read host function configuration ().\n\n - scsi: cxlflash: Register for translation errors ().\n\n - scsi: cxlflash: Remove commmands from pending list on\n timeout ().\n\n - scsi: cxlflash: Remove embedded CXL work structures ().\n\n - scsi: cxlflash: Setup AFU acTag range ().\n\n - scsi: cxlflash: Setup AFU PASID ().\n\n - scsi: cxlflash: Setup function acTag range ().\n\n - scsi: cxlflash: Setup function OCXL link ().\n\n - scsi: cxlflash: Setup LISNs for master contexts ().\n\n - scsi: cxlflash: Setup LISNs for user contexts ().\n\n - scsi: cxlflash: Setup OCXL transaction layer ().\n\n - scsi: cxlflash: Staging to support future accelerators\n ().\n\n - scsi: cxlflash: Support adapter context discovery ().\n\n - scsi: cxlflash: Support adapter context mmap and release\n ().\n\n - scsi: cxlflash: Support adapter context polling ().\n\n - scsi: cxlflash: Support adapter context reading ().\n\n - scsi: cxlflash: Support adapter file descriptors for\n OCXL ().\n\n - scsi: cxlflash: Support AFU interrupt management ().\n\n - scsi: cxlflash: Support AFU interrupt mapping and\n registration ().\n\n - scsi: cxlflash: Support AFU reset ().\n\n - scsi: cxlflash: Support AFU state toggling ().\n\n - scsi: cxlflash: Support file descriptor mapping ().\n\n - scsi: cxlflash: Support image reload policy modification\n ().\n\n - scsi: cxlflash: Support process element lifecycle ().\n\n - scsi: cxlflash: Support process specific mappings ().\n\n - scsi: cxlflash: Support reading adapter VPD data ().\n\n - scsi: cxlflash: Support starting an adapter context ().\n\n - scsi: cxlflash: Support starting user contexts ().\n\n - scsi: cxlflash: Synchronize reset and remove ops ().\n\n - scsi: cxlflash: Use IDR to manage adapter contexts ().\n\n - scsi: cxlflash: Use local mutex for AFU serialization\n ().\n\n - scsi: cxlflash: Yield to active send threads ().\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138). \n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - scsi: fcoe: hold disc_mutex when traversing rport lists\n (bsc#1077989).\n\n - scsi: hisi_sas: Add a flag to filter PHY events during\n reset ().\n\n - scsi: hisi_sas: add memory barrier in task delivery\n function ().\n\n - scsi: hisi_sas: Add missing PHY spinlock init ().\n\n - scsi: hisi_sas: Add SATA FIS check for v3 hw ().\n\n - scsi: hisi_sas: Adjust task reject period during host\n reset ().\n\n - scsi: hisi_sas: Drop hisi_sas_slot_abort() ().\n\n - scsi: hisi_sas: Fix the conflict between dev gone and\n host reset ().\n\n - scsi: hisi_sas: Fix the failure of recovering PHY from\n STP link timeout ().\n\n - scsi: hisi_sas: Implement handlers of PCIe FLR for v3 hw\n ().\n\n - scsi: hisi_sas: Only process broadcast change in\n phy_bcast_v3_hw() ().\n\n - scsi: hisi_sas: Pre-allocate slot DMA buffers ().\n\n - scsi: hisi_sas: Release all remaining resources in clear\n nexus ha ().\n\n - scsi: hisi_sas: relocate some common code for v3 hw ().\n\n - scsi: hisi_sas: tidy channel interrupt handler for v3 hw\n ().\n\n - scsi: hisi_sas: Tidy hisi_sas_task_prep() ().\n\n - scsi: hisi_sas: tidy host controller reset function a\n bit ().\n\n - scsi: hisi_sas: Update a couple of register settings for\n v3 hw ().\n\n - scsi: hisi_sas: Use dmam_alloc_coherent() ().\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: ipr: System hung while dlpar adding primary ipr\n adapter back (bsc#1109336).\n\n - scsi: libfc: Add lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup 'sleeping function called from\n invalid context' (bsc#1077989).\n\n - scsi: libfc: hold disc_mutex in fc_disc_stop_rports()\n (bsc#1077989).\n\n - scsi: lpfc: Correct MDS diag and nvmet configuration\n (bsc#1106636).\n\n - scsi: mpt3sas: Fix calltrace observed while running IO &\n reset (bsc#1077989).\n\n - scsi: qla2xxx: Add appropriate debug info for invalid\n RX_ID (bsc#1108870).\n\n - scsi: qla2xxx: Add logic to detect ABTS hang and\n response completion (bsc#1108870).\n\n - scsi: qla2xxx: Add longer window for chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Add mode control for each physical port\n (bsc#1108870).\n\n - scsi: qla2xxx: Add support for ZIO6 interrupt threshold\n (bsc#1108870).\n\n - scsi: qla2xxx: Allow FC-NVMe underrun to be handled by\n transport (bsc#1108870).\n\n - scsi: qla2xxx: Check for Register disconnect\n (bsc#1108870).\n\n - scsi: qla2xxx: Cleanup for N2N code (bsc#1086327,).\n\n - scsi: qla2xxx: Decrement login retry count for only\n plogi (bsc#1108870).\n\n - scsi: qla2xxx: Defer chip reset until target mode is\n enabled (bsc#1108870).\n\n - scsi: qla2xxx: Fix deadlock between ATIO and HW lock\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix double increment of switch scan retry\n count (bsc#1108870).\n\n - scsi: qla2xxx: Fix dropped srb resource (bsc#1108870).\n\n - scsi: qla2xxx: Fix duplicate switch's Nport ID entries\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix early srb free on abort\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix iIDMA error (bsc#1108870).\n\n - scsi: qla2xxx: Fix incorrect port speed being set for FC\n adapters (bsc#1108870).\n\n - scsi: qla2xxx: Fix ISP recovery on unload\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix issue reported by static checker for\n qla2x00_els_dcmd2_sp_done() (bsc#1086327,).\n\n - scsi: qla2xxx: Fix login retry count (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Management Server NPort handle\n reservation logic (bsc#1086327,).\n\n - scsi: qla2xxx: Fix N2N link re-connect (bsc#1086327,).\n\n - scsi: qla2xxx: Fix out of order Termination and ABTS\n response (bsc#1108870).\n\n - scsi: qla2xxx: Fix port speed display on chip reset\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix premature command free (bsc#1108870).\n\n - scsi: qla2xxx: Fix process response queue for ISP26XX\n and above (bsc#1108870).\n\n - scsi: qla2xxx: Fix race between switch cmd completion\n and timeout (bsc#1086327,).\n\n - scsi: qla2xxx: Fix race condition for resource cleanup\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix redundant fc_rport registration\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Remote port registration\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix session state stuck in Get Port DB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stalled relogin (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stuck session in PLOGI state\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix unintended Logout (bsc#1086327,).\n\n - scsi: qla2xxx: Flush mailbox commands on chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Force fw cleanup on ADISC error\n (bsc#1108870).\n\n - scsi: qla2xxx: Increase abort timeout value\n (bsc#1108870).\n\n - scsi: qla2xxx: Migrate NVME N2N handling into state\n machine (bsc#1086327,).\n\n - scsi: qla2xxx: Move ABTS code behind qpair\n (bsc#1108870).\n\n - scsi: qla2xxx: Move (get|rel)_sp to base_qpair struct\n (bsc#1108870).\n\n - scsi: qla2xxx: Move rport registration out of internal\n work_list (bsc#1108870).\n\n - scsi: qla2xxx: Prevent sysfs access when chip is down\n (bsc#1086327,).\n\n - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU\n lock-up (bsc#1108870).\n\n - scsi: qla2xxx: Reject bsg request if chip is down\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove all rports if fabric scan retry\n fails (bsc#1108870).\n\n - scsi: qla2xxx: Remove ASYNC GIDPN switch command\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove redundant check for fcport\n deletion (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale ADISC_DONE event\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale debug trace message from\n tcm_qla2xxx (bsc#1108870).\n\n - scsi: qla2xxx: Save frame payload size from ICB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Serialize mailbox request (bsc#1108870).\n\n - scsi: qla2xxx: shutdown chip if reset fail\n (bsc#1108870).\n\n - scsi: qla2xxx: Silent erroneous message (bsc#1086327,).\n\n - scsi: qla2xxx: Spinlock recursion in qla_target\n (bsc#1086327,).\n\n - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0\n (bsc#1108870).\n\n - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB\n completion (bsc#1108870).\n\n - scsi: qla2xxx: Update driver to version 10.00.00.09-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.08-k\n (bsc#1086327,).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.10-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.11-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update rscn_rcvd field to more meaningful\n scan_needed (bsc#1108870).\n\n - scsi: qla2xxx: Use correct qpair for ABTS/CMD\n (bsc#1108870).\n\n - security: check for kstrdup() failure in lsm_append()\n (bsc#1051510).\n\n - selftests/bpf: fix a typo in map in map test\n (bsc#1083647).\n\n - selftests/bpf/test_maps: exit child process without\n error in ENOMEM case (bsc#1083647).\n\n - serial: 8250: Do not service RX FIFO if interrupts are\n disabled (bsc#1051510).\n\n - serial: 8250_dw: Add ACPI support for uart on Broadcom\n SoC (bsc#1051510).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bsc#1051510).\n\n - serial: core: mark port as initialized after successful\n IRQ change (bsc#1051510).\n\n - serial: enable spi in sc16is7xx driver References:\n bsc#1105672\n\n - serial: make sc16is7xx driver supported References:\n bsc#1105672\n\n - serial: pxa: Fix an error handling path in\n 'serial_pxa_probe()' (bsc#1051510).\n\n - serial: sh-sci: Stop RX FIFO timer during port shutdown\n (bsc#1051510).\n\n - serial: xuartps: fix typo in cdns_uart_startup\n (bsc#1051510).\n\n - series.conf: Sort automatic NUMA balancing related patch\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smsc75xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - smsc95xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - spi: cadence: Change usleep_range() to udelay(), for\n atomic context (bsc#1051510).\n\n - spi: davinci: fix a NULL pointer dereference\n (bsc#1051510).\n\n - spi-nor: intel-spi: Fix number of protected range\n registers for BYT/LPT ().\n\n - spi: pxa2xx: Add support for Intel Ice Lake\n (bsc#1051510).\n\n - spi: spi-fsl-dspi: Fix imprecise abort on VF500 during\n probe (bsc#1051510).\n\n - sr9800: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - sr: get/drop reference to device in revalidate and\n check_events (bsc#1109979).\n\n - staging: bcm2835-audio: Check if workqueue allocation\n failed ().\n\n - staging: bcm2835-audio: constify snd_pcm_ops structures\n ().\n\n - staging: bcm2835-audio: Deliver indirect-PCM transfer\n error ().\n\n - staging: bcm2835-audio: Disconnect and free\n vchi_instance on module_exit() ().\n\n - staging: bcm2835-audio: Do not leak workqueue if open\n fails ().\n\n - staging: bcm2835-audio: make snd_pcm_hardware const ().\n\n - staging: bcm2835-camera: fix timeout handling in\n wait_for_completion_timeout (bsc#1051510).\n\n - staging: bcm2835-camera: handle\n wait_for_completion_timeout return properly\n (bsc#1051510).\n\n - staging: comedi: ni_mio_common: fix subdevice flags for\n PFI subdevice (bsc#1051510).\n\n - staging: lustre: disable preempt while sampling\n processor id (bsc#1051510).\n\n - staging: lustre: fix bug in osc_enter_cache_try\n (bsc#1051510).\n\n - staging: lustre: ldlm: free resource when\n ldlm_lock_create() fails (bsc#1051510).\n\n - staging: lustre: libcfs: fix test for libcfs_ioctl_hdr\n minimum size (bsc#1051510).\n\n - staging: lustre: libcfs: Prevent harmless read underflow\n (bsc#1051510).\n\n - staging: lustre: llite: correct removexattr detection\n (bsc#1051510).\n\n - staging: lustre: llite: initialize xattr->xe_namelen\n (bsc#1051510).\n\n - staging: lustre: lmv: correctly iput lmo_root\n (bsc#1051510).\n\n - staging: lustre: lov: use correct env in\n lov_io_data_version_end() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix crash in\n kiblnd_handle_early_rxs() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix FastReg map/unmap for MLX5\n (bsc#1051510).\n\n - staging: lustre: o2iblnd: fix race at\n kiblnd_connect_peer (bsc#1051510).\n\n - staging: lustre: obdclass: return -EFAULT if\n copy_from_user() fails (bsc#1051510).\n\n - staging: lustre: obd_mount: use correct niduuid suffix\n (bsc#1051510).\n\n - staging: lustre: ptlrpc: kfree used instead of kvfree\n (bsc#1051510).\n\n - staging: lustre: remove invariant in cl_io_read_ahead()\n (bsc#1051510).\n\n - staging: lustre: statahead: remove incorrect test on\n agl_list_empty() (bsc#1051510).\n\n - staging: lustre: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1051510).\n\n - staging: rts5208: fix missing error check on call to\n rtsx_write_register (bsc#1051510).\n\n - staging: vc04_services: bcm2835-audio: Add blank line\n after declaration ().\n\n - staging: vc04_services: bcm2835-audio: add SPDX\n identifiers ().\n\n - staging: vc04_services: bcm2835-audio: Change to\n unsigned int * ().\n\n - staging: vc04_services: bcm2835-audio Format multiline\n comment ().\n\n - staging: vc04_services: bcm2835-audio: remove redundant\n license text ().\n\n - staging: vc04_services: Fix platform_no_drv_owner.cocci\n warnings ().\n\n - staging: vc04_services: please do not use multiple blank\n lines ().\n\n - stmmac: fix DMA channel hang in half-duplex mode\n (networking-stable-18_07_19).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1051510).\n\n - strparser: Remove early eaten to fix full tcp receive\n buffer stall (networking-stable-18_07_19).\n\n - sunxi-rsb: Include OF based modalias in device uevent\n (bsc#1051510).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: break up free_device callback\n (bsc#1105524).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (netfilter-stable-18_08_01).\n\n - tcp: add one more quick ack after after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp_bbr: fix bw probing to raise in-flight data for very\n small BDPs (netfilter-stable-18_08_01).\n\n - tcp: do not aggressively quick ack after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (netfilter-stable-18_07_27).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (netfilter-stable-18_07_27).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (netfilter-stable-18_08_01).\n\n - tcp: fix dctcp delayed ACK schedule\n (netfilter-stable-18_07_27).\n\n - tcp: fix Fast Open key endianness\n (networking-stable-18_07_19).\n\n - tcp: helpers to send special DCTCP ack\n (netfilter-stable-18_07_27).\n\n - tcp: prevent bogus FRTO undos with non-SACK flows\n (networking-stable-18_07_19).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (netfilter-stable-18_08_01).\n\n - tg3: Add higher cpu clock for 5762\n (netfilter-stable-18_07_23).\n\n - thermal_hwmon: Pass the originating device down to\n hwmon_device_register_with_info (bsc#1103363).\n\n - thermal_hwmon: Sanitize attribute name passed to hwmon\n (bsc#1103363).\n\n - thermal: thermal_hwmon: Convert to\n hwmon_device_register_with_info() (bsc#1103363).\n\n - ti: ethernet: cpdma: Use correct format for genpool_*\n (bsc#1051510).\n\n - tools/power turbostat: fix -S on UP systems\n (bsc#1051510).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bsc#1051510).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bsc#1051510).\n\n - tpm: cmd_ready command can be issued only after granting\n locality (bsc#1082555).\n\n - tpm: fix race condition in tpm_common_write()\n (bsc#1082555).\n\n - tpm: fix use after free in tpm2_load_context()\n (bsc#1082555).\n\n - tpm: Introduce flag TPM_TRANSMIT_RAW (bsc#1082555).\n\n - tpm: separate cmd_ready/go_idle from runtime_pm\n (bsc#1082555).\n\n - tpm: tpm_crb: relinquish locality on error path\n (bsc#1082555).\n\n - tpm: vtpm_proxy: Implement request_locality function\n (bsc#1082555).\n\n - tracepoint: Do not warn on ENOMEM (bsc#1051510).\n\n - tty: fix termios input-speed encoding (bsc#1051510).\n\n - tty: fix termios input-speed encoding when using BOTHER\n (bsc#1051510).\n\n - tty: serial: 8250: Revert NXP SC16C2552 workaround\n (bsc#1051510).\n\n - uart: fix race between uart_put_char() and\n uart_shutdown() (bsc#1051510).\n\n - ubifs: Check data node size before truncate\n (bsc#1051510).\n\n - ubifs: Fix directory size calculation for symlinks\n (bsc#1106230).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1051510).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1051510).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1051510).\n\n - udlfb: set optimal write delay (bsc#1051510).\n\n - udl-kms: avoid division (bsc#1051510).\n\n - udl-kms: change down_interruptible to down\n (bsc#1051510).\n\n - udl-kms: fix crash due to uninitialized memory\n (bsc#1051510).\n\n - udl-kms: handle allocation failure (bsc#1051510).\n\n - uio, lib: Fix CONFIG_ARCH_HAS_UACCESS_MCSAFE compilation\n (bsc#1098782).\n\n - uio: potential double frees if __uio_register_device()\n fails (bsc#1051510).\n\n - Update config files, make CRYPTO_CRCT10DIF_PCLMUL\n built-in (bsc#1105603).\n\n - Update\n patches.drivers/0016-arm64-vgic-v2-Fix-proxying-of-cpuif\n -access.patch (bsc#1106901, bsc#1107265).\n\n - Update\n patches.fixes/4.4.139-043-powerpc-mm-hash-Add-missing-is\n ync-prior-to-ke.patch (bnc#1012382, bsc#1094244).\n\n - Update patch tag of dmi fix (bsc#1105597) Also moved to\n the sorted section.\n\n - Update patch tags of recent security fixes (bsc#1106426)\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bsc#1051510).\n\n - uprobes/x86: Remove incorrect WARN_ON() in\n uprobe_init_insn() (bsc#1051510).\n\n - usb: cdc-wdm: do not enable interrupts in USB-giveback\n (bsc#1051510).\n\n - usb: Do not die twice if PCI xhci host is not responding\n in resume (bsc#1051510).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bsc#1051510).\n\n - usb: dwc2: gadget: Fix issue in dwc2_gadget_start_isoc()\n (bsc#1051510).\n\n - usb: dwc3: change stream event enable bit back to 13\n (bsc#1051510).\n\n - usb: dwc3: pci: add support for Intel IceLake\n (bsc#1051510).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bsc#1051510).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: fix maxpacket size of\n ep0 (bsc#1051510).\n\n - usb: net2280: Fix erroneous synchronization change\n (bsc#1051510).\n\n - usb: option: add support for DW5821e (bsc#1051510).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bsc#1051510).\n\n - usb: serial: io_ti: fix array underflow in completion\n handler (bsc#1051510).\n\n - usb: serial: kobil_sct: fix modem-status error handling\n (bsc#1051510).\n\n - usb: serial: pl2303: add a new device id for ATEN\n (bsc#1051510).\n\n - usb: serial: sierra: fix potential deadlock at close\n (bsc#1051510).\n\n - usb: serial: ti_usb_3410_5052: fix array underflow in\n completion handler (bsc#1051510).\n\n - usb: xhci: increase CRS timeout value (bsc#1051510).\n\n - userns: move user access out of the mutex (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Payload Size (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Read Request Size\n (bsc#1051510).\n\n - vfio/type1: Fix task tracking for QEMU vCPU hotplug\n (bsc#1051510).\n\n - vfs: do not test owner for NFS in set_posix_acl()\n (bsc#1103405).\n\n - vhost: correctly check the iova range when waking\n virtqueue (bsc#1051510).\n\n - vhost: do not try to access device IOTLB when not\n initialized (bsc#1051510).\n\n - vhost_net: validate sock before trying to put its fd\n (networking-stable-18_07_19).\n\n - vhost: reset metadata cache when initializing new IOTLB\n (netfilter-stable-18_08_17).\n\n - vhost: use mutex_lock_nested() in vhost_dev_lock_vqs()\n (bsc#1051510).\n\n - video: fbdev: pxafb: clear allocated memory for video\n modes (bsc#1051510).\n\n - video: goldfishfb: fix memory leak on driver remove\n (bsc#1051510).\n\n - vmci: type promotion bug in qp_host_get_user_memory()\n (bsc#1105355).\n\n - vmw_balloon: do not use 2MB without batching\n (bsc#1051510).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bsc#1051510).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bsc#1051510).\n\n - vmw_balloon: remove inflation rate limiting\n (bsc#1051510).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bsc#1051510).\n\n - VSOCK: fix loopback on big-endian systems\n (networking-stable-18_07_19).\n\n - vsock: split dwork to avoid reinitializations\n (netfilter-stable-18_08_17).\n\n - vxlan: add new fdb alloc and create helpers\n (netfilter-stable-18_07_27).\n\n - vxlan: fix default fdb entry netlink notify ordering\n during netdev create (netfilter-stable-18_07_27).\n\n - vxlan: make netlink notify in vxlan_fdb_destroy optional\n (netfilter-stable-18_07_27).\n\n - wan/fsl_ucc_hdlc: use IS_ERR_VALUE() to check return\n value of qe_muram_alloc (bsc#1051510).\n\n - watchdog: Mark watchdog touch functions as notrace\n (git-fixes).\n\n - wlcore: Add missing PM call for\n wlcore_cmd_wait_for_event_or_timeout() (bsc#1051510).\n\n - wlcore: Set rx_status boottime_ns field on rx\n (bsc#1051510).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1051510).\n\n - x86/apic: Fix restoring boot IRQ mode in reboot and\n kexec/kdump (bsc#1110006).\n\n - x86/apic: Split disable_IO_APIC() into two functions to\n fix CONFIG_KEXEC_JUMP=y (bsc#1110006).\n\n - x86/apic: Split out restore_boot_irq_mode() from\n disable_IO_APIC() (bsc#1110006).\n\n - x86/apic/vector: Fix off by one in error path\n (bsc#1110006).\n\n - x86/asm/memcpy_mcsafe: Add labels for __memcpy_mcsafe()\n write fault handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Add write-protection-fault\n handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Define copy_to_iter_mcsafe()\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Fix copy_to_user_mcsafe()\n exception handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Provide original\n memcpy_mcsafe_unrolled (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Remove loop unrolling\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Return bytes remaining\n (bsc#1098782).\n\n - x86/boot: Fix kexec booting failure in the SEV bit\n detection code (bsc#1110301).\n\n - x86/build/64: Force the linker to use 2MB page size\n (bsc#1109603).\n\n - x86/CPU/AMD: Derive CPU topology from CPUID function 0xB\n when available ().\n\n - x86/CPU: Modify detect_extended_topology() to return\n result ().\n\n - x86/dumpstack: Save first regs set for the executive\n summary (bsc#1110006).\n\n - x86/dumpstack: Unify show_regs() (bsc#1110006).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/entry/64: Wipe KASAN stack shadow before\n rewind_stack_do_exit() (bsc#1110006).\n\n - x86/espfix/64: Fix espfix double-fault handling on\n 5-level systems (bsc#1110006).\n\n - x86/events/intel/ds: Fix bts_interrupt_threshold\n alignment (git-fixes c1961a4631da).\n\n - x86/idt: Load idt early in start_secondary\n (bsc#1110006).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1106121).\n\n - x86: irq_remapping: Move irq remapping mode enum ().\n\n - x86/kasan/64: Teach KASAN about the cpu_entry_area\n (kasan).\n\n - x86/kexec: Avoid double free_page() upon do_kexec_load()\n failure (bsc#1110006).\n\n - x86/kvm: fix LAPIC timer drift when guest uses periodic\n mode (bsc#1106240).\n\n - x86/mce: Fix set_mce_nospec() to avoid #GP fault\n (bsc#1107783).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110006).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110301).\n\n - x86/mcelog: Get rid of RCU remnants (git-fixes\n 5de97c9f6d85).\n\n - x86/memory_failure: Introduce (set, clear)_mce_nospec()\n (bsc#1107783).\n\n -\n x86-memory_failure-Introduce-set-clear-_mce_nospec.patch\n : Fixup compilation breakage on s390 and arm due to\n missing clear_mce_nospec().\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bsc#1110006).\n\n - x86/mm: Drop TS_COMPAT on 64-bit exec() syscall\n (bsc#1110006).\n\n - x86/mm: Expand static page table for fixmap space\n (bsc#1110006).\n\n - x86/mm: Fix ELF_ET_DYN_BASE for 5-level paging\n (bsc#1110006).\n\n - x86/mm: implement free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm/kasan: Do not use vmemmap_populate() to\n initialize shadow (kasan).\n\n - x86/mm/memory_hotplug: determine block size based on the\n end of boot memory (bsc#1108243).\n\n - x86/mm/pat: Prepare (reserve, free)_memtype() for\n 'decoy' addresses (bsc#1107783).\n\n - x86/mm/tlb: Always use lazy TLB mode (bnc#1105467 Reduce\n IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Leave lazy TLB mode at page table free time\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Make lazy TLB mode lazier (bnc#1105467\n Reduce IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Only send page table free TLB flush to lazy\n TLB CPUs (bnc#1105467 Reduce IPIs and atomic ops with\n improved lazy TLB).\n\n - x86/mm/tlb: Restructure switch_mm_irqs_off()\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Skip atomic operations for 'init_mm' in\n switch_mm_irqs_off() (bnc#1105467 Reduce IPIs and atomic\n ops with improved lazy TLB).\n\n - x86/mpx: Do not allow MPX if we have mappings above\n 47-bit (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110301).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1065600).\n\n - x86/pci: Make broadcom_postcore_init() check\n acpi_disabled (bsc#1110006).\n\n - x86/pkeys: Do not special case protection key 0\n (bsc#1110006).\n\n - x86/pkeys: Override pkey when moving away from PROT_EXEC\n (bsc#1110006).\n\n - x86/platform/UV: Add adjustable set memory block size\n function (bsc#1108243).\n\n - x86/platform/UV: Add kernel parameter to set memory\n block size (bsc#1108243).\n\n - x86/platform/UV: Mark memblock related init code and\n data correctly (bsc#1108243).\n\n - x86/platform/UV: Use new set memory block size function\n (bsc#1108243).\n\n - x86/process: Do not mix user/kernel regs in 64bit\n __show_regs() (bsc#1110006).\n\n - x86/process: Re-export start_thread() (bsc#1110006).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (git-fixes a5b296636453).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/vdso: Fix lsl operand order (bsc#1110006).\n\n - x86/vdso: Fix lsl operand order (bsc#1110301).\n\n - x86/vdso: Fix vDSO build if a retpoline is emitted\n (git-fixes 76b043848fd2).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1065600).\n\n - x86/xen/efi: Initialize only the EFI struct members used\n by Xen (bnc#1107945).\n\n - xen: avoid crash in disable_hotplug_cpu (bsc#1106594).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkback: remove unused pers_gnts_lock from struct\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xenbus: track caller request id (bnc#1065600).\n\n - xen: issue warning message when out of grant maptrack\n entries (bsc#1105795).\n\n - xen-netfront-dont-bug-in-case-of-too-many-frags.patch:\n (bnc#1104824).\n\n - xen-netfront: fix queue name setting (bnc#1065600).\n\n - xen-netfront: fix warn message as irq device name has\n '/' (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Fix XS_TRANSACTION_END\n handling (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Really return response string\n (bnc#1065600).\n\n - xfs: add a new xfs_iext_lookup_extent_before helper\n (bsc#1095344).\n\n - xfs: add asserts for the mmap lock in\n xfs_(insert,collapse)_file_space (bsc#1095344).\n\n - xfs: add a xfs_bmap_fork_to_state helper (bsc#1095344).\n\n - xfs: add a xfs_iext_update_extent helper (bsc#1095344).\n\n - xfs: add comments documenting the rebalance algorithm\n (bsc#1095344).\n\n - xfs: add some comments to\n xfs_iext_insert/xfs_iext_insert_node (bsc#1095344).\n\n - xfs: allow unaligned extent records in\n xfs_bmbt_disk_set_all (bsc#1095344).\n\n - xfs, dax: introduce xfs_dax_aops (bsc#1104888).\n\n - xfs: do not create overlapping extents in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_collapse_extents (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_insert_extents (bsc#1095344).\n\n - xfs: do not set XFS_BTCUR_BPRV_WASDEL in xfs_bunmapi\n (bsc#1095344).\n\n - xfs: fix memory leak in xfs_iext_free_last_leaf\n (bsc#1095344).\n\n - xfs: fix number of records handling in\n xfs_iext_split_leaf (bsc#1095344).\n\n - xfs: Fix per-inode DAX flag inheritance (Git-fixes\n bsc#1109511).\n\n - xfs: fix type usage (bsc#1095344).\n\n - xfs: handle zero entries case in xfs_iext_rebalance_leaf\n (bsc#1095344).\n\n - xfs: inline xfs_shift_file_space into callers\n (bsc#1095344).\n\n - xfs: introduce the xfs_iext_cursor abstraction\n (bsc#1095344).\n\n - xfs: iterate backwards in xfs_reflink_cancel_cow_blocks\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_bmap_extents_to_btree\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_iextents_copy\n (bsc#1095344).\n\n - xfs: make better use of the 'state' variable in\n xfs_bmap_del_extent_real (bsc#1095344).\n\n - xfs: merge xfs_bmap_read_extents into xfs_iread_extents\n (bsc#1095344).\n\n - xfs: move pre/post-bmap tracing into\n xfs_iext_update_extent (bsc#1095344).\n\n - xfs: move some code around inside xfs_bmap_shift_extents\n (bsc#1095344).\n\n - xfs: move some more code into xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: move xfs_bmbt_irec and xfs_exntst_t to xfs_types.h\n (bsc#1095344).\n\n - xfs: move xfs_iext_insert tracepoint to report useful\n information (bsc#1095344).\n\n - xfs: pass an on-disk extent to xfs_bmbt_validate_extent\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_lookup_eq\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_update\n (bsc#1095344).\n\n - xfs: pass struct xfs_bmbt_irec to\n xfs_bmbt_validate_extent (bsc#1095344).\n\n - xfs: preserve i_rdev when recycling a reclaimable inode\n (bsc#1095344).\n\n - xfs: refactor delalloc accounting in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: refactor dir2 leaf readahead shadow buffer\n cleverness (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_delay_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_delay\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_unwritten_real\n (bsc#1095344).\n\n - xfs: refactor xfs_del_extent_real (bsc#1095344).\n\n - xfs: remove a duplicate assignment in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: remove all xfs_bmbt_set_* helpers except for\n xfs_bmbt_set_all (bsc#1095344).\n\n - xfs: remove a superflous assignment in\n xfs_iext_remove_node (bsc#1095344).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: remove if_rdev (bsc#1095344).\n\n - xfs: remove post-bmap tracing in\n xfs_bmap_local_to_extents (bsc#1095344).\n\n - xfs: remove support for inlining data/extents into the\n inode fork (bsc#1095344).\n\n - xfs: remove the never fully implemented UUID fork format\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_insert\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_remove\n (bsc#1095344).\n\n - xfs: remove XFS_BMAP_MAX_SHIFT_EXTENTS (bsc#1095344).\n\n - xfs: remove XFS_BMAP_TRACE_EXLIST (bsc#1095344).\n\n - xfs: remove xfs_bmbt_get_state (bsc#1095344).\n\n - xfs: remove xfs_bmse_shift_one (bsc#1095344).\n\n - xfs: rename bno to end in __xfs_bunmapi (bsc#1095344).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xfs: replace xfs_bmbt_lookup_ge with\n xfs_bmbt_lookup_first (bsc#1095344).\n\n - xfs: replace xfs_qm_get_rtblks with a direct call to\n xfs_bmap_count_leaves (bsc#1095344).\n\n - xfs: rewrite getbmap using the xfs_iext_* helpers\n (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_count_leaves using\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_first_unused to make better use of\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: simplify the xfs_getbmap interface (bsc#1095344).\n\n - xfs: simplify xfs_reflink_convert_cow (bsc#1095344).\n\n - xfs: split xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: switch xfs_bmap_local_to_extents to use\n xfs_iext_insert (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_delay (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_collapse_extents\n (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_del_extent_*\n (bsc#1095344).\n\n - xfs: trivial indentation fixup for xfs_iext_remove_node\n (bsc#1095344).\n\n - xfs: update got in xfs_bmap_shift_update_extent\n (bsc#1095344).\n\n - xfs: use a b+tree for the in-core extent list\n (bsc#1095344).\n\n - xfs: use correct state defines in\n xfs_bmap_del_extent_(cow,delay) (bsc#1095344).\n\n - xfs: use the state defines in xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: use xfs_bmap_del_extent_delay for the data fork as\n well (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_split_extent_at (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent instead of open coding it\n (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent in xfs_bmap_first_unused\n (bsc#1095344).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bsc#1051510).\n\n - xhci: Fix use after free for URB cancellation on a\n reallocated endpoint (bsc#1051510).\n\n - zram: fix null dereference of handle (bsc#1105355).", "edition": 17, "cvss3": {"score": 7.0, "vector": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H"}, "published": "2019-03-27T00:00:00", "title": "openSUSE Security Update : the Linux Kernel (openSUSE-2019-769)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-17182", "CVE-2018-9363", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-14633", "CVE-2018-1129", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-15572", "CVE-2018-6554", "CVE-2018-13094", "CVE-2018-14613"], "modified": "2019-03-27T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:kernel-source", "p-cpe:/a:novell:opensuse:kernel-source-vanilla", "p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo", "cpe:/o:novell:opensuse:15.0", "p-cpe:/a:novell:opensuse:kernel-default-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-base", "p-cpe:/a:novell:opensuse:kernel-kvmsmall", "p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-devel", "p-cpe:/a:novell:opensuse:kernel-devel", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel", "p-cpe:/a:novell:opensuse:kernel-docs-html", "p-cpe:/a:novell:opensuse:kernel-obs-qa", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base", "p-cpe:/a:novell:opensuse:kernel-macros", "p-cpe:/a:novell:opensuse:kernel-syms", "p-cpe:/a:novell:opensuse:kernel-vanilla", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel", "p-cpe:/a:novell:opensuse:kernel-debug-base", "p-cpe:/a:novell:opensuse:kernel-debug-debugsource", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default", "p-cpe:/a:novell:opensuse:kernel-debug-devel", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug", "p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource", "p-cpe:/a:novell:opensuse:kernel-default-base", "p-cpe:/a:novell:opensuse:kernel-obs-build", "p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo"], "id": "OPENSUSE-2019-769.NASL", "href": "https://www.tenable.com/plugins/nessus/123329", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2019-769.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(123329);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\", \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\", \"CVE-2018-14613\", \"CVE-2018-14617\", \"CVE-2018-14633\", \"CVE-2018-15572\", \"CVE-2018-16658\", \"CVE-2018-17182\", \"CVE-2018-6554\", \"CVE-2018-6555\", \"CVE-2018-9363\");\n\n script_name(english:\"openSUSE Security Update : the Linux Kernel (openSUSE-2019-769)\");\n script_summary(english:\"Check for the openSUSE-2019-769 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The openSUSE Leap 15.0 kernel was updated to receive various security\nand bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2018-14633: A security flaw was found in the\n chap_server_compute_md5() function in the ISCSI target\n code in a way an authentication request from an ISCSI\n initiator is processed. An unauthenticated remote\n attacker can cause a stack-based buffer overflow and\n smash up to 17 bytes of the stack. The attack requires\n the iSCSI target to be enabled on the victim host.\n Depending on how the target's code was built (i.e.\n depending on a compiler, compile flags and hardware\n architecture) an attack may lead to a system crash and\n thus to a denial-of-service or possibly to a\n non-authorized access to data exported by an iSCSI\n target. Due to the nature of the flaw, privilege\n escalation cannot be fully ruled out, although we\n believe it is highly unlikely. Kernel versions 4.18.x,\n 4.14.x and 3.10.x are believed to be vulnerable\n (bnc#1107829).\n\n - CVE-2018-17182: The vmacache_flush_all function in\n mm/vmacache.c mishandled sequence number overflows. An\n attacker can trigger a use-after-free (and possibly gain\n privileges) via certain thread creation, map, unmap,\n invalidation, and dereference operations (bnc#1108399).\n\n - CVE-2018-14617: There is a NULL pointer dereference and\n panic in hfsplus_lookup() in fs/hfsplus/dir.c when\n opening a file (that is purportedly a hard link) in an\n hfs+ filesystem that has malformed catalog data, and is\n mounted read-only without a metadata directory\n (bnc#1102870).\n\n - CVE-2018-14613: There is an invalid pointer dereference\n in io_ctl_map_page() when mounting and operating a\n crafted btrfs image, because of a lack of block group\n item validation in check_leaf_item in\n fs/btrfs/tree-checker.c (bnc#1102896).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function\n in drivers/cdrom/cdrom.c allowed local attackers to use\n a incorrect bounds check in the CDROM driver\n CDROM_MEDIA_CHANGED ioctl to read out kernel memory\n (bnc#1092903).\n\n - CVE-2018-13093: There is a NULL pointer dereference and\n panic in lookup_slow() on a NULL inode->i_ops pointer\n when doing pathwalks on a corrupted xfs image. This\n occurs because of a lack of proper validation that\n cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13094: An OOPS may occur for a corrupted xfs\n image after xfs_da_shrink_inode() is called with a NULL\n bp (bnc#1100000).\n\n - CVE-2018-13095: A denial of service (memory corruption\n and BUG) can occur for a corrupted xfs image upon\n encountering an inode that is in extent format, but has\n more extents than fit in the inode fork (bnc#1099999).\n\n - CVE-2018-12896: An Integer Overflow in\n kernel/time/posix-timers.c in the POSIX timer code is\n caused by the way the overrun accounting works.\n Depending on interval and expiry time values, the\n overrun can be larger than INT_MAX, but the accounting\n is int based. This basically made the accounting values,\n which are visible to user space via timer_getoverrun(2)\n and siginfo::si_overrun, random. For example, a local\n user can cause a denial of service (signed integer\n overflow) via crafted mmap, futex, timer_create, and\n timer_settime system calls (bnc#1099922).\n\n - CVE-2018-16658: An information leak in\n cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could\n be used by local attackers to read kernel memory because\n a cast from unsigned long to int interferes with bounds\n checking. This is similar to CVE-2018-10940\n (bnc#1107689).\n\n - CVE-2018-6555: The irda_setsockopt function allowed\n local users to cause a denial of service (ias_object\n use-after-free and system crash) or possibly have\n unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Memory leak in the irda_bind function\n kernel allowed local users to cause a denial of service\n (memory consumption) by repeatedly binding an AF_IRDA\n socket (bnc#1106509).\n\n - CVE-2018-1129: An attacker having access to ceph cluster\n network who is able to alter the message payload was\n able to bypass signature checks done by cephx protocol.\n Ceph branches master, mimic, luminous and jewel are\n believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication\n protocol did not verify ceph clients correctly and was\n vulnerable to replay attack. Any attacker having access\n to ceph cluster network who is able to sniff packets on\n network can use this vulnerability to authenticate with\n ceph service and perform actions allowed by ceph\n service. Ceph branches master, mimic, luminous and jewel\n are believed to be vulnerable (bnc#1096748).\n\n - CVE-2018-10938: A crafted network packet sent remotely\n by an attacker may force the kernel to enter an infinite\n loop in the cipso_v4_optptr() function in\n net/ipv4/cipso_ipv4.c leading to a denial-of-service. A\n certain non-default configuration of LSM (Linux Security\n Module) and NetLabel should be set up on a system before\n an attacker could leverage this flaw (bnc#1106016).\n\n - CVE-2018-15572: The spectre_v2_select_mitigation\n function in arch/x86/kernel/cpu/bugs.c did not always\n fill RSB upon a context switch, which made it easier for\n attackers to conduct userspace-userspace spectreRSB\n attacks (bnc#1102517 bnc#1105296).\n\n - CVE-2018-10902: It was found that the raw midi kernel\n driver did not protect against concurrent access which\n leads to a double realloc (double free) in\n snd_rawmidi_input_params() and\n snd_rawmidi_output_status() which are part of\n snd_rawmidi_ioctl() handler in rawmidi.c file. A\n malicious local attacker could possibly use this for\n privilege escalation (bnc#1105322).\n\n - CVE-2018-9363: A buffer overflow in bluetooth HID report\n processing could be used by malicious bluetooth devices\n to crash the kernel or potentially execute code\n (bnc#1105292).\n\nThe following non-security bugs were fixed :\n\n - 9p: fix multiple NULL-pointer-dereferences\n (bsc#1051510).\n\n - 9p/net: Fix zero-copy path in the 9p virtio transport\n (bsc#1051510).\n\n - 9p/virtio: fix off-by-one error in sg list bounds check\n (bsc#1051510).\n\n - ACPI / APEI: Remove ghes_ioremap_area (bsc#1051510).\n\n - ACPI / bus: Only call dmi_check_system on X86\n (bsc#1105597, bsc#1106178).\n\n - ACPICA: iasl: Add SMMUv3 device ID mapping index support\n (bsc#1103387).\n\n - ACPI / EC: Add another entry for Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Add parameter to force disable the GPE on\n suspend (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on more Thinkpad X1 Carbon\n 6th systems (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on Thinkpad X1 Carbon 6th\n (bsc#1051510).\n\n - ACPI / EC: Use ec_no_wakeup on ThinkPad X1 Yoga 3rd\n (bsc#1051510).\n\n - ACPI/IORT: Remove temporary iort_get_id_mapping_index()\n ACPICA guard (bsc#1103387).\n\n - ACPI / pci: Bail early in acpi_pci_add_bus() if there is\n no ACPI handle (bsc#1051510).\n\n - ACPI / pci: pci_link: Allow the absence of _PRS and\n change log level (bsc#1104172).\n\n - ACPI/pci: pci_link: reduce verbosity when IRQ is enabled\n (bsc#1104172).\n\n - ACPI / PM: save NVS memory for ASUS 1025C laptop\n (bsc#1051510).\n\n - ACPI / scan: Initialize status to ACPI_STA_DEFAULT\n (bsc#1051510).\n\n - affs_lookup(): close a race with affs_remove_link()\n (bsc#1105355).\n\n - ahci: Add Intel Ice Lake LP PCI ID (bsc#1051510).\n\n - ALSA: bebob: fix memory leak for M-Audio FW1814 and\n ProjectMix I/O at error path (bsc#1051510).\n\n - ALSA: bebob: use address returned by kmalloc() instead\n of kernel stack for streaming DMA mapping (bsc#1051510).\n\n - ALSA: cs46xx: Deliver indirect-PCM transfer error ().\n\n - ALSA: cs5535audio: Fix invalid endian conversion\n (bsc#1051510).\n\n - ALSA: emu10k1: Deliver indirect-PCM transfer error ().\n\n - ALSA: emu10k1: fix possible info leak to userspace on\n SNDRV_EMU10K1_IOCTL_INFO (bsc#1051510).\n\n - ALSA: fireface: fix memory leak in\n ff400_switch_fetching_mode() (bsc#1051510).\n\n - ALSA: firewire-digi00x: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: firewire-tascam: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: fireworks: fix memory leak of response buffer at\n error path (bsc#1051510).\n\n - ALSA: hda: Add AZX_DCAPS_PM_RUNTIME for AMD Raven Ridge\n (bsc#1051510).\n\n - ALSA: hda: Correct Asrock B85M-ITX power_save blacklist\n entry (bsc#1051510).\n\n - ALSA: hda - Fix cancel_work_sync() stall from jackpoll\n work (bsc#1051510).\n\n - ALSA: hda - Sleep for 10ms after entering D3 on Conexant\n codecs (bsc#1051510).\n\n - ALSA: hda - Turn CX8200 into D3 as well upon reboot\n (bsc#1051510).\n\n - ALSA: memalloc: Do not exceed over the requested size\n (bsc#1051510).\n\n - ALSA: mips: Deliver indirect-PCM transfer error ().\n\n - ALSA: msnd: Fix the default sample sizes (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak for model-dependent data at\n error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of discovered stream formats\n at error path (bsc#1051510).\n\n - ALSA: oxfw: fix memory leak of private data\n (bsc#1051510).\n\n - ALSA: pcm: Fix negative appl_ptr handling in\n pcm-indirect helpers ().\n\n - ALSA: pcm: Fix snd_interval_refine first/last with open\n min/max (bsc#1051510).\n\n - ALSA: pcm: Simplify forward/rewind codes ().\n\n - ALSA: pcm: Use a common helper for PCM state check and\n hwsync ().\n\n - ALSA: pcm: Workaround for weird PulseAudio behavior on\n rewind error ().\n\n - ALSA: rme32: Deliver indirect-PCM transfer error ().\n\n - ALSA: snd-aoa: add of_node_put() in error path\n (bsc#1051510).\n\n - ALSA: usb-audio: Fix multiple definitions in\n AU0828_DEVICE() macro (bsc#1051510).\n\n - ALSA: virmidi: Fix too long output trigger loop\n (bsc#1051510).\n\n - ALSA: vx222: Fix invalid endian conversions\n (bsc#1051510).\n\n - ALSA: vxpocket: Fix invalid endian conversions\n (bsc#1051510).\n\n - apparmor: ensure that undecidable profile attachments\n fail (bsc#1106427).\n\n - apparmor: fix an error code in __aa_create_ns()\n (bsc#1106427).\n\n - apparmor: Fix regression in profile conflict logic\n (bsc#1106427)\n\n - apparmor: remove no-op permission check in policy_unpack\n (bsc#1106427).\n\n - arm64/acpi: Create arch specific cpu to acpi id helper\n (bsc#1106903).\n\n - arm64: dma-mapping: clear buffers allocated with\n FORCE_CONTIGUOUS flag (bsc#1106902).\n\n - arm64: enable thunderx gpio driver\n\n - arm64: Enforce BBM for huge IO/VMAP mappings\n (bsc#1106890).\n\n - arm64: export memblock_reserve()d regions via\n /proc/iomem (bsc#1106892).\n\n - arm64: fix unwind_frame() for filtered out fn for\n function graph tracing (bsc#1106900).\n\n - arm64: fix vmemmap BUILD_BUG_ON() triggering on !vmemmap\n setups (bsc#1106896).\n\n - arm64: fpsimd: Avoid FPSIMD context leakage for the init\n task (bsc#1106894).\n\n - arm64: Ignore hardware dirty bit updates in\n ptep_set_wrprotect() (bsc#1108010).\n\n - arm64: kasan: avoid pfn_to_nid() before page array is\n initialized (bsc#1106899).\n\n - arm64/kasan: do not allocate extra shadow memory\n (bsc#1106897).\n\n - arm64: Make sure permission updates happen for pmd/pud\n (bsc#1106891).\n\n - arm64: mm: check for upper PAGE_SHIFT bits in\n pfn_valid() (bsc#1106893).\n\n - arm64: mm: Ensure writes to swapper are ordered wrt\n subsequent cache maintenance (bsc#1106906).\n\n - arm64/mm/kasan: do not use vmemmap_populate() to\n initialize shadow (bsc#1106898).\n\n - arm64: numa: rework ACPI NUMA initialization\n (bsc#1106905).\n\n - arm64: Update config files. (bsc#1110716) Enable ST\n LPS25H pressure sensor.\n\n - arm64: vgic-v2: Fix proxying of cpuif access\n (bsc#1106901).\n\n - ARM: 8780/1: ftrace: Only set kernel memory back to\n read-only after boot (bsc#1051510).\n\n - arm/asm/tlb.h: Fix build error implicit func declaration\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - ARM: DRA7/OMAP5: Enable ACTLR[0] (Enable invalidates of\n BTB) for secondary cores (bsc#1051510).\n\n - ARM: hisi: fix error handling and missing of_node_put\n (bsc#1051510).\n\n - ARM: hisi: handle of_iomap and fix missing of_node_put\n (bsc#1051510).\n\n - ARM: imx: flag failure of of_iomap (bsc#1051510).\n\n - ARM: imx_v4_v5_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: imx_v6_v7_defconfig: Select ULPI support\n (bsc#1051510).\n\n - ARM: pxa: irq: fix handling of ICMR registers in\n suspend/resume (bsc#1051510).\n\n - ASoC: cs4265: fix MMTLR Data switch control\n (bsc#1051510).\n\n - ASoC: dapm: Fix potential DAI widget pointer deref when\n linking DAIs (bsc#1051510).\n\n - ASoC: dpcm: do not merge format from invalid codec dai\n (bsc#1051510).\n\n - ASoC: es7134: remove 64kHz rate from the supported rates\n (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090: remove useless code,\n align with ChromeOS driver (bsc#1051510).\n\n - ASoC: Intel: cht_bsw_max98090_ti: Fix jack\n initialization (bsc#1051510).\n\n - ASoC: msm8916-wcd-digital: fix RX2 MIX1 and RX3 MIX1\n (bsc#1051510).\n\n - ASoC: rsnd: cmd: Add missing newline to debug message\n (bsc#1051510).\n\n - ASoC: rsnd: fixup not to call clk_get/set under\n non-atomic (bsc#1051510).\n\n - ASoC: rsnd: move rsnd_ssi_config_init() execute\n condition into it (bsc#1051510).\n\n - ASoC: rsnd: update pointer more accurate (bsc#1051510).\n\n - ASoC: rt5514: Add the I2S ASRC support (bsc#1051510).\n\n - ASoC: rt5514: Add the missing register in the readable\n table (bsc#1051510).\n\n - ASoC: rt5514: Eliminate the noise in the ASRC case\n (bsc#1051510).\n\n - ASoC: rt5514: Fix the issue of the delay volume applied\n (bsc#1051510).\n\n - ASoC: sirf: Fix potential NULL pointer dereference\n (bsc#1051510).\n\n - ASoC: wm8994: Fix missing break in switch (bsc#1051510).\n\n - ASoC: zte: Fix incorrect PCM format bit usages\n (bsc#1051510).\n\n - ata: Fix ZBC_OUT all bit handling (bsc#1051510).\n\n - ata: Fix ZBC_OUT command block check (bsc#1051510).\n\n - ata: libahci: Allow reconfigure of DEVSLP register\n (bsc#1051510).\n\n - ata: libahci: Correct setting of DEVSLP register\n (bsc#1051510).\n\n - ath10k: disable bundle mgmt tx completion event support\n (bsc#1051510).\n\n - ath10k: prevent active scans on potential unusable\n channels (bsc#1051510).\n\n - ath10k: update the phymode along with bandwidth change\n request (bsc#1051510).\n\n - ath9k: add MSI support ().\n\n - ath9k_hw: fix channel maximum power level test\n (bsc#1051510).\n\n - ath9k: report tx status on EOSP (bsc#1051510).\n\n - atm: horizon: Fix irq release error (bsc#1105355).\n\n - atm: Preserve value of skb->truesize when accounting to\n vcc (networking-stable-18_07_19).\n\n - atm: zatm: fix memcmp casting (bsc#1105355).\n\n - atm: zatm: Fix potential Spectre v1\n (networking-stable-18_07_19).\n\n - audit: allow not equal op for audit by executable\n (bsc#1051510).\n\n - audit: Fix extended comparison of GID/EGID\n (bsc#1051510).\n\n - ax88179_178a: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - b43/leds: Ensure NUL-termination of LED name string\n (bsc#1051510).\n\n - b43legacy/leds: Ensure NUL-termination of LED name\n string (bsc#1051510).\n\n - bcache: avoid unncessary cache prefetch\n bch_btree_node_get().\n\n - bcache: calculate the number of incremental GC nodes\n according to the total of btree nodes.\n\n - bcache: display rate debug parameters to 0 when\n writeback is not running.\n\n - bcache: do not check return value of\n debugfs_create_dir().\n\n - bcache: finish incremental GC.\n\n - bcache: fix error setting writeback_rate through sysfs\n interface.\n\n - bcache: fix I/O significant decline while backend\n devices registering.\n\n - bcache: free heap cache_set->flush_btree in\n bch_journal_free.\n\n - bcache: make the pr_err statement used for ENOENT only\n in sysfs_attatch section.\n\n - bcache: release dc->writeback_lock properly in\n bch_writeback_thread().\n\n - bcache: set max writeback rate when I/O request is idle.\n\n - bcache: simplify the calculation of the total amount of\n flash dirty data.\n\n - binfmt_elf: Respect error return from `regset->active'\n (bsc#1051510).\n\n - blkdev: __blkdev_direct_IO_simple: fix leak in error\n case (bsc#1083663).\n\n - blk-mq: avoid to synchronize rcu inside\n blk_cleanup_queue() (bsc#1077989).\n\n - block, bfq: return nbytes and not zero from struct\n cftype .write() method (bsc#1106238).\n\n - block: bio_iov_iter_get_pages: fix size of last iovec\n (bsc#1083663).\n\n - block: bio_iov_iter_get_pages: pin more pages for\n multi-segment IOs (bsc#1083663).\n\n - block, dax: remove dead code in blkdev_writepages()\n (bsc#1104888).\n\n - block: do not print a message when the device went away\n (bsc#1098459).\n\n - block: do not warn for flush on read-only device\n (bsc#1107756).\n\n - block: fix warning when I/O elevator is changed as\n request_queue is being removed (bsc#1109979).\n\n - block: Invalidate cache on discard v2 (bsc#1109992).\n\n - block: pass inclusive 'lend' parameter to\n truncate_inode_pages_range (bsc#1109992).\n\n - block: properly protect the 'queue' kobj in\n blk_unregister_queue (bsc#1109979).\n\n - bluetooth: Add a new Realtek 8723DE ID 0bda:b009\n (bsc#1051510).\n\n - bluetooth: avoid killing an already killed socket\n (bsc#1051510).\n\n - bluetooth: btsdio: Do not bind to non-removable BCM43430\n (bsc#1103587).\n\n - bluetooth: h5: Fix missing dependency on\n BT_HCIUART_SERDEV (bsc#1051510).\n\n - bluetooth: hidp: buffer overflow in hidp_process_report\n (bsc#1051510).\n\n - bluetooth: hidp: Fix handling of strncpy for hid->name\n information (bsc#1051510).\n\n - bluetooth: Use lock_sock_nested in bt_accept_enqueue\n (bsc#1051510).\n\n - bnxt_en: Clean up unused functions (bsc#1086282).\n\n - bnxt_en: Do not adjust max_cp_rings by the ones used by\n RDMA (bsc#1086282).\n\n - bnxt_en: Fix VF mac address regression (bsc#1086282 ).\n\n - bnxt_re: Fix couple of memory leaks that could lead to\n IOMMU call traces (bsc#1050244).\n\n - bonding: avoid lockdep confusion in bond_get_stats()\n (netfilter-stable-18_08_04).\n\n - bpf: fix references to free_bpf_prog_info() in comments\n (bsc#1083647).\n\n - bpf: fix uninitialized variable in bpf tools\n (bsc#1083647).\n\n - bpf: hash map: decrement counter on error (bsc#1083647).\n\n - bpf: powerpc64: pad function address loads with NOPs\n (bsc#1083647).\n\n - bpf, s390: fix potential memleak when later bpf_jit_prog\n fails (bsc#1083647).\n\n - bpf: use GFP_ATOMIC instead of GFP_KERNEL in\n bpf_parse_prog() (bsc#1083647).\n\n - brcmfmac: stop watchdog before detach and free\n everything (bsc#1051510).\n\n - brcmsmac: fix wrap around in conversion from constant to\n s16 (bsc#1051510).\n\n - btrfs: add a comp_refs() helper (dependency for\n bsc#1031392).\n\n - btrfs: Add checker for EXTENT_CSUM (bsc#1102882,\n bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: Add sanity check for EXTENT_DATA when reading out\n leaf (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: add tracepoints for outstanding extents mods\n (dependency for bsc#1031392).\n\n - btrfs: Check if item pointer overlaps with the item\n itself (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: check-integrity: Fix NULL pointer dereference for\n degraded mount (bsc#1107947).\n\n - btrfs: Check that each block group has corresponding\n chunk at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: cleanup extent locking sequence (dependency for\n bsc#1031392).\n\n - btrfs: delayed-inode: Remove wrong qgroup meta\n reservation calls (bsc#1031392).\n\n - btrfs: delayed-inode: Use new qgroup meta rsv for\n delayed inode and item (bsc#1031392).\n\n - btrfs: fix data corruption when deduplicating between\n different files (bsc#1110647).\n\n - btrfs: fix duplicate extents after fsync of file with\n prealloc extents (bsc#1110644).\n\n - btrfs: fix error handling in btrfs_dev_replace_start\n (bsc#1107535).\n\n - btrfs: fix fsync after hole punching when using no-holes\n feature (bsc#1110642).\n\n - btrfs: fix loss of prealloc extents past i_size after\n fsync log replay (bsc#1110643).\n\n - btrfs: fix return value on rename exchange failure\n (bsc#1110645).\n\n - btrfs: fix send failure when root has deleted files\n still open (bsc#1110650).\n\n - btrfs: Fix use-after-free when cleaning up fs_devs with\n a single stale device (bsc#1097105).\n\n - btrfs: Fix wrong btrfs_delalloc_release_extents\n parameter (bsc#1031392).\n\n - btrfs: Handle error from btrfs_uuid_tree_rem call in\n _btrfs_ioctl_set_received_subvol (bsc#1097105).\n\n - btrfs: Introduce mount time chunk <-> dev extent mapping\n check (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: log csums for all modified extents (bsc#1110639).\n\n - btrfs: make the delalloc block rsv per inode (dependency\n for bsc#1031392).\n\n - btrfs: Manually implement device_total_bytes\n getter/setter (bsc#1043912).\n\n - btrfs: Move leaf and node validation checker to\n tree-checker.c (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: qgroup: Add quick exit for non-fs extents\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup\n btrfs_qgroup_prepare_account_extents function\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Cleanup the remaining old reservation\n counters (bsc#1031392).\n\n - btrfs: qgroup: Commit transaction in advance to reduce\n early EDQUOT (bsc#1031392).\n\n - btrfs: qgroup: Do not use root->qgroup_meta_rsv for\n qgroup (bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow by\n only freeing reserved ranges (dependency for\n bsc#1031392).\n\n - btrfs: qgroup: Fix qgroup reserved space underflow\n caused by buffered write and quotas being enabled\n (dependency for bsc#1031392).\n\n - btrfs: qgroup: Fix wrong qgroup reservation update for\n relationship modification (bsc#1031392).\n\n - btrfs: qgroup: Introduce extent changeset for qgroup\n reserve functions (dependency for bsc#1031392).\n\n - btrfs: qgroup: Introduce function to convert\n META_PREALLOC into META_PERTRANS (bsc#1031392).\n\n - btrfs: qgroup: Introduce helpers to update and access\n new qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Make qgroup_reserve and its callers to\n use separate reservation type (bsc#1031392).\n\n - btrfs: qgroup: Return actually freed bytes for qgroup\n release or free data (dependency for bsc#1031392).\n\n - btrfs: qgroup: Skeleton to support separate qgroup\n reservation type (bsc#1031392).\n\n - btrfs: qgroup: Split meta rsv type into meta_prealloc\n and meta_pertrans (bsc#1031392).\n\n - btrfs: qgroup: Update trace events for metadata\n reservation (bsc#1031392).\n\n - btrfs: qgroup: Update trace events to use new separate\n rsv types (bsc#1031392).\n\n - btrfs: qgroup: Use independent and accurate per inode\n qgroup rsv (bsc#1031392).\n\n - btrfs: qgroup: Use root::qgroup_meta_rsv_* to record\n qgroup meta reserved space (bsc#1031392).\n\n - btrfs: qgroup: Use separate meta reservation type for\n delalloc (bsc#1031392).\n\n - btrfs: remove type argument from comp_tree_refs\n (dependency for bsc#1031392).\n\n - btrfs: Remove unused parameters from various functions\n (bsc#1110649).\n\n - btrfs: rework outstanding_extents (dependency for\n bsc#1031392).\n\n - btrfs: round down size diff when shrinking/growing\n device (bsc#1097105).\n\n - btrfs: Round down values which are written for\n total_bytes_size (bsc#1043912).\n\n - btrfs: scrub: Do not use inode page cache in\n scrub_handle_errored_block() (follow up for\n bsc#1108096).\n\n - btrfs: scrub: Do not use inode pages for device replace\n (follow up for bsc#1108096).\n\n - btrfs: switch args for comp_*_refs (dependency for\n bsc#1031392).\n\n - btrfs: sync log after logging new name (bsc#1110646).\n\n - btrfs: tests/qgroup: Fix wrong tree backref level\n (bsc#1107928).\n\n - btrfs: tree-checker: Add checker for dir item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Detect invalid and empty essential\n trees (bsc#1102882, bsc#1102896, bsc#1102879,\n bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Enhance btrfs_check_node output\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for btrfs_check_leaf\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for check_csum_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Enhance output for\n check_extent_data_item (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - btrfs: tree-checker: Fix false panic for sanity test\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Replace root parameter with fs_info\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: use %zu format string for size_t\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: tree-checker: Verify block_group_item\n (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877,\n bsc#1102875,).\n\n - btrfs: Verify that every chunk has corresponding block\n group at mount time (bsc#1102882, bsc#1102896,\n bsc#1102879, bsc#1102877, bsc#1102875,).\n\n - cdrom: Fix info leak/OOB read in\n cdrom_ioctl_drive_status (bsc#1051510).\n\n - ceph: fix incorrect use of strncpy (bsc#1107319).\n\n - ceph: return errors from posix_acl_equiv_mode()\n correctly (bsc#1107320).\n\n - cfg80211: nl80211_update_ft_ies() to validate\n NL80211_ATTR_IE (bsc#1051510).\n\n - cfg80211: reg: Init wiphy_idx in regulatory_hint_core()\n (bsc#1051510).\n\n - cgroup: avoid copying strings longer than the buffers\n (bsc#1051510).\n\n - cifs: check kmalloc before use (bsc#1051510).\n\n - cifs: Fix stack out-of-bounds in\n smb(2,3)_create_lease_buf() (bsc#1051510).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1051510).\n\n - clk: core: Potentially free connection id (bsc#1051510).\n\n - clk: imx6ul: fix missing of_node_put() (bsc#1051510).\n\n - clk: meson: gxbb: remove HHI_GEN_CLK_CTNL duplicate\n definition (bsc#1051510).\n\n - clk: mvebu: armada-38x: add support for 1866MHz variants\n (bsc#1105355).\n\n - clk: mvebu: armada-38x: add support for missing clocks\n (bsc#1105355).\n\n - clk: rockchip: fix clk_i2sout parent selection bits on\n rk3399 (bsc#1051510).\n\n - cls_matchall: fix tcf_unbind_filter missing\n (networking-stable-18_08_21).\n\n - coresight: Handle errors in finding input/output ports\n (bsc#1051510).\n\n - coresight: tpiu: Fix disabling timeouts (bsc#1051510).\n\n - cpufreq: CPPC: Do not set transition_latency\n (bsc#1101480).\n\n - cpufreq / CPPC: Set platform specific\n transition_delay_us (bsc#1101480).\n\n - cpufreq: CPPC: Use transition_delay_us depending\n transition_latency (bsc#1101480).\n\n - cpufreq: remove setting of policy->cpu in policy->cpus\n during init (bsc#1101480).\n\n - crypto: ablkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: blkcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: caam/jr - fix descriptor DMA unmapping\n (bsc#1051510).\n\n - crypto: caam/qi - fix error path in xts setkey\n (bsc#1051510).\n\n - crypto: ccp - Check for NULL PSP pointer at module\n unload (bsc#1051510).\n\n - crypto: ccp - Fix command completion detection race\n (bsc#1051510).\n\n - crypto: clarify licensing of OpenSSL asm code ().\n\n - crypto: sharah - Unregister correct algorithms for\n SAHARA 3 (bsc#1051510).\n\n - crypto: skcipher - fix aligning block size in\n skcipher_copy_iv() (bsc#1051510).\n\n - crypto: skcipher - fix crash flushing dcache in error\n path (bsc#1051510).\n\n - crypto: skcipher - Fix -Wstringop-truncation warnings\n (bsc#1051510).\n\n - crypto: vmac - require a block cipher with 128-bit block\n size (bsc#1051510).\n\n - crypto: vmac - separate tfm and request context\n (bsc#1051510).\n\n - crypto: vmx - Fix sleep-in-atomic bugs (bsc#1051510).\n\n - crypto: vmx - Use skcipher for ctr fallback to SLE12-SP4\n (bsc#1106464).\n\n - crypto: x86/sha256-mb - fix digest copy in\n sha256_mb_mgr_get_comp_job_avx2() (bsc#1051510).\n\n - cxgb4: Fix the condition to check if the card is T5\n (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588\n bsc#1097583 bsc#1097584).\n\n - cxl: Configure PSL to not use APC virtual machines\n (bsc#1055014, git-fixes).\n\n - cxl: Fix wrong comparison in cxl_adapter_context_get()\n (bsc#1055014, git-fixes).\n\n - dax: Introduce a ->copy_to_iter dax operation\n (bsc#1098782).\n\n - dax: Make extension of dax_operations transparent\n (bsc#1098782).\n\n - dax: remove default copy_from_iter fallback\n (bsc#1098782).\n\n - dax: remove VM_MIXEDMAP for fsdax and device dax\n (bsc#1106007).\n\n - dax: Report bytes remaining in dax_iomap_actor()\n (bsc#1098782).\n\n - dax: require 'struct page' by default for filesystem dax\n (bsc#1104888).\n\n - dax: store pfns in the radix (bsc#1104888).\n\n - dccp: fix undefined behavior with 'cwnd' shift in\n ccid2_cwnd_restart() (netfilter-stable-18_08_17).\n\n - devicectree: bindings: fix location of leds common file\n (bsc#1051510).\n\n - device-dax: Add missing address_space_operations\n (bsc#1107783).\n\n - device-dax: Enable page_mapping() (bsc#1107783).\n\n - device-dax: Set page->index (bsc#1107783).\n\n - /dev/mem: Add bounce buffer for copy-out (git-fixes).\n\n - /dev/mem: Avoid overwriting 'err' in read_mem()\n (git-fixes).\n\n - dma-buf: remove redundant initialization of sg_table\n (bsc#1051510).\n\n - dmaengine: hsu: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: idma64: Support dmaengine_terminate_sync()\n (bsc#1051510).\n\n - dmaengine: mv_xor_v2: kill the tasklets upon exit\n (bsc#1051510).\n\n - doc/README.SUSE: Remove mentions of cloneconfig\n (bsc#1103636).\n\n - docs: zh_CN: fix location of oops-tracing.txt\n (bsc#1051510).\n\n - Documentation: add some docs for errseq_t (bsc#1107008).\n\n - Documentation: ip-sysctl.txt: document addr_gen_mode\n (bsc#1051510).\n\n - driver core: add __printf verification to\n __ata_ehi_pushv_desc (bsc#1051510).\n\n - drivers: hv: vmbus: do not mark HV_PCIE as perf_device\n (bsc#1051510).\n\n - drivers: hv: vmbus: Fix the offer_in_progress in\n vmbus_process_offer() (bsc#1051510).\n\n - drm: Add and handle new aspect ratios in DRM layer ().\n\n - drm: Add aspect ratio parsing in DRM layer ().\n\n - drm: Add DRM client cap for aspect-ratio ().\n\n - drm/amdgpu:add new firmware id for VCN (bsc#1051510).\n\n - drm/amdgpu:add tmr mc address into amdgpu_firmware_info\n (bsc#1051510).\n\n - drm/amdgpu: Fix RLC safe mode test in\n gfx_v9_0_enter_rlc_safe_mode (bsc#1051510).\n\n - drm/amdgpu: fix swapped emit_ib_size in vce3\n (bsc#1051510).\n\n - drm/amdgpu: update tmr mc address (bsc#1100132).\n\n - drm/amd/pp/Polaris12: Fix a chunk of registers missed to\n program (bsc#1051510).\n\n - drm/armada: fix colorkey mode property (bsc#1051510).\n\n - drm/armada: fix irq handling (bsc#1051510).\n\n - drm/arm/malidp: Preserve LAYER_FORMAT contents when\n setting format (bsc#1051510).\n\n - drm/bridge: adv7511: Reset registers on hotplug\n (bsc#1051510).\n\n - drm/bridge/sii8620: Fix display of packed pixel modes\n (bsc#1051510).\n\n - drm/bridge/sii8620: fix display of packed pixel modes in\n MHL2 (bsc#1051510).\n\n - drm/bridge/sii8620: fix loops in EDID fetch logic\n (bsc#1051510).\n\n - drm/cirrus: Use drm_framebuffer_put to avoid kernel oops\n in clean-up (bsc#1101822).\n\n - drm/edid: Add 6 bpc quirk for SDC panel in Lenovo B50-80\n (bsc#1051510).\n\n - drm: Expose modes with aspect ratio, only if requested\n ().\n\n - drm/exynos: decon5433: Fix per-plane global alpha for\n XRGB modes (bsc#1051510).\n\n - drm/exynos: decon5433: Fix WINCONx reset value\n (bsc#1051510).\n\n - drm/exynos: gsc: Fix support for NV16/61, YUV420/YVU420\n and YUV422 modes (bsc#1051510).\n\n - drm/fb-helper: Fix typo on kerneldoc (bsc#1051510).\n\n - drm: Handle aspect ratio info in legacy modeset path ().\n\n - drm/i915/aml: Introducing Amber Lake platform ().\n\n - drm/i915/audio: Fix audio enumeration issue on BXT ().\n\n - drm/i915/cfl: Add a new CFL PCI ID ().\n\n - drm/i915/gvt: clear ggtt entries when destroy vgpu\n (bsc#1051510).\n\n - drm/i915/gvt: Fix the incorrect length of\n child_device_config issue (bsc#1051510).\n\n - drm/i915/gvt: Off by one in intel_vgpu_write_fence()\n (bsc#1051510).\n\n - drm/i915/gvt: request srcu_read_lock before checking if\n one gfn is valid (bsc#1051510).\n\n - drm/i915: Increase LSPCON timeout (bsc#1051510).\n\n - drm/i915/kvmgt: Fix potential Spectre v1 (bsc#1051510).\n\n - drm/i915/lpe: Mark LPE audio runtime pm as 'no\n callbacks' (bsc#1051510).\n\n - drm/i915: Nuke the LVDS lid notifier (bsc#1051510).\n\n - drm/i915: Only show debug for state changes when banning\n (bsc#1051510).\n\n - drm/i915/overlay: Allocate physical registers from\n stolen (bsc#1051510).\n\n - drm/i915: Restore user forcewake domains across suspend\n (bsc#1100132).\n\n - drm/i915: set DP Main Stream Attribute for color range\n on DDI platforms (bsc#1051510).\n\n - drm/i915: Unmask user interrupts writes into HWSP on\n snb/ivb/vlv/hsw (bsc#1051510).\n\n - drm/i915/whl: Introducing Whiskey Lake platform ().\n\n - drm/imx: imx-ldb: check if channel is enabled before\n printing warning (bsc#1051510).\n\n - drm/imx: imx-ldb: disable LDB on driver bind\n (bsc#1051510).\n\n - drm: mali-dp: Enable Global SE interrupts mask for DP500\n (bsc#1051510).\n\n - drm/modes: Introduce drm_mode_match() ().\n\n - drm/nouveau/drm/nouveau: Fix bogus\n drm_kms_helper_poll_enable() placement (bsc#1051510).\n\n - drm/panel: type promotion bug in s6e8aa0_read_mtp_id()\n (bsc#1051510).\n\n - drm/rockchip: lvds: add missing of_node_put\n (bsc#1051510).\n\n - drm/tegra: Check for malformed offsets and sizes in the\n 'submit' IOCTL (bsc#1106170).\n\n - drm/tegra: Fix comparison operator for buffer size\n (bsc#1100132).\n\n - drm/vc4: Fix the 'no scaling' case on multi-planar YUV\n formats (bsc#1051510).\n\n - dwc2: gadget: Fix ISOC IN DDMA PID bitfield value\n calculation (bsc#1051510).\n\n - EDAC, altera: Fix ARM64 build warning (bsc#1051510).\n\n - EDAC: Fix memleak in module init error path\n (bsc#1051510).\n\n - EDAC, i7core: Fix memleaks and use-after-free on probe\n and remove (bsc#1051510).\n\n - EDAC, mv64x60: Fix an error handling path (bsc#1051510).\n\n - EDAC, octeon: Fix an uninitialized variable warning\n (bsc#1051510).\n\n - EDAC, sb_edac: Fix missing break in switch\n (bsc#1051510).\n\n - errseq: Add to documentation tree (bsc#1107008).\n\n - errseq: Always report a writeback error once\n (bsc#1107008).\n\n - ext2: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext2, dax: introduce ext2_dax_aops (bsc#1104888).\n\n - ext4: auto disable dax instead of failing mount\n (bsc#1104888).\n\n - ext4, dax: add ext4_bmap to ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: introduce ext4_dax_aops (bsc#1104888).\n\n - ext4, dax: set ext4_dax_aops for dax files\n (bsc#1104888).\n\n - ext4: sysfs: print ext4_super_block fields as\n little-endian (bsc#1106229).\n\n - extcon: Release locking when sending the notification of\n connector state (bsc#1051510).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106233).\n\n - f2fs: remove unneeded memory footprint accounting\n (bsc#1106297).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106231).\n\n - f2fs: validate before set/clear free nat bitmap\n (bsc#1106297).\n\n - fat: fix memory allocation failure handling of\n match_strdup() (bsc#1051510).\n\n - fbdev: Distinguish between interlaced and progressive\n modes (bsc#1051510).\n\n - fbdev: omapfb: off by one in omapfb_register_client()\n (bsc#1051510).\n\n - fbdev/via: fix defined but not used warning\n (bsc#1051510).\n\n - fb: fix lost console when the user unplugs a USB adapter\n (bsc#1051510).\n\n - filesystem-dax: Introduce dax_lock_mapping_entry()\n (bsc#1107783).\n\n - filesystem-dax: Set page->index (bsc#1107783).\n\n - fix a page leak in vhost_scsi_iov_to_sgl() error\n recovery (bsc#1051510).\n\n - Fix buggy backport in\n patches.fixes/dax-check-for-queue_flag_dax-in-bdev_dax_s\n upported.patch (bsc#1109859)\n\n - Fix kABI breakage due to enum addition for ath10k\n (bsc#1051510).\n\n - Fix kABI breakage with libertas dev field addition\n (bsc#1051510).\n\n - Fix kABI breakage with removing field addition to\n power_supply (bsc#1051510).\n\n - Fix kexec forbidding kernels signed with keys in the\n secondary keyring to boot (bsc#1110006).\n\n - fix __legitimize_mnt()/mntput() race (bsc#1106297).\n\n - fix mntput/mntput race (bsc#1106297).\n\n - fs/9p/xattr.c: catch the error of p9_client_clunk when\n setting xattr failed (bsc#1051510).\n\n - fs, dax: prepare for dax-specific\n address_space_operations (bsc#1104888).\n\n - fs, dax: use page->mapping to warn if truncate collides\n with a busy page (bsc#1104888).\n\n - fs/proc/proc_sysctl.c: fix potential page fault while\n unregistering sysctl table (bsc#1106297).\n\n - fuse: Add missed unlock_page() to fuse_readpages_fill()\n (bsc#1106291).\n\n - fuse: fix double request_end() (bsc#1106291).\n\n - fuse: fix initial parallel dirops (bsc#1106291).\n\n - fuse: Fix oops at process_init_reply() (bsc#1106291).\n\n - fuse: fix unlocked access to processing queue\n (bsc#1106291).\n\n - fuse: umount should wait for all requests (bsc#1106291).\n\n - geneve: update skb dst pmtu on tx path (bsc#1051510).\n\n - genirq: Add handle_fasteoi_(level,edge)_irq flow\n handlers (bsc#1105378).\n\n - genirq: Export more irq_chip_*_parent() functions\n (bsc#1105378).\n\n - genirq: Fix editing error in a comment (bsc#1051510).\n\n - genirq: Make force irq threading setup more robust\n (bsc#1051510).\n\n - gen_stats: Fix netlink stats dumping in the presence of\n padding (netfilter-stable-18_07_23).\n\n - getxattr: use correct xattr length (bsc#1106235).\n\n - getxattr: use correct xattr length (bsc#1106297).\n\n - gpio: Add gpio driver support for ThunderX and OCTEON-TX\n (bsc#1105378).\n\n - gpio: Fix wrong rounding in gpio-menz127 (bsc#1051510).\n\n - gpiolib-acpi: make sure we trigger edge events at least\n once on boot (bsc#1051510).\n\n - gpiolib: acpi: Switch to cansleep version of GPIO\n library call (bsc#1051510).\n\n - gpiolib: Mark gpio_suffixes array with __maybe_unused\n (bsc#1051510).\n\n - gpio: ml-ioh: Fix buffer underwrite on probe error path\n (bsc#1051510).\n\n - gpio: pxa: Fix potential NULL dereference (bsc#1051510).\n\n - gpio: tegra: Move driver registration to subsys_init\n level (bsc#1051510).\n\n - gpio: thunderx: fix error return code in\n thunderx_gpio_probe() (bsc#1105378).\n\n - gpio: thunderx: remove unused .map() hook from\n irq_domain_ops (bsc#1105378).\n\n - gpu: host1x: Check whether size of unpin isn't 0\n (bsc#1051510).\n\n - gpu: ipu-v3: csi: pass back mbus_code_to_bus_cfg error\n codes (bsc#1051510).\n\n - gpu: ipu-v3: default to id 0 on missing OF alias\n (bsc#1051510).\n\n - gtp: Initialize 64-bit per-cpu stats correctly\n (bsc#1051510).\n\n - HID: add quirk for another PIXART OEM mouse used by HP\n (bsc#1051510).\n\n - HID: hid-ntrig: add error handling for\n sysfs_create_group (bsc#1051510).\n\n - HID: i2c-hid: Add no-irq-after-reset quirk for 0911:5288\n device ().\n\n - hotplug/cpu: Add operation queuing function ().\n\n - hotplug/cpu: Conditionally acquire/release DRC index ().\n\n - hotplug/cpu: Provide CPU readd operation ().\n\n - i2c: core: ACPI: Properly set status byte to 0 for\n multi-byte writes (bsc#1051510).\n\n - i2c: davinci: Avoid zero value of CLKH (bsc#1051510).\n\n - i2c: i801: Add missing documentation entries for\n Braswell and Kaby Lake (bsc#1051510).\n\n - i2c: i801: Add support for Intel Cedar Fork\n (bsc#1051510).\n\n - i2c: i801: Add support for Intel Ice Lake (bsc#1051510).\n\n - i2c: i801: Allow ACPI AML access I/O ports not reserved\n for SMBus (bsc#1051510).\n\n - i2c: i801: Consolidate chipset names in documentation\n and Kconfig (bsc#1051510).\n\n - i2c: i801: fix DNV's SMBCTRL register offset\n (bsc#1051510).\n\n - i2c: imx: Fix race condition in dma read (bsc#1051510).\n\n - i2c: imx: Fix reinit_completion() use (bsc#1051510).\n\n - i2c: uniphier-f: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: uniphier: issue STOP only for last message or\n I2C_M_STOP (bsc#1051510).\n\n - i2c: xiic: Make the start and the byte count write\n atomic (bsc#1051510).\n\n - i2c: xlp9xx: Fix case where SSIF read transaction\n completes early (bsc#1105907).\n\n - i2c: xlp9xx: Fix issue seen when updating receive length\n (bsc#1105907).\n\n - i2c: xlp9xx: Make sure the transfer size is not more\n than I2C_SMBUS_BLOCK_SIZE (bsc#1105907).\n\n - i40e: fix condition of WARN_ONCE for stat strings\n (bsc#1107522).\n\n - IB/core: type promotion bug in rdma_rw_init_one_mr()\n (bsc#1046306).\n\n - IB/hfi1: Invalid NUMA node information can cause a\n divide by zero (bsc#1060463).\n\n - IB/hfi1: Remove incorrect call to do_interrupt callback\n (bsc#1060463).\n\n - IB/hfi1: Set in_use_ctxts bits for user ctxts only\n (bsc#1060463 ).\n\n - IB/ipoib: Avoid a race condition between start_xmit and\n cm_rep_handler (bsc#1046307).\n\n - IB/ipoib: Fix error return code in ipoib_dev_init()\n (bsc#1046307 ).\n\n - IB/IPoIB: Set ah valid flag in multicast send flow\n (bsc#1046307 ).\n\n - IB/mlx4: Test port number before querying type\n (bsc#1046302 ).\n\n - IB/mlx4: Use 4K pages for kernel QP's WQE buffer\n (bsc#1046302 ).\n\n - IB/mlx5: fix uaccess beyond 'count' in debugfs\n read/write handlers (bsc#1046305).\n\n - ibmvnic: Include missing return code checks in reset\n function (bnc#1107966).\n\n - ib_srpt: Fix a use-after-free in srpt_close_ch()\n (bsc#1046306 ).\n\n - ieee802154: ca8210: fix uninitialised data read\n (bsc#1051510).\n\n - ieee802154: fix gcc-4.9 warnings (bsc#1051510).\n\n - ieee802154: mrf24j40: fix incorrect mask in\n mrf24j40_stop (bsc#1051510).\n\n - iio: 104-quad-8: Fix off-by-one error in register\n selection (bsc#1051510).\n\n - iio: ad9523: Fix displayed phase (bsc#1051510).\n\n - iio: ad9523: Fix return value for ad952x_store()\n (bsc#1051510).\n\n - iio: adc: ina2xx: avoid kthread_stop() with stale\n task_struct (bsc#1051510).\n\n - iio: adc: sun4i-gpadc: select REGMAP_IRQ (bsc#1051510).\n\n - iio: sca3000: Fix an error handling path in\n 'sca3000_probe()' (bsc#1051510).\n\n - iio: sca3000: Fix missing return in switch\n (bsc#1051510).\n\n - ima: based on policy verify firmware signatures\n (pre-allocated buffer) (bsc#1051510).\n\n - include/rdma/opa_addr.h: Fix an endianness issue\n (bsc#1046306 ).\n\n - init: rename and re-order boot_cpu_state_init()\n (bsc#1104365).\n\n - Input: atmel_mxt_ts - only use first T9 instance\n (bsc#1051510).\n\n - Input: edt-ft5x06 - fix error handling for factory mode\n on non-M06 (bsc#1051510).\n\n - Input: edt-ft5x06 - implement support for the EDT-M12\n series (bsc#1051510).\n\n - Input: edt-ft5x06 - make distinction between\n m06/m09/generic more clear (bsc#1051510).\n\n - Input: elantech - enable middle button of touchpad on\n ThinkPad P72 (bsc#1051510).\n\n - input: rohm_bu21023: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - Input: synaptics-rmi4 - fix axis-swap behavior\n (bsc#1051510).\n\n - intel_th: Fix device removal logic (bsc#1051510).\n\n - iommu/amd: Add support for higher 64-bit IOMMU Control\n Register ().\n\n - iommu/amd: Add support for IOMMU XT mode ().\n\n - iommu/amd: Finish TLB flush in amd_iommu_unmap()\n (bsc#1106105).\n\n - iommu/amd: make sure TLB to be flushed before IOVA freed\n (bsc#1106105).\n\n - iommu/amd: Return devid as alias for ACPI HID devices\n (bsc#1106105).\n\n - iommu/arm-smmu-v3: Do not free page table ops twice\n (bsc#1106237).\n\n - iommu/vt-d: Fix a potential memory leak (bsc#1106105).\n\n - iommu/vt-d: Ratelimit each dmar fault printing\n (bsc#1106105).\n\n - ioremap: Update pgtable free interfaces with addr\n (bsc#1110006).\n\n - ipc/shm: fix shmat() nil address after round-down when\n remapping (bsc#1090078).\n\n - ip: hash fragments consistently\n (netfilter-stable-18_07_27).\n\n - ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull\n (netfilter-stable-18_07_27).\n\n - ipmi:bt: Set the timeout before doing a capabilities\n check (bsc#1051510).\n\n - ipmi: Fix some counter issues (bsc#1105907).\n\n - ipmi: Move BT capabilities detection to the detect call\n (bsc#1106779).\n\n - ipmi/powernv: Fix error return code in\n ipmi_powernv_probe() (git-fixes).\n\n - ipmi: Remove ACPI SPMI probing from the SSIF (I2C)\n driver (bsc#1105907).\n\n - ipv4: remove BUG_ON() from fib_compute_spec_dst\n (netfilter-stable-18_08_01).\n\n - ipv4: Return EINVAL when ping_group_range sysctl does\n not map to user ns (netfilter-stable-18_07_23).\n\n - ipv6: fix useless rol32 call on hash\n (netfilter-stable-18_07_23).\n\n - ipv6: ila: select CONFIG_DST_CACHE\n (netfilter-stable-18_07_23).\n\n - ipv6: make DAD fail with enhanced DAD when nonce length\n differs (netfilter-stable-18_07_23).\n\n - ipv6: sr: fix passing wrong flags to\n crypto_alloc_shash() (networking-stable-18_07_19).\n\n - ipvlan: fix IFLA_MTU ignored on NEWLINK\n (networking-stable-18_07_19).\n\n - irqchip/bcm7038-l1: Hide cpu offline callback when\n building for !SMP (bsc#1051510).\n\n - irqdomain: Add irq_domain_(push,pop)_irq() functions\n (bsc#1105378).\n\n - irqdomain: Check for NULL function pointer in\n irq_domain_free_irqs_hierarchy() (bsc#1105378).\n\n - irqdomain: Factor out code to add and remove items to\n and from the revmap (bsc#1105378).\n\n - irqdomain: Prevent potential NULL pointer dereference in\n irq_domain_push_irq() (bsc#1105378).\n\n - irqdomain: Update the comments of fwnode field of\n irq_domain structure (bsc#1051510).\n\n - isdn: Disable IIOCDBGVAR (bsc#1051510).\n\n - iw_cxgb4: remove duplicate memcpy() in\n c4iw_create_listen() (bsc#1046543).\n\n - iwlwifi: pcie: do not access periphery registers when\n not available (bsc#1051510).\n\n - ixgbe: Refactor queue disable logic to take completion\n time into account (bsc#1101557).\n\n - ixgbe: Reorder Tx/Rx shutdown to reduce time needed to\n stop device (bsc#1101557).\n\n - kabi fix for check_disk_size_change() (bsc#1098459).\n\n - kabi: move s390 mm_context_t lock to mm_struct and\n ignore the change (bsc#1103421).\n\n - kabi: move the new handler to end of machdep_calls and\n hide it from genksyms (bsc#1094244).\n\n - kabi protect hnae_ae_ops (bsc#1107924).\n\n - kabi protect struct kvm_sync_regs (bsc#1106948).\n\n - kabi/severities: Whitelist libceph, rbd, and ceph\n (bsc#1096748).\n\n - kabi: tpm: change relinquish_locality return value back\n to void (bsc#1082555).\n\n - kabi: tpm: do keep the cmd_ready and go_idle as pm ops\n (bsc#1082555).\n\n - kabi: x86/speculation/l1tf: Increase l1tf memory limit\n for Nehalem+ (bnc#1105536).\n\n - kprobes/x86: Release insn_slot in failure path\n (bsc#1110006).\n\n - kthread, tracing: Do not expose half-written comm when\n creating kthreads (bsc#1104897).\n\n - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline\n asm to cmpxchg() (bsc#1108010).\n\n - kvm: Enforce error in ioctl for compat tasks when\n !KVM_COMPAT (bsc#1106240).\n\n - kvm: nVMX: Do not flush TLB when vmcs12 uses VPID\n (bsc#1106240).\n\n - kvm: nVMX: Fix fault vector for VMX operation at CPL > 0\n (bsc#1106105).\n\n - kvm: nVMX: Fix injection to L2 when L1 do not intercept\n external-interrupts (bsc#1106240).\n\n - kvm: nVMX: Fix races when sending nested PI while dest\n enters/leaves L2 (bsc#1106240).\n\n - kvm: nVMX: Re-evaluate L1 pending events when running L2\n and L1 got posted-interrupt (bsc#1106240).\n\n - kvm: nVMX: Use nested_run_pending rather than\n from_vmentry (bsc#1106240).\n\n - kvm: PPC: Book3S: Fix guest DMA when guest partially\n backed by THP pages (bsc#1077761, git-fixes,\n bsc#1103948, bsc#1103949).\n\n - kvm: PPC: Book3S HV: Use correct pagesize in\n kvm_unmap_radix() (bsc#1061840, git-fixes).\n\n - kvm: s390: add etoken support for guests (bsc#1106948,\n LTC#171029).\n\n - kvm: s390: force bp isolation for VSIE (bsc#1103421).\n\n - kvm: s390: implement CPU model only facilities\n (bsc#1106948, LTC#171029).\n\n - kvm: VMX: Do not allow reexecute_instruction() when\n skipping MMIO instr (bsc#1106240).\n\n - kvm: VMX: fixes for vmentry_l1d_flush module parameter\n (bsc#1106369).\n\n - kvm: VMX: Work around kABI breakage in 'enum\n vmx_l1d_flush_state' (bsc#1106369).\n\n - kvm: x86: Change __kvm_apic_update_irr() to also return\n if max IRR updated (bsc#1106240).\n\n - kvm: x86: Default to not allowing emulation retry in\n kvm_mmu_page_fault (bsc#1106240).\n\n - kvm: x86: Do not re-(try,execute) after failed emulation\n in L2 (bsc#1106240).\n\n - kvm: x86: fix APIC page invalidation (bsc#1106240).\n\n - kvm: x86: Invert emulation re-execute behavior to make\n it opt-in (bsc#1106240).\n\n - kvm: x86: Merge EMULTYPE_RETRY and\n EMULTYPE_ALLOW_REEXECUTE (bsc#1106240).\n\n - kvm/x86: remove WARN_ON() for when vm_munmap() fails\n (bsc#1106240).\n\n - kvm: x86: SVM: Call x86_spec_ctrl_set_guest/host() with\n interrupts disabled (git-fixes 1f50ddb4f418).\n\n - kvm: x86: vmx: fix vpid leak (bsc#1106240).\n\n - l2tp: use sk_dst_check() to avoid race on\n sk->sk_dst_cache (netfilter-stable-18_08_17).\n\n - lan78xx: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - lan78xx: Lan7801 Support for Fixed PHY (bsc#1085262).\n\n - lan78xx: remove redundant initialization of pointer\n 'phydev' (bsc#1085262).\n\n - lan78xx: Set ASD in MAC_CR when EEE is enabled\n (bsc#1085262).\n\n - leds: max8997: use mode when calling\n max8997_led_set_mode (bsc#1051510).\n\n - libahci: Fix possible Spectre-v1 pmp indexing in\n ahci_led_store() (bsc#1051510).\n\n - libata: Fix command retry decision (bsc#1051510).\n\n - libata: Fix compile warning with ATA_DEBUG enabled\n (bsc#1051510).\n\n - libbpf: Makefile set specified permission mode\n (bsc#1083647).\n\n - libceph: check authorizer reply/challenge length before\n reading (bsc#1096748).\n\n - libceph: factor out __ceph_x_decrypt() (bsc#1096748).\n\n - libceph: factor out encrypt_authorizer() (bsc#1096748).\n\n - libceph: factor out __prepare_write_connect()\n (bsc#1096748).\n\n - libceph: store ceph_auth_handshake pointer in\n ceph_connection (bsc#1096748).\n\n - libceph: weaken sizeof check in\n ceph_x_verify_authorizer_reply() (bsc#1096748).\n\n - libertas: fix suspend and resume for SDIO connected\n cards (bsc#1051510).\n\n - lib/iov_iter: Fix pipe handling in\n _copy_to_iter_mcsafe() (bsc#1098782).\n\n - libnvdimm, btt: fix uninitialized err_lock\n (bsc#1103961).\n\n - libnvdimm: fix ars_status output length calculation\n (bsc#1104890).\n\n - libnvdimm, nfit: enable support for volatile ranges\n (bsc#1103961).\n\n - libnvdimm, nfit: move the check on nd_reserved2 to the\n endpoint (bsc#1103961).\n\n - libnvdimm, pmem: Fix memcpy_mcsafe() return code\n handling in nsio_rw_bytes() (bsc#1098782).\n\n - libnvdimm, pmem: Restore page attributes when clearing\n errors (bsc#1107783).\n\n - libnvdimm: rename nd_sector_size_(show,store) to\n nd_size_select_(show,store) (bsc#1103961).\n\n - libnvdimm: Use max contiguous area for namespace size\n (git-fixes).\n\n - lib/rhashtable: consider param->min_size when setting\n initial table size (bsc#1051510).\n\n - lib/test_hexdump.c: fix failure on big endian cpu\n (bsc#1051510).\n\n - lib/vsprintf: Remove atomic-unsafe support for %pCr\n (bsc#1051510).\n\n - Limit kernel-source build to architectures for which we\n build binaries (bsc#1108281).\n\n - livepatch: Remove reliable stacktrace check in\n klp_try_switch_task() (bsc#1071995).\n\n - livepatch: Validate module/old func name length\n (bsc#1071995).\n\n - llc: use refcount_inc_not_zero() for llc_sap_find()\n (netfilter-stable-18_08_17).\n\n - mac80211: add stations tied to AP_VLANs during hw\n reconfig (bsc#1051510).\n\n - mac80211: always account for A-MSDU header changes\n (bsc#1051510).\n\n - mac80211: avoid kernel panic when building AMSDU from\n non-linear SKB (bsc#1051510).\n\n - mac80211: fix an off-by-one issue in A-MSDU max_subframe\n computation (bsc#1051510).\n\n - mac80211: fix pending queue hang due to TX_DROP\n (bsc#1051510).\n\n - mac80211: restrict delayed tailroom needed decrement\n (bsc#1051510).\n\n - macros.kernel-source: pass -b properly in kernel module\n package (bsc#1107870).\n\n - mailbox: xgene-slimpro: Fix potential NULL pointer\n dereference (bsc#1051510).\n\n - MAINTAINERS: fix location of ina2xx.txt device tree file\n (bsc#1051510).\n\n - md-cluster: clear another node's suspend_area after the\n copy is finished (bsc#1106333).\n\n - md-cluster: do not send msg if array is closing\n (bsc#1106333).\n\n - md-cluster: release RESYNC lock after the last resync\n message (bsc#1106688).\n\n - md-cluster: show array's status more accurate\n (bsc#1106333).\n\n - media: exynos4-is: Prevent NULL pointer dereference in\n __isp_video_try_fmt() (bsc#1051510).\n\n - media: mem2mem: Remove excessive try_run call\n (bsc#1051510).\n\n - media: omap3isp: fix unbalanced dma_iommu_mapping\n (bsc#1051510).\n\n - media: omap3isp: zero-initialize the isp cam_xclk(a,b)\n initial data (bsc#1051510).\n\n - media: Revert '[media] tvp5150: fix pad format frame\n height' (bsc#1051510).\n\n - media: rtl28xxu: be sure that it won't go past the array\n size (bsc#1051510).\n\n - media: tw686x: Fix oops on buffer alloc failure\n (bsc#1051510).\n\n - media: v4l2-mem2mem: Fix missing v4l2_m2m_try_run call\n (bsc#1051510).\n\n - media: videobuf2-core: do not call memop 'finish' when\n queueing (bsc#1051510).\n\n - mei: bus: type promotion bug in mei_nfc_if_version()\n (bsc#1051510).\n\n - mei: do not update offset in write (bsc#1051510).\n\n - mei: ignore not found client in the enumeration\n (bsc#1051510).\n\n - mei: me: enable asynchronous probing ().\n\n - memcg, thp: do not invoke oom killer on thp charges\n (bnc#1089663).\n\n - memory: tegra: Apply interrupts mask per SoC\n (bsc#1051510).\n\n - memory: tegra: Do not handle spurious interrupts\n (bsc#1051510).\n\n - mfd: 88pm860x-i2c: switch to i2c_lock_bus(...,\n I2C_LOCK_SEGMENT) (bsc#1051510).\n\n - mfd: arizona: Do not use regmap_read_poll_timeout\n (bsc#1051510).\n\n - mfd: intel-lpss: Add Ice Lake PCI IDs (bsc#1051510).\n\n - mfd: lpc_ich: Do not touch SPI-NOR write protection bit\n on Apollo Lake (bsc#1051510).\n\n - mfd: sm501: Set coherent_dma_mask when creating\n subdevices (bsc#1051510).\n\n - mfd: ti_am335x_tscadc: Fix struct clk memory leak\n (bsc#1051510).\n\n - mlxsw: core_acl_flex_actions: Return error for\n conflicting actions (netfilter-stable-18_08_17).\n\n - mmc: omap_hsmmc: fix wakeirq handling on removal\n (bsc#1051510).\n\n - mmc: sdhci: do not try to use 3.3V signaling if not\n supported (bsc#1051510).\n\n - mmc: sdhci-of-esdhc: set proper dma mask for ls104x\n chips (bsc#1051510).\n\n - mmc: tegra: prevent HS200 on Tegra 3 (bsc#1051510).\n\n - mm, dax: introduce pfn_t_special() (bsc#1104888).\n\n - mm: fix devmem_is_allowed() for sub-page System RAM\n intersections (bsc#1106800).\n\n - mm/huge_memory.c: fix data loss when splitting a file\n pmd (bnc#1107074).\n\n - mm/hugetlb: filter out hugetlb pages if HUGEPAGE\n migration is not supported (bnc#1106697).\n\n - mm, madvise_inject_error: Disable MADV_SOFT_OFFLINE for\n ZONE_DEVICE pages (bsc#1107783).\n\n - mm, madvise_inject_error: Let memory_failure()\n optionally take a page reference (bsc#1107783).\n\n - mm: memcg: fix use after free in mem_cgroup_iter()\n (bnc#1107065).\n\n - mm, memory_failure: Collect mapping size in\n collect_procs() (bsc#1107783).\n\n - mm, memory_failure: Teach memory_failure() about\n dev_pagemap pages (bsc#1107783).\n\n - mm, numa: Migrate pages to local nodes quicker early in\n the lifetime of a task (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - mm, numa: Remove rate-limiting of automatic numa\n balancing migration kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - mm, page_alloc: double zone's batchsize (bnc#971975 VM\n performance -- page allocator).\n\n - mm/vmalloc: add interfaces to free unmapped page table\n (bsc#1110006).\n\n - mm/vmscan: wake up flushers for legacy cgroups too\n (bnc#1107061).\n\n - module: exclude SHN_UNDEF symbols from kallsyms api\n (bsc#1071995).\n\n - Move the previous hv netvsc fix to the sorted section\n (bsc#1104708)\n\n - net/9p/client.c: version pointer uninitialized\n (bsc#1051510).\n\n - net/9p: fix error path of p9_virtio_probe (bsc#1051510).\n\n - net/9p: Switch to wait_event_killable() (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race by holding the lock\n (bsc#1051510).\n\n - net/9p/trans_fd.c: fix race-condition by flushing\n workqueue before the kfree() (bsc#1051510).\n\n - net: bcmgenet: correct bad merge (bsc#1051510).\n\n - net: bcmgenet: enable loopback during UniMAC sw_reset\n (bsc#1051510).\n\n - net: bcmgenet: Fix sparse warnings in\n bcmgenet_put_tx_csum() (bsc#1051510).\n\n - net: bcmgenet: Fix unmapping of fragments in\n bcmgenet_xmit() (bsc#1051510).\n\n - net: bcmgenet: prevent duplicate calls of\n bcmgenet_dma_teardown (bsc#1051510).\n\n - net: dccp: avoid crash in ccid3_hc_rx_send_feedback()\n (networking-stable-18_07_19).\n\n - net: dccp: switch rx_tstamp_last_feedback to monotonic\n clock (networking-stable-18_07_19).\n\n - net: diag: Do not double-free TCP_NEW_SYN_RECV sockets\n in tcp_abort (netfilter-stable-18_07_23).\n\n - net: dsa: Do not suspend/resume closed slave_dev\n (netfilter-stable-18_08_04).\n\n - net: ena: Eliminate duplicate barriers on weakly-ordered\n archs (bsc#1108093).\n\n - net: ena: fix device destruction to gracefully free\n resources (bsc#1108093).\n\n - net: ena: fix driver when PAGE_SIZE == 64kB\n (bsc#1108093).\n\n - net: ena: fix incorrect usage of memory barriers\n (bsc#1108093).\n\n - net: ena: fix missing calls to READ_ONCE (bsc#1108093).\n\n - net: ena: fix missing lock during device destruction\n (bsc#1108093).\n\n - net: ena: fix potential double ena_destroy_device()\n (bsc#1108093).\n\n - net: ena: fix surprise unplug NULL dereference kernel\n crash (bsc#1108093).\n\n - net: ena: Fix use of uninitialized DMA address bits\n field (netfilter-stable-18_08_01).\n\n - net: ethernet: mvneta: Fix napi structure mixup on\n armada 3700 (networking-stable-18_08_21).\n\n - netfilter: do not set F_IFACE on ipv6 fib lookups\n (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: provide input interface for\n route lookup (netfilter-stable-18_06_25).\n\n - netfilter: ip6t_rpfilter: set F_IFACE for linklocal\n addresses (git-fixes).\n\n - netfilter: nat: Revert 'netfilter: nat: convert nat\n bysrc hash to rhashtable' (netfilter-stable-17_11_16).\n\n - netfilter: nf_tables: add missing netlink attrs to\n policies (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: do not assume chain stats are set\n when jumplabel is set (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: fix memory leak on error exit\n return (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: nft_compat: fix refcount leak on\n xt module (netfilter-stable-18_06_27).\n\n - netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON\n in nft_do_chain() (netfilter-stable-18_06_25).\n\n - netfilter: nft_compat: fix handling of large matchinfo\n size (netfilter-stable-18_06_27).\n\n - netfilter: nft_compat: prepare for indirect info storage\n (netfilter-stable-18_06_27).\n\n - netfilter: nft_meta: fix wrong value dereference in\n nft_meta_set_eval (netfilter-stable-18_06_27).\n\n - net: fix amd-xgbe flow-control issue\n (netfilter-stable-18_08_01).\n\n - net: fix use-after-free in GRO with ESP\n (networking-stable-18_07_19).\n\n - net: hns3: add unlikely for error check (bsc#1104353 ).\n\n - net: hns3: Fix comments for\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix desc num set to default when setting\n channel (bsc#1104353).\n\n - net: hns3: Fix for command format parsing error in\n hclge_is_all_function_id_zero (bsc#1104353).\n\n - net: hns3: Fix for information of phydev lost problem\n when down/up (bsc#1104353).\n\n - net: hns3: Fix for l4 checksum offload bug (bsc#1104353\n ).\n\n - net: hns3: Fix for mac pause not disable in pfc mode\n (bsc#1104353).\n\n - net: hns3: Fix for mailbox message truncated problem\n (bsc#1104353).\n\n - net: hns3: Fix for phy link issue when using marvell phy\n driver (bsc#1104353).\n\n - net: hns3: Fix for reset_level default assignment\n probelm (bsc#1104353).\n\n - net: hns3: Fix for using wrong mask and shift in\n hclge_get_ring_chain_from_mbx (bsc#1104353).\n\n - net: hns3: Fix for waterline not setting correctly\n (bsc#1104353 ).\n\n - net: hns3: Fix get_vector ops in hclgevf_main module\n (bsc#1104353).\n\n - net: hns3: Fix MSIX allocation issue for VF (bsc#1104353\n ).\n\n - net: hns3: fix page_offset overflow when\n CONFIG_ARM64_64K_PAGES (bsc#1104353).\n\n - net: hns3: Fix return value error in\n hns3_reset_notify_down_enet (bsc#1104353).\n\n - net: hns3: fix return value error while\n hclge_cmd_csq_clean failed (bsc#1104353).\n\n - net: hns3: Fix warning bug when doing lp selftest\n (bsc#1104353 ).\n\n - net: hns3: modify hnae_ to hnae3_ (bsc#1104353).\n\n - net: hns3: Prevent sending command during global or core\n reset (bsc#1104353).\n\n - net: hns3: remove some redundant assignments\n (bsc#1104353 ).\n\n - net: hns3: remove unnecessary ring configuration\n operation while resetting (bsc#1104353).\n\n - net: hns3: simplify hclge_cmd_csq_clean (bsc#1104353 ).\n\n - net: hns3: Standardize the handle of return value\n (bsc#1104353 ).\n\n - net: hns: add netif_carrier_off before change speed and\n duplex (bsc#1107924).\n\n - net: hns: add the code for cleaning pkt in chip\n (bsc#1107924).\n\n - net/ipv4: Set oif in fib_compute_spec_dst\n (netfilter-stable-18_07_23).\n\n - netlink: Do not shift on 64 for ngroups (git-fixes).\n\n - netlink: Do not shift with UB on nlk->ngroups\n (netfilter-stable-18_08_01).\n\n - netlink: Do not subscribe to non-existent groups\n (netfilter-stable-18_08_01).\n\n - netlink: Fix spectre v1 gadget in netlink_create()\n (netfilter-stable-18_08_04).\n\n - net: mdio-mux: bcm-iproc: fix wrong getter and setter\n pair (netfilter-stable-18_08_01).\n\n - net/mlx5e: Avoid dealing with vport representors if not\n being e-switch manager (networking-stable-18_07_19).\n\n - net/mlx5: E-Switch, Avoid setup attempt if not being\n e-switch manager (networking-stable-18_07_19).\n\n - net: mvneta: fix mvneta_config_rss on armada 3700\n (networking-stable-18_08_21).\n\n - net: mvneta: fix the Rx desc DMA address in the Rx path\n (networking-stable-18_07_19).\n\n - net/packet: fix use-after-free\n (networking-stable-18_07_19).\n\n - Netperf performance issue due to AppArmor net mediation\n (bsc#1108520)\n\n - net: phy: consider PHY_IGNORE_INTERRUPT in\n phy_start_aneg_priv (netfilter-stable-18_07_27).\n\n - net: phy: fix flag masking in __set_phy_supported\n (netfilter-stable-18_07_23).\n\n - net: rtnl_configure_link: fix dev flags changes arg to\n __dev_notify_flags (git-fixes).\n\n - net_sched: blackhole: tell upper qdisc about dropped\n packets (networking-stable-18_07_19).\n\n - net_sched: Fix missing res info when create new tc_index\n filter (netfilter-stable-18_08_17).\n\n - net: skb_segment() should not return NULL\n (netfilter-stable-18_07_27).\n\n - net: stmmac: align DMA stuff to largest cache line\n length (netfilter-stable-18_08_01).\n\n - net: stmmac: Fix WoL for PCI-based setups\n (netfilter-stable-18_08_04).\n\n - net: stmmac: mark PM functions as __maybe_unused\n (git-fixes).\n\n - net: sungem: fix rx checksum support\n (networking-stable-18_07_19).\n\n - net: systemport: Fix CRC forwarding check for SYSTEMPORT\n Lite (netfilter-stable-18_07_23).\n\n - nfc: Fix possible memory corruption when handling SHDLC\n I-Frame commands (bsc#1051510).\n\n - nfs41: do not return ENOMEM on LAYOUTUNAVAILABLE\n (git-fixes).\n\n - nfsd: remove blocked locks on client teardown\n (git-fixes).\n\n - nfs/filelayout: fix oops when freeing filelayout segment\n (bsc#1105190).\n\n - nfs/filelayout: Fix racy setting of fl->dsaddr in\n filelayout_check_deviceid() (bsc#1105190).\n\n - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls\n back to the mds (git-fixes).\n\n - nfs: Use an appropriate work queue for direct-write\n completion (bsc#1082519).\n\n - nfsv4 client live hangs after live data migration\n recovery (git-fixes).\n\n - nfsv4: Fix a sleep in atomic context in\n nfs4_callback_sequence() (git-fixes).\n\n - nfsv4: Fix possible 1-byte stack overflow in\n nfs_idmap_read_and_verify_message (git-fixes).\n\n - nl80211: Add a missing break in parse_station_flags\n (bsc#1051510).\n\n - nl80211: check nla_parse_nested() return values\n (bsc#1051510).\n\n - nvme_fc: add 'nvme_discovery' sysfs attribute to fc\n transport device (bsc#1044189).\n\n - nvme: register ns_id attributes as default sysfs groups\n (bsc#1105247).\n\n - parport: sunbpp: fix error return code (bsc#1051510).\n\n - partitions/aix: append null character to print data from\n disk (bsc#1051510).\n\n - partitions/aix: fix usage of uninitialized lv_info and\n lvname structures (bsc#1051510).\n\n - pci: aardvark: Fix I/O space page leak (git-fixes).\n\n - pci: aardvark: Size bridges before resources allocation\n (bsc#1109806).\n\n - pci: Add pci_resize_resource() for resizing BARs\n (bsc#1105355).\n\n - pci: Add PCI resource type mask #define (bsc#1105355).\n\n - pci: Add resizable BAR infrastructure (bsc#1105355).\n\n - pci: Allow release of resources that were never assigned\n (bsc#1105355).\n\n - pci: Cleanup PCI_REBAR_CTRL_BAR_SHIFT handling\n (bsc#1105355).\n\n - pci: designware: Fix I/O space page leak (bsc#1109806).\n\n - pci: faraday: Add missing of_node_put() (bsc#1109806).\n\n - pci: faraday: Fix I/O space page leak (bsc#1109806).\n\n - pci: hotplug: Do not leak pci_slot on registration\n failure (bsc#1051510).\n\n - pci: hv: Make sure the bus domain is really unique\n (git-fixes).\n\n - pci: Match Root Port's MPS to endpoint's MPSS as\n necessary (bsc#1109269).\n\n - pci: mvebu: Fix I/O space end address calculation\n (bsc#1051510).\n\n - pci: OF: Fix I/O space page leak (git-fixes).\n\n - pci: pciehp: Fix unprotected list iteration in IRQ\n handler (bsc#1051510).\n\n - pci: pciehp: Fix use-after-free on unplug (bsc#1051510).\n\n - PCI/portdrv: Compute MSI/MSI-X IRQ vectors after final\n allocation (bsc#1109806).\n\n - PCI/portdrv: Factor out Interrupt Message Number lookup\n (bsc#1109806).\n\n - pci: Restore resized BAR state on resume (bsc#1105355).\n\n - pci: Skip MPS logic for Virtual Functions (VFs)\n (bsc#1051510).\n\n - pci: versatile: Fix I/O space page leak (bsc#1109806).\n\n - pci: xgene: Fix I/O space page leak (bsc#1109806).\n\n - pci: xilinx: Add missing of_node_put() (bsc#1109806).\n\n - pci: xilinx-nwl: Add missing of_node_put()\n (bsc#1109806).\n\n - pinctrl/amd: only handle irq if it is pending and\n unmasked (bsc#1051510).\n\n - pinctrl: cannonlake: Fix community ordering for H\n variant (bsc#1051510).\n\n - pinctrl: cannonlake: Fix HOSTSW_OWN register offset of H\n variant (bsc#1051510).\n\n - pinctrl: core: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: freescale: off by one in\n imx1_pinconf_group_dbg_show() (bsc#1051510).\n\n - pinctrl: imx: off by one in imx_pinconf_group_dbg_show()\n (bsc#1051510).\n\n - pinctrl: pinmux: Return selector to the pinctrl driver\n (bsc#1051510).\n\n - pinctrl: qcom: spmi-gpio: Fix pmic_gpio_config_get() to\n be compliant (bsc#1051510).\n\n - pinctrl: single: Fix group and function selector use\n (bsc#1051510).\n\n - pipe: actually allow root to exceed the pipe buffer\n limits (bsc#1106297).\n\n - platform/x86: alienware-wmi: Correct a memory leak\n (bsc#1051510).\n\n - platform/x86: asus-nb-wmi: Add keymap entry for lid flip\n action on UX360 (bsc#1051510).\n\n - platform/x86: thinkpad_acpi: Proper model/release\n matching (bsc#1051510).\n\n - platform/x86: toshiba_acpi: Fix defined but not used\n build warnings (bsc#1051510).\n\n - PM / clk: signedness bug in of_pm_clk_add_clks()\n (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: Fix duplicated opp table on\n reload (bsc#1051510).\n\n - PM / Domains: Fix error path during attach in genpd\n (bsc#1051510).\n\n - pmem: Switch to copy_to_iter_mcsafe() (bsc#1098782).\n\n - PM / runtime: Drop usage count for suppliers at device\n link removal (bsc#1100132).\n\n - PM / sleep: wakeup: Fix build error caused by missing\n SRCU support (bsc#1051510).\n\n - pnfs/blocklayout: off by one in bl_map_stripe()\n (git-fixes).\n\n - power: gemini-poweroff: Avoid more spurious poweroffs\n (bsc#1051510).\n\n - power: generic-adc-battery: check for duplicate\n properties copied from iio channels (bsc#1051510).\n\n - power: generic-adc-battery: fix out-of-bounds write when\n copying channel properties (bsc#1051510).\n\n - powernv/pseries: consolidate code for mce early handling\n (bsc#1094244).\n\n - powerpc/64s: Default l1d_size to 64K in RFI fallback\n flush (bsc#1068032, git-fixes).\n\n - powerpc/64s: Fix compiler store ordering to SLB shadow\n area (bsc#1094244).\n\n - powerpc/64s: Fix DT CPU features Power9 DD2.1 logic\n (bsc#1055117).\n\n - powerpc/64s: move machine check SLB flushing to mm/slb.c\n (bsc#1094244).\n\n - powerpc64s: Show ori31 availability in spectre_v1 sysfs\n file not v2 (bsc#1068032, bsc#1080157, git-fixes).\n\n - powerpc: Avoid code patching freed init sections\n (bnc#1107735).\n\n - powerpc/fadump: cleanup crash memory ranges support\n (bsc#1103269).\n\n - powerpc/fadump: re-register firmware-assisted dump if\n already registered (bsc#1108170, bsc#1108823).\n\n - powerpc: Fix size calculation using resource_size()\n (bnc#1012382).\n\n - powerpc: KABI add aux_ptr to hole in paca_struct to\n extend it with additional members (bsc#1094244).\n\n - powerpc: kabi: move mce_data_buf into paca_aux\n (bsc#1094244).\n\n - powerpc/kprobes: Fix call trace due to incorrect preempt\n count (bsc#1065729).\n\n - powerpc/lib: Fix the feature fixup tests to actually\n work (bsc#1065729).\n\n - powerpc: make feature-fixup tests fortify-safe\n (bsc#1065729).\n\n - powerpc/mce: Fix SLB rebolting during MCE recovery path\n (bsc#1094244).\n\n - powerpc/numa: Use associativity if VPHN hcall is\n successful (bsc#1110363).\n\n - powerpc/perf: Fix IMC allocation routine (bsc#1054914).\n\n - powerpc/perf: Fix memory allocation for core-imc based\n on num_possible_cpus() (bsc#1054914).\n\n - powerpc/perf: Remove sched_task function defined for\n thread-imc (bsc#1054914).\n\n - powerpc/pkeys: Fix reading of ibm,\n processor-storage-keys property (bsc#1109244).\n\n - powerpc/powernv/npu: Do a PID GPU TLB flush when\n invalidating a large address range (bsc#1055120).\n\n - powerpc/pseries: Avoid using the size greater than\n RTAS_ERROR_LOG_MAX (bsc#1094244).\n\n - powerpc/pseries: Defer the logging of rtas error to irq\n work queue (bsc#1094244).\n\n - powerpc/pseries: Define MCE error event section\n (bsc#1094244).\n\n - powerpc/pseries: Disable CPU hotplug across migrations\n (bsc#1065729).\n\n - powerpc/pseries: Display machine check error details\n (bsc#1094244).\n\n - powerpc/pseries: Dump the SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: fix EEH recovery of some IOV devices\n (bsc#1078720, git-fixes).\n\n - powerpc/pseries: Fix endianness while restoring of r3 in\n MCE handler (bsc#1094244).\n\n - powerpc/pseries: Flush SLB contents on SLB MCE errors\n (bsc#1094244).\n\n - powerpc/pseries: Remove prrn_work workqueue\n (bsc#1102495, bsc#1109337).\n\n - powerpc/pseries: Remove unneeded uses of dlpar work\n queue (bsc#1102495, bsc#1109337).\n\n - powerpc/tm: Avoid possible userspace r1 corruption on\n reclaim (bsc#1109333).\n\n - powerpc/tm: Fix userspace r13 corruption (bsc#1109333).\n\n - powerpc/topology: Get topology for shared processors at\n boot (bsc#1104683).\n\n - powerpc/xive: Fix trying to 'push' an already active\n pool VP (bsc#1085030, git-fixes).\n\n - power: remove possible deadlock when unregistering\n power_supply (bsc#1051510).\n\n - power: supply: axp288_charger: Fix initial\n constant_charge_current value (bsc#1051510).\n\n - power: supply: max77693_charger: fix unintentional\n fall-through (bsc#1051510).\n\n - power: vexpress: fix corruption in notifier registration\n (bsc#1051510).\n\n - ppp: Destroy the mutex when cleanup (bsc#1051510).\n\n - ppp: fix __percpu annotation (bsc#1051510).\n\n - pstore: Fix incorrect persistent ram buffer mapping\n (bsc#1051510).\n\n - ptp: fix missing break in switch (bsc#1105355).\n\n - ptr_ring: fail early if queue occupies more than\n KMALLOC_MAX_SIZE (bsc#1105355).\n\n - ptr_ring: fix up after recent ptr_ring changes\n (bsc#1105355).\n\n - ptr_ring: prevent integer overflow when calculating size\n (bsc#1105355).\n\n - pwm: tiehrpwm: Fix disabling of output of PWMs\n (bsc#1051510).\n\n - qlge: Fix netdev features configuration (bsc#1098822).\n\n - r8152: Check for supported Wake-on-LAN Modes\n (bsc#1051510).\n\n - r8169: add support for NCube 8168 network card\n (bsc#1051510).\n\n - random: add new ioctl RNDRESEEDCRNG (bsc#1051510).\n\n - random: fix possible sleeping allocation from irq\n context (bsc#1051510).\n\n - random: mix rdrand with entropy sent in from userspace\n (bsc#1051510).\n\n - random: set up the NUMA crng instances after the CRNG is\n fully initialized (bsc#1051510).\n\n - RDMA/bnxt_re: Fix a bunch of off by one bugs in\n qplib_fp.c (bsc#1050244).\n\n - RDMA/bnxt_re: Fix a couple off by one bugs (bsc#1050244\n ).\n\n - RDMA/i40w: Hold read semaphore while looking after VMA\n (bsc#1058659).\n\n - RDMA/uverbs: Expand primary and alt AV port checks\n (bsc#1046306 ).\n\n - readahead: stricter check for bdi io_pages (VM\n Functionality, git fixes).\n\n - regulator: fix crash caused by null driver data\n (bsc#1051510).\n\n - reiserfs: fix broken xattr handling (heap corruption,\n bad retval) (bsc#1106236).\n\n - Replace magic for trusting the secondary keyring with\n #define (bsc#1051510).\n\n - Revert 'btrfs: qgroups: Retry after commit on getting\n EDQUOT' (bsc#1031392).\n\n - Revert 'ipc/shm: Fix shmat mmap nil-page protection'\n (bsc#1090078).\n\n - Revert 'mm: page_alloc: skip over regions of invalid\n pfns where possible' (bnc#1107078).\n\n - Revert 'pci: Add ACS quirk for Intel 300 series'\n (bsc#1051510).\n\n - Revert 'UBIFS: Fix potential integer overflow in\n allocation' (bsc#1051510).\n\n - Revert 'vhost: cache used event for better performance'\n (bsc#1090528).\n\n - Revert 'vmalloc: back off when the current task is\n killed' (bnc#1107073).\n\n - rhashtable: add schedule points (bsc#1051510).\n\n - rndis_wlan: potential buffer overflow in\n rndis_wlan_auth_indication() (bsc#1051510).\n\n - root dentries need RCU-delayed freeing (bsc#1106297).\n\n - rsi: Fix 'invalid vdd' warning in mmc (bsc#1051510).\n\n - rtc: ensure rtc_set_alarm fails when alarms are not\n supported (bsc#1051510).\n\n - rtnetlink: add rtnl_link_state check in\n rtnl_configure_link (netfilter-stable-18_07_27).\n\n - rxrpc: Fix user call ID check in\n rxrpc_service_prealloc_one (netfilter-stable-18_08_04).\n\n - s390: always save and restore all registers on context\n switch (bsc#1103421).\n\n - s390/crypto: Fix return code checking in\n cbc_paes_crypt() (bnc#1108323, LTC#171709).\n\n - s390: detect etoken facility (bsc#1103421).\n\n - s390/entry.S: use assembler alternatives (bsc#1103421).\n\n - s390: fix br_r1_trampoline for machines without exrl\n (git-fixes, bsc#1103421).\n\n - s390: fix compat system call table (bsc#1103421).\n\n - s390: fix handling of -1 in set(,fs)id16 syscalls\n (bsc#1103421).\n\n - s390/lib: use expoline for all bcr instructions\n (git-fixes, bsc#1103421).\n\n - s390/mm: fix local TLB flushing vs. detach of an mm\n address space (bsc#1103421).\n\n - s390/mm: fix race on mm->context.flush_mm (bsc#1103421).\n\n - s390/pci: fix out of bounds access during irq setup\n (bnc#1108323, LTC#171068).\n\n - s390: Prevent hotplug rwsem recursion (bsc#1105731).\n\n - s390/qdio: reset old sbal_state flags (LTC#171525,\n bsc#1106948).\n\n - s390/qeth: consistently re-enable device features\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: do not clobber buffer on async TX completion\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: rely on kernel for feature recovery\n (bsc#1104482, LTC#170340).\n\n - s390/qeth: use vzalloc for QUERY OAT buffer (LTC#171527,\n bsc#1106948).\n\n - s390/runtime instrumentation: simplify task exit\n handling (bsc#1103421).\n\n - s390: use expoline thunks for all branches generated by\n the BPF JIT (bsc#1103421).\n\n - samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1\n (bsc#1083647).\n\n - sched/debug: Reverse the order of printing faults\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/fair: Fix bandwidth timer clock drift condition\n (Git-fixes).\n\n - sched/fair: Fix vruntime_normalized() for remote\n non-migration wakeup (git-fixes).\n\n - sched/numa: Avoid task migration for small NUMA\n improvement (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Do not move imbalanced load purely on the\n basis of an idle CPU (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Evaluate move once per node (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Modify migrate_swap() to accept additional\n parameters (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Move task_numa_placement() closer to\n numa_migrate_preferred() (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Pass destination CPU as a parameter to\n migrate_task_rq kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Remove numa_has_capacity() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field (bnc#1101669 optimise\n numa balancing for fast migrate).\n\n - sched/numa: Remove redundant field -kabi (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused code from update_numa_stats()\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: remove unused nr_running field (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Remove unused task_capacity from 'struct\n numa_stats' (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Reset scan rate whenever task moves across\n nodes (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - sched/numa: Set preferred_node based on best_cpu\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Simplify load_too_imbalanced() (bnc#1101669\n optimise numa balancing for fast migrate).\n\n - sched/numa: Skip nodes that are at 'hoplimit'\n (bnc#1101669 optimise numa balancing for fast migrate).\n\n - sched/numa: Stop comparing tasks for NUMA placement\n after selecting an idle core (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Stop multiple tasks from moving to the CPU\n at the same time kabi (bnc#1101669 optimise numa\n balancing for fast migrate).\n\n - sched/numa: Update the scan period without holding the\n numa_group lock (bnc#1101669 optimise numa balancing for\n fast migrate).\n\n - sched/numa: Use group_weights to identify if migration\n degrades locality (bnc#1101669 optimise numa balancing\n for fast migrate).\n\n - sched/numa: Use task faults only if numa_group is not\n yet set up (bnc#1101669 optimise numa balancing for fast\n migrate).\n\n - scripts/git_sort/git_sort.py: Add fixes branch from\n mkp/scsi.git.\n\n - scripts/git_sort/git_sort.py: add libnvdimm-for-next\n branch\n\n - scripts/git_sort/git_sort.py: add mkp 4.20/scsi-queue\n\n - scripts: modpost: check memory allocation results\n (bsc#1051510).\n\n - scsi: cxlflash: Abstract hardware dependent assignments\n ().\n\n - scsi: cxlflash: Acquire semaphore before invoking ioctl\n services ().\n\n - scsi: cxlflash: Adapter context init can return error\n ().\n\n - scsi: cxlflash: Adapter context support for OCXL ().\n\n - scsi: cxlflash: Add argument identifier names ().\n\n - scsi: cxlflash: Add include guards to backend.h ().\n\n - scsi: cxlflash: Avoid clobbering context control\n register value ().\n\n - scsi: cxlflash: Enable OCXL operations ().\n\n - scsi: cxlflash: Explicitly cache number of interrupts\n per context ().\n\n - scsi: cxlflash: Handle spurious interrupts ().\n\n - scsi: cxlflash: Hardware AFU for OCXL ().\n\n - scsi: cxlflash: Introduce object handle fop ().\n\n - scsi: cxlflash: Introduce OCXL backend ().\n\n - scsi: cxlflash: Introduce OCXL context state machine ().\n\n - scsi: cxlflash: Isolate external module dependencies ().\n\n - scsi: cxlflash: Limit the debug logs in the IO path ().\n\n - scsi: cxlflash: MMIO map the AFU ().\n\n - scsi: cxlflash: Preserve number of interrupts for master\n contexts ().\n\n - scsi: cxlflash: Read host AFU configuration ().\n\n - scsi: cxlflash: Read host function configuration ().\n\n - scsi: cxlflash: Register for translation errors ().\n\n - scsi: cxlflash: Remove commmands from pending list on\n timeout ().\n\n - scsi: cxlflash: Remove embedded CXL work structures ().\n\n - scsi: cxlflash: Setup AFU acTag range ().\n\n - scsi: cxlflash: Setup AFU PASID ().\n\n - scsi: cxlflash: Setup function acTag range ().\n\n - scsi: cxlflash: Setup function OCXL link ().\n\n - scsi: cxlflash: Setup LISNs for master contexts ().\n\n - scsi: cxlflash: Setup LISNs for user contexts ().\n\n - scsi: cxlflash: Setup OCXL transaction layer ().\n\n - scsi: cxlflash: Staging to support future accelerators\n ().\n\n - scsi: cxlflash: Support adapter context discovery ().\n\n - scsi: cxlflash: Support adapter context mmap and release\n ().\n\n - scsi: cxlflash: Support adapter context polling ().\n\n - scsi: cxlflash: Support adapter context reading ().\n\n - scsi: cxlflash: Support adapter file descriptors for\n OCXL ().\n\n - scsi: cxlflash: Support AFU interrupt management ().\n\n - scsi: cxlflash: Support AFU interrupt mapping and\n registration ().\n\n - scsi: cxlflash: Support AFU reset ().\n\n - scsi: cxlflash: Support AFU state toggling ().\n\n - scsi: cxlflash: Support file descriptor mapping ().\n\n - scsi: cxlflash: Support image reload policy modification\n ().\n\n - scsi: cxlflash: Support process element lifecycle ().\n\n - scsi: cxlflash: Support process specific mappings ().\n\n - scsi: cxlflash: Support reading adapter VPD data ().\n\n - scsi: cxlflash: Support starting an adapter context ().\n\n - scsi: cxlflash: Support starting user contexts ().\n\n - scsi: cxlflash: Synchronize reset and remove ops ().\n\n - scsi: cxlflash: Use IDR to manage adapter contexts ().\n\n - scsi: cxlflash: Use local mutex for AFU serialization\n ().\n\n - scsi: cxlflash: Yield to active send threads ().\n\n - scsi_debug: call resp_XXX function after setting\n host_scribble (bsc#1069138). \n\n - scsi_debug: reset injection flags for every_nth > 0\n (bsc#1069138).\n\n - scsi: fcoe: hold disc_mutex when traversing rport lists\n (bsc#1077989).\n\n - scsi: hisi_sas: Add a flag to filter PHY events during\n reset ().\n\n - scsi: hisi_sas: add memory barrier in task delivery\n function ().\n\n - scsi: hisi_sas: Add missing PHY spinlock init ().\n\n - scsi: hisi_sas: Add SATA FIS check for v3 hw ().\n\n - scsi: hisi_sas: Adjust task reject period during host\n reset ().\n\n - scsi: hisi_sas: Drop hisi_sas_slot_abort() ().\n\n - scsi: hisi_sas: Fix the conflict between dev gone and\n host reset ().\n\n - scsi: hisi_sas: Fix the failure of recovering PHY from\n STP link timeout ().\n\n - scsi: hisi_sas: Implement handlers of PCIe FLR for v3 hw\n ().\n\n - scsi: hisi_sas: Only process broadcast change in\n phy_bcast_v3_hw() ().\n\n - scsi: hisi_sas: Pre-allocate slot DMA buffers ().\n\n - scsi: hisi_sas: Release all remaining resources in clear\n nexus ha ().\n\n - scsi: hisi_sas: relocate some common code for v3 hw ().\n\n - scsi: hisi_sas: tidy channel interrupt handler for v3 hw\n ().\n\n - scsi: hisi_sas: Tidy hisi_sas_task_prep() ().\n\n - scsi: hisi_sas: tidy host controller reset function a\n bit ().\n\n - scsi: hisi_sas: Update a couple of register settings for\n v3 hw ().\n\n - scsi: hisi_sas: Use dmam_alloc_coherent() ().\n\n - scsi: hpsa: limit transfer length to 1MB, not 512kB\n (bsc#1102346).\n\n - scsi: ipr: System hung while dlpar adding primary ipr\n adapter back (bsc#1109336).\n\n - scsi: libfc: Add lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup lockdep annotations (bsc#1077989).\n\n - scsi: libfc: fixup 'sleeping function called from\n invalid context' (bsc#1077989).\n\n - scsi: libfc: hold disc_mutex in fc_disc_stop_rports()\n (bsc#1077989).\n\n - scsi: lpfc: Correct MDS diag and nvmet configuration\n (bsc#1106636).\n\n - scsi: mpt3sas: Fix calltrace observed while running IO &\n reset (bsc#1077989).\n\n - scsi: qla2xxx: Add appropriate debug info for invalid\n RX_ID (bsc#1108870).\n\n - scsi: qla2xxx: Add logic to detect ABTS hang and\n response completion (bsc#1108870).\n\n - scsi: qla2xxx: Add longer window for chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Add mode control for each physical port\n (bsc#1108870).\n\n - scsi: qla2xxx: Add support for ZIO6 interrupt threshold\n (bsc#1108870).\n\n - scsi: qla2xxx: Allow FC-NVMe underrun to be handled by\n transport (bsc#1108870).\n\n - scsi: qla2xxx: Check for Register disconnect\n (bsc#1108870).\n\n - scsi: qla2xxx: Cleanup for N2N code (bsc#1086327,).\n\n - scsi: qla2xxx: Decrement login retry count for only\n plogi (bsc#1108870).\n\n - scsi: qla2xxx: Defer chip reset until target mode is\n enabled (bsc#1108870).\n\n - scsi: qla2xxx: Fix deadlock between ATIO and HW lock\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix double increment of switch scan retry\n count (bsc#1108870).\n\n - scsi: qla2xxx: Fix dropped srb resource (bsc#1108870).\n\n - scsi: qla2xxx: Fix duplicate switch's Nport ID entries\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix early srb free on abort\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix iIDMA error (bsc#1108870).\n\n - scsi: qla2xxx: Fix incorrect port speed being set for FC\n adapters (bsc#1108870).\n\n - scsi: qla2xxx: Fix ISP recovery on unload\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix issue reported by static checker for\n qla2x00_els_dcmd2_sp_done() (bsc#1086327,).\n\n - scsi: qla2xxx: Fix login retry count (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Management Server NPort handle\n reservation logic (bsc#1086327,).\n\n - scsi: qla2xxx: Fix N2N link re-connect (bsc#1086327,).\n\n - scsi: qla2xxx: Fix out of order Termination and ABTS\n response (bsc#1108870).\n\n - scsi: qla2xxx: Fix port speed display on chip reset\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix premature command free (bsc#1108870).\n\n - scsi: qla2xxx: Fix process response queue for ISP26XX\n and above (bsc#1108870).\n\n - scsi: qla2xxx: Fix race between switch cmd completion\n and timeout (bsc#1086327,).\n\n - scsi: qla2xxx: Fix race condition for resource cleanup\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix redundant fc_rport registration\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix Remote port registration\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix session state stuck in Get Port DB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stalled relogin (bsc#1086327,).\n\n - scsi: qla2xxx: Fix stuck session in PLOGI state\n (bsc#1108870).\n\n - scsi: qla2xxx: Fix unintended Logout (bsc#1086327,).\n\n - scsi: qla2xxx: Flush mailbox commands on chip reset\n (bsc#1086327,).\n\n - scsi: qla2xxx: Force fw cleanup on ADISC error\n (bsc#1108870).\n\n - scsi: qla2xxx: Increase abort timeout value\n (bsc#1108870).\n\n - scsi: qla2xxx: Migrate NVME N2N handling into state\n machine (bsc#1086327,).\n\n - scsi: qla2xxx: Move ABTS code behind qpair\n (bsc#1108870).\n\n - scsi: qla2xxx: Move (get|rel)_sp to base_qpair struct\n (bsc#1108870).\n\n - scsi: qla2xxx: Move rport registration out of internal\n work_list (bsc#1108870).\n\n - scsi: qla2xxx: Prevent sysfs access when chip is down\n (bsc#1086327,).\n\n - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU\n lock-up (bsc#1108870).\n\n - scsi: qla2xxx: Reject bsg request if chip is down\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove all rports if fabric scan retry\n fails (bsc#1108870).\n\n - scsi: qla2xxx: Remove ASYNC GIDPN switch command\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove redundant check for fcport\n deletion (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale ADISC_DONE event\n (bsc#1108870).\n\n - scsi: qla2xxx: Remove stale debug trace message from\n tcm_qla2xxx (bsc#1108870).\n\n - scsi: qla2xxx: Save frame payload size from ICB\n (bsc#1086327,).\n\n - scsi: qla2xxx: Serialize mailbox request (bsc#1108870).\n\n - scsi: qla2xxx: shutdown chip if reset fail\n (bsc#1108870).\n\n - scsi: qla2xxx: Silent erroneous message (bsc#1086327,).\n\n - scsi: qla2xxx: Spinlock recursion in qla_target\n (bsc#1086327,).\n\n - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0\n (bsc#1108870).\n\n - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB\n completion (bsc#1108870).\n\n - scsi: qla2xxx: Update driver to version 10.00.00.09-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.08-k\n (bsc#1086327,).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.10-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update driver version to 10.00.00.11-k\n (bsc#1108870).\n\n - scsi: qla2xxx: Update rscn_rcvd field to more meaningful\n scan_needed (bsc#1108870).\n\n - scsi: qla2xxx: Use correct qpair for ABTS/CMD\n (bsc#1108870).\n\n - security: check for kstrdup() failure in lsm_append()\n (bsc#1051510).\n\n - selftests/bpf: fix a typo in map in map test\n (bsc#1083647).\n\n - selftests/bpf/test_maps: exit child process without\n error in ENOMEM case (bsc#1083647).\n\n - serial: 8250: Do not service RX FIFO if interrupts are\n disabled (bsc#1051510).\n\n - serial: 8250_dw: Add ACPI support for uart on Broadcom\n SoC (bsc#1051510).\n\n - serial: 8250_dw: always set baud rate in\n dw8250_set_termios (bsc#1051510).\n\n - serial: core: mark port as initialized after successful\n IRQ change (bsc#1051510).\n\n - serial: enable spi in sc16is7xx driver References:\n bsc#1105672\n\n - serial: make sc16is7xx driver supported References:\n bsc#1105672\n\n - serial: pxa: Fix an error handling path in\n 'serial_pxa_probe()' (bsc#1051510).\n\n - serial: sh-sci: Stop RX FIFO timer during port shutdown\n (bsc#1051510).\n\n - serial: xuartps: fix typo in cdns_uart_startup\n (bsc#1051510).\n\n - series.conf: Sort automatic NUMA balancing related patch\n\n - slab: __GFP_ZERO is incompatible with a constructor\n (bnc#1107060).\n\n - smsc75xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - smsc95xx: Check for Wake-on-LAN modes (bsc#1051510).\n\n - spi: cadence: Change usleep_range() to udelay(), for\n atomic context (bsc#1051510).\n\n - spi: davinci: fix a NULL pointer dereference\n (bsc#1051510).\n\n - spi-nor: intel-spi: Fix number of protected range\n registers for BYT/LPT ().\n\n - spi: pxa2xx: Add support for Intel Ice Lake\n (bsc#1051510).\n\n - spi: spi-fsl-dspi: Fix imprecise abort on VF500 during\n probe (bsc#1051510).\n\n - sr9800: Check for supported Wake-on-LAN modes\n (bsc#1051510).\n\n - sr: get/drop reference to device in revalidate and\n check_events (bsc#1109979).\n\n - staging: bcm2835-audio: Check if workqueue allocation\n failed ().\n\n - staging: bcm2835-audio: constify snd_pcm_ops structures\n ().\n\n - staging: bcm2835-audio: Deliver indirect-PCM transfer\n error ().\n\n - staging: bcm2835-audio: Disconnect and free\n vchi_instance on module_exit() ().\n\n - staging: bcm2835-audio: Do not leak workqueue if open\n fails ().\n\n - staging: bcm2835-audio: make snd_pcm_hardware const ().\n\n - staging: bcm2835-camera: fix timeout handling in\n wait_for_completion_timeout (bsc#1051510).\n\n - staging: bcm2835-camera: handle\n wait_for_completion_timeout return properly\n (bsc#1051510).\n\n - staging: comedi: ni_mio_common: fix subdevice flags for\n PFI subdevice (bsc#1051510).\n\n - staging: lustre: disable preempt while sampling\n processor id (bsc#1051510).\n\n - staging: lustre: fix bug in osc_enter_cache_try\n (bsc#1051510).\n\n - staging: lustre: ldlm: free resource when\n ldlm_lock_create() fails (bsc#1051510).\n\n - staging: lustre: libcfs: fix test for libcfs_ioctl_hdr\n minimum size (bsc#1051510).\n\n - staging: lustre: libcfs: Prevent harmless read underflow\n (bsc#1051510).\n\n - staging: lustre: llite: correct removexattr detection\n (bsc#1051510).\n\n - staging: lustre: llite: initialize xattr->xe_namelen\n (bsc#1051510).\n\n - staging: lustre: lmv: correctly iput lmo_root\n (bsc#1051510).\n\n - staging: lustre: lov: use correct env in\n lov_io_data_version_end() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix crash in\n kiblnd_handle_early_rxs() (bsc#1051510).\n\n - staging: lustre: o2iblnd: Fix FastReg map/unmap for MLX5\n (bsc#1051510).\n\n - staging: lustre: o2iblnd: fix race at\n kiblnd_connect_peer (bsc#1051510).\n\n - staging: lustre: obdclass: return -EFAULT if\n copy_from_user() fails (bsc#1051510).\n\n - staging: lustre: obd_mount: use correct niduuid suffix\n (bsc#1051510).\n\n - staging: lustre: ptlrpc: kfree used instead of kvfree\n (bsc#1051510).\n\n - staging: lustre: remove invariant in cl_io_read_ahead()\n (bsc#1051510).\n\n - staging: lustre: statahead: remove incorrect test on\n agl_list_empty() (bsc#1051510).\n\n - staging: lustre: Use 'kvfree()' for memory allocated by\n 'kvzalloc()' (bsc#1051510).\n\n - staging: rts5208: fix missing error check on call to\n rtsx_write_register (bsc#1051510).\n\n - staging: vc04_services: bcm2835-audio: Add blank line\n after declaration ().\n\n - staging: vc04_services: bcm2835-audio: add SPDX\n identifiers ().\n\n - staging: vc04_services: bcm2835-audio: Change to\n unsigned int * ().\n\n - staging: vc04_services: bcm2835-audio Format multiline\n comment ().\n\n - staging: vc04_services: bcm2835-audio: remove redundant\n license text ().\n\n - staging: vc04_services: Fix platform_no_drv_owner.cocci\n warnings ().\n\n - staging: vc04_services: please do not use multiple blank\n lines ().\n\n - stmmac: fix DMA channel hang in half-duplex mode\n (networking-stable-18_07_19).\n\n - string: drop __must_check from strscpy() and restore\n strscpy() usages in cgroup (bsc#1051510).\n\n - strparser: Remove early eaten to fix full tcp receive\n buffer stall (networking-stable-18_07_19).\n\n - sunxi-rsb: Include OF based modalias in device uevent\n (bsc#1051510).\n\n - sys: do not hold uts_sem while accessing userspace\n memory (bnc#1106995).\n\n - target_core_rbd: break up free_device callback\n (bsc#1105524).\n\n - target_core_rbd: use RCU in free_device (bsc#1105524).\n\n - tcp: add max_quickacks param to tcp_incr_quickack and\n tcp_enter_quickack_mode (netfilter-stable-18_08_01).\n\n - tcp: add one more quick ack after after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp_bbr: fix bw probing to raise in-flight data for very\n small BDPs (netfilter-stable-18_08_01).\n\n - tcp: do not aggressively quick ack after ECN events\n (netfilter-stable-18_08_01).\n\n - tcp: do not cancel delay-AcK on DCTCP special ACK\n (netfilter-stable-18_07_27).\n\n - tcp: do not delay ACK in DCTCP upon CE status change\n (netfilter-stable-18_07_27).\n\n - tcp: do not force quickack when receiving out-of-order\n packets (netfilter-stable-18_08_01).\n\n - tcp: fix dctcp delayed ACK schedule\n (netfilter-stable-18_07_27).\n\n - tcp: fix Fast Open key endianness\n (networking-stable-18_07_19).\n\n - tcp: helpers to send special DCTCP ack\n (netfilter-stable-18_07_27).\n\n - tcp: prevent bogus FRTO undos with non-SACK flows\n (networking-stable-18_07_19).\n\n - tcp: refactor tcp_ecn_check_ce to remove sk type cast\n (netfilter-stable-18_08_01).\n\n - tg3: Add higher cpu clock for 5762\n (netfilter-stable-18_07_23).\n\n - thermal_hwmon: Pass the originating device down to\n hwmon_device_register_with_info (bsc#1103363).\n\n - thermal_hwmon: Sanitize attribute name passed to hwmon\n (bsc#1103363).\n\n - thermal: thermal_hwmon: Convert to\n hwmon_device_register_with_info() (bsc#1103363).\n\n - ti: ethernet: cpdma: Use correct format for genpool_*\n (bsc#1051510).\n\n - tools/power turbostat: fix -S on UP systems\n (bsc#1051510).\n\n - tools/power turbostat: Read extended processor family\n from CPUID (bsc#1051510).\n\n - tools: usb: ffs-test: Fix build on big endian systems\n (bsc#1051510).\n\n - tpm: cmd_ready command can be issued only after granting\n locality (bsc#1082555).\n\n - tpm: fix race condition in tpm_common_write()\n (bsc#1082555).\n\n - tpm: fix use after free in tpm2_load_context()\n (bsc#1082555).\n\n - tpm: Introduce flag TPM_TRANSMIT_RAW (bsc#1082555).\n\n - tpm: separate cmd_ready/go_idle from runtime_pm\n (bsc#1082555).\n\n - tpm: tpm_crb: relinquish locality on error path\n (bsc#1082555).\n\n - tpm: vtpm_proxy: Implement request_locality function\n (bsc#1082555).\n\n - tracepoint: Do not warn on ENOMEM (bsc#1051510).\n\n - tty: fix termios input-speed encoding (bsc#1051510).\n\n - tty: fix termios input-speed encoding when using BOTHER\n (bsc#1051510).\n\n - tty: serial: 8250: Revert NXP SC16C2552 workaround\n (bsc#1051510).\n\n - uart: fix race between uart_put_char() and\n uart_shutdown() (bsc#1051510).\n\n - ubifs: Check data node size before truncate\n (bsc#1051510).\n\n - ubifs: Fix directory size calculation for symlinks\n (bsc#1106230).\n\n - ubifs: Fix memory leak in lprobs self-check\n (bsc#1051510).\n\n - ubifs: Fix synced_i_size calculation for xattr inodes\n (bsc#1051510).\n\n - ubifs: xattr: Do not operate on deleted inodes\n (bsc#1051510).\n\n - udlfb: set optimal write delay (bsc#1051510).\n\n - udl-kms: avoid division (bsc#1051510).\n\n - udl-kms: change down_interruptible to down\n (bsc#1051510).\n\n - udl-kms: fix crash due to uninitialized memory\n (bsc#1051510).\n\n - udl-kms: handle allocation failure (bsc#1051510).\n\n - uio, lib: Fix CONFIG_ARCH_HAS_UACCESS_MCSAFE compilation\n (bsc#1098782).\n\n - uio: potential double frees if __uio_register_device()\n fails (bsc#1051510).\n\n - Update config files, make CRYPTO_CRCT10DIF_PCLMUL\n built-in (bsc#1105603).\n\n - Update\n patches.drivers/0016-arm64-vgic-v2-Fix-proxying-of-cpuif\n -access.patch (bsc#1106901, bsc#1107265).\n\n - Update\n patches.fixes/4.4.139-043-powerpc-mm-hash-Add-missing-is\n ync-prior-to-ke.patch (bnc#1012382, bsc#1094244).\n\n - Update patch tag of dmi fix (bsc#1105597) Also moved to\n the sorted section.\n\n - Update patch tags of recent security fixes (bsc#1106426)\n\n - uprobes: Use synchronize_rcu() not synchronize_sched()\n (bsc#1051510).\n\n - uprobes/x86: Remove incorrect WARN_ON() in\n uprobe_init_insn() (bsc#1051510).\n\n - usb: cdc-wdm: do not enable interrupts in USB-giveback\n (bsc#1051510).\n\n - usb: Do not die twice if PCI xhci host is not responding\n in resume (bsc#1051510).\n\n - usb: dwc2: fix isoc split in transfer with no data\n (bsc#1051510).\n\n - usb: dwc2: gadget: Fix issue in dwc2_gadget_start_isoc()\n (bsc#1051510).\n\n - usb: dwc3: change stream event enable bit back to 13\n (bsc#1051510).\n\n - usb: dwc3: pci: add support for Intel IceLake\n (bsc#1051510).\n\n - usb: gadget: composite: fix delayed_status race\n condition when set_interface (bsc#1051510).\n\n - usb: gadget: dwc2: fix memory leak in gadget_init()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix a possible\n sleep-in-atomic-context bugs in r8a66597_queue()\n (bsc#1051510).\n\n - usb: gadget: r8a66597: Fix two possible\n sleep-in-atomic-context bugs in init_controller()\n (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: fix maxpacket size of\n ep0 (bsc#1051510).\n\n - usb: net2280: Fix erroneous synchronization change\n (bsc#1051510).\n\n - usb: option: add support for DW5821e (bsc#1051510).\n\n - usb/phy: fix PPC64 build errors in phy-fsl-usb.c\n (bsc#1051510).\n\n - usb: serial: io_ti: fix array underflow in completion\n handler (bsc#1051510).\n\n - usb: serial: kobil_sct: fix modem-status error handling\n (bsc#1051510).\n\n - usb: serial: pl2303: add a new device id for ATEN\n (bsc#1051510).\n\n - usb: serial: sierra: fix potential deadlock at close\n (bsc#1051510).\n\n - usb: serial: ti_usb_3410_5052: fix array underflow in\n completion handler (bsc#1051510).\n\n - usb: xhci: increase CRS timeout value (bsc#1051510).\n\n - userns: move user access out of the mutex (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Payload Size (bsc#1051510).\n\n - vfio/pci: Virtualize Maximum Read Request Size\n (bsc#1051510).\n\n - vfio/type1: Fix task tracking for QEMU vCPU hotplug\n (bsc#1051510).\n\n - vfs: do not test owner for NFS in set_posix_acl()\n (bsc#1103405).\n\n - vhost: correctly check the iova range when waking\n virtqueue (bsc#1051510).\n\n - vhost: do not try to access device IOTLB when not\n initialized (bsc#1051510).\n\n - vhost_net: validate sock before trying to put its fd\n (networking-stable-18_07_19).\n\n - vhost: reset metadata cache when initializing new IOTLB\n (netfilter-stable-18_08_17).\n\n - vhost: use mutex_lock_nested() in vhost_dev_lock_vqs()\n (bsc#1051510).\n\n - video: fbdev: pxafb: clear allocated memory for video\n modes (bsc#1051510).\n\n - video: goldfishfb: fix memory leak on driver remove\n (bsc#1051510).\n\n - vmci: type promotion bug in qp_host_get_user_memory()\n (bsc#1105355).\n\n - vmw_balloon: do not use 2MB without batching\n (bsc#1051510).\n\n - vmw_balloon: fix inflation of 64-bit GFNs (bsc#1051510).\n\n - vmw_balloon: fix VMCI use when balloon built into kernel\n (bsc#1051510).\n\n - vmw_balloon: remove inflation rate limiting\n (bsc#1051510).\n\n - vmw_balloon: VMCI_DOORBELL_SET does not check status\n (bsc#1051510).\n\n - VSOCK: fix loopback on big-endian systems\n (networking-stable-18_07_19).\n\n - vsock: split dwork to avoid reinitializations\n (netfilter-stable-18_08_17).\n\n - vxlan: add new fdb alloc and create helpers\n (netfilter-stable-18_07_27).\n\n - vxlan: fix default fdb entry netlink notify ordering\n during netdev create (netfilter-stable-18_07_27).\n\n - vxlan: make netlink notify in vxlan_fdb_destroy optional\n (netfilter-stable-18_07_27).\n\n - wan/fsl_ucc_hdlc: use IS_ERR_VALUE() to check return\n value of qe_muram_alloc (bsc#1051510).\n\n - watchdog: Mark watchdog touch functions as notrace\n (git-fixes).\n\n - wlcore: Add missing PM call for\n wlcore_cmd_wait_for_event_or_timeout() (bsc#1051510).\n\n - wlcore: Set rx_status boottime_ns field on rx\n (bsc#1051510).\n\n - Workaround kABI breakage by __must_check drop of\n strscpy() (bsc#1051510).\n\n - x86/apic: Fix restoring boot IRQ mode in reboot and\n kexec/kdump (bsc#1110006).\n\n - x86/apic: Split disable_IO_APIC() into two functions to\n fix CONFIG_KEXEC_JUMP=y (bsc#1110006).\n\n - x86/apic: Split out restore_boot_irq_mode() from\n disable_IO_APIC() (bsc#1110006).\n\n - x86/apic/vector: Fix off by one in error path\n (bsc#1110006).\n\n - x86/asm/memcpy_mcsafe: Add labels for __memcpy_mcsafe()\n write fault handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Add write-protection-fault\n handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Define copy_to_iter_mcsafe()\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Fix copy_to_user_mcsafe()\n exception handling (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Provide original\n memcpy_mcsafe_unrolled (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Remove loop unrolling\n (bsc#1098782).\n\n - x86/asm/memcpy_mcsafe: Return bytes remaining\n (bsc#1098782).\n\n - x86/boot: Fix kexec booting failure in the SEV bit\n detection code (bsc#1110301).\n\n - x86/build/64: Force the linker to use 2MB page size\n (bsc#1109603).\n\n - x86/CPU/AMD: Derive CPU topology from CPUID function 0xB\n when available ().\n\n - x86/CPU: Modify detect_extended_topology() to return\n result ().\n\n - x86/dumpstack: Save first regs set for the executive\n summary (bsc#1110006).\n\n - x86/dumpstack: Unify show_regs() (bsc#1110006).\n\n - x86/entry/64: Remove %ebx handling from error_entry/exit\n (bnc#1102715).\n\n - x86/entry/64: Wipe KASAN stack shadow before\n rewind_stack_do_exit() (bsc#1110006).\n\n - x86/espfix/64: Fix espfix double-fault handling on\n 5-level systems (bsc#1110006).\n\n - x86/events/intel/ds: Fix bts_interrupt_threshold\n alignment (git-fixes c1961a4631da).\n\n - x86/idt: Load idt early in start_secondary\n (bsc#1110006).\n\n - x86/init: fix build with CONFIG_SWAP=n (bnc#1106121).\n\n - x86: irq_remapping: Move irq remapping mode enum ().\n\n - x86/kasan/64: Teach KASAN about the cpu_entry_area\n (kasan).\n\n - x86/kexec: Avoid double free_page() upon do_kexec_load()\n failure (bsc#1110006).\n\n - x86/kvm: fix LAPIC timer drift when guest uses periodic\n mode (bsc#1106240).\n\n - x86/mce: Fix set_mce_nospec() to avoid #GP fault\n (bsc#1107783).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110006).\n\n - x86/mce: Improve error message when kernel cannot\n recover (bsc#1110301).\n\n - x86/mcelog: Get rid of RCU remnants (git-fixes\n 5de97c9f6d85).\n\n - x86/memory_failure: Introduce (set, clear)_mce_nospec()\n (bsc#1107783).\n\n -\n x86-memory_failure-Introduce-set-clear-_mce_nospec.patch\n : Fixup compilation breakage on s390 and arm due to\n missing clear_mce_nospec().\n\n - x86/mm: Add TLB purge to free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm: Disable ioremap free page handling on x86-PAE\n (bsc#1110006).\n\n - x86/mm: Drop TS_COMPAT on 64-bit exec() syscall\n (bsc#1110006).\n\n - x86/mm: Expand static page table for fixmap space\n (bsc#1110006).\n\n - x86/mm: Fix ELF_ET_DYN_BASE for 5-level paging\n (bsc#1110006).\n\n - x86/mm: implement free pmd/pte page interfaces\n (bsc#1110006).\n\n - x86/mm/kasan: Do not use vmemmap_populate() to\n initialize shadow (kasan).\n\n - x86/mm/memory_hotplug: determine block size based on the\n end of boot memory (bsc#1108243).\n\n - x86/mm/pat: Prepare (reserve, free)_memtype() for\n 'decoy' addresses (bsc#1107783).\n\n - x86/mm/tlb: Always use lazy TLB mode (bnc#1105467 Reduce\n IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Leave lazy TLB mode at page table free time\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Make lazy TLB mode lazier (bnc#1105467\n Reduce IPIs and atomic ops with improved lazy TLB).\n\n - x86/mm/tlb: Only send page table free TLB flush to lazy\n TLB CPUs (bnc#1105467 Reduce IPIs and atomic ops with\n improved lazy TLB).\n\n - x86/mm/tlb: Restructure switch_mm_irqs_off()\n (bnc#1105467 Reduce IPIs and atomic ops with improved\n lazy TLB).\n\n - x86/mm/tlb: Skip atomic operations for 'init_mm' in\n switch_mm_irqs_off() (bnc#1105467 Reduce IPIs and atomic\n ops with improved lazy TLB).\n\n - x86/mpx: Do not allow MPX if we have mappings above\n 47-bit (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110006).\n\n - x86: msr-index.h: Correct SNB_C1/C3_AUTO_UNDEMOTE\n defines (bsc#1110301).\n\n - x86/paravirt: Fix spectre-v2 mitigations for paravirt\n guests (bnc#1065600).\n\n - x86/pci: Make broadcom_postcore_init() check\n acpi_disabled (bsc#1110006).\n\n - x86/pkeys: Do not special case protection key 0\n (bsc#1110006).\n\n - x86/pkeys: Override pkey when moving away from PROT_EXEC\n (bsc#1110006).\n\n - x86/platform/UV: Add adjustable set memory block size\n function (bsc#1108243).\n\n - x86/platform/UV: Add kernel parameter to set memory\n block size (bsc#1108243).\n\n - x86/platform/UV: Mark memblock related init code and\n data correctly (bsc#1108243).\n\n - x86/platform/UV: Use new set memory block size function\n (bsc#1108243).\n\n - x86/process: Do not mix user/kernel regs in 64bit\n __show_regs() (bsc#1110006).\n\n - x86/process: Re-export start_thread() (bsc#1110006).\n\n - x86/spectre: Add missing family 6 check to microcode\n check (git-fixes a5b296636453).\n\n - x86/speculation/l1tf: Fix off-by-one error when warning\n that system has too much RAM (bnc#1105536).\n\n - x86/speculation/l1tf: Increase l1tf memory limit for\n Nehalem+ (bnc#1105536).\n\n - x86/speculation/l1tf: Suggest what to do on systems with\n too much RAM (bnc#1105536).\n\n - x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush\n on vmentry (bsc#1106369).\n\n - x86/vdso: Fix lsl operand order (bsc#1110006).\n\n - x86/vdso: Fix lsl operand order (bsc#1110301).\n\n - x86/vdso: Fix vDSO build if a retpoline is emitted\n (git-fixes 76b043848fd2).\n\n - x86/xen: Add call of speculative_store_bypass_ht_init()\n to PV paths (bnc#1065600).\n\n - x86/xen/efi: Initialize only the EFI struct members used\n by Xen (bnc#1107945).\n\n - xen: avoid crash in disable_hotplug_cpu (bsc#1106594).\n\n - xen/blkback: do not keep persistent grants too long\n (bsc#1085042).\n\n - xen/blkback: move persistent grants flags to bool\n (bsc#1085042).\n\n - xen/blkback: remove unused pers_gnts_lock from struct\n (bsc#1085042).\n\n - xen/blkfront: cleanup stale persistent grants\n (bsc#1085042).\n\n - xen/blkfront: reorder tests in xlblk_init()\n (bsc#1085042).\n\n - xenbus: track caller request id (bnc#1065600).\n\n - xen: issue warning message when out of grant maptrack\n entries (bsc#1105795).\n\n - xen-netfront-dont-bug-in-case-of-too-many-frags.patch:\n (bnc#1104824).\n\n - xen-netfront: fix queue name setting (bnc#1065600).\n\n - xen-netfront: fix warn message as irq device name has\n '/' (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Fix XS_TRANSACTION_END\n handling (bnc#1065600).\n\n - xen: xenbus_dev_frontend: Really return response string\n (bnc#1065600).\n\n - xfs: add a new xfs_iext_lookup_extent_before helper\n (bsc#1095344).\n\n - xfs: add asserts for the mmap lock in\n xfs_(insert,collapse)_file_space (bsc#1095344).\n\n - xfs: add a xfs_bmap_fork_to_state helper (bsc#1095344).\n\n - xfs: add a xfs_iext_update_extent helper (bsc#1095344).\n\n - xfs: add comments documenting the rebalance algorithm\n (bsc#1095344).\n\n - xfs: add some comments to\n xfs_iext_insert/xfs_iext_insert_node (bsc#1095344).\n\n - xfs: allow unaligned extent records in\n xfs_bmbt_disk_set_all (bsc#1095344).\n\n - xfs, dax: introduce xfs_dax_aops (bsc#1104888).\n\n - xfs: do not create overlapping extents in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_collapse_extents (bsc#1095344).\n\n - xfs: do not rely on extent indices in\n xfs_bmap_insert_extents (bsc#1095344).\n\n - xfs: do not set XFS_BTCUR_BPRV_WASDEL in xfs_bunmapi\n (bsc#1095344).\n\n - xfs: fix memory leak in xfs_iext_free_last_leaf\n (bsc#1095344).\n\n - xfs: fix number of records handling in\n xfs_iext_split_leaf (bsc#1095344).\n\n - xfs: Fix per-inode DAX flag inheritance (Git-fixes\n bsc#1109511).\n\n - xfs: fix type usage (bsc#1095344).\n\n - xfs: handle zero entries case in xfs_iext_rebalance_leaf\n (bsc#1095344).\n\n - xfs: inline xfs_shift_file_space into callers\n (bsc#1095344).\n\n - xfs: introduce the xfs_iext_cursor abstraction\n (bsc#1095344).\n\n - xfs: iterate backwards in xfs_reflink_cancel_cow_blocks\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_bmap_extents_to_btree\n (bsc#1095344).\n\n - xfs: iterate over extents in xfs_iextents_copy\n (bsc#1095344).\n\n - xfs: make better use of the 'state' variable in\n xfs_bmap_del_extent_real (bsc#1095344).\n\n - xfs: merge xfs_bmap_read_extents into xfs_iread_extents\n (bsc#1095344).\n\n - xfs: move pre/post-bmap tracing into\n xfs_iext_update_extent (bsc#1095344).\n\n - xfs: move some code around inside xfs_bmap_shift_extents\n (bsc#1095344).\n\n - xfs: move some more code into xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: move xfs_bmbt_irec and xfs_exntst_t to xfs_types.h\n (bsc#1095344).\n\n - xfs: move xfs_iext_insert tracepoint to report useful\n information (bsc#1095344).\n\n - xfs: pass an on-disk extent to xfs_bmbt_validate_extent\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_lookup_eq\n (bsc#1095344).\n\n - xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_update\n (bsc#1095344).\n\n - xfs: pass struct xfs_bmbt_irec to\n xfs_bmbt_validate_extent (bsc#1095344).\n\n - xfs: preserve i_rdev when recycling a reclaimable inode\n (bsc#1095344).\n\n - xfs: refactor delalloc accounting in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: refactor dir2 leaf readahead shadow buffer\n cleverness (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_delay_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_delay\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_hole_real\n (bsc#1095344).\n\n - xfs: refactor xfs_bmap_add_extent_unwritten_real\n (bsc#1095344).\n\n - xfs: refactor xfs_del_extent_real (bsc#1095344).\n\n - xfs: remove a duplicate assignment in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: remove all xfs_bmbt_set_* helpers except for\n xfs_bmbt_set_all (bsc#1095344).\n\n - xfs: remove a superflous assignment in\n xfs_iext_remove_node (bsc#1095344).\n\n - xfs: Remove dead code from inode recover function\n (bsc#1105396).\n\n - xfs: remove if_rdev (bsc#1095344).\n\n - xfs: remove post-bmap tracing in\n xfs_bmap_local_to_extents (bsc#1095344).\n\n - xfs: remove support for inlining data/extents into the\n inode fork (bsc#1095344).\n\n - xfs: remove the never fully implemented UUID fork format\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_insert\n (bsc#1095344).\n\n - xfs: remove the nr_extents argument to xfs_iext_remove\n (bsc#1095344).\n\n - xfs: remove XFS_BMAP_MAX_SHIFT_EXTENTS (bsc#1095344).\n\n - xfs: remove XFS_BMAP_TRACE_EXLIST (bsc#1095344).\n\n - xfs: remove xfs_bmbt_get_state (bsc#1095344).\n\n - xfs: remove xfs_bmse_shift_one (bsc#1095344).\n\n - xfs: rename bno to end in __xfs_bunmapi (bsc#1095344).\n\n - xfs: repair malformed inode items during log recovery\n (bsc#1105396).\n\n - xfs: replace xfs_bmbt_lookup_ge with\n xfs_bmbt_lookup_first (bsc#1095344).\n\n - xfs: replace xfs_qm_get_rtblks with a direct call to\n xfs_bmap_count_leaves (bsc#1095344).\n\n - xfs: rewrite getbmap using the xfs_iext_* helpers\n (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_count_leaves using\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: rewrite xfs_bmap_first_unused to make better use of\n xfs_iext_get_extent (bsc#1095344).\n\n - xfs: simplify the xfs_getbmap interface (bsc#1095344).\n\n - xfs: simplify xfs_reflink_convert_cow (bsc#1095344).\n\n - xfs: split xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: switch xfs_bmap_local_to_extents to use\n xfs_iext_insert (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_delay_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_delay (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_hole_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in\n xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_collapse_extents\n (bsc#1095344).\n\n - xfs: treat idx as a cursor in xfs_bmap_del_extent_*\n (bsc#1095344).\n\n - xfs: trivial indentation fixup for xfs_iext_remove_node\n (bsc#1095344).\n\n - xfs: update got in xfs_bmap_shift_update_extent\n (bsc#1095344).\n\n - xfs: use a b+tree for the in-core extent list\n (bsc#1095344).\n\n - xfs: use correct state defines in\n xfs_bmap_del_extent_(cow,delay) (bsc#1095344).\n\n - xfs: use the state defines in xfs_bmap_del_extent_real\n (bsc#1095344).\n\n - xfs: use xfs_bmap_del_extent_delay for the data fork as\n well (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_shift_extents (bsc#1095344).\n\n - xfs: use xfs_iext_*_extent helpers in\n xfs_bmap_split_extent_at (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent instead of open coding it\n (bsc#1095344).\n\n - xfs: use xfs_iext_get_extent in xfs_bmap_first_unused\n (bsc#1095344).\n\n - xhci: Fix perceived dead host due to runtime suspend\n race with event handler (bsc#1051510).\n\n - xhci: Fix use after free for URB cancellation on a\n reallocated endpoint (bsc#1051510).\n\n - zram: fix null dereference of handle (bsc#1105355).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1012382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1043912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1044189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046305\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046307\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1046543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1050244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055014\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1055120\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1058659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1060463\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1061840\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1064232\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1068032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1069138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1071995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1077761\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1077989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1078720\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1080157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1083647\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1083663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1084332\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085042\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085262\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1086282\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1086327\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1089663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090528\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1092903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1093389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1094244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1095344\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1096748\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097583\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097584\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097585\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097586\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097587\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1097588\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098459\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098782\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1098822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1099999\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100000\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100001\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1100132\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101480\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101557\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101669\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1101822\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102495\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102517\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102715\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102875\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102877\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102879\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103269\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103387\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103405\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103421\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103587\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103636\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103949\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103961\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104172\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104365\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104482\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104683\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104708\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104824\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104888\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105190\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105247\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105292\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105355\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105467\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105672\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105731\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105795\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1105907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106007\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106121\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106229\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106230\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106231\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106233\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106236\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106237\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106240\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106509\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106594\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106636\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106697\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106743\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106779\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106800\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106891\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106892\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106893\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106898\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106900\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106901\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107008\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107060\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107061\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107065\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107073\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107078\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107265\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107319\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107320\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107535\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107735\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107783\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107829\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107924\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107928\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107947\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1107966\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108096\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108170\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108243\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108281\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108520\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108823\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108870\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109244\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109269\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109336\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109337\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109806\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109992\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110006\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110301\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110639\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110643\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110645\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110646\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110647\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110649\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110650\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1110716\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=971975\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected the Linux Kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2018-14633\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-docs-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-macros\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-qa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.0\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/05/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/03/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/03/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE15\\.0)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"15.0\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(x86_64)$\") audit(AUDIT_ARCH_NOT, \"x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-debug-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-default-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-devel-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-docs-html-4.12.14-lp150.12.19.3\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-macros-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-build-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-build-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-obs-qa-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-source-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-source-vanilla-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-syms-4.12.14-lp150.12.19.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-base-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-debugsource-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-devel-4.12.14-lp150.12.19.2\") ) flag++;\nif ( rpm_check(release:\"SUSE15.0\", reference:\"kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.19.2\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-base-debuginfo / etc\");\n}\n", "cvss": {"score": 8.3, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:C"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:34:26", "bulletinFamily": "unix", "cvelist": ["CVE-2018-10021", "CVE-2018-13405", "CVE-2018-15594", "CVE-2018-10938"], "description": "[4.1.12-124.18.9]\n- rebuild bumping release\n[4.1.12-124.18.8]\n- Cipso: cipso_v4_optptr enter infinite loop (yujuan.qi) [Orabug: 28563992] {CVE-2018-10938}\n- Btrfs: fix list_add corruption and soft lockups in fsync (Liu Bo) [Orabug: 28119834] \n- x86/paravirt: Fix spectre-v2 mitigations for paravirt guests (Peter Zijlstra) [Orabug: 28474643] {CVE-2018-15594}\n- sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() in sym_hipd.c (George Kennedy) [Orabug: 28481893] \n- md/raid1: Avoid raid1 resync getting stuck (Jes Sorensen) [Orabug: 28529228] \n- x86/spectrev2: Don't set mode to SPECTRE_V2_NONE when retpoline is available. (Boris Ostrovsky) [Orabug: 28540376]\n[4.1.12-124.18.7]\n- ext4: avoid deadlock when expanding inode size (Jan Kara) [Orabug: 25718971] \n- ext4: properly align shifted xattrs when expanding inodes (Jan Kara) [Orabug: 25718971] \n- ext4: fix xattr shifting when expanding inodes part 2 (Jan Kara) [Orabug: 25718971] \n- ext4: fix xattr shifting when expanding inodes (Jan Kara) [Orabug: 25718971] \n- uek-rpm: Enable perf stripped binary (Victor Erminpour) [Orabug: 27801171] \n- nfsd: give out fewer session slots as limit approaches (J. Bruce Fields) [Orabug: 28023821] \n- nfsd: increase DRC cache limit (J. Bruce Fields) [Orabug: 28023821] \n- uek-rpm: config-debug: Turn off torture testing by default (Knut Omang) [Orabug: 28261886] \n- ipmi: Remove smi_msg from waiting_rcv_msgs list before handle_one_recv_msg() (Junichi Nomura) \n- x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs (Yazen Ghannam) [Orabug: 28416303] \n- Fix up non-directory creation in SGID directories (Linus Torvalds) [Orabug: 28459477] {CVE-2018-13405}\n- scsi: libsas: defer ata device eh commands to libata (Jason Yan) [Orabug: 28459685] {CVE-2018-10021}\n- PCI: Allocate ATS struct during enumeration (Bjorn Helgaas) [Orabug: 28460092]", "edition": 4, "modified": "2018-09-04T00:00:00", "published": "2018-09-04T00:00:00", "id": "ELSA-2018-4208", "href": "http://linux.oracle.com/errata/ELSA-2018-4208.html", "title": "Unbreakable Enterprise kernel security update", "type": "oraclelinux", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}], "cloudfoundry": [{"lastseen": "2019-05-29T18:32:58", "bulletinFamily": "software", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "description": "# \n\n# Severity\n\nMedium\n\n# Vendor\n\nCanonical Ubuntu\n\n# Versions Affected\n\n * Canonical Ubuntu 14.04\n\n# Description\n\nUSN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS.\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in the Infiniband implementation in the Linux kernel. An attacker could use this to cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM driver of the Linux kernel. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2018-16658)\n\nIt was discovered that a integer overflow existed in the HID Bluetooth implementation in the Linux kernel that could lead to a buffer overwrite. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the Linux kernel did not properly handle IP header options in some situations. A remote attacker could use this to specially craft network traffic that could cause a denial of service (infinite loop). (CVE-2018-10938)\n\nCVEs contained in this USN include: CVE-2018-10938, CVE-2018-14734, CVE-2018-16658, CVE-2018-9363\n\n# Affected Cloud Foundry Products and Versions\n\n_Severity is medium unless otherwise noted._\n\n * Cloud Foundry BOSH trusty-stemcells are vulnerable, including: \n * 3586.x versions prior to 3586.52\n * 3541.x versions prior to 3541.57\n * 3468.x versions prior to 3468.78\n * 3445.x versions prior to 3445.76\n * 3421.x versions prior to 3421.95\n * 3363.x versions prior to 3363.88\n * All other stemcells not listed.\n\n# Mitigation\n\nUsers of affected products are strongly encouraged to follow one of the mitigations below:\n\n * The Cloud Foundry project recommends upgrading the following BOSH trusty-stemcells: \n * Upgrade 3586.x versions to 3586.52\n * Upgrade 3541.x versions to 3541.57\n * Upgrade 3468.x versions to 3468.78\n * Upgrade 3445.x versions to 3445.76\n * Upgrade 3421.x versions to 3421.95\n * Upgrade 3363.x versions to 3363.88\n * All other stemcells should be upgraded to the latest version available on [bosh.io](<https://bosh.io/stemcells/#ubuntu-trusty>).\n\n# References\n\n * [USN-3797-2](<https://usn.ubuntu.com/3797-2>)\n * [CVE-2018-10938](<https://people.canonical.com/~ubuntu-security/cve/CVE-2018-10938>)\n * [CVE-2018-14734](<https://people.canonical.com/~ubuntu-security/cve/CVE-2018-14734>)\n * [CVE-2018-16658](<https://people.canonical.com/~ubuntu-security/cve/CVE-2018-16658>)\n * [CVE-2018-9363](<https://people.canonical.com/~ubuntu-security/cve/CVE-2018-9363>)\n", "edition": 4, "modified": "2018-10-25T00:00:00", "published": "2018-10-25T00:00:00", "id": "CFOUNDRY:B4B97B81301258FB8DE2E5FB29E0A418", "href": "https://www.cloudfoundry.org/blog/usn-3797-2/", "title": "USN-3797-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry", "type": "cloudfoundry", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "ubuntu": [{"lastseen": "2020-07-15T01:45:00", "bulletinFamily": "unix", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "description": "USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 \nLTS. This update provides the corresponding updates for the Linux \nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu \n14.04 LTS.\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in the \nInfiniband implementation in the Linux kernel. An attacker could use this \nto cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM driver of \nthe Linux kernel. A local attacker could use this to expose sensitive \ninformation (kernel memory). (CVE-2018-16658)\n\nIt was discovered that a integer overflow existed in the HID Bluetooth \nimplementation in the Linux kernel that could lead to a buffer overwrite. \nAn attacker could use this to cause a denial of service (system crash) or \npossibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the Linux \nkernel did not properly handle IP header options in some situations. A \nremote attacker could use this to specially craft network traffic that \ncould cause a denial of service (infinite loop). (CVE-2018-10938)", "edition": 7, "modified": "2018-10-23T00:00:00", "published": "2018-10-23T00:00:00", "id": "USN-3797-2", "href": "https://ubuntu.com/security/notices/USN-3797-2", "title": "Linux kernel (Xenial HWE) vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-07-15T01:42:31", "bulletinFamily": "unix", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "description": "Noam Rathaus discovered that a use-after-free vulnerability existed in the \nInfiniband implementation in the Linux kernel. An attacker could use this \nto cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM driver of \nthe Linux kernel. A local attacker could use this to expose sensitive \ninformation (kernel memory). (CVE-2018-16658)\n\nIt was discovered that an integer overflow existed in the HID Bluetooth \nimplementation in the Linux kernel that could lead to a buffer overwrite. \nAn attacker could use this to cause a denial of service (system crash) or \npossibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the Linux \nkernel did not properly handle IP header options in some situations. A \nremote attacker could use this to specially craft network traffic that \ncould cause a denial of service (infinite loop). (CVE-2018-10938)", "edition": 7, "modified": "2018-10-23T00:00:00", "published": "2018-10-23T00:00:00", "id": "USN-3797-1", "href": "https://ubuntu.com/security/notices/USN-3797-1", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "openvas": [{"lastseen": "2019-05-29T18:33:20", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2018-10-23T00:00:00", "id": "OPENVAS:1361412562310843666", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310843666", "type": "openvas", "title": "Ubuntu Update for linux-aws USN-3797-2", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_3797_2.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux-aws USN-3797-2\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.843666\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2018-10-23 11:56:58 +0200 (Tue, 23 Oct 2018)\");\n script_cve_id(\"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\", \"CVE-2018-10938\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for linux-aws USN-3797-2\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-aws'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04\nLTS. This update provides the corresponding updates for the Linux\nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu\n14.04 LTS.\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in the\nInfiniband implementation in the Linux kernel. An attacker could use this\nto cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM driver of\nthe Linux kernel. A local attacker could use this to expose sensitive\ninformation (kernel memory). (CVE-2018-16658)\n\nIt was discovered that a integer overflow existed in the HID Bluetooth\nimplementation in the Linux kernel that could lead to a buffer overwrite.\nAn attacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the Linux\nkernel did not properly handle IP header options in some situations. A\nremote attacker could use this to specially craft network traffic that\ncould cause a denial of service (infinite loop). (CVE-2018-10938)\");\n script_tag(name:\"affected\", value:\"linux-aws on Ubuntu 14.04 LTS\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"USN\", value:\"3797-2\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-3797-2/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU14\\.04 LTS\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-1032-aws\", ver:\"4.4.0-1032.35\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-generic\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-generic-lpae\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-lowlatency\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc-e500mc\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc-smp\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc64-emb\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc64-smp\", ver:\"4.4.0-138.164~14.04.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"4.4.0.1032.32\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-generic-lpae-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-generic-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-lowlatency-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc-e500mc-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc-smp-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc64-emb-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc64-smp-lts-xenial\", ver:\"4.4.0.138.118\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:33:21", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14734", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-10938"], "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2018-10-23T00:00:00", "id": "OPENVAS:1361412562310843663", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310843663", "type": "openvas", "title": "Ubuntu Update for linux USN-3797-1", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_3797_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux USN-3797-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.843663\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2018-10-23 11:49:11 +0200 (Tue, 23 Oct 2018)\");\n script_cve_id(\"CVE-2018-14734\", \"CVE-2018-16658\", \"CVE-2018-9363\", \"CVE-2018-10938\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for linux USN-3797-1\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"Noam Rathaus discovered that a use-after-free vulnerability existed in the\nInfiniband implementation in the Linux kernel. An attacker could use this\nto cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that an integer overflow existed in the CD-ROM driver of\nthe Linux kernel. A local attacker could use this to expose sensitive\ninformation (kernel memory). (CVE-2018-16658)\n\nIt was discovered that an integer overflow existed in the HID Bluetooth\nimplementation in the Linux kernel that could lead to a buffer overwrite.\nAn attacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2018-9363)\n\nYves Younan discovered that the CIPSO labeling implementation in the Linux\nkernel did not properly handle IP header options in some situations. A\nremote attacker could use this to specially craft network traffic that\ncould cause a denial of service (infinite loop). (CVE-2018-10938)\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 16.04 LTS\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"USN\", value:\"3797-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-3797-1/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU16\\.04 LTS\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU16.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-1036-kvm\", ver:\"4.4.0-1036.42\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-1070-aws\", ver:\"4.4.0-1070.80\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-1099-raspi2\", ver:\"4.4.0-1099.107\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-1103-snapdragon\", ver:\"4.4.0-1103.108\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-generic\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-generic-lpae\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-lowlatency\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc-e500mc\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc-smp\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc64-emb\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-4.4.0-138-powerpc64-smp\", ver:\"4.4.0-138.164\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"4.4.0.1070.72\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-generic\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-generic-lpae\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-kvm\", ver:\"4.4.0.1036.35\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-lowlatency\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc-e500mc\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc-smp\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc64-emb\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-powerpc64-smp\", ver:\"4.4.0.138.144\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-raspi2\", ver:\"4.4.0.1099.99\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-snapdragon\", ver:\"4.4.0.1103.95\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-31T17:40:00", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-9363", "CVE-2018-16658", "CVE-2018-1129", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-15572", "CVE-2018-6554", "CVE-2018-13094"], "description": "The remote host is missing an update for the ", "modified": "2020-01-31T00:00:00", "published": "2018-09-17T00:00:00", "id": "OPENVAS:1361412562310851895", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310851895", "type": "openvas", "title": "openSUSE: Security Advisory for kernel (openSUSE-SU-2018:2738-1)", "sourceData": "# Copyright (C) 2018 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.851895\");\n script_version(\"2020-01-31T08:23:39+0000\");\n script_tag(name:\"last_modification\", value:\"2020-01-31 08:23:39 +0000 (Fri, 31 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2018-09-17 08:04:12 +0200 (Mon, 17 Sep 2018)\");\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\",\n \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\",\n \"CVE-2018-15572\", \"CVE-2018-16658\", \"CVE-2018-6554\", \"CVE-2018-6555\", \"CVE-2018-9363\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"openSUSE: Security Advisory for kernel (openSUSE-SU-2018:2738-1)\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The openSUSE Leap 42.3 kernel was updated to 4.4.155 to receive various\n security and bugfixes.\n\n The following security bugs were fixed:\n\n - CVE-2018-13093: Prevent NULL pointer dereference and panic in\n lookup_slow()\n on a NULL inode- i_ops pointer when doing pathwalks on a corrupted xfs\n image. This occurred because of a lack of proper validation that cached\n inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13095: Prevent denial of service (memory corruption and BUG)\n that could have occurred for a corrupted xfs image upon encountering an\n inode that is in extent format, but has more extents than fit in the\n inode fork (bnc#1099999).\n\n - CVE-2018-13094: Prevent OOPS that might have occurred for a corrupted xfs\n image after xfs_da_shrink_inode() is called with a NULL bp (bnc#1100000).\n\n - CVE-2018-12896: Prevent integer overflow in the POSIX timer code is\n caused by the way the overrun accounting works. Depending on interval\n and expiry time values, the overrun could have been larger than INT_MAX,\n but the accounting is int based. This basically made the accounting\n values, which are visible to user space via timer_getoverrun(2) and\n siginfo::si_overrun, random. For example, a local user could have caused\n a denial of service (signed integer overflow) via crafted mmap, futex,\n timer_create, and timer_settime system calls (bnc#1099922).\n\n - CVE-2018-16658: Prevent information leak in cdrom_ioctl_drive_status\n that could have been used by local attackers to read kernel memory\n because a cast from unsigned long to int interferes with bounds checking\n (bnc#1107689).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function allowed local\n attackers to use a incorrect bounds check in the CDROM driver\n CDROM_MEDIA_CHANGED ioctl to read out kernel memory (bsc#1092903).\n\n - CVE-2018-6555: The irda_setsockopt function allowed local users to cause\n a denial of service (ias_object use-after-free and system crash) or\n possibly have unspecified other impact via an AF_IRDA socket\n (bnc#1106511).\n\n - CVE-2018-6554: Prevent memory leak in the irda_bind function that\n allowed local users to cause a denial of service (memory consumption) by\n repeatedly binding an AF_IRDA socket (bnc#1106509).\n\n - CVE-2018-1129: A flaw was found in the way signature calculation was\n handled by cephx authentication protocol. An attacker having access to\n ceph cluster network who is able to alter the message payload was able\n to bypass signature checks done by cephx protocol (bnc#1096748).\n\n - CVE-2018-1128: It was found that cephx authentication protocol did not\n verify ceph clien ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n\n script_tag(name:\"affected\", value:\"openSUSE Leap 42.3\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2018:2738-1\");\n script_xref(name:\"URL\", value:\"https://lists.opensuse.org/opensuse-security-announce/2018-09/msg00034.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=openSUSELeap42\\.3\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"openSUSELeap42.3\") {\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-base-debuginfo\", rpm:\"kernel-debug-base-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-devel-debuginfo\", rpm:\"kernel-debug-devel-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-base-debuginfo\", rpm:\"kernel-default-base-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-build\", rpm:\"kernel-obs-build~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-build-debugsource\", rpm:\"kernel-obs-build-debugsource~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-qa\", rpm:\"kernel-obs-qa~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-base-debuginfo\", rpm:\"kernel-vanilla-base-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-docs\", rpm:\"kernel-docs~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-docs-html\", rpm:\"kernel-docs-html~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-docs-pdf\", rpm:\"kernel-docs-pdf~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-macros\", rpm:\"kernel-macros~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-source-vanilla\", rpm:\"kernel-source-vanilla~4.4.155~68.1\", rls:\"openSUSELeap42.3\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-29T20:07:57", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14609", "CVE-2018-7755", "CVE-2018-6555", "CVE-2018-17182", "CVE-2018-13099", "CVE-2018-14734", "CVE-2018-15594", "CVE-2018-9363", "CVE-2018-16276", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-14678", "CVE-2018-14633", "CVE-2018-9516", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-15572", "CVE-2018-6554"], "description": "Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2018-6554\n\nA memory leak in the irda_bind function in the irda subsystem was\ndiscovered. A local user can take advantage of this flaw to cause a\ndenial of service (memory consumption).\n\nCVE-2018-6555\n\nA flaw was discovered in the irda_setsockopt function in the irda\nsubsystem, allowing a local user to cause a denial of service\n(use-after-free and system crash).\n\nCVE-2018-7755\n\nBrian Belleville discovered a flaw in the fd_locked_ioctl function\nin the floppy driver in the Linux kernel. The floppy driver copies a\nkernel pointer to user memory in response to the FDGETPRM ioctl. A\nlocal user with access to a floppy drive device can take advantage\nof this flaw to discover the location kernel code and data.\n\nDescription truncated. Please see the references for more information.", "modified": "2020-01-29T00:00:00", "published": "2018-10-04T00:00:00", "id": "OPENVAS:1361412562310891531", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310891531", "type": "openvas", "title": "Debian LTS: Security Advisory for linux-4.9 (DLA-1531-1)", "sourceData": "# Copyright (C) 2018 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.891531\");\n script_version(\"2020-01-29T08:22:52+0000\");\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-13099\", \"CVE-2018-14609\", \"CVE-2018-14617\",\n \"CVE-2018-14633\", \"CVE-2018-14678\", \"CVE-2018-14734\", \"CVE-2018-15572\", \"CVE-2018-15594\",\n \"CVE-2018-16276\", \"CVE-2018-16658\", \"CVE-2018-17182\", \"CVE-2018-6554\", \"CVE-2018-6555\",\n \"CVE-2018-7755\", \"CVE-2018-9363\", \"CVE-2018-9516\");\n script_name(\"Debian LTS: Security Advisory for linux-4.9 (DLA-1531-1)\");\n script_tag(name:\"last_modification\", value:\"2020-01-29 08:22:52 +0000 (Wed, 29 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2018-10-04 00:00:00 +0200 (Thu, 04 Oct 2018)\");\n script_tag(name:\"cvss_base\", value:\"8.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:C\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB8\");\n\n script_tag(name:\"affected\", value:\"linux-4.9 on Debian Linux\");\n\n script_tag(name:\"solution\", value:\"For Debian 8 'Jessie', these problems have been fixed in version\n4.9.110-3+deb9u5~deb8u1.\n\nWe recommend that you upgrade your linux-4.9 packages.\");\n\n script_tag(name:\"summary\", value:\"Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2018-6554\n\nA memory leak in the irda_bind function in the irda subsystem was\ndiscovered. A local user can take advantage of this flaw to cause a\ndenial of service (memory consumption).\n\nCVE-2018-6555\n\nA flaw was discovered in the irda_setsockopt function in the irda\nsubsystem, allowing a local user to cause a denial of service\n(use-after-free and system crash).\n\nCVE-2018-7755\n\nBrian Belleville discovered a flaw in the fd_locked_ioctl function\nin the floppy driver in the Linux kernel. The floppy driver copies a\nkernel pointer to user memory in response to the FDGETPRM ioctl. A\nlocal user with access to a floppy drive device can take advantage\nof this flaw to discover the location kernel code and data.\n\nDescription truncated. Please see the references for more information.\");\n\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-4.9-arm\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-doc-4.9\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-686\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-all\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-all-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-all-armel\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-all-armhf\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-all-i386\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-armmp\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-armmp-lpae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-common\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-common-rt\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-marvell\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-rt-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.7-rt-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-686\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-all\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-all-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-all-armel\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-all-armhf\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-all-i386\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-armmp\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-armmp-lpae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-common\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-common-rt\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-marvell\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-rt-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-0.bpo.8-rt-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-686\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-686-pae-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-amd64-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-armmp\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-armmp-lpae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-marvell\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-rt-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-rt-686-pae-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-rt-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.7-rt-amd64-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-686\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-686-pae-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-amd64-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-armmp\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-armmp-lpae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-marvell\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-rt-686-pae\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-rt-686-pae-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-rt-amd64\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-0.bpo.8-rt-amd64-dbg\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-kbuild-4.9\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-manual-4.9\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-perf-4.9\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-source-4.9\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-support-4.9.0-0.bpo.7\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-support-4.9.0-0.bpo.8\", ver:\"4.9.110-3+deb9u5~deb8u1\", rls:\"DEB8\"))) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if(__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 8.3, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:C"}}, {"lastseen": "2020-01-31T17:40:06", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10940", "CVE-2018-13095", "CVE-2018-6555", "CVE-2018-13093", "CVE-2018-17182", "CVE-2018-9363", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-14633", "CVE-2018-1129", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-1128", "CVE-2018-12896", "CVE-2018-15572", "CVE-2018-6554", "CVE-2018-13094", "CVE-2018-14613"], "description": "The remote host is missing an update for the ", "modified": "2020-01-31T00:00:00", "published": "2018-10-26T00:00:00", "id": "OPENVAS:1361412562310852091", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310852091", "type": "openvas", "title": "openSUSE: Security Advisory for kernel (openSUSE-SU-2018:3071-1)", "sourceData": "# Copyright (C) 2018 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.852091\");\n script_version(\"2020-01-31T08:23:39+0000\");\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-10940\", \"CVE-2018-1128\", \"CVE-2018-1129\", \"CVE-2018-12896\", \"CVE-2018-13093\", \"CVE-2018-13094\", \"CVE-2018-13095\", \"CVE-2018-14613\", \"CVE-2018-14617\", \"CVE-2018-14633\", \"CVE-2018-15572\", \"CVE-2018-16658\", \"CVE-2018-17182\", \"CVE-2018-6554\", \"CVE-2018-6555\", \"CVE-2018-9363\");\n script_tag(name:\"cvss_base\", value:\"8.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-01-31 08:23:39 +0000 (Fri, 31 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2018-10-26 06:46:29 +0200 (Fri, 26 Oct 2018)\");\n script_name(\"openSUSE: Security Advisory for kernel (openSUSE-SU-2018:3071-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=openSUSELeap15\\.0\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2018:3071-1\");\n script_xref(name:\"URL\", value:\"https://lists.opensuse.org/opensuse-security-announce/2018-10/msg00020.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the openSUSE-SU-2018:3071-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The openSUSE Leap 15.0 kernel was updated\n to receive various security and bugfixes.\n\n The following security bugs were fixed:\n\n - CVE-2018-14633: A security flaw was found in the\n chap_server_compute_md5() function in the ISCSI target code in a way an\n authentication request from an ISCSI initiator is processed. An\n unauthenticated remote attacker can cause a stack buffer overflow and\n smash up to 17 bytes of the stack. The attack requires the iSCSI target\n to be enabled on the victim host. Depending on how the target's code was\n built (i.e. depending on a compiler, compile flags and hardware\n architecture) an attack may lead to a system crash and thus to a\n denial-of-service or possibly to a non-authorized access to data\n exported by an iSCSI target. Due to the nature of the flaw, privilege\n escalation cannot be fully ruled out, although we believe it is highly\n unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be\n vulnerable (bnc#1107829).\n\n - CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c\n mishandled sequence number overflows. An attacker can trigger a\n use-after-free (and possibly gain privileges) via certain thread\n creation, map, unmap, invalidation, and dereference operations\n (bnc#1108399).\n\n - CVE-2018-14617: There is a NULL pointer dereference and panic in\n hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is\n purportedly a hard link) in an hfs+ filesystem that has malformed\n catalog data, and is mounted read-only without a metadata directory\n (bnc#1102870).\n\n - CVE-2018-14613: There is an invalid pointer dereference in\n io_ctl_map_page() when mounting and operating a crafted btrfs image,\n because of a lack of block group item validation in check_leaf_item in\n fs/btrfs/tree-checker.c (bnc#1102896).\n\n - CVE-2018-10940: The cdrom_ioctl_media_changed function in\n drivers/cdrom/cdrom.c allowed local attackers to use a incorrect bounds\n check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel\n memory (bnc#1092903).\n\n - CVE-2018-13093: There is a NULL pointer dereference and panic in\n lookup_slow() on a NULL inode- i_ops pointer when doing pathwalks on a\n corrupted xfs image. This occurs because of a lack of proper validation\n that cached inodes are free during allocation (bnc#1100001).\n\n - CVE-2018-13094: An OOPS may occur for a corrupted xfs image after\n xfs_da_shrink_inode() is called with a NULL bp (bnc#1100000).\n\n - CVE-2018-13095: A denial of service (memory corruption and BUG) can\n occur for a corrupted xfs image upon encountering an inode that is in\n extent format, but has more ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n\n script_tag(name:\"affected\", value:\"the on openSUSE Leap 15.0.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"openSUSELeap15.0\") {\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-base-debuginfo\", rpm:\"kernel-debug-base-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-debug-devel-debuginfo\", rpm:\"kernel-debug-devel-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-base-debuginfo\", rpm:\"kernel-default-base-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-default-devel-debuginfo\", rpm:\"kernel-default-devel-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall\", rpm:\"kernel-kvmsmall~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-base\", rpm:\"kernel-kvmsmall-base~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-base-debuginfo\", rpm:\"kernel-kvmsmall-base-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-debuginfo\", rpm:\"kernel-kvmsmall-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-debugsource\", rpm:\"kernel-kvmsmall-debugsource~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-devel\", rpm:\"kernel-kvmsmall-devel~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-kvmsmall-devel-debuginfo\", rpm:\"kernel-kvmsmall-devel-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-build\", rpm:\"kernel-obs-build~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-build-debugsource\", rpm:\"kernel-obs-build-debugsource~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-obs-qa\", rpm:\"kernel-obs-qa~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~4.12.14~lp150.12.19.1\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-base-debuginfo\", rpm:\"kernel-vanilla-base-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-vanilla-devel-debuginfo\", rpm:\"kernel-vanilla-devel-debuginfo~4.12.14~lp150.12.19.2\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~4.12.14~lp150.12.19.1\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-docs\", rpm:\"kernel-docs~4.12.14~lp150.12.19.3\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-docs-html\", rpm:\"kernel-docs-html~4.12.14~lp150.12.19.3\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-macros\", rpm:\"kernel-macros~4.12.14~lp150.12.19.1\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~4.12.14~lp150.12.19.1\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-source-vanilla\", rpm:\"kernel-source-vanilla~4.12.14~lp150.12.19.1\", rls:\"openSUSELeap15.0\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "cvss": {"score": 8.3, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:C"}}, {"lastseen": "2019-07-04T18:55:32", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-14609", "CVE-2018-7755", "CVE-2018-6555", "CVE-2018-17182", "CVE-2018-13099", "CVE-2018-14734", "CVE-2018-15594", "CVE-2018-9363", "CVE-2018-16276", "CVE-2018-14617", "CVE-2018-16658", "CVE-2018-14678", "CVE-2018-14633", "CVE-2018-9516", "CVE-2018-10902", "CVE-2018-10938", "CVE-2018-15572", "CVE-2018-6554"], "description": "Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2018-6554\nA memory leak in the irda_bind function in the irda subsystem was\ndiscovered. A local user can take advantage of this flaw to cause a\ndenial of service (memory consumption).\n\nCVE-2018-6555\nA flaw was discovered in the irda_setsockopt function in the irda\nsubsystem, allowing a local user to cause a denial of service\n(use-after-free and system crash).\n\nCVE-2018-7755\nBrian Belleville discovered a flaw in the fd_locked_ioctl function\nin the floppy driver in the Linux kernel. The floppy driver copies a\nkernel pointer to user memory in response to the FDGETPRM ioctl. A\nlocal user with access to a floppy drive device can take advantage\nof this flaw to discover the location kernel code and data.\n\nDescription truncated. Please see the references for more information.", "modified": "2019-07-04T00:00:00", "published": "2018-10-01T00:00:00", "id": "OPENVAS:1361412562310704308", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310704308", "type": "openvas", "title": "Debian Security Advisory DSA 4308-1 (linux - security update)", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Auto-generated from advisory DSA 4308-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.704308\");\n script_version(\"2019-07-04T09:25:28+0000\");\n script_cve_id(\"CVE-2018-10902\", \"CVE-2018-10938\", \"CVE-2018-13099\", \"CVE-2018-14609\", \"CVE-2018-14617\",\n \"CVE-2018-14633\", \"CVE-2018-14678\", \"CVE-2018-14734\", \"CVE-2018-15572\", \"CVE-2018-15594\",\n \"CVE-2018-16276\", \"CVE-2018-16658\", \"CVE-2018-17182\", \"CVE-2018-6554\", \"CVE-2018-6555\",\n \"CVE-2018-7755\", \"CVE-2018-9363\", \"CVE-2018-9516\");\n script_name(\"Debian Security Advisory DSA 4308-1 (linux - security update)\");\n script_tag(name:\"last_modification\", value:\"2019-07-04 09:25:28 +0000 (Thu, 04 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-10-01 00:00:00 +0200 (Mon, 01 Oct 2018)\");\n script_tag(name:\"cvss_base\", value:\"8.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:C\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://www.debian.org/security/2018/dsa-4308.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB9\");\n script_tag(name:\"affected\", value:\"linux on Debian Linux\");\n script_tag(name:\"solution\", value:\"For the stable distribution (stretch), these problems have been fixed in\nversion 4.9.110-3+deb9u5.\n\nWe recommend that you upgrade your linux packages.\");\n\n script_xref(name:\"URL\", value:\"https://security-tracker.debian.org/tracker/linux\");\n script_tag(name:\"summary\", value:\"Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2018-6554\nA memory leak in the irda_bind function in the irda subsystem was\ndiscovered. A local user can take advantage of this flaw to cause a\ndenial of service (memory consumption).\n\nCVE-2018-6555\nA flaw was discovered in the irda_setsockopt function in the irda\nsubsystem, allowing a local user to cause a denial of service\n(use-after-free and system crash).\n\nCVE-2018-7755\nBrian Belleville discovered a flaw in the fd_locked_ioctl function\nin the floppy driver in the Linux kernel. The floppy driver copies a\nkernel pointer to user memory in response to the FDGETPRM ioctl. A\nlocal user with access to a floppy drive device can take advantage\nof this flaw to discover the location kernel code and data.\n\nDescription truncated. Please see the references for more information.\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif(!isnull(res = isdpkgvuln(pkg:\"hyperv-daemons\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libcpupower-dev\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libcpupower1\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libusbip-dev\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-6-arm\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-6-s390\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-6-x86\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-cpupower\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-doc-4.9\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-common\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-common-rt\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-3-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-common\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-common-rt\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-4-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-common\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-common-rt\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-5-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-6-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-common\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-common-rt\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-7-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-armel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-armhf\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-i386\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-mips\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-mips64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-mipsel\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-ppc64el\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-all-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-common\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-common-rt\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.9.0-8-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-4kc-malta-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-5kc-malta-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-686-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-686-pae-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-amd64-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-arm64-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-armmp-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-armmp-lpae-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-loongson-3-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-marvell-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-octeon-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-powerpc64le-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-rt-686-pae-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-rt-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-rt-amd64-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-s390x\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-3-s390x-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-4kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-4kc-malta-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-5kc-malta\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-5kc-malta-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-686\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-686-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-686-pae-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-amd64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-amd64-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-arm64\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-arm64-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-armmp\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-armmp-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-armmp-lpae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-armmp-lpae-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-loongson-3\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-loongson-3-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-marvell\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-marvell-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-octeon\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-octeon-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-powerpc64le\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-powerpc64le-dbg\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-rt-686-pae\", ver:\"4.9.110-3+deb9u5\", rls:\"DEB9\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.9.0-4-rt-686-pae-dbg\", ver:\&q
