drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
{"veracode": [{"lastseen": "2023-04-18T11:27:46", "description": "kernel is vulnerable to denial of service (DoS). The vulnerability exists as a NULL pointer dereference in `drivers/net/wireless/ath/ath10k/usb.c` leads to a crash.\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2020-04-29T02:43:06", "type": "veracode", "title": "Denial Of Service (DoS)", "bulletinFamily": "software", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15099"], "modified": "2023-01-17T23:43:46", "id": "VERACODE:25103", "href": "https://sca.analysiscenter.veracode.com/vulnerability-database/security/1/1/sid-25103/summary", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "f5": [{"lastseen": "2020-04-06T22:39:49", "description": "\nF5 Product Development has evaluated the currently supported releases for potential vulnerability, and no F5 products were found to be vulnerable.\n\nNone\n\n * [K51812227: Understanding Security Advisory versioning](<https://support.f5.com/csp/article/K51812227>)\n * [K41942608: Overview of AskF5 Security Advisory articles](<https://support.f5.com/csp/article/K41942608>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents](<https://support.f5.com/csp/article/K9957>)\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "baseScore": 7.5, "privilegesRequired": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "userInteraction": "NONE", "version": "3.0"}, "impactScore": 3.6}, "published": "2019-09-30T18:22:00", "type": "f5", "title": "Linux kernel vulnerability CVE-2019-15099", "bulletinFamily": "software", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15099"], "modified": "2019-09-30T18:22:00", "id": "F5:K76295179", "href": "https://support.f5.com/csp/article/K76295179", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "debiancve": [{"lastseen": "2023-06-13T18:12:02", "description": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2019-08-16T02:15:00", "type": "debiancve", "title": "CVE-2019-15099", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15099"], "modified": "2019-08-16T02:15:00", "id": "DEBIANCVE:CVE-2019-15099", "href": "https://security-tracker.debian.org/tracker/CVE-2019-15099", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "redhatcve": [{"lastseen": "2023-06-13T14:58:59", "description": "A null pointer dereference flaw was discovered in the Linux kernel's implementation of the ath10k USB device driver. The vulnerability requires the attacker to plug in a specially crafted hardware device that present endpoint descriptors that normal ath10k devices do not recognize. System availability is the highest threat with this vulnerability.\n#### Mitigation\n\nAs the ath10k module will be auto-loaded when required, its use can be disabled by preventing the module from loading using the following instructions. \n\n\nOn the command line, as root, execute the following command: \n# echo "install ath10k_usb /bin/true" >> /etc/modprobe.d/disable-ath10k_usb.conf \n\n\nThe system will need to be restarted if the ath10k_usb module are loaded. In most circumstances, the kernel modules will be unable to be unloaded while the ath10k WiFi network interface is in use. If the system requires this module to work correctly, this mitigation may not be suitable. \n\n\nIf you need further assistance, see KCS article <https://access.redhat.com/solutions/41278> or contact Red Hat Global Support Services. \n\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2020-03-17T01:47:40", "type": "redhatcve", "title": "CVE-2019-15099", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15099"], "modified": "2023-04-06T06:24:15", "id": "RH:CVE-2019-15099", "href": "https://access.redhat.com/security/cve/cve-2019-15099", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "ubuntucve": [{"lastseen": "2023-08-09T18:50:42", "description": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has\na NULL pointer dereference via an incomplete address in an endpoint\ndescriptor.\n\n#### Notes\n\nAuthor| Note \n---|--- \n[sbeattie](<https://launchpad.net/~sbeattie>) | commit subject \"ath10k: Fix a NULL-ptr-deref bug in ath10k_usb_alloc_urb_from_pipe\"\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2019-08-16T00:00:00", "type": "ubuntucve", "title": "CVE-2019-15099", "bulletinFamily": "info", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15099"], "modified": "2019-08-16T00:00:00", "id": "UB:CVE-2019-15099", "href": "https://ubuntu.com/security/CVE-2019-15099", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "ibm": [{"lastseen": "2023-02-27T21:54:03", "description": "## Summary\n\nThe product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.\n\n## Vulnerability Details\n\n** CVEID: **[CVE-2019-15090](<https://vulners.com/cve/CVE-2019-15090>) \n** DESCRIPTION: **Linux Kernel could allow a local attacker to obtain sensitive information, caused by an out-of-bounds read in the drivers/scsi/qedi/qedi_dbg.c. A local attacker could exploit this vulnerability to obtain sensitive information. \nCVSS Base score: 4 \nCVSS Temporal Score: See: [ https://exchange.xforce.ibmcloud.com/vulnerabilities/165454](<https://exchange.xforce.ibmcloud.com/vulnerabilities/165454>) for the current score. \nCVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) \n \n** CVEID: **[CVE-2019-15117](<https://vulners.com/cve/CVE-2019-15117>) \n** DESCRIPTION: **Linux Kernel could allow a local attacker to obtain sensitive information, caused by an out-of-bounds memory access flaw in the parse_audio_mixer_unit function in mixer.c. By using a short descriptor, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition. \nCVSS Base score: 7.7 \nCVSS Temporal Score: See: [ https://exchange.xforce.ibmcloud.com/vulnerabilities/165425](<https://exchange.xforce.ibmcloud.com/vulnerabilities/165425>) for the current score. \nCVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H) \n \n** CVEID: **[CVE-2019-15099](<https://vulners.com/cve/CVE-2019-15099>) \n** DESCRIPTION: **Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c. By using an incomplete address in an endpoint descriptor, a local attacker could exploit this vulnerability to cause the system/software/application to crash. \nCVSS Base score: 4 \nCVSS Temporal Score: See: [ https://exchange.xforce.ibmcloud.com/vulnerabilities/165452](<https://exchange.xforce.ibmcloud.com/vulnerabilities/165452>) for the current score. \nCVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L) \n \n** CVEID: **[CVE-2019-15098](<https://vulners.com/cve/CVE-2019-15098>) \n** DESCRIPTION: **Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference in drivers/net/wireless/ath/ath6kl/usb.c. By using an incomplete address in an endpoint descriptor, a local attacker could exploit this vulnerability to cause the system/software/application to crash. \nCVSS Base score: 4 \nCVSS Temporal Score: See: [ https://exchange.xforce.ibmcloud.com/vulnerabilities/165453](<https://exchange.xforce.ibmcloud.com/vulnerabilities/165453>) for the current score. \nCVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L) \n \n** CVEID: **[CVE-2019-15118](<https://vulners.com/cve/CVE-2019-15118>) \n** DESCRIPTION: **Linux Kernel is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the check_input_term function in mixer.c. By sending a specially-crafted request, a local attacker could overflow a buffer and execute arbitrary code on the system. \nCVSS Base score: 8.4 \nCVSS Temporal Score: See: [ https://exchange.xforce.ibmcloud.com/vulnerabilities/165426](<https://exchange.xforce.ibmcloud.com/vulnerabilities/165426>) for the current score. \nCVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\n## Affected Products and Versions\n\nIBM QRadar SIEM 7.4.0 to 7.4.0 Patch 2\n\nIBM QRadar SIEM 7.3.0 to 7.3.3 Patch 3\n\n \n\n\n## Remediation/Fixes\n\nQRadar / QRM / QVM / QRIF / QNI 7.4.0 Patch 3 \n\nQRadar / QRM / QVM / QRIF / QNI 7.3.3 Patch 4\n\n## Workarounds and Mitigations\n\nNone\n\n## ", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "baseScore": 7.8, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-07-13T20:37:42", "type": "ibm", "title": "Security Bulletin: IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities", "bulletinFamily": "software", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15117", "CVE-2019-15118"], "modified": "2020-07-13T20:37:42", "id": "DE367A059D35C909557795AD50F02620921B5CC13CC7F375C7C2F83A009A984C", "href": "https://www.ibm.com/support/pages/node/6246219", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "nessus": [{"lastseen": "2023-05-26T14:19:37", "description": "The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1493 advisory.\n\n - kernel: heap-based buffer overflow in mwifiex_process_country_ie() function in drivers/net/wireless/marvell/mwifiex/sta_ioctl.c (CVE-2019-14895)\n\n - kernel: heap overflow in marvell/mwifiex/tdls.c (CVE-2019-14901)\n\n - kernel: powerpc: local user can read vector registers of other users' processes via an interrupt (CVE-2019-15031)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)\n\n - kernel: out-of-bounds array access in __xfrm_policy_unlink (CVE-2019-15666)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)\n\n - kernel: Null pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c (CVE-2019-20054)\n\n - kernel: memory leak in mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c (CVE-2019-20095)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS (CVE-2019-5108)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {}, "published": "2020-04-16T00:00:00", "type": "nessus", "title": "RHEL 7 : kernel-alt (RHSA-2020:1493)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-14895", "CVE-2019-14901", "CVE-2019-15031", "CVE-2019-15099", "CVE-2019-15666", "CVE-2019-19922", "CVE-2019-20054", "CVE-2019-20095", "CVE-2019-5108"], "modified": "2023-05-25T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists", "p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-tools", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel", "p-cpe:/a:redhat:enterprise_linux:perf", "p-cpe:/a:redhat:enterprise_linux:python-perf"], "id": "REDHAT-RHSA-2020-1493.NASL", "href": "https://www.tenable.com/plugins/nessus/135685", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:1493. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(135685);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/05/25\");\n\n script_cve_id(\n \"CVE-2019-5108\",\n \"CVE-2019-14895\",\n \"CVE-2019-14901\",\n \"CVE-2019-15031\",\n \"CVE-2019-15099\",\n \"CVE-2019-15666\",\n \"CVE-2019-19922\",\n \"CVE-2019-20054\",\n \"CVE-2019-20095\"\n );\n script_xref(name:\"RHSA\", value:\"2020:1493\");\n\n script_name(english:\"RHEL 7 : kernel-alt (RHSA-2020:1493)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the RHSA-2020:1493 advisory.\n\n - kernel: heap-based buffer overflow in mwifiex_process_country_ie() function in\n drivers/net/wireless/marvell/mwifiex/sta_ioctl.c (CVE-2019-14895)\n\n - kernel: heap overflow in marvell/mwifiex/tdls.c (CVE-2019-14901)\n\n - kernel: powerpc: local user can read vector registers of other users' processes via an interrupt\n (CVE-2019-15031)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash\n (CVE-2019-15099)\n\n - kernel: out-of-bounds array access in __xfrm_policy_unlink (CVE-2019-15666)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound\n applications (CVE-2019-19922)\n\n - kernel: Null pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c (CVE-2019-20054)\n\n - kernel: memory leak in mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c (CVE-2019-20095)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication\n process has completed can lead to DoS (CVE-2019-5108)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-5108\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-14895\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-14901\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15031\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15099\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15666\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19922\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-20054\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-20095\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:1493\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1743560\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1747334\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1760063\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1773519\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774870\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1789927\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1790063\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1791954\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1792512\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-14901\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_cwe_id(20, 119, 122, 200, 400, 440, 772);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/05/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/16\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '7')) audit(AUDIT_OS_NOT, 'Red Hat 7.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n var cve_list = make_list('CVE-2019-5108', 'CVE-2019-14895', 'CVE-2019-14901', 'CVE-2019-15031', 'CVE-2019-15099', 'CVE-2019-15666', 'CVE-2019-19922', 'CVE-2019-20054', 'CVE-2019-20095');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2020:1493');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/debug',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/debug',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/os',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/source/SRPMS',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/os',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/source/SRPMS',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/supplementary/debug',\n 'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/supplementary/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/optional/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/optional/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/optional/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap-hana/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap-hana/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap-hana/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/sap/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/source/SRPMS',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/supplementary/debug',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/supplementary/os',\n 'content/dist/rhel/power-le/7/7Server/ppc64le/supplementary/source/SRPMS',\n 'content/dist/rhel/power/7/7Server/ppc64/debug',\n 'content/dist/rhel/power/7/7Server/ppc64/optional/debug',\n 'content/dist/rhel/power/7/7Server/ppc64/optional/os',\n 'content/dist/rhel/power/7/7Server/ppc64/optional/source/SRPMS',\n 'content/dist/rhel/power/7/7Server/ppc64/os',\n 'content/dist/rhel/power/7/7Server/ppc64/sap/debug',\n 'content/dist/rhel/power/7/7Server/ppc64/sap/os',\n 'content/dist/rhel/power/7/7Server/ppc64/sap/source/SRPMS',\n 'content/dist/rhel/power/7/7Server/ppc64/source/SRPMS',\n 'content/dist/rhel/power/7/7Server/ppc64/supplementary/debug',\n 'content/dist/rhel/power/7/7Server/ppc64/supplementary/os',\n 'content/dist/rhel/power/7/7Server/ppc64/supplementary/source/SRPMS',\n 'content/fastrack/rhel/power/7/ppc64/debug',\n 'content/fastrack/rhel/power/7/ppc64/optional/debug',\n 'content/fastrack/rhel/power/7/ppc64/optional/os',\n 'content/fastrack/rhel/power/7/ppc64/optional/source/SRPMS',\n 'content/fastrack/rhel/power/7/ppc64/os',\n 'content/fastrack/rhel/power/7/ppc64/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'kernel-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.14.0-115.19.1.el7a', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-bootwrapper-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python-perf-4.14.0-115.19.1.el7a', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'kernel / kernel-abi-whitelists / kernel-bootwrapper / kernel-debug / etc');\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T16:44:01", "description": "According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system:\n memory allocation, process allocation, device input and output, etc.Security Fix(es):drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir).(CVE-2019-15505)An issue was discovered in the Linux kernel through 5.2.13.\n nbd_genl_status in drivers/blockbd.c does not check the nla_nest_start_noflag return value.(CVE-2019-16089)drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.(CVE-2019-16233)In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.(CVE-2019-16714)drivers/ net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).(CVE-2019-15504)There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14814)There is heap-based buffer overflow in marvell wifi chip driver in Linux kernel,allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14815)There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14816)drivers/ net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15098)drivers/ net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15099)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-11-12T00:00:00", "type": "nessus", "title": "EulerOS 2.0 SP8 : kernel (EulerOS-SA-2019-2106)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15504", "CVE-2019-15505", "CVE-2019-16089", "CVE-2019-16233", "CVE-2019-16714"], "modified": "2021-01-06T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:bpftool", "p-cpe:/a:huawei:euleros:kernel", "p-cpe:/a:huawei:euleros:kernel-devel", "p-cpe:/a:huawei:euleros:kernel-headers", "p-cpe:/a:huawei:euleros:kernel-source", "p-cpe:/a:huawei:euleros:kernel-tools", "p-cpe:/a:huawei:euleros:kernel-tools-libs", "p-cpe:/a:huawei:euleros:perf", "p-cpe:/a:huawei:euleros:python-perf", "p-cpe:/a:huawei:euleros:python3-perf", "cpe:/o:huawei:euleros:2.0"], "id": "EULEROS_SA-2019-2106.NASL", "href": "https://www.tenable.com/plugins/nessus/130815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(130815);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\n \"CVE-2019-14814\",\n \"CVE-2019-14815\",\n \"CVE-2019-14816\",\n \"CVE-2019-15098\",\n \"CVE-2019-15099\",\n \"CVE-2019-15504\",\n \"CVE-2019-15505\",\n \"CVE-2019-16089\",\n \"CVE-2019-16233\",\n \"CVE-2019-16714\"\n );\n\n script_name(english:\"EulerOS 2.0 SP8 : kernel (EulerOS-SA-2019-2106)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the kernel packages installed, the\nEulerOS installation on the remote host is affected by the following\nvulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz),\n the core of any Linux operating system. The kernel\n handles the basic functions of the operating system:\n memory allocation, process allocation, device input and\n output, etc.Security\n Fix(es):drivers/media/usb/dvb-usb/technisat-usb2.c in\n the Linux kernel through 5.2.9 has an out-of-bounds\n read via crafted USB device traffic (which may be\n remote via usbip or usbredir).(CVE-2019-15505)An issue\n was discovered in the Linux kernel through 5.2.13.\n nbd_genl_status in drivers/blockbd.c does not check the\n nla_nest_start_noflag return\n value.(CVE-2019-16089)drivers/scsi/qla2xxx/qla_os.c in\n the Linux kernel 5.2.14 does not check the\n alloc_workqueue return value, leading to a NULL pointer\n dereference.(CVE-2019-16233)In the Linux kernel before\n 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows\n attackers to obtain sensitive information from kernel\n stack memory because tos and flags fields are not\n initialized.(CVE-2019-16714)drivers/\n net/wireless/rsi/rsi_91x_usb.c in the Linux kernel\n through 5.2.9 has a Double Free via crafted USB device\n traffic (which may be remote via usbip or\n usbredir).(CVE-2019-15504)There is heap-based buffer\n overflow in Linux kernel, all versions up to, excluding\n 5.3, in the marvell wifi chip driver in Linux kernel,\n that allows local users to cause a denial of\n service(system crash) or possibly execute arbitrary\n code.(CVE-2019-14814)There is heap-based buffer\n overflow in marvell wifi chip driver in Linux\n kernel,allows local users to cause a denial of\n service(system crash) or possibly execute arbitrary\n code.(CVE-2019-14815)There is heap-based buffer\n overflow in kernel, all versions up to, excluding 5.3,\n in the marvell wifi chip driver in Linux kernel, that\n allows local users to cause a denial of service(system\n crash) or possibly execute arbitrary\n code.(CVE-2019-14816)drivers/\n net/wireless/ath/ath6kl/usb.c in the Linux kernel\n through 5.2.9 has a NULL pointer dereference via an\n incomplete address in an endpoint\n descriptor.(CVE-2019-15098)drivers/\n net/wireless/ath/ath10k/usb.c in the Linux kernel\n through 5.2.8 has a NULL pointer dereference via an\n incomplete address in an endpoint\n descriptor.(CVE-2019-15099)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-2106\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?e2f218e2\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected kernel packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/10/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/11/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:bpftool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python3-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:2.0\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/sp\");\n script_exclude_keys(\"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nif (release !~ \"^EulerOS release 2\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"EulerOS 2.0\");\n\nsp = get_kb_item(\"Host/EulerOS/sp\");\nif (isnull(sp) || sp !~ \"^(8)$\") audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP8\");\n\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP8\", \"EulerOS UVP \" + uvp);\n\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\nif (\"aarch64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"aarch64\", cpu);\n\nflag = 0;\n\npkgs = [\"bpftool-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-devel-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-headers-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-source-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-tools-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"kernel-tools-libs-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"perf-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"python-perf-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\",\n \"python3-perf-4.19.36-vhulk1907.1.0.h475.eulerosv2r8\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", sp:\"8\", reference:pkg)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-05-18T14:55:15", "description": "It was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15099)\n\nIt was discovered that a race condition existed in the Virtual Video Test Driver in the Linux kernel. An attacker with write access to /dev/video0 on a system with the vivid module loaded could possibly use this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the btrfs file system in the Linux kernel did not properly validate metadata, leading to a NULL pointer dereference.\nAn attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service (system crash).\n(CVE-2019-18885)\n\nIt was discovered that the crypto subsystem in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19050, CVE-2019-19062)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux kernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Broadcom Netxtreme HCA device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19077)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the Qualcomm IPC Router TUN device driver in the Linux kernel did not properly deallocate memory in certain situations. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19079)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to possibly cause a denial of service (kernel memory exhaustion). (CVE-2019-19082)\n\nDan Carpenter discovered that the AppleTalk networking subsystem of the Linux kernel did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-19227)\n\nOr Cohen discovered that the virtual console subsystem in the Linux kernel did not properly restrict writes to unimplemented vcsu (unicode) devices. A local attacker could possibly use this to cause a denial of service (system crash) or have other unspecified impacts.\n(CVE-2019-19252)\n\nIt was discovered that the KVM hypervisor implementation in the Linux kernel did not properly handle ioctl requests to get emulated CPUID features. An attacker with access to /dev/kvm could use this to cause a denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that the ext4 file system implementation in the Linux kernel did not properly handle certain conditions. An attacker could use this to specially craft an ext4 file system that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19767)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2020-01-30T00:00:00", "type": "nessus", "title": "Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4258-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-15099", "CVE-2019-15291", "CVE-2019-18683", "CVE-2019-18885", "CVE-2019-19050", "CVE-2019-19062", "CVE-2019-19071", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19079", "CVE-2019-19082", "CVE-2019-19227", "CVE-2019-19252", "CVE-2019-19332", "CVE-2019-19767"], "modified": "2023-05-11T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gke", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-5.0", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-edge", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts"], "id": "UBUNTU_USN-4258-1.NASL", "href": "https://www.tenable.com/plugins/nessus/133354", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4258-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(133354);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/05/11\");\n\n script_cve_id(\"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-18683\", \"CVE-2019-18885\", \"CVE-2019-19050\", \"CVE-2019-19062\", \"CVE-2019-19071\", \"CVE-2019-19077\", \"CVE-2019-19078\", \"CVE-2019-19079\", \"CVE-2019-19082\", \"CVE-2019-19227\", \"CVE-2019-19252\", \"CVE-2019-19332\", \"CVE-2019-19767\");\n script_xref(name:\"USN\", value:\"4258-1\");\n\n script_name(english:\"Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4258-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"It was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly validate device metadata. A\nphysically proximate attacker could use this to cause a denial of\nservice (system crash). (CVE-2019-15099)\n\nIt was discovered that a race condition existed in the Virtual Video\nTest Driver in the Linux kernel. An attacker with write access to\n/dev/video0 on a system with the vivid module loaded could possibly\nuse this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the btrfs file system in the Linux kernel did\nnot properly validate metadata, leading to a NULL pointer dereference.\nAn attacker could use this to specially craft a file system image\nthat, when mounted, could cause a denial of service (system crash).\n(CVE-2019-18885)\n\nIt was discovered that the crypto subsystem in the Linux kernel did\nnot properly deallocate memory in certain error conditions. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19050, CVE-2019-19062)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux\nkernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Broadcom Netxtreme HCA device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-19077)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly deallocate memory in certain\nerror conditions. A local attacker could possibly use this to cause a\ndenial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the Qualcomm IPC Router TUN device driver in\nthe Linux kernel did not properly deallocate memory in certain\nsituations. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-19079)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel\ndid not properly deallocate memory in certain error conditions. A\nlocal attacker could use this to possibly cause a denial of service\n(kernel memory exhaustion). (CVE-2019-19082)\n\nDan Carpenter discovered that the AppleTalk networking subsystem of\nthe Linux kernel did not properly handle certain error conditions,\nleading to a NULL pointer dereference. A local attacker could use this\nto cause a denial of service (system crash). (CVE-2019-19227)\n\nOr Cohen discovered that the virtual console subsystem in the Linux\nkernel did not properly restrict writes to unimplemented vcsu\n(unicode) devices. A local attacker could possibly use this to cause a\ndenial of service (system crash) or have other unspecified impacts.\n(CVE-2019-19252)\n\nIt was discovered that the KVM hypervisor implementation in the Linux\nkernel did not properly handle ioctl requests to get emulated CPUID\nfeatures. An attacker with access to /dev/kvm could use this to cause\na denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that the ext4 file system implementation in the\nLinux kernel did not properly handle certain conditions. An attacker\ncould use this to specially craft an ext4 file system that, when\nmounted, could cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2019-19767)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux\nkernel did not properly validate device metadata. A physically\nproximate attacker could use this to cause a denial of service (system\ncrash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4258-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18683\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-5.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/01/30\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020-2023 Canonical, Inc. / NASL script (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(18\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 18.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-18683\", \"CVE-2019-18885\", \"CVE-2019-19050\", \"CVE-2019-19062\", \"CVE-2019-19071\", \"CVE-2019-19077\", \"CVE-2019-19078\", \"CVE-2019-19079\", \"CVE-2019-19082\", \"CVE-2019-19227\", \"CVE-2019-19252\", \"CVE-2019-19332\", \"CVE-2019-19767\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4258-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nvar flag = 0;\n\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1010-oracle\", pkgver:\"5.0.0-1010.15~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1024-aws\", pkgver:\"5.0.0-1024.27~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1029-gcp\", pkgver:\"5.0.0-1029.30~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1029-gke\", pkgver:\"5.0.0-1029.30~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-aws-edge\", pkgver:\"5.0.0.1024.38\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gcp\", pkgver:\"5.0.0.1029.33\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke-5.0\", pkgver:\"5.0.0.1029.17\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle-edge\", pkgver:\"5.0.0.1010.9\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-5.0-aws / linux-image-5.0-gcp / linux-image-5.0-gke / etc\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-10T16:43:12", "description": "The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1769 advisory.\n\n - A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.\n (CVE-2019-8980)\n\n - A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost. (CVE-2018-16871)\n\n - An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver. (CVE-2019-15221)\n\n - ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7. (CVE-2019-17053)\n\n - base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21. (CVE-2019-17055)\n\n - The Linux kernel 4.x (starting from 4.1) and 5.x before 5.0.8 allows Information Exposure (partial kernel address disclosure), leading to a KASLR bypass. Specifically, it is possible to extract the KASLR kernel image offset using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic is sent to multiple destination IP addresses, it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). This key contains enough bits from a kernel address (of a static variable) so when the key is extracted (via enumeration), the offset of the kernel image is exposed. This attack can be carried out remotely, by the attacker forcing the target device to send UDP or ICMP (or certain other) traffic to attacker-controlled IP addresses. Forcing a server to send UDP traffic is trivial if the server is a DNS server. ICMP traffic is trivial if the server answers ICMP Echo requests (ping). For client targets, if the target visits the attacker's web page, then WebRTC or gQUIC can be used to force UDP traffic to attacker-controlled IP addresses. NOTE: this attack against KASLR became viable in 4.1 because IP ID generation was changed to have a dependency on an address associated with a network namespace. (CVE-2019-10639)\n\n - In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub- buffer). (CVE-2019-19768)\n\n - Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering mwifiex_map_pci_memory() failures, aka CID-d10dcb615c8e. (CVE-2019-19057)\n\n - An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read. (CVE-2019-15090)\n\n - In the Linux kernel before 5.3.11, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver, aka CID-f7a1337f0d29. (CVE-2019-19534)\n\n - A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality. (CVE-2020-1749)\n\n - drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. (CVE-2019-15099)\n\n - An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6. (CVE-2019-18805)\n\n - Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10. (CVE-2019-19073)\n\n - A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.\n (CVE-2019-19074)\n\n - kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with Kubernetes), allows attackers to cause a denial of service against non-cpu-bound applications by generating a workload that triggers unwanted slice expiration, aka CID-de53fd7aedb1. (In other words, although this slice expiration would typically be seen with benign workloads, it is possible that an attacker could calculate how many stray requests are required to force an entire Kubernetes cluster into a low-performance state caused by slice expiration, and ensure that a DDoS attack sent that number of stray requests. An attack does not affect the stability of the kernel; it only causes mismanagement of application execution.) (CVE-2019-19922)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {}, "published": "2023-09-07T00:00:00", "type": "nessus", "title": "Oracle Linux 8 : kernel (ELSA-2020-1769)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2018-16871", "CVE-2019-10639", "CVE-2019-15090", "CVE-2019-15099", "CVE-2019-15221", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18805", "CVE-2019-19057", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19534", "CVE-2019-19768", "CVE-2019-19922", "CVE-2019-8980", "CVE-2020-1749"], "modified": "2023-09-07T00:00:00", "cpe": ["cpe:/o:oracle:linux:8", "p-cpe:/a:oracle:linux:bpftool", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-abi-whitelists", "p-cpe:/a:oracle:linux:kernel-core", "p-cpe:/a:oracle:linux:kernel-cross-headers", "p-cpe:/a:oracle:linux:kernel-debug", "p-cpe:/a:oracle:linux:kernel-debug-core", "p-cpe:/a:oracle:linux:kernel-debug-devel", "p-cpe:/a:oracle:linux:kernel-debug-modules", "p-cpe:/a:oracle:linux:kernel-debug-modules-extra", "p-cpe:/a:oracle:linux:kernel-devel", "p-cpe:/a:oracle:linux:kernel-headers", "p-cpe:/a:oracle:linux:kernel-modules", "p-cpe:/a:oracle:linux:kernel-modules-extra", "p-cpe:/a:oracle:linux:kernel-tools", "p-cpe:/a:oracle:linux:kernel-tools-libs", "p-cpe:/a:oracle:linux:kernel-tools-libs-devel", "p-cpe:/a:oracle:linux:perf", "p-cpe:/a:oracle:linux:python3-perf"], "id": "ORACLELINUX_ELSA-2020-1769.NASL", "href": "https://www.tenable.com/plugins/nessus/181001", "sourceData": "#%NASL_MIN_LEVEL 80900\n##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisory ELSA-2020-1769.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(181001);\n script_version(\"1.0\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/09/07\");\n\n script_cve_id(\n \"CVE-2018-16871\",\n \"CVE-2019-8980\",\n \"CVE-2019-10639\",\n \"CVE-2019-15090\",\n \"CVE-2019-15099\",\n \"CVE-2019-15221\",\n \"CVE-2019-17053\",\n \"CVE-2019-17055\",\n \"CVE-2019-18805\",\n \"CVE-2019-19057\",\n \"CVE-2019-19073\",\n \"CVE-2019-19074\",\n \"CVE-2019-19534\",\n \"CVE-2019-19768\",\n \"CVE-2019-19922\",\n \"CVE-2020-1749\"\n );\n\n script_name(english:\"Oracle Linux 8 : kernel (ELSA-2020-1769)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Oracle Linux host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the\nELSA-2020-1769 advisory.\n\n - A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows\n attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.\n (CVE-2019-8980)\n\n - A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to\n 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer\n dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS\n server. Any outstanding disk writes to the NFS server will be lost. (CVE-2018-16871)\n\n - An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a\n malicious USB device in the sound/usb/line6/pcm.c driver. (CVE-2019-15221)\n\n - ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel\n through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket,\n aka CID-e69dbd4619e7. (CVE-2019-17053)\n\n - base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through\n 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka\n CID-b91ee4aa2a21. (CVE-2019-17055)\n\n - The Linux kernel 4.x (starting from 4.1) and 5.x before 5.0.8 allows Information Exposure (partial kernel\n address disclosure), leading to a KASLR bypass. Specifically, it is possible to extract the KASLR kernel\n image offset using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and\n ICMP). When such traffic is sent to multiple destination IP addresses, it is possible to obtain hash\n collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). This\n key contains enough bits from a kernel address (of a static variable) so when the key is extracted (via\n enumeration), the offset of the kernel image is exposed. This attack can be carried out remotely, by the\n attacker forcing the target device to send UDP or ICMP (or certain other) traffic to attacker-controlled\n IP addresses. Forcing a server to send UDP traffic is trivial if the server is a DNS server. ICMP traffic\n is trivial if the server answers ICMP Echo requests (ping). For client targets, if the target visits the\n attacker's web page, then WebRTC or gQUIC can be used to force UDP traffic to attacker-controlled IP\n addresses. NOTE: this attack against KASLR became viable in 4.1 because IP ID generation was changed to\n have a dependency on an address associated with a network namespace. (CVE-2019-10639)\n\n - In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in\n kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-\n buffer). (CVE-2019-19768)\n\n - Two memory leaks in the mwifiex_pcie_init_evt_ring() function in\n drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allow attackers to cause a\n denial of service (memory consumption) by triggering mwifiex_map_pci_memory() failures, aka\n CID-d10dcb615c8e. (CVE-2019-19057)\n\n - An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the\n qedi_dbg_* family of functions, there is an out-of-bounds read. (CVE-2019-15090)\n\n - In the Linux kernel before 5.3.11, there is an info-leak bug that can be caused by a malicious USB device\n in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver, aka CID-f7a1337f0d29. (CVE-2019-19534)\n\n - A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN\n and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't\n correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would\n allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this\n vulnerability is to data confidentiality. (CVE-2020-1749)\n\n - drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via\n an incomplete address in an endpoint descriptor. (CVE-2019-15099)\n\n - An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a\n net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large\n integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified\n other impact, aka CID-19fad20d15a6. (CVE-2019-18805)\n\n - Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow\n attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout()\n failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the\n htc_connect_service() function, aka CID-853acf7caf10. (CVE-2019-19073)\n\n - A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel\n through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.\n (CVE-2019-19074)\n\n - kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with\n Kubernetes), allows attackers to cause a denial of service against non-cpu-bound applications by\n generating a workload that triggers unwanted slice expiration, aka CID-de53fd7aedb1. (In other words,\n although this slice expiration would typically be seen with benign workloads, it is possible that an\n attacker could calculate how many stray requests are required to force an entire Kubernetes cluster into a\n low-performance state caused by slice expiration, and ensure that a DDoS attack sent that number of stray\n requests. An attack does not affect the stability of the kernel; it only causes mismanagement of\n application execution.) (CVE-2019-19922)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://linux.oracle.com/errata/ELSA-2020-1769.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18805\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/11/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/05/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2023/09/07\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bpftool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-cross-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:python3-perf\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"linux_alt_patch_detect.nasl\", \"ssh_get_info.nasl\");\n script_require_keys(\"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/local_checks_enabled\");\n\n exit(0);\n}\n\n\ninclude('ksplice.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item('Host/OracleLinux')) audit(AUDIT_OS_NOT, 'Oracle Linux');\nvar os_release = get_kb_item(\"Host/RedHat/release\");\nif (isnull(os_release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:os_release)) audit(AUDIT_OS_NOT, 'Oracle Linux');\nvar os_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Oracle Linux');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^8([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, 'Oracle Linux 8', 'Oracle Linux ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Oracle Linux', cpu);\n\nvar machine_uptrack_level = get_one_kb_item('Host/uptrack-uname-r');\nif (machine_uptrack_level)\n{\n var trimmed_uptrack_level = ereg_replace(string:machine_uptrack_level, pattern:\"\\.(x86_64|i[3-6]86|aarch64)$\", replace:'');\n var fixed_uptrack_levels = ['4.18.0-193.el8'];\n foreach var fixed_uptrack_level ( fixed_uptrack_levels ) {\n if (rpm_spec_vers_cmp(a:trimmed_uptrack_level, b:fixed_uptrack_level) >= 0)\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for ELSA-2020-1769');\n }\n }\n __rpm_report = 'Running KSplice level of ' + trimmed_uptrack_level + ' does not meet the minimum fixed level of ' + join(fixed_uptrack_levels, sep:' / ') + ' for this advisory.\\n\\n';\n}\n\nvar kernel_major_minor = get_kb_item('Host/uname/major_minor');\nif (empty_or_null(kernel_major_minor)) exit(1, 'Unable to determine kernel major-minor level.');\nvar expected_kernel_major_minor = '4.18';\nif (kernel_major_minor != expected_kernel_major_minor)\n audit(AUDIT_OS_NOT, 'running kernel level ' + expected_kernel_major_minor + ', it is running kernel level ' + kernel_major_minor);\n\nvar pkgs = [\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-abi-whitelists-4.18.0'},\n {'reference':'bpftool-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-cross-headers-4.18.0'},\n {'reference':'kernel-headers-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-headers-4.18.0'},\n {'reference':'kernel-tools-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-4.18.0'},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-libs-4.18.0'},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-libs-devel-4.18.0'},\n {'reference':'perf-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'bpftool-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-4.18.0'},\n {'reference':'kernel-core-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-core-4.18.0'},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-cross-headers-4.18.0'},\n {'reference':'kernel-debug-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-debug-4.18.0'},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-debug-core-4.18.0'},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-debug-devel-4.18.0'},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-debug-modules-4.18.0'},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-debug-modules-extra-4.18.0'},\n {'reference':'kernel-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-devel-4.18.0'},\n {'reference':'kernel-headers-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-headers-4.18.0'},\n {'reference':'kernel-modules-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-modules-4.18.0'},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-modules-extra-4.18.0'},\n {'reference':'kernel-tools-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-4.18.0'},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-libs-4.18.0'},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-libs-devel-4.18.0'},\n {'reference':'perf-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n];\n\nvar flag = 0;\nforeach var package_array ( pkgs ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) _release = 'EL' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (reference && _release) {\n if (exists_check) {\n if (rpm_exists(release:_release, rpm:exists_check) && rpm_check(release:_release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n } else {\n if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-abi-whitelists / etc');\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T16:53:33", "description": "According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :\n\n - An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.(CVE-2019-15213)\n\n - An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.(CVE-2019-15215)\n\n - An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.(CVE-2019-15217)\n\n - An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.(CVE-2019-15212)\n\n - An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.(CVE-2019-15216)\n\n - An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.(CVE-2019-15090)\n\n - An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a cd data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15923)\n\n - An issue was discovered in the Linux kernel before 5.0.10. SMB2_negotiate in fs/cifs/smb2pdu.c has an out-of-bounds read because data structures are incompletely updated after a change from smb30 to smb21.(CVE-2019-15918)\n\n - An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a pf data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15922)\n\n - An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file drivers/net/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)\n\n - An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure.(CVE-2019-15924)\n\n - A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.(CVE-2019-14835)\n\n - In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.(CVE-2019-15031)\n\n - In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.(CVE-2019-15030)\n\n - There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14816)\n\n - ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.(CVE-2019-14815)\n\n - There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14814)\n\n - drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15099)\n\n - drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15098)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-12-03T00:00:00", "type": "nessus", "title": "EulerOS Virtualization for ARM 64 3.0.3.0 : kernel (EulerOS-SA-2019-2309)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15212", "CVE-2019-15213", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15918", "CVE-2019-15922", "CVE-2019-15923", "CVE-2019-15924", "CVE-2019-15926"], "modified": "2021-01-06T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:kernel", "p-cpe:/a:huawei:euleros:kernel-devel", "p-cpe:/a:huawei:euleros:kernel-headers", "p-cpe:/a:huawei:euleros:kernel-tools", "p-cpe:/a:huawei:euleros:kernel-tools-libs", "p-cpe:/a:huawei:euleros:kernel-tools-libs-devel", "p-cpe:/a:huawei:euleros:perf", "p-cpe:/a:huawei:euleros:python-perf", "p-cpe:/a:huawei:euleros:python3-perf", "cpe:/o:huawei:euleros:uvp:3.0.3.0"], "id": "EULEROS_SA-2019-2309.NASL", "href": "https://www.tenable.com/plugins/nessus/131474", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(131474);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\n \"CVE-2019-14814\",\n \"CVE-2019-14815\",\n \"CVE-2019-14816\",\n \"CVE-2019-14835\",\n \"CVE-2019-15030\",\n \"CVE-2019-15031\",\n \"CVE-2019-15090\",\n \"CVE-2019-15098\",\n \"CVE-2019-15099\",\n \"CVE-2019-15212\",\n \"CVE-2019-15213\",\n \"CVE-2019-15215\",\n \"CVE-2019-15216\",\n \"CVE-2019-15217\",\n \"CVE-2019-15918\",\n \"CVE-2019-15922\",\n \"CVE-2019-15923\",\n \"CVE-2019-15924\",\n \"CVE-2019-15926\"\n );\n\n script_name(english:\"EulerOS Virtualization for ARM 64 3.0.3.0 : kernel (EulerOS-SA-2019-2309)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS Virtualization for ARM 64 host is missing multiple security\nupdates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the kernel packages installed, the\nEulerOS Virtualization for ARM 64 installation on the remote host is\naffected by the following vulnerabilities :\n\n - An issue was discovered in the Linux kernel before\n 5.2.3. There is a use-after-free caused by a malicious\n USB device in the\n drivers/media/usb/dvb-usb/dvb-usb-init.c\n driver.(CVE-2019-15213)\n\n - An issue was discovered in the Linux kernel before\n 5.2.6. There is a use-after-free caused by a malicious\n USB device in the drivers/media/usb/cpia2/cpia2_usb.c\n driver.(CVE-2019-15215)\n\n - An issue was discovered in the Linux kernel before\n 5.2.3. There is a NULL pointer dereference caused by a\n malicious USB device in the\n drivers/media/usb/zr364xx/zr364xx.c\n driver.(CVE-2019-15217)\n\n - An issue was discovered in the Linux kernel before\n 5.1.8. There is a double-free caused by a malicious USB\n device in the drivers/usb/misc/rio500.c\n driver.(CVE-2019-15212)\n\n - An issue was discovered in the Linux kernel before\n 5.0.14. There is a NULL pointer dereference caused by a\n malicious USB device in the drivers/usb/misc/yurex.c\n driver.(CVE-2019-15216)\n\n - An issue was discovered in drivers/scsi/qedi/qedi_dbg.c\n in the Linux kernel before 5.1.12. In the qedi_dbg_*\n family of functions, there is an out-of-bounds\n read.(CVE-2019-15090)\n\n - An issue was discovered in the Linux kernel before\n 5.0.9. There is a NULL pointer dereference for a cd\n data structure if alloc_disk fails in\n drivers/block/paride/pf.c.(CVE-2019-15923)\n\n - An issue was discovered in the Linux kernel before\n 5.0.10. SMB2_negotiate in fs/cifs/smb2pdu.c has an\n out-of-bounds read because data structures are\n incompletely updated after a change from smb30 to\n smb21.(CVE-2019-15918)\n\n - An issue was discovered in the Linux kernel before\n 5.0.9. There is a NULL pointer dereference for a pf\n data structure if alloc_disk fails in\n drivers/block/paride/pf.c.(CVE-2019-15922)\n\n - An issue was discovered in the Linux kernel before\n 5.2.3. Out of bounds access exists in the functions\n ath6kl_wmi_pstream_timeout_event_rx and\n ath6kl_wmi_cac_event_rx in the file\n drivers/net/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)\n\n - An issue was discovered in the Linux kernel before\n 5.0.11. fm10k_init_module in\n drivers/net/ethernet/intel/fm10k/fm10k_main.c has a\n NULL pointer dereference because there is no -ENOMEM\n upon an alloc_workqueue failure.(CVE-2019-15924)\n\n - A buffer overflow flaw was found, in versions from\n 2.6.34 to 5.2.x, in the way Linux kernel's vhost\n functionality that translates virtqueue buffers to\n IOVs, logged the buffer descriptors during migration. A\n privileged guest user able to pass descriptors with\n invalid length to the host when migration is underway,\n could use this flaw to increase their privileges on the\n host.(CVE-2019-14835)\n\n - In the Linux kernel through 5.2.14 on the powerpc\n platform, a local user can read vector registers of\n other users' processes via an interrupt. To exploit the\n venerability, a local user starts a transaction (via\n the hardware transactional memory instruction tbegin)\n and then accesses vector registers. At some point, the\n vector registers will be corrupted with the values from\n a different local Linux process, because MSR_TM_ACTIVE\n is misused in\n arch/powerpc/kernel/process.c.(CVE-2019-15031)\n\n - In the Linux kernel through 5.2.14 on the powerpc\n platform, a local user can read vector registers of\n other users' processes via a Facility Unavailable\n exception. To exploit the venerability, a local user\n starts a transaction (via the hardware transactional\n memory instruction tbegin) and then accesses vector\n registers. At some point, the vector registers will be\n corrupted with the values from a different local Linux\n process because of a missing\n arch/powerpc/kernel/process.c check.(CVE-2019-15030)\n\n - There is heap-based buffer overflow in kernel, all\n versions up to, excluding 5.3, in the marvell wifi chip\n driver in Linux kernel, that allows local users to\n cause a denial of service(system crash) or possibly\n execute arbitrary code.(CVE-2019-14816)\n\n - ** RESERVED ** This candidate has been reserved by an\n organization or individual that will use it when\n announcing a new security problem. When the candidate\n has been publicized, the details for this candidate\n will be provided.(CVE-2019-14815)\n\n - There is heap-based buffer overflow in Linux kernel,\n all versions up to, excluding 5.3, in the marvell wifi\n chip driver in Linux kernel, that allows local users to\n cause a denial of service(system crash) or possibly\n execute arbitrary code.(CVE-2019-14814)\n\n - drivers/net/wireless/ath/ath10k/usb.c in the Linux\n kernel through 5.2.8 has a NULL pointer dereference via\n an incomplete address in an endpoint\n descriptor.(CVE-2019-15099)\n\n - drivers/net/wireless/ath/ath6kl/usb.c in the Linux\n kernel through 5.2.9 has a NULL pointer dereference via\n an incomplete address in an endpoint\n descriptor.(CVE-2019-15098)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-2309\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?03aaa4ef\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected kernel packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/12/03\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python3-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:uvp:3.0.3.0\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (uvp != \"3.0.3.0\") audit(AUDIT_OS_NOT, \"EulerOS Virtualization 3.0.3.0\");\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\nif (\"aarch64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"aarch64\", cpu);\n\nflag = 0;\n\npkgs = [\"kernel-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"kernel-devel-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"kernel-headers-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"kernel-tools-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"kernel-tools-libs-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"kernel-tools-libs-devel-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"perf-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"python-perf-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\",\n \"python3-perf-4.19.36-vhulk1907.1.0.h463.eulerosv2r8\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", reference:pkg)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-24T15:28:16", "description": "It was discovered that the Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.\nA local attacker could use this to expose sensitive information.\n(CVE-2019-14615)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15099)\n\nIt was discovered that the HSA Linux kernel driver for AMD GPU devices did not properly check for errors in certain situations, leading to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service. (CVE-2019-16229)\n\nIt was discovered that the Marvell 8xxx Libertas WLAN device driver in the Linux kernel did not properly check for errors in certain situations, leading to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service. (CVE-2019-16232)\n\nIt was discovered that a race condition existed in the Virtual Video Test Driver in the Linux kernel. An attacker with write access to /dev/video0 on a system with the vivid module loaded could possibly use this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the Renesas Digital Radio Interface (DRIF) driver in the Linux kernel did not properly initialize data. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2019-18786)\n\nIt was discovered that the Afatech AF9005 DVB-T USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-18809)\n\nIt was discovered that the btrfs file system in the Linux kernel did not properly validate metadata, leading to a NULL pointer dereference.\nAn attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service (system crash).\n(CVE-2019-18885)\n\nIt was discovered that multiple memory leaks existed in the Marvell WiFi-Ex Driver for the Linux kernel. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion).\n(CVE-2019-19057)\n\nIt was discovered that the crypto subsystem in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19062)\n\nIt was discovered that the Realtek rtlwifi USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19063)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux kernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to possibly cause a denial of service (kernel memory exhaustion). (CVE-2019-19082)\n\nDan Carpenter discovered that the AppleTalk networking subsystem of the Linux kernel did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-19227)\n\nIt was discovered that the KVM hypervisor implementation in the Linux kernel did not properly handle ioctl requests to get emulated CPUID features. An attacker with access to /dev/kvm could use this to cause a denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that the ext4 file system implementation in the Linux kernel did not properly handle certain conditions. An attacker could use this to specially craft an ext4 file system that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19767)\n\nGao Chuan discovered that the SAS Class driver in the Linux kernel contained a race condition that could lead to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2019-19965)\n\nIt was discovered that the Datagram Congestion Control Protocol (DCCP) implementation in the Linux kernel did not properly deallocate memory in certain error conditions. An attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-20096)\n\nMitchell Frank discovered that the Wi-Fi implementation in the Linux kernel when used as an access point would send IAPP location updates for stations before client authentication had completed. A physically proximate attacker could use this to cause a denial of service.\n(CVE-2019-5108)\n\nIt was discovered that a race condition can lead to a use-after-free while destroying GEM contexts in the i915 driver for the Linux kernel.\nA local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-7053)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2020-02-19T00:00:00", "type": "nessus", "title": "Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4287-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-14615", "CVE-2019-15099", "CVE-2019-15291", "CVE-2019-16229", "CVE-2019-16232", "CVE-2019-18683", "CVE-2019-18786", "CVE-2019-18809", "CVE-2019-18885", "CVE-2019-19057", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19071", "CVE-2019-19078", "CVE-2019-19082", "CVE-2019-19227", "CVE-2019-19332", "CVE-2019-19767", "CVE-2019-19965", "CVE-2019-20096", "CVE-2019-5108", "CVE-2020-7053"], "modified": "2023-05-11T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gke", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-hwe", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-lts-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-4.15", "p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oem", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-lts-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-16.04", "cpe:/o:canonical:ubuntu_linux:16.04", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts"], "id": "UBUNTU_USN-4287-1.NASL", "href": "https://www.tenable.com/plugins/nessus/133800", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4287-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(133800);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/05/11\");\n\n script_cve_id(\"CVE-2019-14615\", \"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-16229\", \"CVE-2019-16232\", \"CVE-2019-18683\", \"CVE-2019-18786\", \"CVE-2019-18809\", \"CVE-2019-18885\", \"CVE-2019-19057\", \"CVE-2019-19062\", \"CVE-2019-19063\", \"CVE-2019-19071\", \"CVE-2019-19078\", \"CVE-2019-19082\", \"CVE-2019-19227\", \"CVE-2019-19332\", \"CVE-2019-19767\", \"CVE-2019-19965\", \"CVE-2019-20096\", \"CVE-2019-5108\", \"CVE-2020-7053\");\n script_xref(name:\"USN\", value:\"4287-1\");\n\n script_name(english:\"Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4287-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"It was discovered that the Linux kernel did not properly clear data\nstructures on context switches for certain Intel graphics processors.\nA local attacker could use this to expose sensitive information.\n(CVE-2019-14615)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly validate device metadata. A\nphysically proximate attacker could use this to cause a denial of\nservice (system crash). (CVE-2019-15099)\n\nIt was discovered that the HSA Linux kernel driver for AMD GPU devices\ndid not properly check for errors in certain situations, leading to a\nNULL pointer dereference. A local attacker could possibly use this to\ncause a denial of service. (CVE-2019-16229)\n\nIt was discovered that the Marvell 8xxx Libertas WLAN device driver in\nthe Linux kernel did not properly check for errors in certain\nsituations, leading to a NULL pointer dereference. A local attacker\ncould possibly use this to cause a denial of service. (CVE-2019-16232)\n\nIt was discovered that a race condition existed in the Virtual Video\nTest Driver in the Linux kernel. An attacker with write access to\n/dev/video0 on a system with the vivid module loaded could possibly\nuse this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the Renesas Digital Radio Interface (DRIF)\ndriver in the Linux kernel did not properly initialize data. A local\nattacker could possibly use this to expose sensitive information\n(kernel memory). (CVE-2019-18786)\n\nIt was discovered that the Afatech AF9005 DVB-T USB device driver in\nthe Linux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-18809)\n\nIt was discovered that the btrfs file system in the Linux kernel did\nnot properly validate metadata, leading to a NULL pointer dereference.\nAn attacker could use this to specially craft a file system image\nthat, when mounted, could cause a denial of service (system crash).\n(CVE-2019-18885)\n\nIt was discovered that multiple memory leaks existed in the Marvell\nWiFi-Ex Driver for the Linux kernel. A local attacker could possibly\nuse this to cause a denial of service (kernel memory exhaustion).\n(CVE-2019-19057)\n\nIt was discovered that the crypto subsystem in the Linux kernel did\nnot properly deallocate memory in certain error conditions. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19062)\n\nIt was discovered that the Realtek rtlwifi USB device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-19063)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux\nkernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly deallocate memory in certain\nerror conditions. A local attacker could possibly use this to cause a\ndenial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel\ndid not properly deallocate memory in certain error conditions. A\nlocal attacker could use this to possibly cause a denial of service\n(kernel memory exhaustion). (CVE-2019-19082)\n\nDan Carpenter discovered that the AppleTalk networking subsystem of\nthe Linux kernel did not properly handle certain error conditions,\nleading to a NULL pointer dereference. A local attacker could use this\nto cause a denial of service (system crash). (CVE-2019-19227)\n\nIt was discovered that the KVM hypervisor implementation in the Linux\nkernel did not properly handle ioctl requests to get emulated CPUID\nfeatures. An attacker with access to /dev/kvm could use this to cause\na denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that the ext4 file system implementation in the\nLinux kernel did not properly handle certain conditions. An attacker\ncould use this to specially craft an ext4 file system that, when\nmounted, could cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2019-19767)\n\nGao Chuan discovered that the SAS Class driver in the Linux kernel\ncontained a race condition that could lead to a NULL pointer\ndereference. A local attacker could possibly use this to cause a\ndenial of service (system crash). (CVE-2019-19965)\n\nIt was discovered that the Datagram Congestion Control Protocol (DCCP)\nimplementation in the Linux kernel did not properly deallocate memory\nin certain error conditions. An attacker could possibly use this to\ncause a denial of service (kernel memory exhaustion). (CVE-2019-20096)\n\nMitchell Frank discovered that the Wi-Fi implementation in the Linux\nkernel when used as an access point would send IAPP location updates\nfor stations before client authentication had completed. A physically\nproximate attacker could use this to cause a denial of service.\n(CVE-2019-5108)\n\nIt was discovered that a race condition can lead to a use-after-free\nwhile destroying GEM contexts in the i915 driver for the Linux kernel.\nA local attacker could use this to cause a denial of service (system\ncrash) or possibly execute arbitrary code. (CVE-2020-7053)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux\nkernel did not properly validate device metadata. A physically\nproximate attacker could use this to cause a denial of service (system\ncrash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4287-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18683\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-hwe\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-lts-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-4.15\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-lts-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/02/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/02/19\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020-2023 Canonical, Inc. / NASL script (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(16\\.04|18\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 16.04 / 18.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2019-14615\", \"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-16229\", \"CVE-2019-16232\", \"CVE-2019-18683\", \"CVE-2019-18786\", \"CVE-2019-18809\", \"CVE-2019-18885\", \"CVE-2019-19057\", \"CVE-2019-19062\", \"CVE-2019-19063\", \"CVE-2019-19071\", \"CVE-2019-19078\", \"CVE-2019-19082\", \"CVE-2019-19227\", \"CVE-2019-19332\", \"CVE-2019-19767\", \"CVE-2019-19965\", \"CVE-2019-20096\", \"CVE-2019-5108\", \"CVE-2020-7053\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4287-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nvar flag = 0;\n\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1033-oracle\", pkgver:\"4.15.0-1033.36~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1055-gcp\", pkgver:\"4.15.0-1055.59\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1060-aws\", pkgver:\"4.15.0-1060.62~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1071-azure\", pkgver:\"4.15.0-1071.76\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-88-generic\", pkgver:\"4.15.0-88.88~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-88-generic-lpae\", pkgver:\"4.15.0-88.88~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-88-lowlatency\", pkgver:\"4.15.0-88.88~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-aws-hwe\", pkgver:\"4.15.0.1060.60\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-azure\", pkgver:\"4.15.0.1071.74\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-gcp\", pkgver:\"4.15.0.1055.69\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-hwe-16.04\", pkgver:\"4.15.0.88.98\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-lpae-hwe-16.04\", pkgver:\"4.15.0.88.98\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-gke\", pkgver:\"4.15.0.1055.69\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-lowlatency-hwe-16.04\", pkgver:\"4.15.0.88.98\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-oem\", pkgver:\"4.15.0.88.98\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-oracle\", pkgver:\"4.15.0.1033.26\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-virtual-hwe-16.04\", pkgver:\"4.15.0.88.98\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1033-oracle\", pkgver:\"4.15.0-1033.36\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1052-gke\", pkgver:\"4.15.0-1052.55\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1053-kvm\", pkgver:\"4.15.0-1053.53\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1055-raspi2\", pkgver:\"4.15.0-1055.59\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1060-aws\", pkgver:\"4.15.0-1060.62\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1072-snapdragon\", pkgver:\"4.15.0-1072.79\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-88-generic\", pkgver:\"4.15.0-88.88\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-88-generic-lpae\", pkgver:\"4.15.0-88.88\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-88-lowlatency\", pkgver:\"4.15.0-88.88\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-aws\", pkgver:\"4.15.0.1060.61\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-aws-lts-18.04\", pkgver:\"4.15.0.1060.61\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic\", pkgver:\"4.15.0.88.80\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-lpae\", pkgver:\"4.15.0.88.80\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke\", pkgver:\"4.15.0.1052.56\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke-4.15\", pkgver:\"4.15.0.1052.56\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-kvm\", pkgver:\"4.15.0.1053.53\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-lowlatency\", pkgver:\"4.15.0.88.80\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle\", pkgver:\"4.15.0.1033.38\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle-lts-18.04\", pkgver:\"4.15.0.1033.38\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-raspi2\", pkgver:\"4.15.0.1055.53\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-snapdragon\", pkgver:\"4.15.0.1072.75\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-virtual\", pkgver:\"4.15.0.88.80\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.15-aws / linux-image-4.15-azure / etc\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-24T15:28:16", "description": "It was discovered that the Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.\nA local attacker could use this to expose sensitive information.\n(CVE-2019-14615)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15099)\n\nIt was discovered that the HSA Linux kernel driver for AMD GPU devices did not properly check for errors in certain situations, leading to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service. (CVE-2019-16229)\n\nIt was discovered that the Marvell 8xxx Libertas WLAN device driver in the Linux kernel did not properly check for errors in certain situations, leading to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service. (CVE-2019-16232)\n\nIt was discovered that a race condition existed in the Virtual Video Test Driver in the Linux kernel. An attacker with write access to /dev/video0 on a system with the vivid module loaded could possibly use this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the Renesas Digital Radio Interface (DRIF) driver in the Linux kernel did not properly initialize data. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2019-18786)\n\nIt was discovered that the Sound Open Firmware (SOF) driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-18811)\n\nIt was discovered that the crypto subsystem in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19050, CVE-2019-19062)\n\nIt was discovered that multiple memory leaks existed in the Marvell WiFi-Ex Driver for the Linux kernel. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion).\n(CVE-2019-19057)\n\nIt was discovered that the Realtek rtlwifi USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19063)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux kernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Broadcom Netxtreme HCA device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19077)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to possibly cause a denial of service (kernel memory exhaustion). (CVE-2019-19082)\n\nIt was discovered that the IO uring implementation in the Linux kernel did not properly perform credentials checks in certain situations. A local attacker could possibly use this to gain administrative privileges. (CVE-2019-19241)\n\nOr Cohen discovered that the virtual console subsystem in the Linux kernel did not properly restrict writes to unimplemented vcsu (unicode) devices. A local attacker could possibly use this to cause a denial of service (system crash) or have other unspecified impacts.\n(CVE-2019-19252)\n\nIt was discovered that the KVM hypervisor implementation in the Linux kernel did not properly handle ioctl requests to get emulated CPUID features. An attacker with access to /dev/kvm could use this to cause a denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that a race condition existed in the Linux kernel on x86 platforms when keeping track of which process was assigned control of the FPU. A local attacker could use this to cause a denial of service (memory corruption) or possibly gain administrative privileges. (CVE-2019-19602)\n\nIt was discovered that the ext4 file system implementation in the Linux kernel did not properly handle certain conditions. An attacker could use this to specially craft an ext4 file system that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19767)\n\nIt was discovered that the Kvaser CAN/USB driver in the Linux kernel did not properly initialize memory in certain situations. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2019-19947)\n\nGao Chuan discovered that the SAS Class driver in the Linux kernel contained a race condition that could lead to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2019-19965)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2020-02-19T00:00:00", "type": "nessus", "title": "Ubuntu 18.04 LTS / 19.10 : Linux kernel vulnerabilities (USN-4284-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-14615", "CVE-2019-15099", "CVE-2019-15291", "CVE-2019-16229", "CVE-2019-16232", "CVE-2019-18683", "CVE-2019-18786", "CVE-2019-18811", "CVE-2019-19050", "CVE-2019-19057", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19071", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082", "CVE-2019-19241", "CVE-2019-19252", "CVE-2019-19332", "CVE-2019-19602", "CVE-2019-19767", "CVE-2019-19947", "CVE-2019-19965"], "modified": "2023-05-11T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke", "p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-18.04", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:19.10"], "id": "UBUNTU_USN-4284-1.NASL", "href": "https://www.tenable.com/plugins/nessus/133797", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4284-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(133797);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/05/11\");\n\n script_cve_id(\"CVE-2019-14615\", \"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-16229\", \"CVE-2019-16232\", \"CVE-2019-18683\", \"CVE-2019-18786\", \"CVE-2019-18811\", \"CVE-2019-19050\", \"CVE-2019-19057\", \"CVE-2019-19062\", \"CVE-2019-19063\", \"CVE-2019-19071\", \"CVE-2019-19077\", \"CVE-2019-19078\", \"CVE-2019-19082\", \"CVE-2019-19241\", \"CVE-2019-19252\", \"CVE-2019-19332\", \"CVE-2019-19602\", \"CVE-2019-19767\", \"CVE-2019-19947\", \"CVE-2019-19965\");\n script_xref(name:\"USN\", value:\"4284-1\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 19.10 : Linux kernel vulnerabilities (USN-4284-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"It was discovered that the Linux kernel did not properly clear data\nstructures on context switches for certain Intel graphics processors.\nA local attacker could use this to expose sensitive information.\n(CVE-2019-14615)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly validate device metadata. A\nphysically proximate attacker could use this to cause a denial of\nservice (system crash). (CVE-2019-15099)\n\nIt was discovered that the HSA Linux kernel driver for AMD GPU devices\ndid not properly check for errors in certain situations, leading to a\nNULL pointer dereference. A local attacker could possibly use this to\ncause a denial of service. (CVE-2019-16229)\n\nIt was discovered that the Marvell 8xxx Libertas WLAN device driver in\nthe Linux kernel did not properly check for errors in certain\nsituations, leading to a NULL pointer dereference. A local attacker\ncould possibly use this to cause a denial of service. (CVE-2019-16232)\n\nIt was discovered that a race condition existed in the Virtual Video\nTest Driver in the Linux kernel. An attacker with write access to\n/dev/video0 on a system with the vivid module loaded could possibly\nuse this to gain administrative privileges. (CVE-2019-18683)\n\nIt was discovered that the Renesas Digital Radio Interface (DRIF)\ndriver in the Linux kernel did not properly initialize data. A local\nattacker could possibly use this to expose sensitive information\n(kernel memory). (CVE-2019-18786)\n\nIt was discovered that the Sound Open Firmware (SOF) driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could use this to cause a denial of\nservice (kernel memory exhaustion). (CVE-2019-18811)\n\nIt was discovered that the crypto subsystem in the Linux kernel did\nnot properly deallocate memory in certain error conditions. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19050, CVE-2019-19062)\n\nIt was discovered that multiple memory leaks existed in the Marvell\nWiFi-Ex Driver for the Linux kernel. A local attacker could possibly\nuse this to cause a denial of service (kernel memory exhaustion).\n(CVE-2019-19057)\n\nIt was discovered that the Realtek rtlwifi USB device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-19063)\n\nIt was discovered that the RSI 91x WLAN device driver in the Linux\nkernel did not properly deallocate memory in certain error conditions.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19071)\n\nIt was discovered that the Broadcom Netxtreme HCA device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial\nof service (kernel memory exhaustion). (CVE-2019-19077)\n\nIt was discovered that the Atheros 802.11ac wireless USB device driver\nin the Linux kernel did not properly deallocate memory in certain\nerror conditions. A local attacker could possibly use this to cause a\ndenial of service (kernel memory exhaustion). (CVE-2019-19078)\n\nIt was discovered that the AMD GPU device drivers in the Linux kernel\ndid not properly deallocate memory in certain error conditions. A\nlocal attacker could use this to possibly cause a denial of service\n(kernel memory exhaustion). (CVE-2019-19082)\n\nIt was discovered that the IO uring implementation in the Linux kernel\ndid not properly perform credentials checks in certain situations. A\nlocal attacker could possibly use this to gain administrative\nprivileges. (CVE-2019-19241)\n\nOr Cohen discovered that the virtual console subsystem in the Linux\nkernel did not properly restrict writes to unimplemented vcsu\n(unicode) devices. A local attacker could possibly use this to cause a\ndenial of service (system crash) or have other unspecified impacts.\n(CVE-2019-19252)\n\nIt was discovered that the KVM hypervisor implementation in the Linux\nkernel did not properly handle ioctl requests to get emulated CPUID\nfeatures. An attacker with access to /dev/kvm could use this to cause\na denial of service (system crash). (CVE-2019-19332)\n\nIt was discovered that a race condition existed in the Linux kernel on\nx86 platforms when keeping track of which process was assigned control\nof the FPU. A local attacker could use this to cause a denial of\nservice (memory corruption) or possibly gain administrative\nprivileges. (CVE-2019-19602)\n\nIt was discovered that the ext4 file system implementation in the\nLinux kernel did not properly handle certain conditions. An attacker\ncould use this to specially craft an ext4 file system that, when\nmounted, could cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2019-19767)\n\nIt was discovered that the Kvaser CAN/USB driver in the Linux kernel\ndid not properly initialize memory in certain situations. A local\nattacker could possibly use this to expose sensitive information\n(kernel memory). (CVE-2019-19947)\n\nGao Chuan discovered that the SAS Class driver in the Linux kernel\ncontained a race condition that could lead to a NULL pointer\ndereference. A local attacker could possibly use this to cause a\ndenial of service (system crash). (CVE-2019-19965)\n\nIt was discovered that the B2C2 FlexCop USB device driver in the Linux\nkernel did not properly validate device metadata. A physically\nproximate attacker could use this to cause a denial of service (system\ncrash). (CVE-2019-15291).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4284-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18683\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:19.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/02/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/02/19\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020-2023 Canonical, Inc. / NASL script (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(18\\.04|19\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 18.04 / 19.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2019-14615\", \"CVE-2019-15099\", \"CVE-2019-15291\", \"CVE-2019-16229\", \"CVE-2019-16232\", \"CVE-2019-18683\", \"CVE-2019-18786\", \"CVE-2019-18811\", \"CVE-2019-19050\", \"CVE-2019-19057\", \"CVE-2019-19062\", \"CVE-2019-19063\", \"CVE-2019-19071\", \"CVE-2019-19077\", \"CVE-2019-19078\", \"CVE-2019-19082\", \"CVE-2019-19241\", \"CVE-2019-19252\", \"CVE-2019-19332\", \"CVE-2019-19602\", \"CVE-2019-19767\", \"CVE-2019-19947\", \"CVE-2019-19965\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4284-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nvar flag = 0;\n\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1012-gcp\", pkgver:\"5.3.0-1012.13~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1013-azure\", pkgver:\"5.3.0-1013.14~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1018-raspi2\", pkgver:\"5.3.0-1018.20~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-40-generic\", pkgver:\"5.3.0-40.32~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-40-generic-lpae\", pkgver:\"5.3.0-40.32~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-40-lowlatency\", pkgver:\"5.3.0-40.32~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-azure-edge\", pkgver:\"5.3.0.1013.13\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gcp-edge\", pkgver:\"5.3.0.1012.11\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-hwe-18.04\", pkgver:\"5.3.0.40.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-lpae-hwe-18.04\", pkgver:\"5.3.0.40.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-lowlatency-hwe-18.04\", pkgver:\"5.3.0.40.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-raspi2-hwe-18.04\", pkgver:\"5.3.0.1018.7\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-snapdragon-hwe-18.04\", pkgver:\"5.3.0.40.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-virtual-hwe-18.04\", pkgver:\"5.3.0.40.97\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1009-oracle\", pkgver:\"5.3.0-1009.10\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1010-kvm\", pkgver:\"5.3.0-1010.11\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1011-aws\", pkgver:\"5.3.0-1011.12\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1012-gcp\", pkgver:\"5.3.0-1012.13\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1013-azure\", pkgver:\"5.3.0-1013.14\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1018-raspi2\", pkgver:\"5.3.0-1018.20\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-40-generic\", pkgver:\"5.3.0-40.32\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-40-generic-lpae\", pkgver:\"5.3.0-40.32\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-40-lowlatency\", pkgver:\"5.3.0-40.32\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-40-snapdragon\", pkgver:\"5.3.0-40.32\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-aws\", pkgver:\"5.3.0.1011.13\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-azure\", pkgver:\"5.3.0.1013.31\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-gcp\", pkgver:\"5.3.0.1012.13\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-generic\", pkgver:\"5.3.0.40.34\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-generic-lpae\", pkgver:\"5.3.0.40.34\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-gke\", pkgver:\"5.3.0.1012.13\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-kvm\", pkgver:\"5.3.0.1010.12\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-lowlatency\", pkgver:\"5.3.0.40.34\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-oracle\", pkgver:\"5.3.0.1009.10\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-raspi2\", pkgver:\"5.3.0.1018.15\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-snapdragon\", pkgver:\"5.3.0.40.34\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-virtual\", pkgver:\"5.3.0.40.34\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-5.3-aws / linux-image-5.3-azure / linux-image-5.3-gcp / etc\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-05-18T15:23:34", "description": "The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1769 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS) (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {}, "published": "2021-02-01T00:00:00", "type": "nessus", "title": "CentOS 8 : kernel (CESA-2020:1769)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2018-16871", "CVE-2019-10639", "CVE-2019-12819", "CVE-2019-15090", "CVE-2019-15099", "CVE-2019-15221", "CVE-2019-15223", "CVE-2019-16234", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18282", "CVE-2019-18805", "CVE-2019-19045", "CVE-2019-19047", "CVE-2019-19055", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19065", "CVE-2019-19067", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19532", "CVE-2019-19534", "CVE-2019-19768", "CVE-2019-19922", "CVE-2019-8980", "CVE-2020-10690", "CVE-2020-1749", "CVE-2020-7053"], "modified": "2021-03-23T00:00:00", "cpe": ["cpe:/o:centos:centos:8", "p-cpe:/a:centos:centos:bpftool", "p-cpe:/a:centos:centos:kernel", "p-cpe:/a:centos:centos:kernel-abi-whitelists", "p-cpe:/a:centos:centos:kernel-core", "p-cpe:/a:centos:centos:kernel-cross-headers", "p-cpe:/a:centos:centos:kernel-debug", "p-cpe:/a:centos:centos:kernel-debug-core", "p-cpe:/a:centos:centos:kernel-debug-devel", "p-cpe:/a:centos:centos:kernel-debug-modules", "p-cpe:/a:centos:centos:kernel-debug-modules-extra", "p-cpe:/a:centos:centos:kernel-devel", "p-cpe:/a:centos:centos:kernel-headers", "p-cpe:/a:centos:centos:kernel-modules", "p-cpe:/a:centos:centos:perf", "p-cpe:/a:centos:centos:kernel-modules-extra", "p-cpe:/a:centos:centos:kernel-tools", "p-cpe:/a:centos:centos:kernel-tools-libs", "p-cpe:/a:centos:centos:kernel-tools-libs-devel", "p-cpe:/a:centos:centos:python3-perf"], "id": "CENTOS8_RHSA-2020-1769.NASL", "href": "https://www.tenable.com/plugins/nessus/145850", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# Red Hat Security Advisory RHSA-2020:1769. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(145850);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/03/23\");\n\n script_cve_id(\n \"CVE-2018-16871\",\n \"CVE-2019-8980\",\n \"CVE-2019-10639\",\n \"CVE-2019-12819\",\n \"CVE-2019-15090\",\n \"CVE-2019-15099\",\n \"CVE-2019-15221\",\n \"CVE-2019-15223\",\n \"CVE-2019-16234\",\n \"CVE-2019-17053\",\n \"CVE-2019-17055\",\n \"CVE-2019-18282\",\n \"CVE-2019-18805\",\n \"CVE-2019-19045\",\n \"CVE-2019-19047\",\n \"CVE-2019-19055\",\n \"CVE-2019-19057\",\n \"CVE-2019-19058\",\n \"CVE-2019-19059\",\n \"CVE-2019-19065\",\n \"CVE-2019-19067\",\n \"CVE-2019-19073\",\n \"CVE-2019-19074\",\n \"CVE-2019-19077\",\n \"CVE-2019-19532\",\n \"CVE-2019-19534\",\n \"CVE-2019-19768\",\n \"CVE-2019-19922\",\n \"CVE-2020-1749\",\n \"CVE-2020-7053\",\n \"CVE-2020-10690\"\n );\n script_bugtraq_id(107120, 108547, 108768);\n script_xref(name:\"RHSA\", value:\"2020:1769\");\n\n script_name(english:\"CentOS 8 : kernel (CESA-2020:1769)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote CentOS host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the\nCESA-2020:1769 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure\n (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash\n (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c\n (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c\n (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS\n (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in\n drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c\n allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in\n drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS\n (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow\n for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS)\n (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c\n (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the\n drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound\n applications (CVE-2019-19922)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service\n (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open\n (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:1769\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18805\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/11/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/02/01\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bpftool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-cross-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:python3-perf\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CentOS Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\ninclude('rhel.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/CentOS/release');\nif (isnull(release) || 'CentOS' >!< release) audit(AUDIT_OS_NOT, 'CentOS');\nos_ver = pregmatch(pattern: \"CentOS(?: Stream)?(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'CentOS');\nos_ver = os_ver[1];\nif ('CentOS Stream' >< release) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS Stream ' + os_ver);\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS ' + os_ver);\n\nif (!get_kb_item('Host/CentOS/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'CentOS', cpu);\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n cve_list = make_list('CVE-2018-16871', 'CVE-2019-8980', 'CVE-2019-10639', 'CVE-2019-12819', 'CVE-2019-15090', 'CVE-2019-15099', 'CVE-2019-15221', 'CVE-2019-15223', 'CVE-2019-16234', 'CVE-2019-17053', 'CVE-2019-17055', 'CVE-2019-18282', 'CVE-2019-18805', 'CVE-2019-19045', 'CVE-2019-19047', 'CVE-2019-19055', 'CVE-2019-19057', 'CVE-2019-19058', 'CVE-2019-19059', 'CVE-2019-19065', 'CVE-2019-19067', 'CVE-2019-19073', 'CVE-2019-19074', 'CVE-2019-19077', 'CVE-2019-19532', 'CVE-2019-19534', 'CVE-2019-19768', 'CVE-2019-19922', 'CVE-2020-1749', 'CVE-2020-7053', 'CVE-2020-10690');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for CESA-2020:1769');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\npkgs = [\n {'reference':'bpftool-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'bpftool-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n reference = NULL;\n release = NULL;\n sp = NULL;\n cpu = NULL;\n el_string = NULL;\n rpm_spec_vers_cmp = NULL;\n epoch = NULL;\n allowmaj = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = 'CentOS-' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (reference && release) {\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-abi-whitelists / kernel-core / etc');\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-05-18T14:59:30", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1567 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS) (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS (CVE-2019-5108)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {}, "published": "2020-04-29T00:00:00", "type": "nessus", "title": "RHEL 8 : kernel-rt (RHSA-2020:1567)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2018-16871", "CVE-2019-10639", "CVE-2019-12819", "CVE-2019-15090", "CVE-2019-15099", "CVE-2019-15221", "CVE-2019-15223", "CVE-2019-16234", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18282", "CVE-2019-18805", "CVE-2019-19045", "CVE-2019-19047", "CVE-2019-19055", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19065", "CVE-2019-19067", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19532", "CVE-2019-19534", "CVE-2019-19768", "CVE-2019-19922", "CVE-2019-5108", "CVE-2019-8980", "CVE-2020-10690", "CVE-2020-1749", "CVE-2020-7053"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:8", "cpe:/o:redhat:rhel_aus:8.2", "cpe:/o:redhat:rhel_aus:8.4", "cpe:/o:redhat:rhel_aus:8.6", "cpe:/o:redhat:rhel_e4s:8.2", "cpe:/o:redhat:rhel_e4s:8.4", "cpe:/o:redhat:rhel_e4s:8.6", "cpe:/o:redhat:rhel_eus:8.2", "cpe:/o:redhat:rhel_eus:8.4", "cpe:/o:redhat:rhel_eus:8.6", "cpe:/o:redhat:rhel_tus:8.2", "cpe:/o:redhat:rhel_tus:8.4", "cpe:/o:redhat:rhel_tus:8.6", "p-cpe:/a:redhat:enterprise_linux:kernel-rt", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-core", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-core", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-kvm", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-extra", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-kvm", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules", "p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-extra"], "id": "REDHAT-RHSA-2020-1567.NASL", "href": "https://www.tenable.com/plugins/nessus/136116", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:1567. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(136116);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\n \"CVE-2018-16871\",\n \"CVE-2019-8980\",\n \"CVE-2019-10639\",\n \"CVE-2019-15090\",\n \"CVE-2019-15099\",\n \"CVE-2019-15221\",\n \"CVE-2019-17053\",\n \"CVE-2019-17055\",\n \"CVE-2019-18805\",\n \"CVE-2019-19045\",\n \"CVE-2019-19047\",\n \"CVE-2019-19055\",\n \"CVE-2019-19057\",\n \"CVE-2019-19058\",\n \"CVE-2019-19059\",\n \"CVE-2019-19065\",\n \"CVE-2019-19073\",\n \"CVE-2019-19074\",\n \"CVE-2019-19077\",\n \"CVE-2019-19534\",\n \"CVE-2019-19768\",\n \"CVE-2019-19922\",\n \"CVE-2020-1749\"\n );\n script_bugtraq_id(107120, 108547, 108768);\n script_xref(name:\"RHSA\", value:\"2020:1567\");\n\n script_name(english:\"RHEL 8 : kernel-rt (RHSA-2020:1567)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the RHSA-2020:1567 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure\n (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash\n (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c\n (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c\n (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS\n (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in\n drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c\n allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in\n drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS\n (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow\n for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS)\n (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c\n (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the\n drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound\n applications (CVE-2019-19922)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication\n process has completed can lead to DoS (CVE-2019-5108)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service\n (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open\n (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2018-16871\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-5108\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-8980\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-10639\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-12819\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15090\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15099\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15221\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15223\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-16234\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-17053\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-17055\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-18282\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-18805\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19045\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19047\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19055\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19057\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19058\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19059\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19065\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19067\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19074\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19077\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19532\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19534\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19768\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19922\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1749\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-7053\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-10690\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:1567\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1655162\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1679972\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1721962\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1729933\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1743526\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1743560\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1749974\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1749976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1758242\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1758248\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1760441\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1771496\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774933\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774937\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774968\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774983\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774991\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775000\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775042\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775047\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775050\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775074\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775724\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1781821\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1783540\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1786164\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1789927\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1792512\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1795624\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1796360\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1809833\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1817141\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18805\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 119, 125, 190, 200, 250, 319, 400, 416, 440, 476, 772);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/11/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/29\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:8\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-extra\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n var cve_list = make_list('CVE-2018-16871', 'CVE-2019-5108', 'CVE-2019-8980', 'CVE-2019-10639', 'CVE-2019-12819', 'CVE-2019-15090', 'CVE-2019-15099', 'CVE-2019-15221', 'CVE-2019-15223', 'CVE-2019-16234', 'CVE-2019-17053', 'CVE-2019-17055', 'CVE-2019-18282', 'CVE-2019-18805', 'CVE-2019-19045', 'CVE-2019-19047', 'CVE-2019-19055', 'CVE-2019-19057', 'CVE-2019-19058', 'CVE-2019-19059', 'CVE-2019-19065', 'CVE-2019-19067', 'CVE-2019-19073', 'CVE-2019-19074', 'CVE-2019-19077', 'CVE-2019-19532', 'CVE-2019-19534', 'CVE-2019-19768', 'CVE-2019-19922', 'CVE-2020-1749', 'CVE-2020-7053', 'CVE-2020-10690');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2020:1567');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.2/x86_64/appstream/debug',\n 'content/aus/rhel8/8.2/x86_64/appstream/os',\n 'content/aus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.2/x86_64/baseos/debug',\n 'content/aus/rhel8/8.2/x86_64/baseos/os',\n 'content/aus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.2/x86_64/appstream/os',\n 'content/e4s/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.2/x86_64/baseos/os',\n 'content/e4s/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap/os',\n 'content/e4s/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/appstream/debug',\n 'content/eus/rhel8/8.2/x86_64/appstream/os',\n 'content/eus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/baseos/debug',\n 'content/eus/rhel8/8.2/x86_64/baseos/os',\n 'content/eus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.2/x86_64/highavailability/os',\n 'content/eus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap/debug',\n 'content/eus/rhel8/8.2/x86_64/sap/os',\n 'content/eus/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.2/x86_64/supplementary/os',\n 'content/eus/rhel8/8.2/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/appstream/debug',\n 'content/tus/rhel8/8.2/x86_64/appstream/os',\n 'content/tus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/baseos/debug',\n 'content/tus/rhel8/8.2/x86_64/baseos/os',\n 'content/tus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.2/x86_64/highavailability/os',\n 'content/tus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/nfv/debug',\n 'content/tus/rhel8/8.2/x86_64/nfv/os',\n 'content/tus/rhel8/8.2/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/rt/debug',\n 'content/tus/rhel8/8.2/x86_64/rt/os',\n 'content/tus/rhel8/8.2/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'kernel-rt-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-core-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-core-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-devel-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-kvm-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-devel-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-kvm-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.4/x86_64/appstream/debug',\n 'content/aus/rhel8/8.4/x86_64/appstream/os',\n 'content/aus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.4/x86_64/baseos/debug',\n 'content/aus/rhel8/8.4/x86_64/baseos/os',\n 'content/aus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.4/x86_64/appstream/os',\n 'content/e4s/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.4/x86_64/baseos/os',\n 'content/e4s/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap/os',\n 'content/e4s/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/appstream/debug',\n 'content/eus/rhel8/8.4/x86_64/appstream/os',\n 'content/eus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/baseos/debug',\n 'content/eus/rhel8/8.4/x86_64/baseos/os',\n 'content/eus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.4/x86_64/highavailability/os',\n 'content/eus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap/debug',\n 'content/eus/rhel8/8.4/x86_64/sap/os',\n 'content/eus/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.4/x86_64/supplementary/os',\n 'content/eus/rhel8/8.4/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/appstream/debug',\n 'content/tus/rhel8/8.4/x86_64/appstream/os',\n 'content/tus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/baseos/debug',\n 'content/tus/rhel8/8.4/x86_64/baseos/os',\n 'content/tus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.4/x86_64/highavailability/os',\n 'content/tus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/nfv/debug',\n 'content/tus/rhel8/8.4/x86_64/nfv/os',\n 'content/tus/rhel8/8.4/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/rt/debug',\n 'content/tus/rhel8/8.4/x86_64/rt/os',\n 'content/tus/rhel8/8.4/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'kernel-rt-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-core-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-core-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-devel-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-kvm-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-devel-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-kvm-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.6/x86_64/appstream/debug',\n 'content/aus/rhel8/8.6/x86_64/appstream/os',\n 'content/aus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.6/x86_64/baseos/debug',\n 'content/aus/rhel8/8.6/x86_64/baseos/os',\n 'content/aus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.6/x86_64/appstream/os',\n 'content/e4s/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.6/x86_64/baseos/os',\n 'content/e4s/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap/os',\n 'content/e4s/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/appstream/debug',\n 'content/eus/rhel8/8.6/x86_64/appstream/os',\n 'content/eus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/baseos/debug',\n 'content/eus/rhel8/8.6/x86_64/baseos/os',\n 'content/eus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.6/x86_64/highavailability/os',\n 'content/eus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap/debug',\n 'content/eus/rhel8/8.6/x86_64/sap/os',\n 'content/eus/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.6/x86_64/supplementary/os',\n 'content/eus/rhel8/8.6/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/appstream/debug',\n 'content/tus/rhel8/8.6/x86_64/appstream/os',\n 'content/tus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/baseos/debug',\n 'content/tus/rhel8/8.6/x86_64/baseos/os',\n 'content/tus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.6/x86_64/highavailability/os',\n 'content/tus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/rt/os',\n 'content/tus/rhel8/8.6/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'kernel-rt-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-core-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-core-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-devel-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-kvm-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-devel-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-kvm-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-extra-4.18.0-193.rt13.51.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/dist/rhel8/8/x86_64/appstream/debug',\n 'content/dist/rhel8/8/x86_64/appstream/os',\n 'content/dist/rhel8/8/x86_64/appstream/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/baseos/debug',\n 'content/dist/rhel8/8/x86_64/baseos/os',\n 'content/dist/rhel8/8/x86_64/baseos/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/codeready-builder/debug',\n 'content/dist/rhel8/8/x86_64/codeready-builder/os',\n 'content/dist/rhel8/8/x86_64/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/highavailability/debug',\n 'content/dist/rhel8/8/x86_64/highavailability/os',\n 'content/dist/rhel8/8/x86_64/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/nfv/debug',\n 'content/dist/rhel8/8/x86_64/nfv/os',\n 'content/dist/rhel8/8/x86_64/nfv/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/resilientstorage/debug',\n 'content/dist/rhel8/8/x86_64/resilientstorage/os',\n 'content/dist/rhel8/8/x86_64/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/rt/debug',\n 'content/dist/rhel8/8/x86_64/rt/os',\n 'content/dist/rhel8/8/x86_64/rt/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap-solutions/debug',\n 'content/dist/rhel8/8/x86_64/sap-solutions/os',\n 'content/dist/rhel8/8/x86_64/sap-solutions/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap/debug',\n 'content/dist/rhel8/8/x86_64/sap/os',\n 'content/dist/rhel8/8/x86_64/sap/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/supplementary/debug',\n 'content/dist/rhel8/8/x86_64/supplementary/os',\n 'content/dist/rhel8/8/x86_64/supplementary/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'kernel-rt-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-core-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-core-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-devel-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-kvm-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-debug-modules-extra-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-devel-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-kvm-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-rt-modules-extra-4.18.0-193.rt13.51.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n var enterprise_linux_flag = rhel_repo_urls_has_content_dist_rhel(repo_urls:repo_relative_urls);\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp']) && !enterprise_linux_flag) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'kernel-rt / kernel-rt-core / kernel-rt-debug / kernel-rt-debug-core / etc');\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-05-26T14:18:56", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1769 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: buffer-overflow hardening in WiFi beacon validation code. (CVE-2019-16746)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS) (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound applications (CVE-2019-19922)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication process has completed can lead to DoS (CVE-2019-5108)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {}, "published": "2020-04-29T00:00:00", "type": "nessus", "title": "RHEL 8 : kernel (RHSA-2020:1769)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2018-16871", "CVE-2019-10639", "CVE-2019-12819", "CVE-2019-15090", "CVE-2019-15099", "CVE-2019-15221", "CVE-2019-15223", "CVE-2019-16234", "CVE-2019-16746", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18282", "CVE-2019-18805", "CVE-2019-19045", "CVE-2019-19047", "CVE-2019-19055", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19065", "CVE-2019-19067", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19532", "CVE-2019-19534", "CVE-2019-19768", "CVE-2019-19922", "CVE-2019-5108", "CVE-2019-8980", "CVE-2020-10690", "CVE-2020-1749", "CVE-2020-7053"], "modified": "2023-05-25T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:8", "cpe:/o:redhat:rhel_aus:8.2", "cpe:/o:redhat:rhel_aus:8.4", "cpe:/o:redhat:rhel_aus:8.6", "cpe:/o:redhat:rhel_e4s:8.2", "cpe:/o:redhat:rhel_e4s:8.4", "cpe:/o:redhat:rhel_e4s:8.6", "cpe:/o:redhat:rhel_eus:8.2", "cpe:/o:redhat:rhel_eus:8.4", "cpe:/o:redhat:rhel_eus:8.6", "cpe:/o:redhat:rhel_tus:8.2", "cpe:/o:redhat:rhel_tus:8.4", "cpe:/o:redhat:rhel_tus:8.6", "p-cpe:/a:redhat:enterprise_linux:bpftool", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists", "p-cpe:/a:redhat:enterprise_linux:kernel-core", "p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-core", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-modules", "p-cpe:/a:redhat:enterprise_linux:kernel-modules-extra", "p-cpe:/a:redhat:enterprise_linux:kernel-tools", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump", "p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-core", "p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules", "p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-extra", "p-cpe:/a:redhat:enterprise_linux:perf", "p-cpe:/a:redhat:enterprise_linux:python3-perf"], "id": "REDHAT-RHSA-2020-1769.NASL", "href": "https://www.tenable.com/plugins/nessus/136115", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:1769. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(136115);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/05/25\");\n\n script_cve_id(\n \"CVE-2018-16871\",\n \"CVE-2019-8980\",\n \"CVE-2019-10639\",\n \"CVE-2019-15090\",\n \"CVE-2019-15099\",\n \"CVE-2019-15221\",\n \"CVE-2019-17053\",\n \"CVE-2019-17055\",\n \"CVE-2019-18805\",\n \"CVE-2019-19045\",\n \"CVE-2019-19047\",\n \"CVE-2019-19055\",\n \"CVE-2019-19057\",\n \"CVE-2019-19058\",\n \"CVE-2019-19059\",\n \"CVE-2019-19065\",\n \"CVE-2019-19073\",\n \"CVE-2019-19074\",\n \"CVE-2019-19077\",\n \"CVE-2019-19534\",\n \"CVE-2019-19768\",\n \"CVE-2019-19922\",\n \"CVE-2020-1749\"\n );\n script_bugtraq_id(107120, 108547, 108768);\n script_xref(name:\"RHSA\", value:\"2020:1769\");\n\n script_name(english:\"RHEL 8 : kernel (RHSA-2020:1769)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the RHSA-2020:1769 advisory.\n\n - kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence (CVE-2018-16871)\n\n - Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR (CVE-2019-10639)\n\n - kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c (CVE-2019-12819)\n\n - kernel: An out-of-bounds read in drivers/scsi/qedi/qedi_dbg.c leading to crash or information disclosure\n (CVE-2019-15090)\n\n - kernel: a NULL pointer dereference in drivers/net/wireless/ath/ath10k/usb.c leads to a crash\n (CVE-2019-15099)\n\n - kernel: Null pointer dereference in the sound/usb/line6/pcm.c (CVE-2019-15221)\n\n - kernel: Null pointer dereference in the sound/usb/line6/driver.c (CVE-2019-15223)\n\n - kernel: null pointer dereference in drivers/net/wireless/intel/iwlwifi/pcie/trans.c (CVE-2019-16234)\n\n - kernel: buffer-overflow hardening in WiFi beacon validation code. (CVE-2019-16746)\n\n - kernel: unprivileged users able to create RAW sockets in AF_IEEE802154 network protocol (CVE-2019-17053)\n\n - kernel: unprivileged users able to create RAW sockets in AF_ISDN network protocol (CVE-2019-17055)\n\n - kernel: The flow_dissector feature allows device tracking (CVE-2019-18282)\n\n - kernel: integer overflow in tcp_ack_update_rtt in net/ipv4/tcp_input.c (CVE-2019-18805)\n\n - kernel: dos in mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c\n (CVE-2019-19045)\n\n - kernel: dos in mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c\n (CVE-2019-19047)\n\n - kernel: memory leak in the nl80211_get_ftm_responder_stats() function in net/wireless/nl80211.c allows DoS\n (CVE-2019-19055)\n\n - kernel: Two memory leaks in the mwifiex_pcie_init_evt_ring() function in\n drivers/net/wireless/marvell/mwifiex/pcie.c allows for a DoS (CVE-2019-19057)\n\n - kernel: A memory leak in the alloc_sgtable() function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c\n allows for a DoS (CVE-2019-19058)\n\n - kernel: Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in\n drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c allows for a DoS (CVE-2019-19059)\n\n - kernel: A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi1/sdma.c allows for a DoS\n (CVE-2019-19065)\n\n - kernel: Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c allow\n for a DoS (CVE-2019-19067)\n\n - kernel: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel (DOS)\n (CVE-2019-19073)\n\n - kernel: a memory leak in the ath9k management function in allows local DoS (CVE-2019-19074)\n\n - kernel: memory leak in bnxt_re_create_srq function in drivers/infiniband/hw/bnxt_re/ib_verbs.c\n (CVE-2019-19077)\n\n - kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532)\n\n - kernel: information leak bug caused by a malicious USB device in the\n drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (CVE-2019-19534)\n\n - kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c (CVE-2019-19768)\n\n - kernel: when cpu.cfs_quota_us is used allows attackers to cause a denial of service against non-cpu-bound\n applications (CVE-2019-19922)\n\n - kernel: triggering AP to send IAPP location updates for stations before the required authentication\n process has completed can lead to DoS (CVE-2019-5108)\n\n - kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service\n (CVE-2019-8980)\n\n - kernel: use-after-free in cdev_put() when a PTP device is removed while it's chardev is open\n (CVE-2020-10690)\n\n - kernel: some ipv6 protocols not encrypted over ipsec tunnel (CVE-2020-1749)\n\n - kernel: use-after-free in i915_ppgtt_close in drivers/gpu/drm/i915/i915_gem_gtt.c (CVE-2020-7053)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2018-16871\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-5108\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-8980\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-10639\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-12819\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15090\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15099\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15221\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-15223\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-16234\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-16746\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-17053\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-17055\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-18282\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-18805\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19045\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19047\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19055\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19057\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19058\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19059\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19065\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19067\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19074\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19077\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19532\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19534\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19768\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19922\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1749\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-7053\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-10690\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:1769\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1655162\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1679972\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1721962\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1729933\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1743526\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1743560\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1749974\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1749976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1758242\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1758248\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1760306\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1760441\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1771496\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774933\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774937\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774968\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774983\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774991\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775000\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775042\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775047\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775050\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775074\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1775724\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1781821\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1783540\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1786164\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1789927\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1792512\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1795624\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1796360\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1809833\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1817141\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-18805\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 119, 120, 125, 190, 200, 250, 319, 400, 416, 440, 476, 772);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2018/11/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/29\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:8\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bpftool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python3-perf\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n var cve_list = make_list('CVE-2018-16871', 'CVE-2019-5108', 'CVE-2019-8980', 'CVE-2019-10639', 'CVE-2019-12819', 'CVE-2019-15090', 'CVE-2019-15099', 'CVE-2019-15221', 'CVE-2019-15223', 'CVE-2019-16234', 'CVE-2019-16746', 'CVE-2019-17053', 'CVE-2019-17055', 'CVE-2019-18282', 'CVE-2019-18805', 'CVE-2019-19045', 'CVE-2019-19047', 'CVE-2019-19055', 'CVE-2019-19057', 'CVE-2019-19058', 'CVE-2019-19059', 'CVE-2019-19065', 'CVE-2019-19067', 'CVE-2019-19073', 'CVE-2019-19074', 'CVE-2019-19077', 'CVE-2019-19532', 'CVE-2019-19534', 'CVE-2019-19768', 'CVE-2019-19922', 'CVE-2020-1749', 'CVE-2020-7053', 'CVE-2020-10690');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2020:1769');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.2/x86_64/appstream/debug',\n 'content/aus/rhel8/8.2/x86_64/appstream/os',\n 'content/aus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.2/x86_64/baseos/debug',\n 'content/aus/rhel8/8.2/x86_64/baseos/os',\n 'content/aus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/ppc64le/appstream/debug',\n 'content/e4s/rhel8/8.2/ppc64le/appstream/os',\n 'content/e4s/rhel8/8.2/ppc64le/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.2/ppc64le/baseos/debug',\n 'content/e4s/rhel8/8.2/ppc64le/baseos/os',\n 'content/e4s/rhel8/8.2/ppc64le/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/ppc64le/highavailability/debug',\n 'content/e4s/rhel8/8.2/ppc64le/highavailability/os',\n 'content/e4s/rhel8/8.2/ppc64le/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.2/ppc64le/sap-solutions/debug',\n 'content/e4s/rhel8/8.2/ppc64le/sap-solutions/os',\n 'content/e4s/rhel8/8.2/ppc64le/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.2/ppc64le/sap/debug',\n 'content/e4s/rhel8/8.2/ppc64le/sap/os',\n 'content/e4s/rhel8/8.2/ppc64le/sap/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.2/x86_64/appstream/os',\n 'content/e4s/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.2/x86_64/baseos/os',\n 'content/e4s/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap/os',\n 'content/e4s/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/aarch64/appstream/debug',\n 'content/eus/rhel8/8.2/aarch64/appstream/os',\n 'content/eus/rhel8/8.2/aarch64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/aarch64/baseos/debug',\n 'content/eus/rhel8/8.2/aarch64/baseos/os',\n 'content/eus/rhel8/8.2/aarch64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/aarch64/codeready-builder/debug',\n 'content/eus/rhel8/8.2/aarch64/codeready-builder/os',\n 'content/eus/rhel8/8.2/aarch64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/aarch64/highavailability/debug',\n 'content/eus/rhel8/8.2/aarch64/highavailability/os',\n 'content/eus/rhel8/8.2/aarch64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/aarch64/supplementary/debug',\n 'content/eus/rhel8/8.2/aarch64/supplementary/os',\n 'content/eus/rhel8/8.2/aarch64/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/appstream/debug',\n 'content/eus/rhel8/8.2/ppc64le/appstream/os',\n 'content/eus/rhel8/8.2/ppc64le/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/baseos/debug',\n 'content/eus/rhel8/8.2/ppc64le/baseos/os',\n 'content/eus/rhel8/8.2/ppc64le/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/codeready-builder/debug',\n 'content/eus/rhel8/8.2/ppc64le/codeready-builder/os',\n 'content/eus/rhel8/8.2/ppc64le/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/highavailability/debug',\n 'content/eus/rhel8/8.2/ppc64le/highavailability/os',\n 'content/eus/rhel8/8.2/ppc64le/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/resilientstorage/debug',\n 'content/eus/rhel8/8.2/ppc64le/resilientstorage/os',\n 'content/eus/rhel8/8.2/ppc64le/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/sap-solutions/debug',\n 'content/eus/rhel8/8.2/ppc64le/sap-solutions/os',\n 'content/eus/rhel8/8.2/ppc64le/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/sap/debug',\n 'content/eus/rhel8/8.2/ppc64le/sap/os',\n 'content/eus/rhel8/8.2/ppc64le/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/ppc64le/supplementary/debug',\n 'content/eus/rhel8/8.2/ppc64le/supplementary/os',\n 'content/eus/rhel8/8.2/ppc64le/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/appstream/debug',\n 'content/eus/rhel8/8.2/s390x/appstream/os',\n 'content/eus/rhel8/8.2/s390x/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/baseos/debug',\n 'content/eus/rhel8/8.2/s390x/baseos/os',\n 'content/eus/rhel8/8.2/s390x/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/codeready-builder/debug',\n 'content/eus/rhel8/8.2/s390x/codeready-builder/os',\n 'content/eus/rhel8/8.2/s390x/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/highavailability/debug',\n 'content/eus/rhel8/8.2/s390x/highavailability/os',\n 'content/eus/rhel8/8.2/s390x/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/resilientstorage/debug',\n 'content/eus/rhel8/8.2/s390x/resilientstorage/os',\n 'content/eus/rhel8/8.2/s390x/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/sap/debug',\n 'content/eus/rhel8/8.2/s390x/sap/os',\n 'content/eus/rhel8/8.2/s390x/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/s390x/supplementary/debug',\n 'content/eus/rhel8/8.2/s390x/supplementary/os',\n 'content/eus/rhel8/8.2/s390x/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/appstream/debug',\n 'content/eus/rhel8/8.2/x86_64/appstream/os',\n 'content/eus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/baseos/debug',\n 'content/eus/rhel8/8.2/x86_64/baseos/os',\n 'content/eus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.2/x86_64/highavailability/os',\n 'content/eus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap/debug',\n 'content/eus/rhel8/8.2/x86_64/sap/os',\n 'content/eus/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.2/x86_64/supplementary/os',\n 'content/eus/rhel8/8.2/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/appstream/debug',\n 'content/tus/rhel8/8.2/x86_64/appstream/os',\n 'content/tus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/baseos/debug',\n 'content/tus/rhel8/8.2/x86_64/baseos/os',\n 'content/tus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.2/x86_64/highavailability/os',\n 'content/tus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/nfv/debug',\n 'content/tus/rhel8/8.2/x86_64/nfv/os',\n 'content/tus/rhel8/8.2/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/rt/debug',\n 'content/tus/rhel8/8.2/x86_64/rt/os',\n 'content/tus/rhel8/8.2/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'bpftool-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'2', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'2', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'2', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'2', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-4.18.0-193.el8', 'sp':'2', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-core-4.18.0-193.el8', 'sp':'2', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-devel-4.18.0-193.el8', 'sp':'2', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-4.18.0-193.el8', 'sp':'2', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-extra-4.18.0-193.el8', 'sp':'2', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'sp':'2', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.4/x86_64/appstream/debug',\n 'content/aus/rhel8/8.4/x86_64/appstream/os',\n 'content/aus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.4/x86_64/baseos/debug',\n 'content/aus/rhel8/8.4/x86_64/baseos/os',\n 'content/aus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/ppc64le/appstream/debug',\n 'content/e4s/rhel8/8.4/ppc64le/appstream/os',\n 'content/e4s/rhel8/8.4/ppc64le/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.4/ppc64le/baseos/debug',\n 'content/e4s/rhel8/8.4/ppc64le/baseos/os',\n 'content/e4s/rhel8/8.4/ppc64le/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/ppc64le/highavailability/debug',\n 'content/e4s/rhel8/8.4/ppc64le/highavailability/os',\n 'content/e4s/rhel8/8.4/ppc64le/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.4/ppc64le/sap-solutions/debug',\n 'content/e4s/rhel8/8.4/ppc64le/sap-solutions/os',\n 'content/e4s/rhel8/8.4/ppc64le/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.4/ppc64le/sap/debug',\n 'content/e4s/rhel8/8.4/ppc64le/sap/os',\n 'content/e4s/rhel8/8.4/ppc64le/sap/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.4/x86_64/appstream/os',\n 'content/e4s/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.4/x86_64/baseos/os',\n 'content/e4s/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap/os',\n 'content/e4s/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/aarch64/appstream/debug',\n 'content/eus/rhel8/8.4/aarch64/appstream/os',\n 'content/eus/rhel8/8.4/aarch64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/aarch64/baseos/debug',\n 'content/eus/rhel8/8.4/aarch64/baseos/os',\n 'content/eus/rhel8/8.4/aarch64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/aarch64/codeready-builder/debug',\n 'content/eus/rhel8/8.4/aarch64/codeready-builder/os',\n 'content/eus/rhel8/8.4/aarch64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/aarch64/highavailability/debug',\n 'content/eus/rhel8/8.4/aarch64/highavailability/os',\n 'content/eus/rhel8/8.4/aarch64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/aarch64/supplementary/debug',\n 'content/eus/rhel8/8.4/aarch64/supplementary/os',\n 'content/eus/rhel8/8.4/aarch64/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/appstream/debug',\n 'content/eus/rhel8/8.4/ppc64le/appstream/os',\n 'content/eus/rhel8/8.4/ppc64le/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/baseos/debug',\n 'content/eus/rhel8/8.4/ppc64le/baseos/os',\n 'content/eus/rhel8/8.4/ppc64le/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/codeready-builder/debug',\n 'content/eus/rhel8/8.4/ppc64le/codeready-builder/os',\n 'content/eus/rhel8/8.4/ppc64le/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/highavailability/debug',\n 'content/eus/rhel8/8.4/ppc64le/highavailability/os',\n 'content/eus/rhel8/8.4/ppc64le/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/resilientstorage/debug',\n 'content/eus/rhel8/8.4/ppc64le/resilientstorage/os',\n 'content/eus/rhel8/8.4/ppc64le/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/sap-solutions/debug',\n 'content/eus/rhel8/8.4/ppc64le/sap-solutions/os',\n 'content/eus/rhel8/8.4/ppc64le/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/sap/debug',\n 'content/eus/rhel8/8.4/ppc64le/sap/os',\n 'content/eus/rhel8/8.4/ppc64le/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/ppc64le/supplementary/debug',\n 'content/eus/rhel8/8.4/ppc64le/supplementary/os',\n 'content/eus/rhel8/8.4/ppc64le/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/appstream/debug',\n 'content/eus/rhel8/8.4/s390x/appstream/os',\n 'content/eus/rhel8/8.4/s390x/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/baseos/debug',\n 'content/eus/rhel8/8.4/s390x/baseos/os',\n 'content/eus/rhel8/8.4/s390x/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/codeready-builder/debug',\n 'content/eus/rhel8/8.4/s390x/codeready-builder/os',\n 'content/eus/rhel8/8.4/s390x/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/highavailability/debug',\n 'content/eus/rhel8/8.4/s390x/highavailability/os',\n 'content/eus/rhel8/8.4/s390x/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/resilientstorage/debug',\n 'content/eus/rhel8/8.4/s390x/resilientstorage/os',\n 'content/eus/rhel8/8.4/s390x/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/sap/debug',\n 'content/eus/rhel8/8.4/s390x/sap/os',\n 'content/eus/rhel8/8.4/s390x/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/s390x/supplementary/debug',\n 'content/eus/rhel8/8.4/s390x/supplementary/os',\n 'content/eus/rhel8/8.4/s390x/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/appstream/debug',\n 'content/eus/rhel8/8.4/x86_64/appstream/os',\n 'content/eus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/baseos/debug',\n 'content/eus/rhel8/8.4/x86_64/baseos/os',\n 'content/eus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.4/x86_64/highavailability/os',\n 'content/eus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap/debug',\n 'content/eus/rhel8/8.4/x86_64/sap/os',\n 'content/eus/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.4/x86_64/supplementary/os',\n 'content/eus/rhel8/8.4/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/appstream/debug',\n 'content/tus/rhel8/8.4/x86_64/appstream/os',\n 'content/tus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/baseos/debug',\n 'content/tus/rhel8/8.4/x86_64/baseos/os',\n 'content/tus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.4/x86_64/highavailability/os',\n 'content/tus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/nfv/debug',\n 'content/tus/rhel8/8.4/x86_64/nfv/os',\n 'content/tus/rhel8/8.4/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/rt/debug',\n 'content/tus/rhel8/8.4/x86_64/rt/os',\n 'content/tus/rhel8/8.4/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'bpftool-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'4', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'4', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'4', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'4', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-4.18.0-193.el8', 'sp':'4', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-core-4.18.0-193.el8', 'sp':'4', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-devel-4.18.0-193.el8', 'sp':'4', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-4.18.0-193.el8', 'sp':'4', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-extra-4.18.0-193.el8', 'sp':'4', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'sp':'4', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.6/x86_64/appstream/debug',\n 'content/aus/rhel8/8.6/x86_64/appstream/os',\n 'content/aus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.6/x86_64/baseos/debug',\n 'content/aus/rhel8/8.6/x86_64/baseos/os',\n 'content/aus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/ppc64le/appstream/debug',\n 'content/e4s/rhel8/8.6/ppc64le/appstream/os',\n 'content/e4s/rhel8/8.6/ppc64le/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.6/ppc64le/baseos/debug',\n 'content/e4s/rhel8/8.6/ppc64le/baseos/os',\n 'content/e4s/rhel8/8.6/ppc64le/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/ppc64le/highavailability/debug',\n 'content/e4s/rhel8/8.6/ppc64le/highavailability/os',\n 'content/e4s/rhel8/8.6/ppc64le/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.6/ppc64le/sap-solutions/debug',\n 'content/e4s/rhel8/8.6/ppc64le/sap-solutions/os',\n 'content/e4s/rhel8/8.6/ppc64le/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.6/ppc64le/sap/debug',\n 'content/e4s/rhel8/8.6/ppc64le/sap/os',\n 'content/e4s/rhel8/8.6/ppc64le/sap/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.6/x86_64/appstream/os',\n 'content/e4s/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.6/x86_64/baseos/os',\n 'content/e4s/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap/os',\n 'content/e4s/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/aarch64/appstream/debug',\n 'content/eus/rhel8/8.6/aarch64/appstream/os',\n 'content/eus/rhel8/8.6/aarch64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/aarch64/baseos/debug',\n 'content/eus/rhel8/8.6/aarch64/baseos/os',\n 'content/eus/rhel8/8.6/aarch64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/aarch64/codeready-builder/debug',\n 'content/eus/rhel8/8.6/aarch64/codeready-builder/os',\n 'content/eus/rhel8/8.6/aarch64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/aarch64/highavailability/debug',\n 'content/eus/rhel8/8.6/aarch64/highavailability/os',\n 'content/eus/rhel8/8.6/aarch64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/aarch64/supplementary/debug',\n 'content/eus/rhel8/8.6/aarch64/supplementary/os',\n 'content/eus/rhel8/8.6/aarch64/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/appstream/debug',\n 'content/eus/rhel8/8.6/ppc64le/appstream/os',\n 'content/eus/rhel8/8.6/ppc64le/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/baseos/debug',\n 'content/eus/rhel8/8.6/ppc64le/baseos/os',\n 'content/eus/rhel8/8.6/ppc64le/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/codeready-builder/debug',\n 'content/eus/rhel8/8.6/ppc64le/codeready-builder/os',\n 'content/eus/rhel8/8.6/ppc64le/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/highavailability/debug',\n 'content/eus/rhel8/8.6/ppc64le/highavailability/os',\n 'content/eus/rhel8/8.6/ppc64le/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/resilientstorage/debug',\n 'content/eus/rhel8/8.6/ppc64le/resilientstorage/os',\n 'content/eus/rhel8/8.6/ppc64le/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/sap-solutions/debug',\n 'content/eus/rhel8/8.6/ppc64le/sap-solutions/os',\n 'content/eus/rhel8/8.6/ppc64le/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/sap/debug',\n 'content/eus/rhel8/8.6/ppc64le/sap/os',\n 'content/eus/rhel8/8.6/ppc64le/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/ppc64le/supplementary/debug',\n 'content/eus/rhel8/8.6/ppc64le/supplementary/os',\n 'content/eus/rhel8/8.6/ppc64le/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/appstream/debug',\n 'content/eus/rhel8/8.6/s390x/appstream/os',\n 'content/eus/rhel8/8.6/s390x/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/baseos/debug',\n 'content/eus/rhel8/8.6/s390x/baseos/os',\n 'content/eus/rhel8/8.6/s390x/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/codeready-builder/debug',\n 'content/eus/rhel8/8.6/s390x/codeready-builder/os',\n 'content/eus/rhel8/8.6/s390x/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/highavailability/debug',\n 'content/eus/rhel8/8.6/s390x/highavailability/os',\n 'content/eus/rhel8/8.6/s390x/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/resilientstorage/debug',\n 'content/eus/rhel8/8.6/s390x/resilientstorage/os',\n 'content/eus/rhel8/8.6/s390x/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/sap/debug',\n 'content/eus/rhel8/8.6/s390x/sap/os',\n 'content/eus/rhel8/8.6/s390x/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/s390x/supplementary/debug',\n 'content/eus/rhel8/8.6/s390x/supplementary/os',\n 'content/eus/rhel8/8.6/s390x/supplementary/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/appstream/debug',\n 'content/eus/rhel8/8.6/x86_64/appstream/os',\n 'content/eus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/baseos/debug',\n 'content/eus/rhel8/8.6/x86_64/baseos/os',\n 'content/eus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.6/x86_64/highavailability/os',\n 'content/eus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap/debug',\n 'content/eus/rhel8/8.6/x86_64/sap/os',\n 'content/eus/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.6/x86_64/supplementary/os',\n 'content/eus/rhel8/8.6/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/appstream/debug',\n 'content/tus/rhel8/8.6/x86_64/appstream/os',\n 'content/tus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/baseos/debug',\n 'content/tus/rhel8/8.6/x86_64/baseos/os',\n 'content/tus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.6/x86_64/highavailability/os',\n 'content/tus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/rt/os',\n 'content/tus/rhel8/8.6/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'bpftool-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'6', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'6', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'6', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'6', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-4.18.0-193.el8', 'sp':'6', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-core-4.18.0-193.el8', 'sp':'6', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-devel-4.18.0-193.el8', 'sp':'6', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-4.18.0-193.el8', 'sp':'6', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-extra-4.18.0-193.el8', 'sp':'6', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'sp':'6', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/dist/rhel8/8/aarch64/appstream/debug',\n 'content/dist/rhel8/8/aarch64/appstream/os',\n 'content/dist/rhel8/8/aarch64/appstream/source/SRPMS',\n 'content/dist/rhel8/8/aarch64/baseos/debug',\n 'content/dist/rhel8/8/aarch64/baseos/os',\n 'content/dist/rhel8/8/aarch64/baseos/source/SRPMS',\n 'content/dist/rhel8/8/aarch64/codeready-builder/debug',\n 'content/dist/rhel8/8/aarch64/codeready-builder/os',\n 'content/dist/rhel8/8/aarch64/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/aarch64/highavailability/debug',\n 'content/dist/rhel8/8/aarch64/highavailability/os',\n 'content/dist/rhel8/8/aarch64/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/aarch64/supplementary/debug',\n 'content/dist/rhel8/8/aarch64/supplementary/os',\n 'content/dist/rhel8/8/aarch64/supplementary/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/appstream/debug',\n 'content/dist/rhel8/8/ppc64le/appstream/os',\n 'content/dist/rhel8/8/ppc64le/appstream/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/baseos/debug',\n 'content/dist/rhel8/8/ppc64le/baseos/os',\n 'content/dist/rhel8/8/ppc64le/baseos/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/codeready-builder/debug',\n 'content/dist/rhel8/8/ppc64le/codeready-builder/os',\n 'content/dist/rhel8/8/ppc64le/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/highavailability/debug',\n 'content/dist/rhel8/8/ppc64le/highavailability/os',\n 'content/dist/rhel8/8/ppc64le/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/resilientstorage/debug',\n 'content/dist/rhel8/8/ppc64le/resilientstorage/os',\n 'content/dist/rhel8/8/ppc64le/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/sap-solutions/debug',\n 'content/dist/rhel8/8/ppc64le/sap-solutions/os',\n 'content/dist/rhel8/8/ppc64le/sap-solutions/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/sap/debug',\n 'content/dist/rhel8/8/ppc64le/sap/os',\n 'content/dist/rhel8/8/ppc64le/sap/source/SRPMS',\n 'content/dist/rhel8/8/ppc64le/supplementary/debug',\n 'content/dist/rhel8/8/ppc64le/supplementary/os',\n 'content/dist/rhel8/8/ppc64le/supplementary/source/SRPMS',\n 'content/dist/rhel8/8/s390x/appstream/debug',\n 'content/dist/rhel8/8/s390x/appstream/os',\n 'content/dist/rhel8/8/s390x/appstream/source/SRPMS',\n 'content/dist/rhel8/8/s390x/baseos/debug',\n 'content/dist/rhel8/8/s390x/baseos/os',\n 'content/dist/rhel8/8/s390x/baseos/source/SRPMS',\n 'content/dist/rhel8/8/s390x/codeready-builder/debug',\n 'content/dist/rhel8/8/s390x/codeready-builder/os',\n 'content/dist/rhel8/8/s390x/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/s390x/highavailability/debug',\n 'content/dist/rhel8/8/s390x/highavailability/os',\n 'content/dist/rhel8/8/s390x/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/s390x/resilientstorage/debug',\n 'content/dist/rhel8/8/s390x/resilientstorage/os',\n 'content/dist/rhel8/8/s390x/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/s390x/sap/debug',\n 'content/dist/rhel8/8/s390x/sap/os',\n 'content/dist/rhel8/8/s390x/sap/source/SRPMS',\n 'content/dist/rhel8/8/s390x/supplementary/debug',\n 'content/dist/rhel8/8/s390x/supplementary/os',\n 'content/dist/rhel8/8/s390x/supplementary/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/appstream/debug',\n 'content/dist/rhel8/8/x86_64/appstream/os',\n 'content/dist/rhel8/8/x86_64/appstream/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/baseos/debug',\n 'content/dist/rhel8/8/x86_64/baseos/os',\n 'content/dist/rhel8/8/x86_64/baseos/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/codeready-builder/debug',\n 'content/dist/rhel8/8/x86_64/codeready-builder/os',\n 'content/dist/rhel8/8/x86_64/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/highavailability/debug',\n 'content/dist/rhel8/8/x86_64/highavailability/os',\n 'content/dist/rhel8/8/x86_64/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/nfv/debug',\n 'content/dist/rhel8/8/x86_64/nfv/os',\n 'content/dist/rhel8/8/x86_64/nfv/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/resilientstorage/debug',\n 'content/dist/rhel8/8/x86_64/resilientstorage/os',\n 'content/dist/rhel8/8/x86_64/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/rt/debug',\n 'content/dist/rhel8/8/x86_64/rt/os',\n 'content/dist/rhel8/8/x86_64/rt/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap-solutions/debug',\n 'content/dist/rhel8/8/x86_64/sap-solutions/os',\n 'content/dist/rhel8/8/x86_64/sap-solutions/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap/debug',\n 'content/dist/rhel8/8/x86_64/sap/os',\n 'content/dist/rhel8/8/x86_64/sap/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/supplementary/debug',\n 'content/dist/rhel8/8/x86_64/supplementary/os',\n 'content/dist/rhel8/8/x86_64/supplementary/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'bpftool-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-abi-whitelists-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-core-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-cross-headers-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-core-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-devel-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-debug-modules-extra-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-devel-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-headers-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-modules-extra-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-tools-libs-devel-4.18.0-193.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-4.18.0-193.el8', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-core-4.18.0-193.el8', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-devel-4.18.0-193.el8', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-4.18.0-193.el8', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'kernel-zfcpdump-modules-extra-4.18.0-193.el8', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'perf-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'python3-perf-4.18.0-193.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n var enterprise_linux_flag = rhel_repo_urls_has_content_dist_rhel(repo_urls:repo_relative_urls);\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp']) && !enterprise_linux_flag) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-abi-whitelists / kernel-core / etc');\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-08-30T17:21:30", "description": "The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2017-18551: There was an out of bounds write in the function i2c_smbus_xfer_emulated (bnc#1146163).\n\n - CVE-2018-20976: A use after free exists, related to xfs_fs_fill_super failure (bnc#1146285).\n\n - CVE-2018-21008: A use-after-free can be caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c (bnc#1149591).\n\n - CVE-2019-14814, CVE-2019-14815, CVE-2019-14816: Fix three heap-based buffer overflows in marvell wifi chip driver kernel, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code. (bnc#1146516 bnc#1146512 bnc#1146514)\n\n - CVE-2019-14835: A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bnc#1150112).\n\n - CVE-2019-15030: In the Linux kernel on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check (bnc#1149713).\n\n - CVE-2019-15031: In the Linux kernel on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c (bnc#1149713).\n\n - CVE-2019-15090: In the qedi_dbg_* family of functions, there was an out-of-bounds read (bnc#1146399).\n\n - CVE-2019-15098: drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel had a NULL pointer dereference via an incomplete address in an endpoint descriptor (bnc#1146378 1146543).\n\n - CVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel had a NULL pointer dereference via an incomplete address in an endpoint descriptor (bnc#1146368).\n\n - CVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel mishandled a short descriptor, leading to out-of-bounds memory access (bnc#1145920).\n\n - CVE-2019-15118: check_input_term in sound/usb/mixer.c in the Linux kernel mishandled recursion, leading to kernel stack exhaustion (bnc#1145922).\n\n - CVE-2019-15211: There was a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c did not properly allocate memory (bnc#1146519).\n\n - CVE-2019-15212: There was a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver (bnc#1146391).\n\n - CVE-2019-15214: There was a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. This is related to sound/core/init.c and sound/core/info.c (bnc#1146550).\n\n - CVE-2019-15215: There was a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver (bnc#1146425).\n\n - CVE-2019-15216: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver (bnc#1146361).\n\n - CVE-2019-15217: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver (bnc#1146547).\n\n - CVE-2019-15218: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver (bnc#1146413).\n\n - CVE-2019-15219: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver (bnc#1146524).\n\n - CVE-2019-15220: There was a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver (bnc#1146526).\n\n - CVE-2019-15221: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver (bnc#1146529).\n\n - CVE-2019-15222: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver (bnc#1146531).\n\n - CVE-2019-15239: In the Linux kernel, a certain net/ipv4/tcp_output.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by backporting.\n Specifically, by adding to a write queue between disconnection and re-connection, a local attacker can trigger multiple use-after-free conditions. This can result in a kernel crash, or potentially in privilege escalation. (for example) Linux distributions that use 4.9.x longterm kernels or 4.14.x longterm kernels (bnc#1146589)\n\n - CVE-2019-15290: There was a NULL pointer dereference caused by a malicious USB device in the ath6kl_usb_alloc_urb_from_pipe function in the drivers/net/wireless/ath/ath6kl/usb.c driver (bnc#1146378 1146543).\n\n - CVE-2019-15292: There was a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c (bnc#1146678).\n\n - CVE-2019-15538: XFS partially wedges when a chgrp fails on account of being out of disk quota.\n xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS (bnc#1148093).\n\n - CVE-2019-15666: There was an out-of-bounds array access in __xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandled directory validation (bnc#1148394).\n\n - CVE-2019-15902: Misuse of the upstream 'x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()' commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped (bnc#1149376).\n\n - CVE-2019-15917: There was a use-after-free issue when hci_uart_register_dev() fails in hci_uart_set_proto() in drivers/bluetooth/hci_ldisc.c (bnc#1149539).\n\n - CVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free (bnc#1149552).\n\n - CVE-2019-15920: An issue was discovered in the Linux kernel SMB2_read in fs/cifs/smb2pdu.c had a use-after-free. NOTE: this was not fixed correctly in 5.0.10; see the 5.0.11 ChangeLog, which documents a memory leak (bnc#1149626).\n\n - CVE-2019-15921: There was a memory leak issue when idr_alloc() fails in genl_register_family() in net/netlink/genetlink.c (bnc#1149602).\n\n - CVE-2019-15924: fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c had a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure (bnc#1149612).\n\n - CVE-2019-15926: Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file drivers/net/wireless/ath/ath6kl/wmi.c (bnc#1149527).\n\n - CVE-2019-15927: An out-of-bounds access exists in the function build_audio_procunit in the file sound/usb/mixer.c (bnc#1149522).\n\n - CVE-2019-9456: In the USB monitor driver there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1150025).\n\nThe following non-security bugs were fixed :\n\n - ACPICA: Increase total number of possible Owner IDs (bsc#1148859).\n\n - ACPI: fix false-positive -Wuninitialized warning (bsc#1051510).\n\n - Add missing structs and defines from recent SMB3.1.1 documentation (bsc#1144333).\n\n - Add new flag on SMB3.1.1 read (bsc#1144333).\n\n - address lock imbalance warnings in smbdirect.c (bsc#1144333).\n\n - Add some missing debug fields in server and tcon structs (bsc#1144333).\n\n - add some missing definitions (bsc#1144333).\n\n - Add some qedf commits to blacklist file (bsc#1149976)\n\n - Add vers=3.0.2 as a valid option for SMBv3.0.2 (bsc#1144333).\n\n - ALSA: firewire: fix a memory leak bug (bsc#1051510).\n\n - ALSA: hda - Add a generic reboot_notify (bsc#1051510).\n\n - ALSA: hda - Apply workaround for another AMD chip 1022:1487 (bsc#1051510).\n\n - ALSA: hda/ca0132 - Add new SBZ quirk (bsc#1051510).\n\n - ALSA: hda - Do not override global PCM hw info flag (bsc#1051510).\n\n - ALSA: hda - Fix a memory leak bug (bsc#1051510).\n\n - ALSA: hda - Fixes inverted Conexant GPIO mic mute led (bsc#1051510).\n\n - ALSA: hda - Fix potential endless loop at applying quirks (bsc#1051510).\n\n - ALSA: hda: kabi workaround for generic parser flag (bsc#1051510).\n\n - ALSA: hda - Let all conexant codec enter D3 when rebooting (bsc#1051510).\n\n - ALSA: hda/realtek - Add quirk for HP Envy x360 (bsc#1051510).\n\n - ALSA: hda/realtek - Add quirk for HP Pavilion 15 (bsc#1051510).\n\n - ALSA: hda/realtek - Enable internal speaker & headset mic of ASUS UX431FL (bsc#1051510).\n\n - ALSA: hda/realtek - Fix overridden device-specific initialization (bsc#1051510).\n\n - ALSA: hda/realtek - Fix the problem of two front mics on a ThinkCentre (bsc#1051510).\n\n - ALSA: hda - Workaround for crackled sound on AMD controller (1022:1457) (bsc#1051510).\n\n - ALSA: hiface: fix multiple memory leak bugs (bsc#1051510).\n\n - ALSA: line6: Fix memory leak at line6_init_pcm() error path (bsc#1051510).\n\n - ALSA: seq: Fix potential concurrent access to the deleted pool (bsc#1051510).\n\n - ALSA: usb-audio: Add implicit fb quirk for Behringer UFX1604 (bsc#1051510).\n\n - ALSA: usb-audio: Check mixer unit bitmap yet more strictly (bsc#1051510).\n\n - ALSA: usb-audio: fix a memory leak bug (bsc#1111666).\n\n - ALSA: usb-audio: Fix invalid NULL check in snd_emuusb_set_samplerate() (bsc#1051510).\n\n - arm64: fix undefined reference to 'printk' (bsc#1148219).\n\n - arm64/kernel: enable A53 erratum #8434319 handling at runtime (bsc#1148219).\n\n - arm64/kernel: rename module_emit_adrp_veneer->module_emit_veneer_for_adrp (bsc#1148219).\n\n - arm64: module: do not BUG when exceeding preallocated PLT count (bsc#1148219).\n\n - arm64: PCI: Preserve firmware configuration when desired (SLE-9332).\n\n - ASoC: dapm: Fix handling of custom_stop_condition on DAPM graph walks (bsc#1051510).\n\n - ASoC: Fail card instantiation if DAI format setup fails (bsc#1051510).\n\n - ata: libahci: do not complain in case of deferred probe (bsc#1051510).\n\n - ath10k: Change the warning message string (bsc#1051510).\n\n - ath10k: Drop WARN_ON()s that always trigger during system resume (bsc#1111666).\n\n - batman-adv: fix uninit-value in batadv_netlink_get_ifindex() (bsc#1051510).\n\n - batman-adv: Only read OGM2 tvlv_len after buffer len check (bsc#1051510).\n\n - batman-adv: Only read OGM tvlv_len after buffer len check (bsc#1051510).\n\n - bcache: fix possible memory leak in bch_cached_dev_run() (git fixes).\n\n - bcache: Revert 'bcache: use sysfs_match_string() instead of __sysfs_match_string()' (git fixes).\n\n - bio: fix improper use of smp_mb__before_atomic() (git fixes).\n\n - blk-mq: backport fixes for blk_mq_complete_e_request_sync() (bsc#1145661).\n\n - blk-mq: Fix spelling in a source code comment (git fixes).\n\n - blk-mq: introduce blk_mq_complete_request_sync() (bsc#1145661).\n\n - blk-wbt: Avoid lock contention and thundering herd issue in wbt_wait (bsc#1141543).\n\n - block, documentation: Fix wbt_lat_usec documentation (git fixes).\n\n - Bluetooth: btqca: Add a short delay before downloading the NVM (bsc#1051510).\n\n - bnx2x: Disable multi-cos feature (bsc#1136498 jsc#SLE-4699).\n\n - bnx2x: Prevent ptp_task to be rescheduled indefinitely (networking-stable-19_07_25).\n\n - bnxt_en: Fix to include flow direction in L2 key (bsc#1104745 FATE#325918).\n\n - bnxt_en: Fix VNIC clearing logic for 57500 chips (bsc#1104745 FATE#325918).\n\n - bnxt_en: Improve RX doorbell sequence (bsc#1104745 FATE#325918).\n\n - bnxt_en: Use correct src_fid to determine direction of the flow (bsc#1104745 FATE#325918).\n\n - bonding: validate ip header before check IPPROTO_IGMP (networking-stable-19_07_25).\n\n - bpf: sockmap, only create entry if ulp is not already enabled (bsc#1109837).\n\n - bpf: sockmap, sock_map_delete needs to use xchg (bsc#1109837).\n\n - bpf: sockmap, synchronize_rcu before free'ing map (bsc#1109837).\n\n - btrfs: add a helper to retrive extent inline ref type (bsc#1149325).\n\n - btrfs: add cleanup_ref_head_accounting helper (bsc#1050911).\n\n - btrfs: add missing inode version, ctime and mtime updates when punching hole (bsc#1140487).\n\n - btrfs: add one more sanity check for shared ref type (bsc#1149325).\n\n - btrfs: clean up pending block groups when transaction commit aborts (bsc#1050911).\n\n - btrfs: convert to use btrfs_get_extent_inline_ref_type (bsc#1149325).\n\n - btrfs: do not abort transaction at btrfs_update_root() after failure to COW path (bsc#1150933).\n\n - btrfs: fix assertion failure during fsync and use of stale transaction (bsc#1150562).\n\n - btrfs: fix data loss after inode eviction, renaming it, and fsync it (bsc#1145941).\n\n - btrfs: Fix delalloc inodes invalidation during transaction abort (bsc#1050911).\n\n - btrfs: fix fsync not persisting dentry deletions due to inode evictions (bsc#1145942).\n\n - btrfs: fix incremental send failure after deduplication (bsc#1145940).\n\n - btrfs: fix pinned underflow after transaction aborted (bsc#1050911).\n\n - btrfs: fix race between send and deduplication that lead to failures and crashes (bsc#1145059).\n\n - btrfs: fix race leading to fs corruption after transaction abort (bsc#1145937).\n\n - btrfs: handle delayed ref head accounting cleanup in abort (bsc#1050911).\n\n - btrfs: prevent send failures and crashes due to concurrent relocation (bsc#1145059).\n\n - btrfs: remove BUG() in add_data_reference (bsc#1149325).\n\n - btrfs: remove BUG() in btrfs_extent_inline_ref_size (bsc#1149325).\n\n - btrfs: remove BUG() in print_extent_item (bsc#1149325).\n\n - btrfs: remove BUG_ON in __add_tree_block (bsc#1149325).\n\n - btrfs: Split btrfs_del_delalloc_inode into 2 functions (bsc#1050911).\n\n - btrfs: start readahead also in seed devices (bsc#1144886).\n\n - btrfs: track running balance in a simpler way (bsc#1145059).\n\n - caif-hsi: fix possible deadlock in cfhsi_exit_module() (networking-stable-19_07_25).\n\n - can: m_can: implement errata 'Needless activation of MRAF irq' (bsc#1051510).\n\n - can: mcp251x: add support for mcp25625 (bsc#1051510).\n\n - can: peak_usb: fix potential double kfree_skb() (bsc#1051510).\n\n - can: peak_usb: force the string buffer NULL-terminated (bsc#1051510).\n\n - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices (bsc#1051510).\n\n - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices (bsc#1051510).\n\n - can: rcar_canfd: fix possible IRQ storm on high load (bsc#1051510).\n\n - can: sja1000: force the string buffer NULL-terminated (bsc#1051510).\n\n - carl9170: fix misuse of device driver API (bsc#1142635).\n\n - ceph: add btime field to ceph_inode_info (bsc#1148133 bsc#1136682).\n\n - ceph: add ceph.snap.btime vxattr (bsc#1148133 bsc#1148570).\n\n - ceph: add change_attr field to ceph_inode_info (bsc#1148133 bsc#1136682).\n\n - ceph: always get rstat from auth mds (bsc#1146346).\n\n - ceph: carry snapshot creation time with inodes (bsc#1148133 bsc#1148570).\n\n - ceph: clean up ceph.dir.pin vxattr name sizeof() (bsc#1146346).\n\n - ceph: clear page dirty before invalidate page (bsc#1148133).\n\n - ceph: decode feature bits in session message (bsc#1146346).\n\n - ceph: do not blindly unregister session that is in opening state (bsc#1148133).\n\n - ceph: do not try fill file_lock on unsuccessful GETFILELOCK reply (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in\n __ceph_build_xattrs_blob() (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in\n __ceph_setxattr() (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in fill_inode() (bsc#1148133).\n\n - ceph: fix 'ceph.dir.rctime' vxattr value (bsc#1148133 bsc#1135219).\n\n - ceph: fix decode_locker to use ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - ceph: fix improper use of smp_mb__before_atomic() (bsc#1148133).\n\n - ceph: fix infinite loop in get_quota_realm() (bsc#1148133).\n\n - ceph: fix listxattr vxattr buffer length calculation (bsc#1148133 bsc#1148570).\n\n - ceph: handle btime in cap messages (bsc#1148133 bsc#1136682).\n\n - ceph: handle change_attr in cap messages (bsc#1148133 bsc#1136682).\n\n - ceph: have MDS map decoding use entity_addr_t decoder (bsc#1148133 bsc#1136682).\n\n - ceph: hold i_ceph_lock when removing caps for freeing inode (bsc#1148133).\n\n - ceph: increment change_attribute on local changes (bsc#1148133 bsc#1136682).\n\n - ceph: initialize superblock s_time_gran to 1 (bsc#1148133).\n\n - ceph: remove request from waiting list before unregister (bsc#1148133).\n\n - ceph: remove unused vxattr length helpers (bsc#1148133 bsc#1148570).\n\n - ceph: silence a checker warning in mdsc_show() (bsc#1148133).\n\n - ceph: support cephfs' own feature bits (bsc#1146346).\n\n - ceph: support getting ceph.dir.pin vxattr (bsc#1146346).\n\n - ceph: support versioned reply (bsc#1146346).\n\n - ceph: use bit flags to define vxattr attributes (bsc#1146346).\n\n - cifs: Accept validate negotiate if server return NT_STATUS_NOT_SUPPORTED (bsc#1144333).\n\n - cifs: add a new SMB2_close_flags function (bsc#1144333).\n\n - cifs: add a smb2_compound_op and change QUERY_INFO to use it (bsc#1144333).\n\n - cifs: add a timeout argument to wait_for_free_credits (bsc#1144333).\n\n - cifs: add a warning if we try to to dequeue a deleted mid (bsc#1144333).\n\n - cifs: add compound_send_recv() (bsc#1144333).\n\n - cifs: add credits from unmatched responses/messages (bsc#1144333).\n\n - cifs: add debug output to show nocase mount option (bsc#1144333).\n\n - cifs: Add DFS cache routines (bsc#1144333).\n\n - cifs: Add direct I/O functions to file_operations (bsc#1144333).\n\n - cifs: add fiemap support (bsc#1144333).\n\n - cifs: add iface info to struct cifs_ses (bsc#1144333).\n\n - cifs: add IOCTL for QUERY_INFO passthrough to userspace (bsc#1144333).\n\n - cifs: add lease tracking to the cached root fid (bsc#1144333).\n\n - cifs: Add minor debug message during negprot (bsc#1144333).\n\n - cifs: add missing debug entries for kconfig options (bsc#1051510, bsc#1144333).\n\n - cifs: add missing GCM module dependency (bsc#1144333).\n\n - cifs: add missing support for ACLs in SMB 3.11 (bsc#1051510, bsc#1144333).\n\n - cifs: add ONCE flag for cifs_dbg type (bsc#1144333).\n\n - cifs: add pdu_size to the TCP_Server_Info structure (bsc#1144333).\n\n - cifs: add resp_buf_size to the mid_q_entry structure (bsc#1144333).\n\n - cifs: address trivial coverity warning (bsc#1144333).\n\n - cifs: add server argument to the dump_detail method (bsc#1144333).\n\n - cifs: add server->vals->header_preamble_size (bsc#1144333).\n\n - cifs: add SFM mapping for 0x01-0x1F (bsc#1144333).\n\n - cifs: add sha512 secmech (bsc#1051510, bsc#1144333).\n\n - cifs: Adds information-level logging function (bsc#1144333).\n\n - cifs: add SMB2_close_init()/SMB2_close_free() (bsc#1144333).\n\n - cifs: add SMB2_ioctl_init/free helpers to be used with compounding (bsc#1144333).\n\n - cifs: add SMB2_query_info_[init|free]() (bsc#1144333).\n\n - cifs: Add smb2_send_recv (bsc#1144333).\n\n - cifs: add spinlock for the openFileList to cifsInodeInfo (bsc#1144333).\n\n - cifs: add .splice_write (bsc#1144333).\n\n - cifs: Add support for direct I/O read (bsc#1144333).\n\n - cifs: Add support for direct I/O write (bsc#1144333).\n\n - cifs: Add support for direct pages in rdata (bsc#1144333).\n\n - cifs: Add support for direct pages in wdata (bsc#1144333).\n\n - cifs: Add support for failover in cifs_mount() (bsc#1144333).\n\n - cifs: Add support for failover in cifs_reconnect() (bsc#1144333).\n\n - cifs: Add support for failover in cifs_reconnect_tcon() (bsc#1144333).\n\n - cifs: Add support for failover in smb2_reconnect() (bsc#1144333).\n\n - cifs: Add support for FSCTL passthrough that write data to the server (bsc#1144333).\n\n - cifs: add support for ioctl on directories (bsc#1144333).\n\n - cifs: Add support for reading attributes on SMB2+ (bsc#1051510, bsc#1144333).\n\n - cifs: add support for SEEK_DATA and SEEK_HOLE (bsc#1144333).\n\n - cifs: Add support for writing attributes on SMB2+ (bsc#1051510, bsc#1144333).\n\n - cifs: Adjust MTU credits before reopening a file (bsc#1144333).\n\n - cifs: Allocate memory for all iovs in smb2_ioctl (bsc#1144333).\n\n - cifs: Allocate validate negotiation request through kmalloc (bsc#1144333).\n\n - cifs: allow calling SMB2_xxx_free(NULL) (bsc#1144333).\n\n - cifs: allow disabling less secure legacy dialects (bsc#1144333).\n\n - cifs: allow guest mounts to work for smb3.11 (bsc#1051510, bsc#1144333).\n\n - cifs: always add credits back for unsolicited PDUs (bsc#1144333).\n\n - cifs: Always reset read error to -EIO if no response (bsc#1144333).\n\n - cifs: Always resolve hostname before reconnecting (bsc#1051510, bsc#1144333).\n\n - cifs: a smb2_validate_and_copy_iov failure does not mean the handle is invalid (bsc#1144333).\n\n - cifs: auto disable 'serverino' in dfs mounts (bsc#1144333).\n\n - cifs: avoid a kmalloc in smb2_send_recv/SendReceive2 for the common case (bsc#1144333).\n\n - cifs: Avoid returning EBUSY to upper layer VFS (bsc#1144333).\n\n - cifs: cache FILE_ALL_INFO for the shared root handle (bsc#1144333).\n\n - cifs: Calculate the correct request length based on page offset and tail size (bsc#1144333).\n\n - cifs: Call MID callback before destroying transport (bsc#1144333).\n\n - cifs: change mkdir to use a compound (bsc#1144333).\n\n - cifs: change smb2_get_data_area_len to take a smb2_sync_hdr as argument (bsc#1144333).\n\n - cifs: Change SMB2_open to return an iov for the error parameter (bsc#1144333).\n\n - cifs: change SMB2_OP_RENAME and SMB2_OP_HARDLINK to use compounding (bsc#1144333).\n\n - cifs: change SMB2_OP_SET_EOF to use compounding (bsc#1144333).\n\n - cifs: change SMB2_OP_SET_INFO to use compounding (bsc#1144333).\n\n - cifs: change smb2_query_eas to use the compound query-info helper (bsc#1144333).\n\n - cifs: change unlink to use a compound (bsc#1144333).\n\n - cifs: change validate_buf to validate_iov (bsc#1144333).\n\n - cifs: change wait_for_free_request() to take flags as argument (bsc#1144333).\n\n - cifs: check CIFS_MOUNT_NO_DFS when trying to reuse existing sb (bsc#1144333).\n\n - cifs: Check for reconnects before sending async requests (bsc#1144333).\n\n - cifs: Check for reconnects before sending compound requests (bsc#1144333).\n\n - cifs: check for STATUS_USER_SESSION_DELETED (bsc#1112902, bsc#1144333).\n\n - cifs: Check for timeout on Negotiate stage (bsc#1091171, bsc#1144333).\n\n - cifs: check if SMB2 PDU size has been padded and suppress the warning (bsc#1144333).\n\n - cifs: check kmalloc before use (bsc#1051510, bsc#1144333).\n\n - cifs: check kzalloc return (bsc#1144333).\n\n - cifs: check MaxPathNameComponentLength != 0 before using it (bsc#1085536, bsc#1144333).\n\n - cifs: check ntwrk_buf_start for NULL before dereferencing it (bsc#1144333).\n\n - cifs: check rsp for NULL before dereferencing in SMB2_open (bsc#1085536, bsc#1144333).\n\n - cifs: cifs_read_allocate_pages: do not iterate through whole page array on ENOMEM (bsc#1144333).\n\n - cifs: clean up indentation, replace spaces with tab (bsc#1144333).\n\n - cifs: cleanup smb2ops.c and normalize strings (bsc#1144333).\n\n - cifs: complete PDU definitions for interface queries (bsc#1144333).\n\n - cifs: connect to servername instead of IP for IPC$ share (bsc#1051510, bsc#1144333).\n\n - cifs: Count SMB3 credits for malformed pending responses (bsc#1144333).\n\n - cifs: create a define for how many iovs we need for an SMB2_open() (bsc#1144333).\n\n - cifs: create a define for the max number of iov we need for a SMB2 set_info (bsc#1144333).\n\n - cifs: create a helper function for compound query_info (bsc#1144333).\n\n - cifs: create helpers for SMB2_set_info_init/free() (bsc#1144333).\n\n - cifs: create SMB2_open_init()/SMB2_open_free() helpers (bsc#1144333).\n\n - cifs: Display SMB2 error codes in the hex format (bsc#1144333).\n\n - cifs: document tcon/ses/server refcount dance (bsc#1144333).\n\n - cifs: do not allow creating sockets except with SMB1 posix exensions (bsc#1102097, bsc#1144333).\n\n - cifs: Do not assume one credit for async responses (bsc#1144333).\n\n - cifs: do not attempt cifs operation on smb2+ rename error (bsc#1144333).\n\n - cifs: Do not consider -ENODATA as stat failure for reads (bsc#1144333).\n\n - cifs: Do not count -ENODATA as failure for query directory (bsc#1051510, bsc#1144333).\n\n - cifs: do not dereference smb_file_target before null check (bsc#1051510, bsc#1144333).\n\n - cifs: Do not hide EINTR after sending network packets (bsc#1051510, bsc#1144333).\n\n - cifs: Do not log credits when unmounting a share (bsc#1144333).\n\n - cifs: do not log STATUS_NOT_FOUND errors for DFS (bsc#1051510, bsc#1144333).\n\n - cifs: Do not match port on SMBDirect transport (bsc#1144333).\n\n - cifs: Do not modify mid entry after submitting I/O in cifs_call_async (bsc#1051510, bsc#1144333).\n\n - cifs: Do not reconnect TCP session in add_credits() (bsc#1051510, bsc#1144333).\n\n - cifs: Do not reset lease state to NONE on lease break (bsc#1051510, bsc#1144333).\n\n - cifs: do not return atime less than mtime (bsc#1144333).\n\n - cifs: do not send invalid input buffer on QUERY_INFO requests (bsc#1144333).\n\n - cifs: Do not set credits to 1 if the server didn't grant anything (bsc#1144333).\n\n - cifs: do not show domain= in mount output when domain is empty (bsc#1144333).\n\n - cifs: Do not skip SMB2 message IDs on send failures (bsc#1144333).\n\n - cifs: do not use __constant_cpu_to_le32() (bsc#1144333).\n\n - cifs: dump every session iface info (bsc#1144333).\n\n - cifs: dump IPC tcon in debug proc file (bsc#1071306, bsc#1144333).\n\n - cifs: fallback to older infolevels on findfirst queryinfo retry (bsc#1144333).\n\n - cifs: Find and reopen a file before get MTU credits in writepages (bsc#1144333).\n\n - cifs: fix a buffer leak in smb2_query_symlink (bsc#1144333).\n\n - cifs: fix a credits leak for compund commands (bsc#1144333).\n\n - cifs: Fix a debug message (bsc#1144333).\n\n - cifs: Fix adjustment of credits for MTU requests (bsc#1051510, bsc#1144333).\n\n - cifs: Fix an issue with re-sending rdata when transport returning -EAGAIN (bsc#1144333).\n\n - cifs: Fix an issue with re-sending wdata when transport returning -EAGAIN (bsc#1144333).\n\n - cifs: Fix a race condition with cifs_echo_request (bsc#1144333).\n\n - cifs: Fix a tiny potential memory leak (bsc#1144333).\n\n - cifs: Fix autonegotiate security settings mismatch (bsc#1087092, bsc#1144333).\n\n - cifs: fix bi-directional fsctl passthrough calls (bsc#1144333).\n\n - cifs: fix build break when CONFIG_CIFS_DEBUG2 enabled (bsc#1144333).\n\n - cifs: fix build errors for SMB_DIRECT (bsc#1144333).\n\n - cifs: Fix check for matching with existing mount (bsc#1144333).\n\n - cifs: fix circular locking dependency (bsc#1064701, bsc#1144333).\n\n - cifs: fix computation for MAX_SMB2_HDR_SIZE (bsc#1144333).\n\n - cifs: fix confusing warning message on reconnect (bsc#1144333).\n\n - cifs: fix crash in cifs_dfs_do_automount (bsc#1144333).\n\n - cifs: fix crash in smb2_compound_op()/smb2_set_next_command() (bsc#1144333).\n\n - cifs: fix crash querying symlinks stored as reparse-points (bsc#1144333).\n\n - cifs: Fix credit calculation for encrypted reads with errors (bsc#1051510, bsc#1144333).\n\n - cifs: Fix credit calculations in compound mid callback (bsc#1144333).\n\n - cifs: Fix credit computation for compounded requests (bsc#1144333).\n\n - cifs: Fix credits calculation for cancelled requests (bsc#1144333).\n\n - cifs: Fix credits calculations for reads with errors (bsc#1051510, bsc#1144333).\n\n - cifs: fix credits leak for SMB1 oplock breaks (bsc#1144333).\n\n - cifs: fix deadlock in cached root handling (bsc#1144333).\n\n - cifs: Fix DFS cache refresher for DFS links (bsc#1144333).\n\n - cifs: fix encryption in SMB3.1.1 (bsc#1144333).\n\n - cifs: Fix encryption/signing (bsc#1144333).\n\n - cifs: Fix error mapping for SMB2_LOCK command which caused OFD lock problem (bsc#1051510, bsc#1144333).\n\n - cifs: Fix error paths in writeback code (bsc#1144333).\n\n - cifs: fix GlobalMid_Lock bug in cifs_reconnect (bsc#1144333).\n\n - cifs: fix handle leak in smb2_query_symlink() (bsc#1144333).\n\n - cifs: fix incorrect handling of smb2_set_sparse() return in smb3_simple_falloc (bsc#1144333).\n\n - cifs: Fix infinite loop when using hard mount option (bsc#1091171, bsc#1144333).\n\n - cifs: Fix invalid check in __cifs_calc_signature() (bsc#1144333).\n\n - cifs: Fix kernel oops when traceSMB is enabled (bsc#1144333).\n\n - cifs: fix kref underflow in close_shroot() (bsc#1144333).\n\n - cifs: Fix leaking locked VFS cache pages in writeback retry (bsc#1144333).\n\n - cifs: Fix lease buffer length error (bsc#1144333).\n\n - cifs: fix memory leak and remove dead code (bsc#1144333).\n\n - cifs: fix memory leak in SMB2_open() (bsc#1112894, bsc#1144333).\n\n - cifs: fix memory leak in SMB2_read (bsc#1144333).\n\n - cifs: Fix memory leak in smb2_set_ea() (bsc#1051510, bsc#1144333).\n\n - cifs: fix memory leak of an allocated cifs_ntsd structure (bsc#1144333).\n\n - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case (bsc#1144333).\n\n - cifs: Fix missing put_xid in cifs_file_strict_mmap (bsc#1087092, bsc#1144333).\n\n - cifs: Fix module dependency (bsc#1144333).\n\n - cifs: Fix mounts if the client is low on credits (bsc#1144333).\n\n - cifs: fix NULL deref in SMB2_read (bsc#1085539, bsc#1144333).\n\n - cifs: Fix NULL pointer dereference of devname (bnc#1129519).\n\n - cifs: Fix NULL pointer deref on SMB2_tcon() failure (bsc#1071009, bsc#1144333).\n\n - cifs: Fix NULL ptr deref (bsc#1144333).\n\n - cifs: fix page reference leak with readv/writev (bsc#1144333).\n\n - cifs: fix panic in smb2_reconnect (bsc#1144333).\n\n - cifs: fix parsing of symbolic link error response (bsc#1144333).\n\n - cifs: fix POSIX lock leak and invalid ptr deref (bsc#1114542, bsc#1144333).\n\n - cifs: Fix possible hang during async MTU reads and writes (bsc#1051510, bsc#1144333).\n\n - cifs: Fix possible oops and memory leaks in async IO (bsc#1144333).\n\n - cifs: Fix potential OOB access of lock element array (bsc#1051510, bsc#1144333).\n\n - cifs: Fix read after write for files with read caching (bsc#1051510, bsc#1144333).\n\n - cifs: fix return value for cifs_listxattr (bsc#1051510, bsc#1144333).\n\n - cifs: fix rmmod regression in cifs.ko caused by force_sig changes (bsc#1144333).\n\n - cifs: Fix separator when building path from dentry (bsc#1051510, bsc#1144333).\n\n - cifs: fix sha512 check in cifs_crypto_secmech_release (bsc#1051510, bsc#1144333).\n\n - cifs: fix signed/unsigned mismatch on aio_read patch (bsc#1144333).\n\n - cifs: Fix signing for SMB2/3 (bsc#1144333).\n\n - cifs: Fix slab-out-of-bounds in send_set_info() on SMB2 ACE setting (bsc#1144333).\n\n - cifs: Fix slab-out-of-bounds when tracing SMB tcon (bsc#1144333).\n\n - cifs: fix SMB1 breakage (bsc#1144333).\n\n - cifs: fix smb3_zero_range for Azure (bsc#1144333).\n\n - cifs: fix smb3_zero_range so it can expand the file-size when required (bsc#1144333).\n\n - cifs: fix sparse warning on previous patch in a few printks (bsc#1144333).\n\n - cifs: fix spelling mistake, EACCESS -> EACCES (bsc#1144333).\n\n - cifs: Fix stack out-of-bounds in smb(2,3)_create_lease_buf() (bsc#1051510, bsc#1144333).\n\n - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() (bsc#1144333).\n\n - cifs: Fix to use kmem_cache_free() instead of kfree() (bsc#1144333).\n\n - cifs: Fix trace command logging for SMB2 reads and writes (bsc#1144333).\n\n - cifs: fix typo in cifs_dbg (bsc#1144333).\n\n - cifs: fix typo in debug message with struct field ia_valid (bsc#1144333).\n\n - cifs: fix uninitialized ptr deref in smb2 signing (bsc#1144333).\n\n - cifs: Fix use-after-free in SMB2_read (bsc#1144333).\n\n - cifs: Fix use-after-free in SMB2_write (bsc#1144333).\n\n - cifs: Fix use after free of a mid_q_entry (bsc#1112903, bsc#1144333).\n\n - cifs: fix use-after-free of the lease keys (bsc#1144333).\n\n - cifs: Fix validation of signed data in smb2 (bsc#1144333).\n\n - cifs: Fix validation of signed data in smb3+ (bsc#1144333).\n\n - cifs: fix wrapping bugs in num_entries() (bsc#1051510, bsc#1144333).\n\n - cifs: flush before set-info if we have writeable handles (bsc#1144333).\n\n - cifs: For SMB2 security informaion query, check for minimum sized security descriptor instead of sizeof FileAllInformation class (bsc#1051510, bsc#1144333).\n\n - cifs: handle large EA requests more gracefully in smb2+ (bsc#1144333).\n\n - cifs: handle netapp error codes (bsc#1136261).\n\n - cifs: hide unused functions (bsc#1051510, bsc#1144333).\n\n - cifs: implement v3.11 preauth integrity (bsc#1051510, bsc#1144333).\n\n - cifs: In Kconfig CONFIG_CIFS_POSIX needs depends on legacy (insecure cifs) (bsc#1144333).\n\n - cifs: integer overflow in in SMB2_ioctl() (bsc#1051510, bsc#1144333).\n\n - cifs: Introduce helper function to get page offset and length in smb_rqst (bsc#1144333).\n\n - cifs: Introduce offset for the 1st page in data transfer structures (bsc#1144333).\n\n - cifs: invalidate cache when we truncate a file (bsc#1051510, bsc#1144333).\n\n - cifs: keep FileInfo handle live during oplock break (bsc#1106284, bsc#1131565, bsc#1144333).\n\n - cifs: limit amount of data we request for xattrs to CIFSMaxBufSize (bsc#1144333).\n\n - cifs: Limit memory used by lock request calls to a page (bsc#1144333).\n\n - cifs_lookup(): cifs_get_inode_...() never returns 0 with\n *inode left NULL (bsc#1144333).\n\n - cifs_lookup(): switch to d_splice_alias() (bsc#1144333).\n\n - cifs: make arrays static const, reduces object code size (bsc#1144333).\n\n - cifs: Make devname param optional in cifs_compose_mount_options() (bsc#1144333).\n\n - cifs: make IPC a regular tcon (bsc#1071306, bsc#1144333).\n\n - cifs: make minor clarifications to module params for cifs.ko (bsc#1144333).\n\n - cifs: make mknod() an smb_version_op (bsc#1144333).\n\n - cifs: make 'nodfs' mount opt a superblock flag (bsc#1051510, bsc#1144333).\n\n - cifs: make rmdir() use compounding (bsc#1144333).\n\n - cifs: make smb_send_rqst take an array of requests (bsc#1144333).\n\n - cifs: Make sure all data pages are signed correctly (bsc#1144333).\n\n - cifs: Make use of DFS cache to get new DFS referrals (bsc#1144333).\n\n - cifs: Mask off signals when sending SMB packets (bsc#1144333).\n\n - cifs: minor clarification in comments (bsc#1144333).\n\n - cifs: Minor Kconfig clarification (bsc#1144333).\n\n - cifs: minor updates to module description for cifs.ko (bsc#1144333).\n\n - cifs: Move credit processing to mid callbacks for SMB3 (bsc#1144333).\n\n - cifs: move default port definitions to cifsglob.h (bsc#1144333).\n\n - cifs: move large array from stack to heap (bsc#1144333).\n\n - cifs: Move open file handling to writepages (bsc#1144333).\n\n - cifs: Move unlocking pages from wdata_send_pages() (bsc#1144333).\n\n - cifs: OFD locks do not conflict with eachothers (bsc#1051510, bsc#1144333).\n\n - cifs: Only free DFS target list if we actually got one (bsc#1144333).\n\n - cifs: Only send SMB2_NEGOTIATE command on new TCP connections (bsc#1144333).\n\n - cifs: only wake the thread for the very last PDU in a compound (bsc#1144333).\n\n - cifs: parse and store info on iface queries (bsc#1144333).\n\n - cifs: pass flags down into wait_for_free_credits() (bsc#1144333).\n\n - cifs: Pass page offset for calculating signature (bsc#1144333).\n\n - cifs: Pass page offset for encrypting (bsc#1144333).\n\n - cifs: pass page offsets on SMB1 read/write (bsc#1144333).\n\n - cifs: prevent integer overflow in nxt_dir_entry() (bsc#1051510, bsc#1144333).\n\n - cifs: prevent starvation in wait_for_free_credits for multi-credit requests (bsc#1144333).\n\n - cifs: print CIFSMaxBufSize as part of /proc/fs/cifs/DebugData (bsc#1144333).\n\n - cifs: Print message when attempting a mount (bsc#1144333).\n\n - cifs: Properly handle auto disabling of serverino option (bsc#1144333).\n\n - cifs: protect against server returning invalid file system block size (bsc#1144333).\n\n - cifs: prototype declaration and definition for smb 2 - 3 and cifsacl mount options (bsc#1051510, bsc#1144333).\n\n - cifs: prototype declaration and definition to set acl for smb 2 - 3 and cifsacl mount options (bsc#1051510, bsc#1144333).\n\n - cifs: push rfc1002 generation down the stack (bsc#1144333).\n\n - cifs: read overflow in is_valid_oplock_break() (bsc#1144333).\n\n - cifs: Reconnect expired SMB sessions (bnc#1060662).\n\n - cifs: refactor and clean up arguments in the reparse point parsing (bsc#1144333).\n\n - cifs: refactor crypto shash/sdesc allocation&free (bsc#1051510, bsc#1144333).\n\n - cifs: Refactor out cifs_mount() (bsc#1144333).\n\n - cifs: release auth_key.response for reconnect (bsc#1085536, bsc#1144333).\n\n - cifs: release cifs root_cred after exit_cifs (bsc#1085536, bsc#1144333).\n\n - cifs: remove coverity warning in calc_lanman_hash (bsc#1144333).\n\n - cifs: Remove custom credit adjustments for SMB2 async IO (bsc#1144333).\n\n - cifs: remove header_preamble_size where it is always 0 (bsc#1144333).\n\n - cifs: remove redundant duplicated assignment of pointer 'node' (bsc#1144333).\n\n - cifs: remove rfc1002 hardcoded constants from cifs_discard_remaining_data() (bsc#1144333).\n\n - cifs: remove rfc1002 header from all SMB2 response structures (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_close_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_create_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_echo_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_flush_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_ioctl_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_lease_ack (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_lock_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_logoff_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_negotiate_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_oplock_break we get from server (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_query_directory_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_query_info_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2 read/write requests (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_sess_setup_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_set_info_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_tree_connect_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_tree_disconnect_req (bsc#1144333).\n\n - cifs: remove set but not used variable 'cifs_sb' (bsc#1144333).\n\n - cifs: remove set but not used variable 'sep' (bsc#1144333).\n\n - cifs: remove set but not used variable 'server' (bsc#1144333).\n\n - cifs: remove set but not used variable 'smb_buf' (bsc#1144333).\n\n - cifs: remove small_smb2_init (bsc#1144333).\n\n - cifs: remove smb2_send_recv() (bsc#1144333).\n\n - cifs: remove struct smb2_hdr (bsc#1144333).\n\n - cifs: remove struct smb2_oplock_break_rsp (bsc#1144333).\n\n - cifs: remove the is_falloc argument to SMB2_set_eof (bsc#1144333).\n\n - cifs: remove unused stats (bsc#1144333).\n\n - cifs: remove unused value pointed out by Coverity (bsc#1144333).\n\n - cifs: remove unused variable from SMB2_read (bsc#1144333).\n\n - cifs: rename and clarify CIFS_ASYNC_OP and CIFS_NO_RESP (bsc#1144333).\n\n - cifs: Reopen file before get SMB2 MTU credits for async IO (bsc#1144333).\n\n - cifs: replace a 4 with server->vals->header_preamble_size (bsc#1144333).\n\n - cifs: replace snprintf with scnprintf (bsc#1144333).\n\n - cifs: Respect reconnect in MTU credits calculations (bsc#1144333).\n\n - cifs: Respect reconnect in non-MTU credits calculations (bsc#1144333).\n\n - cifs: Respect SMB2 hdr preamble size in read responses (bsc#1144333).\n\n - cifs: return correct errors when pinning memory failed for direct I/O (bsc#1144333).\n\n - cifs: Return -EAGAIN instead of -ENOTSOCK (bsc#1144333).\n\n - cifs: return -ENODATA when deleting an xattr that does not exist (bsc#1144333).\n\n - cifs: Return error code when getting file handle for writeback (bsc#1144333).\n\n - cifs: return error on invalid value written to cifsFYI (bsc#1144333).\n\n - cifs: Save TTL value when parsing DFS referrals (bsc#1144333).\n\n - cifs: Select all required crypto modules (bsc#1085536, bsc#1144333).\n\n - cifs: set mapping error when page writeback fails in writepage or launder_pages (bsc#1144333).\n\n - cifs: set oparms.create_options rather than or'ing in CREATE_OPEN_BACKUP_INTENT (bsc#1144333).\n\n - cifs: Set reconnect instance to one initially (bsc#1144333).\n\n - cifs: set *resp_buf_type to NO_BUFFER on error (bsc#1144333).\n\n - cifs: Show locallease in /proc/mounts for cifs shares mounted with locallease feature (bsc#1144333).\n\n - cifs: show 'soft' in the mount options for hard mounts (bsc#1144333).\n\n - cifs: show the w bit for writeable /proc/fs/cifs/* files (bsc#1144333).\n\n - cifs: silence compiler warnings showing up with gcc-8.0.0 (bsc#1090734, bsc#1144333).\n\n - cifs: Silence uninitialized variable warning (bsc#1144333).\n\n - cifs: simple stats should always be enabled (bsc#1144333).\n\n - cifs: simplify code by removing CONFIG_CIFS_ACL ifdef (bsc#1144333). - Update config files.\n\n - cifs: simplify how we handle credits in compound_send_recv() (bsc#1144333).\n\n - cifs: Skip any trailing backslashes from UNC (bsc#1144333).\n\n - cifs: smb2 commands can not be negative, remove confusing check (bsc#1144333).\n\n - cifs: smb2ops: Fix listxattr() when there are no EAs (bsc#1051510, bsc#1144333).\n\n - cifs: smb2ops: Fix NULL check in smb2_query_symlink (bsc#1144333).\n\n - cifs: smb2pdu: Fix potential NULL pointer dereference (bsc#1144333).\n\n - cifs: smbd: Add parameter rdata to smb2_new_read_req (bsc#1144333).\n\n - cifs: smbd: Add rdma mount option (bsc#1144333).\n\n - cifs: smbd: Add SMB Direct debug counters (bsc#1144333).\n\n - cifs: smbd: Add SMB Direct protocol initial values and constants (bsc#1144333).\n\n - cifs: smbd: Avoid allocating iov on the stack (bsc#1144333).\n\n - cifs: smbd: avoid reconnect lockup (bsc#1144333).\n\n - cifs: smbd: Check for iov length on sending the last iov (bsc#1144333).\n\n - cifs: smbd: depend on INFINIBAND_ADDR_TRANS (bsc#1144333).\n\n - cifs: smbd: Disable signing on SMB direct transport (bsc#1144333).\n\n - cifs: smbd: disconnect transport on RDMA errors (bsc#1144333).\n\n - cifs: smbd: Do not call ib_dereg_mr on invalidated memory registration (bsc#1144333).\n\n - cifs: smbd: Do not destroy transport on RDMA disconnect (bsc#1144333).\n\n - cifs: smbd: Do not use RDMA read/write when signing is used (bsc#1144333).\n\n - cifs: smbd: Dump SMB packet when configured (bsc#1144333).\n\n - cifs: smbd: Enable signing with smbdirect (bsc#1144333).\n\n - cifs: smbd: Establish SMB Direct connection (bsc#1144333).\n\n - cifs: smbd: export protocol initial values (bsc#1144333).\n\n - cifs: smbd: fix spelling mistake: faield and legnth (bsc#1144333).\n\n - cifs: smbd: Fix the definition for SMB2_CHANNEL_RDMA_V1_INVALIDATE (bsc#1144333).\n\n - cifs: smbd: Implement function to create a SMB Direct connection (bsc#1144333).\n\n - cifs: smbd: Implement function to destroy a SMB Direct connection (bsc#1144333).\n\n - cifs: smbd: Implement function to receive data via RDMA receive (bsc#1144333).\n\n - cifs: smbd: Implement function to reconnect to a SMB Direct transport (bsc#1144333).\n\n - cifs: smbd: Implement function to send data via RDMA send (bsc#1144333).\n\n - cifs: smbd: Implement RDMA memory registration (bsc#1144333).\n\n - cifs: smbd: Indicate to retry on transport sending failure (bsc#1144333).\n\n - cifs: smbd: Read correct returned data length for RDMA write (SMB read) I/O (bsc#1144333).\n\n - cifs: smbd: Retry on memory registration failure (bsc#1144333).\n\n - cifs: smbd: Return EINTR when interrupted (bsc#1144333).\n\n - cifs: smbd: Set SMB Direct maximum read or write size for I/O (bsc#1144333).\n\n - cifs: smbd: _smbd_get_connection() can be static (bsc#1144333).\n\n - cifs: smbd: Support page offset in memory registration (bsc#1144333).\n\n - cifs: smbd: Support page offset in RDMA recv (bsc#1144333).\n\n - cifs: smbd: Support page offset in RDMA send (bsc#1144333).\n\n - cifs: smbd: take an array of reqeusts when sending upper layer data (bsc#1144333).\n\n - cifs: smbd: Upper layer connects to SMBDirect session (bsc#1144333).\n\n - cifs: smbd: Upper layer destroys SMB Direct session on shutdown or umount (bsc#1144333).\n\n - cifs: smbd: Upper layer performs SMB read via RDMA write through memory registration (bsc#1144333).\n\n - cifs: smbd: Upper layer performs SMB write via RDMA read through memory registration (bsc#1144333).\n\n - cifs: smbd: Upper layer receives data via RDMA receive (bsc#1144333).\n\n - cifs: smbd: Upper layer reconnects to SMB Direct session (bsc#1144333).\n\n - cifs: smbd: Upper layer sends data via RDMA send (bsc#1144333).\n\n - cifs:smbd Use the correct DMA direction when sending data (bsc#1144333).\n\n - cifs:smbd When reconnecting to server, call smbd_destroy() after all MIDs have been called (bsc#1144333).\n\n - cifs: smbd: work around gcc -Wmaybe-uninitialized warning (bsc#1144333).\n\n - cifs: start DFS cache refresher in cifs_mount() (bsc#1144333).\n\n - cifs: store the leaseKey in the fid on SMB2_open (bsc#1051510, bsc#1144333).\n\n - cifs: suppress some implicit-fallthrough warnings (bsc#1144333).\n\n - cifs: track writepages in vfs operation counters (bsc#1144333).\n\n - cifs: Try to acquire credits at once for compound requests (bsc#1144333).\n\n - cifs: update calc_size to take a server argument (bsc#1144333).\n\n - cifs: update init_sg, crypt_message to take an array of rqst (bsc#1144333).\n\n - cifs: update internal module number (bsc#1144333).\n\n - cifs: update internal module version number (bsc#1144333).\n\n - cifs: update internal module version number for cifs.ko to 2.12 (bsc#1144333).\n\n - cifs: update internal module version number for cifs.ko to 2.14 (bsc#1144333).\n\n - cifs: update module internal version number (bsc#1144333).\n\n - cifs: update multiplex loop to handle compounded responses (bsc#1144333).\n\n - cifs: update receive_encrypted_standard to handle compounded responses (bsc#1144333).\n\n - cifs: update smb2_calc_size to use smb2_sync_hdr instead of smb2_hdr (bsc#1144333).\n\n - cifs: update smb2_check_message to handle PDUs without a 4 byte length header (bsc#1144333).\n\n - cifs: update smb2_queryfs() to use compounding (bsc#1144333).\n\n - cifs: update __smb_send_rqst() to take an array of requests (bsc#1144333).\n\n - cifs: use a compound for setting an xattr (bsc#1144333).\n\n - cifs: use a refcount to protect open/closing the cached file handle (bsc#1144333).\n\n - cifs: use correct format characters (bsc#1144333).\n\n - cifs: Use correct packet length in SMB2_TRANSFORM header (bsc#1144333).\n\n - cifs: Use GFP_ATOMIC when a lock is held in cifs_mount() (bsc#1144333).\n\n - cifs: Use kmemdup in SMB2_ioctl_init() (bsc#1144333).\n\n - cifs: Use kmemdup rather than duplicating its implementation in smb311_posix_mkdir() (bsc#1144333).\n\n - cifs: Use kzfree() to free password (bsc#1144333).\n\n - cifs: Use offset when reading pages (bsc#1144333).\n\n - cifs: Use smb 2 - 3 and cifsacl mount options getacl functions (bsc#1051510, bsc#1144333).\n\n - cifs: Use smb 2 - 3 and cifsacl mount options setacl function (bsc#1051510, bsc#1144333).\n\n - cifs: use tcon_ipc instead of use_ipc parameter of SMB2_ioctl (bsc#1071306, bsc#1144333).\n\n - cifs: use the correct length when pinning memory for direct I/O for write (bsc#1144333).\n\n - cifs: Use ULL suffix for 64-bit constant (bsc#1051510, bsc#1144333).\n\n - cifs: wait_for_free_credits() make it possible to wait for >=1 credits (bsc#1144333).\n\n - cifs: we can not use small padding iovs together with encryption (bsc#1144333).\n\n - cifs: When sending data on socket, pass the correct page offset (bsc#1144333).\n\n - cifs: zero-range does not require the file is sparse (bsc#1144333).\n\n - cifs: zero sensitive data when freeing (bsc#1087092, bsc#1144333).\n\n - Cleanup some minor endian issues in smb3 rdma (bsc#1144333).\n\n - clk: add clk_bulk_get accessories (bsc#1144813).\n\n - clk: bcm2835: remove pllb (jsc#SLE-7294).\n\n - clk: bcm283x: add driver interfacing with Raspberry Pi's firmware (jsc#SLE-7294).\n\n - clk: bulk: silently error out on EPROBE_DEFER (bsc#1144718,bsc#1144813).\n\n - clk: Export clk_bulk_prepare() (bsc#1144813).\n\n - clk: raspberrypi: register platform device for raspberrypi-cpufreq (jsc#SLE-7294).\n\n - clk: renesas: cpg-mssr: Fix reset control race condition (bsc#1051510).\n\n - clk: rockchip: Add 1.6GHz PLL rate for rk3399 (bsc#1144718,bsc#1144813).\n\n - clk: rockchip: assign correct id for pclk_ddr and hclk_sd in rk3399 (bsc#1144718,bsc#1144813).\n\n - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling (bsc#1051510).\n\n - config: arm64: Remove CONFIG_ARM64_MODULE_CMODEL_LARGE Option removed by patches in bsc#1148219\n\n - coredump: split pipe command whitespace before expanding template (bsc#1051510).\n\n - cpufreq: add driver for Raspberry Pi (jsc#SLE-7294).\n\n - cpufreq: dt: Try freeing static OPPs only if we have added them (jsc#SLE-7294).\n\n - cpu/speculation: Warn on unsupported mitigations= parameter (bsc#1114279).\n\n - crypto: ccp - Add support for valid authsize values less than 16 (bsc#1051510).\n\n - crypto: ccp - Fix oops by properly managing allocated structures (bsc#1051510).\n\n - crypto: ccp - Ignore tag length when decrypting GCM ciphertext (bsc#1051510).\n\n - crypto: ccp - Ignore unconfigured CCP device on suspend/resume (bnc#1145934).\n\n - crypto: ccp - Validate buffer lengths for copy operations (bsc#1051510).\n\n - crypto: virtio - Read crypto services and algorithm masks (jsc#SLE-5844 jsc#SLE-6331 FATE#327377 bsc#1145446 LTC#175307).\n\n - crypto: virtio - Register an algo only if it's supported (jsc#SLE-5844 jsc#SLE-6331 FATE#327377 bsc#1145446 LTC#175307).\n\n - cx82310_eth: fix a memory leak bug (bsc#1051510).\n\n - dax: dax_layout_busy_page() should not unmap cow pages (bsc#1148698).\n\n - devres: always use dev_name() in devm_ioremap_resource() (git fixes).\n\n - dfs_cache: fix a wrong use of kfree in flush_cache_ent() (bsc#1144333).\n\n - dmaengine: rcar-dmac: Reject zero-length slave DMA requests (bsc#1051510).\n\n - dm btree: fix order of block initialization in btree_split_beneath (git fixes).\n\n - dm bufio: fix deadlock with loop device (git fixes).\n\n - dm cache metadata: Fix loading discard bitset (git fixes).\n\n - dm crypt: do not overallocate the integrity tag space (git fixes).\n\n - dm crypt: fix parsing of extended IV arguments (git fixes).\n\n - dm delay: fix a crash when invalid device is specified (git fixes).\n\n - dm: fix to_sector() for 32bit (git fixes).\n\n - dm integrity: change memcmp to strncmp in dm_integrity_ctr (git fixes).\n\n - dm integrity: correctly calculate the size of metadata area (git fixes).\n\n - dm integrity: fix a crash due to BUG_ON in\n __journal_read_write() (git fixes).\n\n - dm integrity: fix deadlock with overlapping I/O (git fixes).\n\n - dm integrity: limit the rate of error messages (git fixes).\n\n - dm kcopyd: always complete failed jobs (git fixes).\n\n - dm log writes: make sure super sector log updates are written in order (git fixes).\n\n - dm raid: add missing cleanup in raid_ctr() (git fixes).\n\n - dm: revert 8f50e358153d ('dm: limit the max bio size as BIO_MAX_PAGES * PAGE_SIZE') (git fixes).\n\n - dm space map metadata: fix missing store of apply_bops() return value (git fixes).\n\n - dm table: fix invalid memory accesses with too high sector number (git fixes).\n\n - dm table: propagate BDI_CAP_STABLE_WRITES to fix sporadic checksum errors (git fixes).\n\n - dm thin: fix bug where bio that overwrites thin block ignores FUA (git fixes).\n\n - dm thin: fix passdown_double_checking_shared_status() (git fixes).\n\n - dm zoned: fix potential NULL dereference in dmz_do_reclaim() (git fixes).\n\n - dm zoned: Fix zone report handling (git fixes).\n\n - dm zoned: fix zone state management race (git fixes).\n\n - dm zoned: improve error handling in i/o map code (git fixes).\n\n - dm zoned: improve error handling in reclaim (git fixes).\n\n - dm zoned: properly handle backing device failure (git fixes).\n\n - dm zoned: Silence a static checker warning (git fixes).\n\n - Documentation: Update Documentation for iommu.passthrough (bsc#1136039).\n\n - Do not log confusing message on reconnect by default (bsc#1129664, bsc#1144333).\n\n - Do not log expected error on DFS referral request (bsc#1051510, bsc#1144333).\n\n - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl (bsc#1051510).\n\n - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some strings (bsc#1051510).\n\n - drm/amd/display: Fix dc_create failure handling and 666 color depths (bsc#1111666).\n\n - drm/amd/display: Increase size of audios array (bsc#1111666).\n\n - drm/amd/display: num of sw i2c/aux engines less than num of connectors (bsc#1145946).\n\n - drm/amd/display: Only enable audio if speaker allocation exists (bsc#1111666).\n\n - drm/amd/display: Remove redundant non-zero and overflow check (bsc#1145946).\n\n - drm/amd/display: use encoder's engine id to find matched free audio device (bsc#1111666).\n\n - drm/amd/display: Wait for backlight programming completion in set backlight level (bsc#1111666).\n\n - drm/amdgpu: Add APTX quirk for Dell Latitude 5495 (bsc#1142635)\n\n - drm/amdgpu: added support 2nd UVD instance (bsc#1143331).\n\n - drm/amdgpu:change VEGA booting with firmware loaded by PSP (bsc#1143331).\n\n - drm/amdgpu: fix a potential information leaking bug (bsc#1111666).\n\n - drm/amdgpu/psp: move psp version specific function pointers to (bsc#1135642)\n\n - drm/bridge: lvds-encoder: Fix build error while CONFIG_DRM_KMS_HELPER=m (bsc#1111666).\n\n - drm/crc-debugfs: Also sprinkle irqrestore over early exits (bsc#1051510).\n\n - drm/edid: parse CEA blocks embedded in DisplayID (bsc#1111666).\n\n - drm/etnaviv: add missing failure path to destroy suballoc (bsc#1135642)\n\n - drm/exynos: fix missing decrement of retry counter (bsc#1111666).\n\n - drm/i915: Do not deballoon unused ggtt drm_mm_node in linux guest (bsc#1142635)\n\n - drm/i915: Fix GEN8_MCR_SELECTOR programming (bsc#1111666).\n\n - drm/i915: Fix HW readout for crtc_clock in HDMI mode (bsc#1111666).\n\n - drm/i915: Fix the TBT AUX power well enabling (bsc#1111666).\n\n - drm/i915: Fix wrong escape clock divisor init for GLK (bsc#1051510).\n\n - drm/i915: Fix wrong escape clock divisor init for GLK (bsc#1142635)\n\n - drm/i915/gvt: fix incorrect cache entry for guest page mapping (bsc#1111666).\n\n - drm/i915/perf: ensure we keep a reference on the driver (bsc#1051510).\n\n - drm/i915/perf: ensure we keep a reference on the driver (bsc#1142635)\n\n - drm/i915/perf: fix ICL perf register offsets (bsc#1111666).\n\n - drm/i915: Restore relaxed padding (OCL_OOB_SUPPRES_ENABLE) for skl+ (bsc#1142635)\n\n - drm/i915/userptr: Acquire the page lock around set_page_dirty() (bsc#1051510).\n\n - drm/imx: notify drm core before sending event during crtc disable (bsc#1135642)\n\n - drm/imx: only send event on crtc disable if kept disabled (bsc#1135642)\n\n - drm/mediatek: call drm_atomic_helper_shutdown() when unbinding driver (bsc#1135642)\n\n - drm/mediatek: call mtk_dsi_stop() after mtk_drm_crtc_atomic_disable() (bsc#1135642)\n\n - drm/mediatek: clear num_pipes when unbind driver (bsc#1135642)\n\n - drm/mediatek: fix unbind functions (bsc#1135642)\n\n - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before goto (bsc#1111666).\n\n - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before goto (bsc#1142635)\n\n - drm/mediatek: unbind components in mtk_drm_unbind() (bsc#1135642)\n\n - drm/mediatek: use correct device to import PRIME buffers (bsc#1111666).\n\n - drm/mediatek: use correct device to import PRIME buffers (bsc#1142635)\n\n - drm: msm: Fix add_gpu_components (bsc#1051510).\n\n - drm/msm/mdp5: Fix mdp5_cfg_init error return (bsc#1142635)\n\n - drm/nouveau: Do not retry infinitely when receiving no data on i2c (bsc#1142635)\n\n - drm/nouveau: fix memory leak in nouveau_conn_reset() (bsc#1051510).\n\n - drm/rockchip: Suspend DP late (bsc#1051510).\n\n - drm/rockchip: Suspend DP late (bsc#1142635)\n\n - drm: silence variable 'conn' set but not used (bsc#1051510).\n\n - drm/udl: introduce a macro to convert dev to udl.\n (bsc#1113722)\n\n - drm/udl: move to embedding drm device inside udl device.\n (bsc#1113722)\n\n - drm/vmwgfx: fix a warning due to missing dma_parms (bsc#1135642)\n\n - drm/vmwgfx: fix memory leak when too many retries have occurred (bsc#1051510).\n\n - drm/vmwgfx: Use the backdoor port if the HB port is not available (bsc#1135642)\n\n - Drop an ASoC fix that was reverted in 4.14.y stable\n\n - EDAC/amd64: Add Family 17h Model 30h PCI IDs (bsc#1112178).\n\n - EDAC, amd64: Add Family 17h, models 10h-2fh support (bsc#1112178).\n\n - EDAC/amd64: Adjust printed chip select sizes when interleaved (bsc#1131489).\n\n - EDAC/amd64: Cache secondary Chip Select registers (bsc#1131489).\n\n - EDAC/amd64: Decode syndrome before translating address (bsc#1131489).\n\n - EDAC/amd64: Find Chip Select memory size using Address Mask (bsc#1131489).\n\n - EDAC/amd64: Initialize DIMM info for systems with more than two channels (bsc#1131489).\n\n - EDAC/amd64: Recognize DRAM device type ECC capability (bsc#1131489).\n\n - EDAC/amd64: Recognize x16 symbol size (bsc#1131489).\n\n - EDAC/amd64: Set maximum channel layer size depending on family (bsc#1131489).\n\n - EDAC/amd64: Support asymmetric dual-rank DIMMs (bsc#1131489).\n\n - EDAC/amd64: Support more than two controllers for chip selects handling (bsc#1131489).\n\n - EDAC/amd64: Support more than two Unified Memory Controllers (bsc#1131489).\n\n - EDAC/amd64: Use a macro for iterating over Unified Memory Controllers (bsc#1131489).\n\n - ehea: Fix a copy-paste err in ehea_init_port_res (bsc#1051510).\n\n - ext4: use jbd2_inode dirty range scoping (bsc#1148616).\n\n - firmware: raspberrypi: register clk device (jsc#SLE-7294).\n\n - Fixed https://bugzilla.kernel.org/show_bug.cgi?id=202935 allow write on the same file (bsc#1144333).\n\n - Fix encryption labels and lengths for SMB3.1.1 (bsc#1085536, bsc#1144333).\n\n - fix incorrect error code mapping for OBJECTID_NOT_FOUND (bsc#1144333).\n\n - Fix match_server check to allow for auto dialect negotiate (bsc#1144333).\n\n - Fix SMB3.1.1 guest authentication to Samba (bsc#1085536, bsc#1144333).\n\n - fix smb3-encryption breakage when CONFIG_DEBUG_SG=y (bsc#1051510, bsc#1144333).\n\n - fix struct ufs_req removal of unused field (git-fixes).\n\n - Fix warning messages when mounting to older servers (bsc#1144333).\n\n - fs/cifs/cifsacl.c Fixes typo in a comment (bsc#1144333).\n\n - fs: cifs: cifsssmb: Change return type of convert_ace_to_cifs_ace (bsc#1144333).\n\n - fs/cifs: do not translate SFM_SLASH (U+F026) to backslash (bsc#1144333).\n\n - fs: cifs: Drop unlikely before IS_ERR(_OR_NULL) (bsc#1144333).\n\n - fs/cifs: fix uninitialised variable warnings (bsc#1144333).\n\n - fs: cifs: Kconfig: pedantic formatting (bsc#1144333).\n\n - fs: cifs: Replace _free_xid call in cifs_root_iget function (bsc#1144333).\n\n - fs/cifs: require sha512 (bsc#1051510, bsc#1144333).\n\n - fs/cifs: Simplify ib_post_(send|recv|srq_recv)() calls (bsc#1144333).\n\n - fs/cifs/smb2pdu.c: fix buffer free in SMB2_ioctl_free (bsc#1144333).\n\n - fs/cifs: suppress a string overflow warning (bsc#1144333).\n\n - fs/*/Kconfig: drop links to 404-compliant http://acl.bestbits.at (bsc#1144333).\n\n - fsl/fman: Use GFP_ATOMIC in (memac,tgec)_add_hash_mac_address() (bsc#1051510).\n\n - fs/xfs: Fix return code of xfs_break_leased_layouts() (bsc#1148031).\n\n - fs: xfs: xfs_log: Do not use KM_MAYFAIL at xfs_log_reserve() (bsc#1148033).\n\n - ftrace: Check for empty hash and comment the race with registering probes (bsc#1149418).\n\n - ftrace: Check for successful allocation of hash (bsc#1149424).\n\n - ftrace: Fix NULL pointer dereference in t_probe_next() (bsc#1149413).\n\n - gpio: Fix build error of function redefinition (bsc#1051510).\n\n - gpio: gpio-omap: add check for off wake capable gpios (bsc#1051510).\n\n - gpiolib: fix incorrect IRQ requesting of an active-low lineevent (bsc#1051510).\n\n - gpiolib: never report open-drain/source lines as 'input' to user-space (bsc#1051510).\n\n - gpio: mxs: Get rid of external API call (bsc#1051510).\n\n - gpio: pxa: handle corner case of unprobed device (bsc#1051510).\n\n - gpu: ipu-v3: ipu-ic: Fix saturation bit offset in TPMEM (bsc#1142635)\n\n - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT (bsc#1051510).\n\n - HID: Add quirk for HP X1200 PIXART OEM mouse (bsc#1051510).\n\n - HID: cp2112: prevent sleeping function called from invalid context (bsc#1051510).\n\n - HID: hiddev: avoid opening a disconnected device (bsc#1051510).\n\n - HID: hiddev: do cleanup in failure of opening a device (bsc#1051510).\n\n - HID: holtek: test for sanity of intfdata (bsc#1051510).\n\n - HID: sony: Fix race condition between rumble and device remove (bsc#1051510).\n\n - HID: wacom: Correct distance scale for 2nd-gen Intuos devices (bsc#1142635).\n\n - HID: wacom: correct misreported EKR ring values (bsc#1142635).\n\n - HID: wacom: fix bit shift for Cintiq Companion 2 (bsc#1051510).\n\n - hwmon: (nct7802) Fix wrong detection of in4 presence (bsc#1051510).\n\n - i2c: emev2: avoid race when unregistering slave client (bsc#1051510).\n\n - i2c: piix4: Fix port selection for AMD Family 16h Model 30h (bsc#1051510).\n\n - i2c: qup: fixed releasing dma without flush operation completion (bsc#1051510).\n\n - ia64: Get rid of iommu_pass_through (bsc#1136039).\n\n - IB/mlx5: Fix MR registration flow to use UMR properly (bsc#1093205 bsc#1145678).\n\n - ibmveth: Convert multicast list size for little-endian system (bsc#1061843).\n\n - ibmvnic: Do not process reset during or after device removal (bsc#1149652 ltc#179635).\n\n - ibmvnic: Unmap DMA address of TX descriptor buffers after use (bsc#1146351 ltc#180726).\n\n - igmp: fix memory leak in igmpv3_del_delrec() (networking-stable-19_07_25).\n\n - iio: adc: max9611: Fix misuse of GENMASK macro (bsc#1051510).\n\n - iio: adc: max9611: Fix temperature reading in probe (bsc#1051510).\n\n - Improve security, move default dialect to SMB3 from old CIFS (bsc#1051510, bsc#1144333).\n\n - include/linux/bitops.h: sanitize rotate primitives (git fixes).\n\n - Input: iforce - add sanity checks (bsc#1051510).\n\n - Input: kbtab - sanity check for endpoint type (bsc#1051510).\n\n - Input: synaptics - enable RMI mode for HP Spectre X360 (bsc#1051510).\n\n - intel_th: pci: Add support for another Lewisburg PCH (bsc#1051510).\n\n - intel_th: pci: Add Tiger Lake support (bsc#1051510).\n\n - iommu: Add helpers to set/get default domain type (bsc#1136039).\n\n - iommu/amd: Add support for X2APIC IOMMU interrupts (bsc#1145010).\n\n - iommu/amd: Fix race in increase_address_space() (bsc#1150860).\n\n - iommu/amd: Flush old domains in kdump kernel (bsc#1150861).\n\n - iommu/amd: Move iommu_init_pci() to .init section (bsc#1149105).\n\n - iommu/amd: Request passthrough mode from IOMMU core (bsc#1136039).\n\n - iommu: Disable passthrough mode when SME is active (bsc#1136039).\n\n - iommu/dma: Handle SG length overflow better (bsc#1146084).\n\n - iommu/iova: Remove stale cached32_node (bsc#1145018).\n\n - iommu: Print default domain type on boot (bsc#1136039).\n\n - iommu: Remember when default domain type was set on kernel command line (bsc#1136039).\n\n - iommu: Set default domain type at runtime (bsc#1136039).\n\n - iommu: Use Functions to set default domain type in iommu_set_def_domain_type() (bsc#1136039).\n\n - iommu/vt-d: Request passthrough mode from IOMMU core (bsc#1136039).\n\n - ipip: validate header length in ipip_tunnel_xmit (git-fixes).\n\n - ipv4: do not set IPv6 only flags to IPv4 addresses (networking-stable-19_07_25).\n\n - irqchip/gic-v2m: Add support for Amazon Graviton variant of GICv3+GICv2m (SLE-9332).\n\n - irqchip/gic-v3-its: fix build warnings (bsc#1144880).\n\n - ISDN: hfcsusb: checking idx of ep configuration (bsc#1051510).\n\n - isdn: hfcsusb: Fix mISDN driver crash caused by transfer buffer on the stack (bsc#1051510).\n\n - isdn: mISDN: hfcsusb: Fix possible NULL pointer dereferences in start_isoc_chain() (bsc#1051510).\n\n - iversion: add a routine to update a raw value with a larger one (bsc#1148133).\n\n - iwlwifi: dbg: split iwl_fw_error_dump to two functions (bsc#1119086).\n\n - iwlwifi: do not unmap as page memory that was mapped as single (bsc#1051510).\n\n - iwlwifi: fix bad dma handling in page_mem dumping flow (bsc#1120902).\n\n - iwlwifi: fw: use helper to determine whether to dump paging (bsc#1106434). Patch needed to be adjusted, because our tree does not have the global variable IWL_FW_ERROR_DUMP_PAGING\n\n - iwlwifi: mvm: do not send GEO_TX_POWER_LIMIT on version < 41 (bsc#1142635).\n\n - iwlwifi: mvm: fix an out-of-bound access (bsc#1051510).\n\n - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT support (bsc#1142635).\n\n - iwlwifi: pcie: do not service an interrupt that was masked (bsc#1142635).\n\n - iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X (bsc#1142635).\n\n - ixgbe: fix possible deadlock in ixgbe_service_task() (bsc#1113994 FATE#326315 FATE#326317).\n\n - jbd2: flush_descriptor(): Do not decrease buffer head's ref count (bsc#1143843).\n\n - jbd2: introduce jbd2_inode dirty range scoping (bsc#1148616).\n\n - kABI: Fix kABI for 'struct amd_iommu' (bsc#1145010).\n\n - kABI: Fix kABI for x86 pci-dma code (bsc#1136039).\n\n - kabi/severities: Exclude drivers/crypto/ccp/*\n\n - kabi/severities: match SLE15 entry ordering.\n\n - kasan: remove redundant initialization of variable 'real_size' (git fixes).\n\n - kconfig/[mn]conf: handle backspace (^H) key (bsc#1051510).\n\n - keys: Fix missing NULL pointer check in request_key_auth_describe() (bsc#1051510).\n\n - kvm: Fix leak vCPU's VMCS value into other pCPU (bsc#1145388).\n\n - kvm: LAPIC: Fix pending interrupt in IRR blocked by software disable LAPIC (bsc#1145408).\n\n - kvm: nVMX: allow setting the VMFUNC controls MSR (bsc#1145389).\n\n - kvm: nVMX: do not use dangling shadow VMCS after guest reset (bsc#1145390).\n\n - kvm: nVMX: Remove unnecessary sync_roots from handle_invept (bsc#1145391).\n\n - kvm: nVMX: Use adjusted pin controls for vmcs02 (bsc#1145392).\n\n - kvm: PPC: Book3S HV: Fix CR0 setting in TM emulation (bsc#1061840).\n\n - kvm: s390: add debug logging for cpu model subfunctions (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add deflate conversion facilty to cpu model (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add enhanced sort facilty to cpu model (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add MSA9 to cpumodel (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add vector BCD enhancements facility to cpumodel (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add vector enhancements facility 2 to cpumodel (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: enable MSA9 keywrapping functions depending on cpu model (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: implement subfunction processor calls (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: provide query function for instructions returning 32 byte (jsc#SLE-6240 FATE#327380).\n\n - kvm: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT with bad value (bsc#1145393).\n\n - kvm: VMX: check CPUID before allowing read/write of IA32_XSS (bsc#1145394).\n\n - kvm: VMX: Fix handling of #MC that occurs during VM-Entry (bsc#1145395).\n\n - kvm: x86: degrade WARN to pr_warn_ratelimited (bsc#1145409).\n\n - kvm: x86: Do not update RIP or do single-step on faulting emulation (bsc#1149104).\n\n - kvm: x86: fix backward migration with async_PF (bsc#1146074).\n\n - kvm/x86: Move MSR_IA32_ARCH_CAPABILITIES to array emulated_msrs (bsc#1134881 bsc#1134882).\n\n - kvm: X86: Reduce the overhead when lapic_timer_advance is disabled (bsc#1149083).\n\n - kvm: x86: Unconditionally enable irqs in guest context (bsc#1145396).\n\n - kvm: x86/vPMU: refine kvm_pmu err msg when event creation failed (bsc#1145397).\n\n - lan78xx: Fix memory leaks (bsc#1051510).\n\n - libata: add SG safety checks in SFF pio transfers (bsc#1051510).\n\n - libata: have ata_scsi_rw_xlat() fail invalid passthrough requests (bsc#1051510).\n\n - libceph: add ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - libceph: ADDR2 support for monmap (bsc#1148133 bsc#1136682).\n\n - libceph: allow ceph_buffer_put() to receive a NULL ceph_buffer (bsc#1148133).\n\n - libceph: correctly decode ADDR2 addresses in incremental OSD maps (bsc#1148133 bsc#1136682).\n\n - libceph: fix PG split vs OSD (re)connect race (bsc#1148133).\n\n - libceph: fix sa_family just after reading address (bsc#1148133 bsc#1136682).\n\n - libceph: fix unaligned accesses in ceph_entity_addr handling (bsc#1136682).\n\n - libceph: fix watch_item_t decoding to use ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - libceph: make ceph_pr_addr take an struct ceph_entity_addr pointer (bsc#1136682).\n\n - libceph: rename ceph_encode_addr to ceph_encode_banner_addr (bsc#1148133 bsc#1136682).\n\n - libceph: switch osdmap decoding to use ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - libceph: turn on CEPH_FEATURE_MSG_ADDR2 (bsc#1148133 bsc#1136682).\n\n - libceph: use TYPE_LEGACY for entity addrs instead of TYPE_NONE (bsc#1148133 bsc#1136682).\n\n - libnvdimm/pfn: Store correct value of npfns in namespace superblock (bsc#1146381 ltc#180720).\n\n - liquidio: add cleanup in octeon_setup_iq() (bsc#1051510).\n\n - loop: set PF_MEMALLOC_NOIO for the worker thread (git fixes).\n\n - lpfc: fix 12.4.0.0 GPF at boot (bsc#1148308).\n\n - mac80211: Correctly set noencrypt for PAE frames (bsc#1111666).\n\n - mac80211: Do not memset RXCB prior to PAE intercept (bsc#1111666).\n\n - mac80211: do not warn about CW params when not using them (bsc#1051510).\n\n - mac80211: do not WARN on short WMM parameters from AP (bsc#1051510).\n\n - mac80211: fix possible memory leak in ieee80211_assign_beacon (bsc#1142635).\n\n - mac80211: fix possible sta leak (bsc#1051510).\n\n - mac80211_hwsim: Fix possible NULL pointer dereferences in hwsim_dump_radio_nl() (bsc#1111666).\n\n - md: add mddev->pers to avoid potential NULL pointer dereference (git fixes).\n\n - md/raid: raid5 preserve the writeback action after the parity check (git fixes).\n\n - media: au0828: fix null dereference in error path (bsc#1051510).\n\n - media: pvrusb2: use a different format for warnings (bsc#1051510).\n\n - mfd: arizona: Fix undefined behavior (bsc#1051510).\n\n - mfd: core: Set fwnode for created devices (bsc#1051510).\n\n - mfd: hi655x-pmic: Fix missing return value check for devm_regmap_init_mmio_clk (bsc#1051510).\n\n - mfd: intel-lpss: Add Intel Comet Lake PCI IDs (jsc#SLE-4875).\n\n - mlxsw: spectrum: Fix error path in mlxsw_sp_module_init() (bsc#1112374).\n\n - mm: add filemap_fdatawait_range_keep_errors() (bsc#1148616).\n\n - mmc: cavium: Add the missing dma unmap when the dma has finished (bsc#1051510).\n\n - mmc: cavium: Set the correct dma max segment size for mmc_host (bsc#1051510).\n\n - mmc: core: Fix init of SD cards reporting an invalid VDD range (bsc#1051510).\n\n - mmc: dw_mmc: Fix occasional hang after tuning on eMMC (bsc#1051510).\n\n - mmc: sdhci-of-at91: add quirk for broken HS200 (bsc#1051510).\n\n - mmc: sdhci-pci: Add support for Intel CML (jsc#SLE-4875).\n\n - mmc: sdhci-pci: Add support for Intel ICP (jsc#SLE-4875).\n\n - mmc: sdhci-pci: Fix BYT OCP setting (bsc#1051510).\n\n - mm: do not stall register_shrinker() (bsc#1104902, VM Performance).\n\n - mm/hmm: fix bad subpage pointer in try_to_unmap_one (bsc#1148202, HMM, VM Functionality).\n\n - mm/hotplug: fix offline undo_isolate_page_range() (bsc#1148196, VM Functionality).\n\n - mm/list_lru.c: fix memory leak in\n __memcg_init_list_lru_node (bsc#1148379, VM Functionality).\n\n - mm/memcontrol.c: fix use after free in mem_cgroup_iter() (bsc#1149224, VM Functionality).\n\n - mm/memory.c: recheck page table entry with page table lock held (bsc#1148363, VM Functionality).\n\n - mm/migrate.c: initialize pud_entry in migrate_vma() (bsc#1148198, HMM, VM Functionality).\n\n - mm/mlock.c: change count_mm_mlocked_page_nr return type (bsc#1148527, VM Functionality).\n\n - mm/mlock.c: mlockall error for flag MCL_ONFAULT (bsc#1148527, VM Functionality).\n\n - mm: move MAP_SYNC to asm-generic/mman-common.h (bsc#1148297).\n\n - mm/page_alloc.c: fix calculation of pgdat->nr_zones (bsc#1148192, VM Functionality).\n\n - mm: page_mapped: do not assume compound page is huge or THP (bsc#1148574, VM Functionality).\n\n - mm, page_owner: handle THP splits correctly (bsc#1149197, VM Debugging Functionality).\n\n - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy() (bsc#1118689).\n\n - mm/vmscan.c: fix trying to reclaim unevictable LRU page (bsc#1149214, VM Functionality).\n\n - mm, vmscan: do not special-case slab reclaim when watermarks are boosted (git fixes (mm/vmscan)).\n\n - move a few externs to smbdirect.h to eliminate warning (bsc#1144333).\n\n - mpls: fix warning with multi-label encap (bsc#1051510).\n\n - nbd: replace kill_bdev() with __invalidate_device() again (git fixes).\n\n - Negotiate and save preferred compression algorithms (bsc#1144333).\n\n - net: bcmgenet: use promisc for unsupported filters (networking-stable-19_07_25).\n\n - net: bridge: mcast: fix stale ipv6 hdr pointer when handling v6 query (networking-stable-19_07_25).\n\n - net: bridge: mcast: fix stale nsrcs pointer in igmp3/mld2 report handling (networking-stable-19_07_25).\n\n - net: bridge: stp: do not cache eth dest pointer before skb pull (networking-stable-19_07_25).\n\n - net: dsa: mv88e6xxx: wait after reset deactivation (networking-stable-19_07_25).\n\n - net: ena: add ethtool function for changing io queue sizes (bsc#1139020 bsc#1139021).\n\n - net: ena: add good checksum counter (bsc#1139020 bsc#1139021).\n\n - net: ena: add handling of llq max tx burst size (bsc#1139020 bsc#1139021).\n\n - net: ena: add MAX_QUEUES_EXT get feature admin command (bsc#1139020 bsc#1139021).\n\n - net: ena: add newline at the end of pr_err prints (bsc#1139020 bsc#1139021).\n\n - net: ena: add support for changing max_header_size in LLQ mode (bsc#1139020 bsc#1139021).\n\n - net: ena: allow automatic fallback to polling mode (bsc#1139020 bsc#1139021).\n\n - net: ena: allow queue allocation backoff when low on memory (bsc#1139020 bsc#1139021).\n\n - net: ena: arrange ena_probe() function variables in reverse christmas tree (bsc#1139020 bsc#1139021).\n\n - net: ena: enable negotiating larger Rx ring size (bsc#1139020 bsc#1139021).\n\n - net: ena: ethtool: add extra properties retrieval via get_priv_flags (bsc#1139020 bsc#1139021).\n\n - net: ena: Fix bug where ring allocation backoff stopped too late (bsc#1139020 bsc#1139021).\n\n - net: ena: fix ena_com_fill_hash_function() implementation (bsc#1139020 bsc#1139021).\n\n - net: ena: fix: Free napi resources when ena_up() fails (bsc#1139020 bsc#1139021).\n\n - net: ena: fix incorrect test of supported hash function (bsc#1139020 bsc#1139021).\n\n - net: ena: fix: set freed objects to NULL to avoid failing future allocations (bsc#1139020 bsc#1139021).\n\n - net: ena: fix swapped parameters when calling ena_com_indirect_table_fill_entry (bsc#1139020 bsc#1139021).\n\n - net: ena: gcc 8: fix compilation warning (bsc#1139020 bsc#1139021).\n\n - net: ena: improve latency by disabling adaptive interrupt moderation by default (bsc#1139020 bsc#1139021).\n\n - net: ena: make ethtool show correct current and max queue sizes (bsc#1139020 bsc#1139021).\n\n - net: ena: optimise calculations for CQ doorbell (bsc#1139020 bsc#1139021).\n\n - net: ena: remove inline keyword from functions in *.c (bsc#1139020 bsc#1139021).\n\n - net: ena: replace free_tx/rx_ids union with single free_ids field in ena_ring (bsc#1139020 bsc#1139021).\n\n - net: ena: update driver version from 2.0.3 to 2.1.0 (bsc#1139020 bsc#1139021).\n\n - net: ena: use dev_info_once instead of static variable (bsc#1139020 bsc#1139021).\n\n - net: fix bpf_xdp_adjust_head regression for generic-XDP (bsc#1109837).\n\n - net: Fix netdev_WARN_ONCE macro (git-fixes).\n\n - net: hns3: add a check to pointer in error_detected and slot_reset (bsc#1104353 FATE#326415).\n\n - net: hns3: add all IMP return code (bsc#1104353 FATE#326415).\n\n - net: hns3: add aRFS support for PF (bsc#1104353 FATE#326415).\n\n - net: hns3: add Asym Pause support to fix autoneg problem (bsc#1104353 FATE#326415).\n\n - net: hns3: add check to number of buffer descriptors (bsc#1104353 FATE#326415).\n\n - net: hns3: add default value for tc_size and tc_offset (bsc#1104353 FATE#326415).\n\n - net: hns3: add exception handling when enable NIC HW error interrupts (bsc#1104353 FATE#326415).\n\n - net: hns3: add handling of two bits in MAC tunnel interrupts (bsc#1104353 FATE#326415).\n\n - net: hns3: add handshake with hardware while doing reset (bsc#1104353 FATE#326415).\n\n - net: hns3: Add missing newline at end of file (bsc#1104353 FATE#326415).\n\n - net: hns3: add opcode about query and clear RAS & MSI-X to special opcode (bsc#1104353 FATE#326415).\n\n - net: hns3: add recovery for the H/W errors occurred before the HNS dev initialization (bsc#1104353 FATE#326415).\n\n - net: hns3: add some error checking in hclge_tm module (bsc#1104353 FATE#326415).\n\n - net: hns3: add support for dump firmware statistics by debugfs (bsc#1104353 FATE#326415).\n\n - net: hns3: adjust hns3_uninit_phy()'s location in the hns3_client_uninit() (bsc#1104353 FATE#326415).\n\n - net: hns3: bitwise operator should use unsigned type (bsc#1104353 FATE#326415).\n\n - net: hns3: change SSU's buffer allocation according to UM (bsc#1104353 FATE#326415).\n\n - net: hns3: check msg_data before memcpy in hclgevf_send_mbx_msg (bsc#1104353 FATE#326415).\n\n - net: hns3: clear restting state when initializing HW device (bsc#1104353 FATE#326415).\n\n - net: hns3: code optimizaition of hclge_handle_hw_ras_error() (bsc#1104353 FATE#326415).\n\n - net: hns3: delay and separate enabling of NIC and ROCE HW errors (bsc#1104353 FATE#326415).\n\n - net: hns3: delay ring buffer clearing during reset (bsc#1104353 FATE#326415).\n\n - net: hns3: delay setting of reset level for hw errors until slot_reset is called (bsc#1104353 FATE#326415).\n\n - net: hns3: delete the redundant user NIC codes (bsc#1104353 FATE#326415).\n\n - net: hns3: do not configure new VLAN ID into VF VLAN table when it's full (bsc#1104353 FATE#326415).\n\n - net: hns3: enable broadcast promisc mode when initializing VF (bsc#1104353 FATE#326415).\n\n - net: hns3: enable DCB when TC num is one and pfc_en is non-zero (bsc#1104353 FATE#326415).\n\n - net: hns3: extract handling of mpf/pf msi-x errors into functions (bsc#1104353 FATE#326415).\n\n - net: hns3: fix a memory leak issue for hclge_map_unmap_ring_to_vf_vector (bsc#1104353 FATE#326415).\n\n - net: hns3: fix a statistics issue about l3l4 checksum error (bsc#1104353 FATE#326415).\n\n - net: hns3: fix avoid unnecessary resetting for the H/W errors which do not require reset (bsc#1104353 FATE#326415).\n\n - net: hns3: fix a -Wformat-nonliteral compile warning (bsc#1104353 FATE#326415).\n\n - net: hns3: fix compile warning without CONFIG_RFS_ACCEL (bsc#1104353 FATE#326415).\n\n - net: hns3: fix dereference of ae_dev before it is null checked (bsc#1104353 FATE#326415).\n\n - net: hns3: fixes wrong place enabling ROCE HW error when loading (bsc#1104353 FATE#326415).\n\n - net: hns3: fix flow control configure issue for fibre port (bsc#1104353 FATE#326415).\n\n - net: hns3: fix for dereferencing before null checking (bsc#1104353 FATE#326415).\n\n - net: hns3: fix for skb leak when doing selftest (bsc#1104353 FATE#326415).\n\n - net: hns3: fix __QUEUE_STATE_STACK_XOFF not cleared issue (bsc#1104353 FATE#326415).\n\n - net: hns3: fix race conditions between reset and module loading & unloading (bsc#1104353 FATE#326415).\n\n - net: hns3: fix some coding style issues (bsc#1104353 FATE#326415).\n\n - net: hns3: fix VLAN filter restore issue after reset (bsc#1104353 FATE#326415).\n\n - net: hns3: fix wrong size of mailbox responding data (bsc#1104353 FATE#326415).\n\n - net: hns3: free irq when exit from abnormal branch (bsc#1104353 FATE#326415).\n\n - net: hns3: handle empty unknown interrupt (bsc#1104353 FATE#326415).\n\n - net: hns3: initialize CPU reverse mapping (bsc#1104353 FATE#326415).\n\n - net: hns3: log detail error info of ROCEE ECC and AXI errors (bsc#1104353 FATE#326415).\n\n - net: hns3: make HW GRO handling compliant with SW GRO (bsc#1104353 FATE#326415).\n\n - net: hns3: modify handling of out of memory in hclge_err.c (bsc#1104353 FATE#326415).\n\n - net: hns3: modify hclge_init_client_instance() (bsc#1104353 FATE#326415).\n\n - net: hns3: modify hclgevf_init_client_instance() (bsc#1104353 FATE#326415).\n\n - net: hns3: optimize the CSQ cmd error handling (bsc#1104353 FATE#326415).\n\n - net: hns3: process H/W errors occurred before HNS dev initialization (bsc#1104353 FATE#326415).\n\n - net: hns3: refactor hns3_get_new_int_gl function (bsc#1104353 FATE#326415).\n\n - net: hns3: refactor PF/VF RSS hash key configuration (bsc#1104353 FATE#326415).\n\n - net: hns3: refine the flow director handle (bsc#1104353 FATE#326415).\n\n - net: hns3: remove override_pci_need_reset (bsc#1104353 FATE#326415).\n\n - net: hns3: remove redundant core reset (bsc#1104353 FATE#326415).\n\n - net: hns3: remove RXD_VLD check in hns3_handle_bdinfo (bsc#1104353 FATE#326415).\n\n - net: hns3: remove setting bit of reset_requests when handling mac tunnel interrupts (bsc#1104353 FATE#326415).\n\n - net: hns3: remove unused linkmode definition (bsc#1104353 FATE#326415).\n\n - net: hns3: remove VF VLAN filter entry inexistent warning print (bsc#1104353 FATE#326415).\n\n - net: hns3: replace numa_node_id with numa_mem_id for buffer reusing (bsc#1104353 FATE#326415).\n\n - net: hns3: re-schedule reset task while VF reset fail (bsc#1104353 FATE#326415).\n\n - net: hns3: set default value for param 'type' in hclgevf_bind_ring_to_vector (bsc#1104353 FATE#326415).\n\n - net: hns3: set maximum length to resp_data_len for exceptional case (bsc#1104353 FATE#326415).\n\n - net: hns3: set ops to null when unregister ad_dev (bsc#1104353 FATE#326415).\n\n - net: hns3: set the port shaper according to MAC speed (bsc#1104353 FATE#326415).\n\n - net: hns3: small changes for magic numbers (bsc#1104353 FATE#326415).\n\n - net: hns3: some changes of MSI-X bits in PPU(RCB) (bsc#1104353 FATE#326415).\n\n - net: hns3: some modifications to simplify and optimize code (bsc#1104353 FATE#326415).\n\n - net: hns3: some variable modification (bsc#1104353 FATE#326415).\n\n - net: hns3: stop schedule reset service while unloading driver (bsc#1104353 FATE#326415).\n\n - net: hns3: sync VLAN filter entries when kill VLAN ID failed (bsc#1104353 FATE#326415).\n\n - net: hns3: trigger VF reset if a VF has an over_8bd_nfe_err (bsc#1104353 FATE#326415).\n\n - net: hns3: typo in the name of a constant (bsc#1104353 FATE#326415).\n\n - net: hns3: use HCLGE_STATE_NIC_REGISTERED to indicate PF NIC client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use HCLGE_STATE_ROCE_REGISTERED to indicate PF ROCE client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use HCLGEVF_STATE_NIC_REGISTERED to indicate VF NIC client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use macros instead of magic numbers (bsc#1104353 FATE#326415).\n\n - net: hns: add support for vlan TSO (bsc#1104353 FATE#326415).\n\n - net/ibmvnic: Fix missing ( in __ibmvnic_reset (bsc#1149652 ltc#179635).\n\n - net/ibmvnic: free reset work of removed device from queue (bsc#1149652 ltc#179635).\n\n - net: Introduce netdev_*_once functions (networking-stable-19_07_25).\n\n - net: make skb_dst_force return true when dst is refcounted (networking-stable-19_07_25).\n\n - net/mlx4_core: Zero out lkey field in SW2HW_MPT fw command (bsc#1145678).\n\n - net/mlx5e: always initialize frag->last_in_page (bsc#1103990 FATE#326006).\n\n - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn (networking-stable-19_07_25).\n\n - net/mlx5: Fix modify_cq_in alignment (bsc#1103990 FATE#326006).\n\n - net: mvpp2: Do not check for 3 consecutive Idle frames for 10G links (bsc#1119113 FATE#326472).\n\n - net: neigh: fix multiple neigh timer scheduling (networking-stable-19_07_25).\n\n - net: openvswitch: fix csum updates for MPLS actions (networking-stable-19_07_25).\n\n - net: phylink: Fix flow control for fixed-link (bsc#1119113 FATE#326472).\n\n - netrom: fix a memory leak in nr_rx_frame() (networking-stable-19_07_25).\n\n - netrom: hold sock when setting skb->destructor (networking-stable-19_07_25).\n\n - net_sched: unset TCQ_F_CAN_BYPASS when adding filters (networking-stable-19_07_25).\n\n - net: sched: verify that q!=NULL before setting q->flags (git-fixes).\n\n - net: usb: pegasus: fix improper read if get_registers() fail (bsc#1051510).\n\n - NFS: Cleanup if nfs_match_client is interrupted (bsc#1134291).\n\n - NFS: Fix a double unlock from nfs_match,get_client (bsc#1134291).\n\n - NFS: Fix the inode request accounting when pages have subrequests (bsc#1140012).\n\n - NFS: make nfs_match_client killable (bsc#1134291).\n\n - nilfs2: do not use unexported cpu_to_le32()/le32_to_cpu() in uapi header (git fixes).\n\n - (nl,mac)80211: fix interface combinations on crypto controlled devices (bsc#1111666).\n\n - nvme: cancel request synchronously (bsc#1145661).\n\n - nvme: change locking for the per-subsystem controller list (bsc#1142541).\n\n - nvme-core: Fix extra device_put() call on error path (bsc#1142541).\n\n - nvme-fc: fix module unloads while lports still pending (bsc#1150033).\n\n - nvme: introduce NVME_QUIRK_IGNORE_DEV_SUBNQN (bsc#1146938).\n\n - nvme-multipath: fix ana log nsid lookup when nsid is not found (bsc#1141554).\n\n - nvme-multipath: relax ANA state check (bsc#1123105).\n\n - nvme-multipath: revalidate nvme_ns_head gendisk in nvme_validate_ns (bsc#1120876).\n\n - nvme: Return BLK_STS_TARGET if the DNR bit is set (bsc#1142076).\n\n - objtool: Add rewind_stack_do_exit() to the noreturn list (bsc#1145302).\n\n - objtool: Support GCC 9 cold subfunction naming scheme (bsc#1145300).\n\n - octeon_mgmt: Fix MIX registers configuration on MTU setup (bsc#1051510).\n\n - PCI: al: Add Amazon Annapurna Labs PCIe host controller driver (SLE-9332).\n\n - PCI: PM/ACPI: Refresh all stale power state data in pci_pm_complete() (bsc#1149106).\n\n - PCI: Restore Resizable BAR size bits correctly for 1MB BARs (bsc#1143841).\n\n - phy: qcom-qusb2: Fix crash if nvmem cell not specified (bsc#1051510).\n\n - phy: renesas: rcar-gen2: Fix memory leak at error paths (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: do not print error when get supply and clk defer (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: fix spelling mistakes (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: Pass ODT and auto power down parameters to TF-A (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: remove unneeded semicolon (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: remove wait for dcf irq event (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rockchip-dfi: Move GRF definitions to a common place (bsc#1144718,bsc#1144813).\n\n - PM / OPP: OF: Use pr_debug() instead of pr_err() while adding OPP table (jsc#SLE-7294).\n\n - powerpc/64s: Include cpu header (bsc#1065729).\n\n - powerpc/64s: support nospectre_v2 cmdline option (bsc#1131107).\n\n - powerpc: Allow flush_(inval_)dcache_range to work across ranges >4GB (bsc#1146575 ltc#180764).\n\n - powerpc/book3s/64: check for NULL pointer in pgd_alloc() (FATE#322447, bsc#1078248, git-fixes).\n\n - powerpc: dump kernel log before carrying out fadump or kdump (bsc#1149940 ltc#179958).\n\n - powerpc/fadump: use kstrtoint to handle sysfs store (bsc#1146376).\n\n - powerpc/fadump: when fadump is supported register the fadump sysfs files (bsc#1146352).\n\n - powerpc/fsl: Add nospectre_v2 command line argument (bsc#1131107).\n\n - powerpc/fsl: Update Spectre v2 reporting (bsc#1131107).\n\n - powerpc/lib: Fix feature fixup test of external branch (bsc#1065729).\n\n - powerpc/mm: Handle page table allocation failures (bsc#1065729).\n\n - powerpc/nvdimm: Pick nearby online node if the device node is not online (bsc#1142685 ltc#179509 FATE#327775).\n\n - powerpc/perf: Add constraints for power9 l2/l3 bus events (bsc#1056686).\n\n - powerpc/perf: Add mem access events to sysfs (FATE#326869, bsc#1124370).\n\n - powerpc/perf: Cleanup cache_sel bits comment (bsc#1056686).\n\n - powerpc/perf: Fix thresholding counter data for unknown type (bsc#1056686).\n\n - powerpc/perf: Remove PM_BR_CMPL_ALT from power9 event list (bsc#1047238, bsc#1056686).\n\n - powerpc/perf: Remove PM_BR_CMPL_ALT from power9 event list (fate#321438, bsc#1047238, bsc#1056686).\n\n - powerpc/perf: Update perf_regs structure to include SIER (bsc#1056686).\n\n - powerpc/powernv: Flush console before platform error reboot (bsc#1149940 ltc#179958).\n\n - powerpc/powernv/opal-dump : Use IRQ_HANDLED instead of numbers in interrupt handler (bsc#1065729).\n\n - powerpc/powernv: Return for invalid IMC domain (bsc1054914, fate#322448, git-fixes).\n\n - powerpc/powernv: Return for invalid IMC domain (bsc1054914, git-fixes).\n\n - powerpc/powernv: Use kernel crash path for machine checks (bsc#1149940 ltc#179958).\n\n - powerpc/pseries: add missing cpumask.h include file (bsc#1065729).\n\n - powerpc/pseries: correctly track irq state in default idle (bsc#1150727 ltc#178925).\n\n - powerpc/pseries, ps3: panic flush kernel messages before halting system (bsc#1149940 ltc#179958).\n\n - powerpc/rtas: use device model APIs and serialization during LPM (bsc#1144123 ltc#178840).\n\n - powerpc/security: Show powerpc_security_features in debugfs (bsc#1131107).\n\n - powerpc/xive: Fix dump of XIVE interrupt under pseries (bsc#1142019).\n\n - powerpc/xive: Fix loop exit-condition in xive_find_target_in_mask() (FATE#322438, bsc#1085030, bsc#1145189, LTC#179762).\n\n - powerpc/xmon: Add a dump of all XIVE interrupts (bsc#1142019).\n\n - powerpc/xmon: Check for HV mode when dumping XIVE info from OPAL (bsc#1142019).\n\n - qede: fix write to free'd pointer error and double free of ptp (bsc#1051510).\n\n - qla2xxx: kABI fixes for v10.01.00.18-k (bcs#1082635 bcs#1141340 bcs#1143706).\n\n - raid5-cache: Need to do start() part job after adding journal device (git fixes).\n\n - RDMA/hns: Add mtr support for mixed multihop addressing (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Bugfix for calculating qp buffer size (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Bugfix for filling the sge of srq (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Do not stuck in endless timeout loop (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fix an error code in hns_roce_set_user_sq_size() (bsc#1104427 FATE#326416).\n\n - RDMA/hns: fix inverted logic of readl read and shift (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fixs hw access invalid dma memory error (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fixup qp release bug (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Modify ba page size for cqe (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Remove set but not used variable 'fclr_write_fail_flag' (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Remove unnecessary print message in aeq (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Replace magic numbers with #defines (bsc#1104427 FATE#326416).\n\n - RDMA/hns: reset function when removing module (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Set reset flag when hw resetting (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Use %pK format pointer print (bsc#1104427 FATE#326416).\n\n - refresh: soc: fsl: guts: Add definition for LX2160A (fate#326572).\n\n - regulator: qcom_spmi: Fix math of spmi_regulator_set_voltage_time_sel (bsc#1051510).\n\n - Remove ifdef since SMB3 (and later) now STRONGLY preferred (bsc#1051510, bsc#1144333).\n\n - Remove qla2xxx-specific symbols kABI workarounds. In SLE15 1d5e8aad6de2285a00b4e1f2c5ea64a41e74bb7b adds kABI whitelists for drivers/scsi/qla2xxx/* because these symbols are internal to the driver. This entry was dropped from 15 SP1 during a kabi/severities cleanup and we grew a few needless kABI hacks to fix these symbols.\n Remove them again since the commit is cherry-picked on SP1.\n\n - Replace lpfc patch with upstream version\n\n - Revert 'Bluetooth: validate BLE connection interval updates' (bsc#1051510).\n\n - Revert 'cfg80211: fix processing world regdomain when non modular' (bsc#1051510).\n\n - Revert 'dm bufio: fix deadlock with loop device' (git fixes).\n\n - Revert i915 userptr page lock patch (bsc#1145051) This patch potentially causes a deadlock between kcompactd, as reported on 5.3-rc3. Revert it until a proper fix is found.\n\n - Revert 'net: ena: ethtool: add extra properties retrieval via get_priv_flags' (bsc#1139020 bsc#1139021).\n\n - Revert patches.suse/0001-blk-wbt-Avoid-lock-contention-and-thun dering-herd-is.patch (bsc#1141543) As we see stalls / crashes recently with the relevant code path, revert this patch tentatively.\n\n - Revert 'scsi: ncr5380: Increase register polling limit' (git-fixes).\n\n - Revert 'scsi: prefix header search paths with $(srctree)/ (bsc#1136346' This reverts commit 5f679430713da59f5367aa9499e544e6187ac17c. Reverting this commit fixes build for me.\n\n - Revert 'scsi: ufs: disable vccq if it's not needed by UFS device' (git-fixes).\n\n - rpm/kernel-binary.spec.in: Enable missing modules check.\n\n - rpmsg: added MODULE_ALIAS for rpmsg_char (bsc#1051510).\n\n - rpmsg: smd: do not use mananged resources for endpoints and channels (bsc#1051510).\n\n - rpmsg: smd: fix memory leak on channel create (bsc#1051510).\n\n - rsi: improve kernel thread handling to fix kernel panic (bsc#1051510).\n\n - rslib: Fix decoding of shortened codes (bsc#1051510).\n\n - rslib: Fix handling of of caller provided syndrome (bsc#1051510).\n\n - rtc: pcf8523: do not return invalid date when battery is low (bsc#1051510).\n\n - rtc: pcf8563: Clear event flags and disable interrupts before requesting irq (bsc#1051510).\n\n - rtc: pcf8563: Fix interrupt trigger method (bsc#1051510).\n\n - rxrpc: Fix send on a connected, but unbound socket (networking-stable-19_07_25).\n\n - s390/cio: fix ccw_device_start_timeout API (bsc#1142109 LTC#179339).\n\n - s390/dasd: fix endless loop after read unit address configuration (bsc#1144912 LTC#179907).\n\n - s390/qeth: avoid control IO completion stalls (bsc#1142109 LTC#179339).\n\n - s390/qeth: cancel cmd on early error (bsc#1142109 LTC#179339).\n\n - s390/qeth: fix request-side race during cmd IO timeout (bsc#1142109 LTC#179339).\n\n - s390/qeth: release cmd buffer in error paths (bsc#1142109 LTC#179339).\n\n - s390/qeth: simplify reply object handling (bsc#1142109 LTC#179339).\n\n - samples, bpf: fix to change the buffer size for read() (bsc#1051510).\n\n - samples: mei: use /dev/mei0 instead of /dev/mei (bsc#1051510).\n\n - sched/fair: Do not free p->numa_faults with concurrent readers (bsc#1144920).\n\n - sched/fair: Use RCU accessors consistently for\n ->numa_group (bsc#1144920).\n\n - scripts/checkstack.pl: Fix arm64 wrong or unknown architecture (bsc#1051510).\n\n - scripts/decode_stacktrace: only strip base path when a prefix of the path (bsc#1051510).\n\n - scripts/decode_stacktrace.sh: prefix addr2line with $CROSS_COMPILE (bsc#1051510).\n\n - scripts/gdb: fix lx-version string output (bsc#1051510).\n\n - scripts/git_sort/git_sort.py :\n\n - scsi: aacraid: Fix missing break in switch statement (git-fixes).\n\n - scsi: aacraid: Fix performance issue on logical drives (git-fixes).\n\n - scsi: aic94xx: fix an error code in aic94xx_init() (git-fixes).\n\n - scsi: aic94xx: fix module loading (git-fixes).\n\n - scsi: bfa: Avoid implicit enum conversion in bfad_im_post_vendor_event (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_fcs_lport: Mark expected switch fall-throughs (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_fcs_rport: Mark expected switch fall-throughs (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_ioc: Mark expected switch fall-throughs (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: clean up a couple of indentation issues (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: convert to strlcpy/strlcat (git-fixes).\n\n - scsi: bfa: fix calls to dma_set_mask_and_coherent() (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: no need to check return value of debugfs_create functions (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: remove ScsiResult macro (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: Remove unused functions (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: use dma_set_mask_and_coherent (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bnx2fc: Do not allow both a cleanup completion and abort completion for the same request (bsc#1144582).\n\n - scsi: bnx2fc: fix bnx2fc_cmd refcount imbalance in send_rec (bsc#1144582).\n\n - scsi: bnx2fc: fix bnx2fc_cmd refcount imbalance in send_srr (bsc#1144582).\n\n - scsi: bnx2fc: fix incorrect cast to u64 on shift operation (git-fixes).\n\n - scsi: bnx2fc: Fix NULL dereference in error handling (git-fixes).\n\n - scsi: bnx2fc: Limit the IO size according to the FW capability (bsc#1144582).\n\n - scsi: bnx2fc: Only put reference to io_req in bnx2fc_abts_cleanup if cleanup times out (bsc#1144582).\n\n - scsi: bnx2fc: Redo setting source FCoE MAC (bsc#1144582).\n\n - scsi: bnx2fc: Separate out completion flags and variables for abort and cleanup (bsc#1144582).\n\n - scsi: bnx2fc: Update the driver version to 2.12.10 (bsc#1144582).\n\n - scsi: core: Fix race on creating sense cache (git-fixes).\n\n - scsi: core: set result when the command cannot be dispatched (git-fixes).\n\n - scsi: core: Synchronize request queue PM status only on successful resume (git-fixes).\n\n - scsi: cxgb4i: fix incorrect spelling 'reveive' -> 'receive' (bsc#1136346 jsc#SLE-4682).\n\n - scsi: cxgb4i: get pf number from lldi->pf (bsc#1136346 jsc#SLE-4682).\n\n - scsi: cxgb4i: validate tcp sequence number only if chip version <= T5 (bsc#1136346 jsc#SLE-4682).\n\n - scsi: cxlflash: Mark expected switch fall-throughs (bsc#1148868).\n\n - scsi: cxlflash: Prevent deadlock when adapter probe fails (git-fixes).\n\n - scsi: esp_scsi: Track residual for PIO transfers (git-fixes) Also, mitigate kABI changes.\n\n - scsi: fas216: fix sense buffer initialization (git-fixes).\n\n - scsi: hisi_sas: Add support for DIX feature for v3 hw (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: change queue depth from 512 to 4096 (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Change SERDES_CFG init value to increase reliability of HiLink (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Disable stash for v3 hw (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Fix losing directly attached disk when hot-plug (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Ignore the error code between phy down to phy up (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Issue internal abort on all relevant queues (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: kabi fixes (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: print PHY RX errors count for later revision of v3 hw (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Reduce HISI_SAS_SGE_PAGE_CNT in size (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Reject setting programmed minimum linkrate > 1.5G (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: send primitive NOTIFY to SSP situation only (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: shutdown axi bus to avoid exception CQ returned (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Use pci_irq_get_affinity() for v3 hw as experimental (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: isci: initialize shost fully before calling scsi_add_host() (git-fixes).\n\n - scsi: libfc: fix NULL pointer dereference on a null lport (git-fixes).\n\n - scsi: libsas: delete sas port if expander discover failed (git-fixes).\n\n - scsi: libsas: Fix rphy phy_identifier for PHYs with end devices attached (git-fixes).\n\n - scsi: libsas: kABI protect struct sas_task_slow (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: libsas: only clear phy->in_shutdown after shutdown event done (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: lpfc: add check for loss of ndlp when sending RRQ (bsc#1148308).\n\n - scsi: lpfc: Add first and second level hardware revisions to sysfs (bsc#1146215).\n\n - scsi: lpfc: Add MDS driver loopback diagnostics support (bsc#1146215).\n\n - scsi: lpfc: Add NVMe sequence level error recovery support (bsc#1146215).\n\n - scsi: lpfc: Add simple unlikely optimizations to reduce NVME latency (bsc#1146215).\n\n - scsi: lpfc: Avoid unused function warnings (bsc#1148308).\n\n - scsi: lpfc: change snprintf to scnprintf for possible overflow (bsc#1146215).\n\n - scsi: lpfc: Convert timers to use timer_setup() (bsc#1148308).\n\n - scsi: lpfc: correct rcu unlock issue in lpfc_nvme_info_show (bsc#1148308).\n\n - scsi: lpfc: Default fdmi_on to on (bsc#1148308).\n\n - scsi: lpfc: Fix ADISC reception terminating login state if a NVME (bsc#1146215).\n\n - scsi: lpfc: Fix BlockGuard enablement on FCoE adapters (bsc#1146215).\n\n - scsi: lpfc: Fix coverity warnings (bsc#1146215).\n\n - scsi: lpfc: Fix crash due to port reset racing vs adapter error (bsc#1146215).\n\n - scsi: lpfc: Fix crash on driver unload in wq free (bsc#1146215).\n\n - scsi: lpfc: Fix crash when cpu count is 1 and null irq affinity mask (bsc#1146215).\n\n - scsi: lpfc: Fix deadlock on host_lock during cable pulls (bsc#1146215).\n\n - scsi: lpfc: Fix devices that do not return after devloss followed by (bsc#1146215).\n\n - scsi: lpfc: Fix discovery when target has no GID_FT information (bsc#1146215).\n\n - scsi: lpfc: Fix ELS field alignments (bsc#1146215).\n\n - scsi: lpfc: Fix error in remote port address change (bsc#1146215).\n\n - scsi: lpfc: Fix failure to clear non-zero eq_delay after io rate (bsc#1146215).\n\n - scsi: lpfc: Fix FLOGI handling across multiple link up/down (bsc#1146215).\n\n - scsi: lpfc: Fix hang when downloading fw on port enabled for nvme (bsc#1146215).\n\n - scsi: lpfc: Fix irq raising in lpfc_sli_hba_down (bsc#1146215).\n\n - scsi: lpfc: Fix issuing init_vpi mbox on SLI-3 card (bsc#1146215).\n\n - scsi: lpfc: Fix leak of ELS completions on adapter reset (bsc#1146215).\n\n - scsi: lpfc: Fix loss of remote port after devloss due to lack of RPIs (bsc#1146215).\n\n - scsi: lpfc: Fix Max Frame Size value shown in fdmishow output (bsc#1146215).\n\n - scsi: lpfc: Fix null ptr oops updating lpfc_devloss_tmo via sysfs (bsc#1146215).\n\n - scsi: lpfc: Fix nvme first burst module parameter description (bsc#1146215).\n\n - scsi: lpfc: Fix nvme sg_seg_cnt display if HBA does not support NVME (bsc#1146215).\n\n - scsi: lpfc: Fix nvme target mode ABTSing a received ABTS (bsc#1146215).\n\n - scsi: lpfc: Fix Oops in nvme_register with target logout/login (bsc#1146215).\n\n - scsi: lpfc: Fix oops when fewer hdwqs than cpus (bsc#1146215).\n\n - scsi: lpfc: Fix PLOGI failure with high remoteport count (bsc#1146215).\n\n - scsi: lpfc: Fix port relogin failure due to GID_FT interaction (bsc#1146215).\n\n - scsi: lpfc: Fix propagation of devloss_tmo setting to nvme transport (bsc#1146215).\n\n - scsi: lpfc: Fix reported physical link speed on a disabled trunked (bsc#1146215).\n\n - scsi: lpfc: Fix reset recovery paths that are not recovering (bsc#1144375).\n\n - scsi: lpfc: Fix sg_seg_cnt for HBAs that do not support NVME (bsc#1146215).\n\n - scsi: lpfc: Fix sli4 adapter initialization with MSI (bsc#1146215).\n\n - scsi: lpfc: Fix too many sg segments spamming in kernel log (bsc#1146215).\n\n - scsi: lpfc: Fix upcall to bsg done in non-success cases (bsc#1146215).\n\n - scsi: lpfc: Limit xri count for kdump environment (bsc#1146215).\n\n - scsi: lpfc: lpfc_sli: Mark expected switch fall-throughs (bsc#1148308).\n\n - scsi: lpfc: Make some symbols static (bsc#1148308).\n\n - scsi: lpfc: Merge per-protocol WQ/CQ pairs into single per-cpu pair (bsc#1146215).\n\n - scsi: lpfc: Migrate to %px and %pf in kernel print calls (bsc#1146215).\n\n - scsi: lpfc: no need to check return value of debugfs_create functions (bsc#1148308).\n\n - scsi: lpfc: nvme: avoid hang / use-after-free when destroying localport (bsc#1148308).\n\n - scsi: lpfc: nvmet: avoid hang / use-after-free when destroying targetport (bsc#1148308).\n\n - scsi: lpfc: remove a bogus pci_dma_sync_single_for_device call (bsc#1148308).\n\n - scsi: lpfc: Remove bg debugfs buffers (bsc#1144375).\n\n - scsi: lpfc: remove NULL check before some freeing functions (bsc#1146215).\n\n - scsi: lpfc: remove null check on nvmebuf (bsc#1148308).\n\n - scsi: lpfc: remove ScsiResult macro (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variable 'psli' (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'fc_hdr' and 'hw_page_size' (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'qp' (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'tgtp' (bsc#1148308).\n\n - scsi: lpfc: Resolve checker warning for lpfc_new_io_buf() (bsc#1144375).\n\n - scsi: lpfc: resolve lockdep warnings (bsc#1148308).\n\n - scsi: lpfc: Support dynamic unbounded SGL lists on G7 hardware (bsc#1146215).\n\n - scsi: lpfc: Update lpfc version to 12.4.0.0 (bsc#1146215).\n\n - scsi: lpfc: Use dma_zalloc_coherent (bsc#1148308).\n\n - scsi: lpfc: use sg helper to iterate over scatterlist (bsc#1148308).\n\n - scsi: mac_scsi: Fix pseudo DMA implementation, take 2 (git-fixes).\n\n - scsi: mac_scsi: Increase PIO/PDMA transfer length threshold (git-fixes).\n\n - scsi: megaraid: fix out-of-bound array accesses (git-fixes).\n\n - scsi: megaraid_sas: Fix calculation of target ID (git-fixes).\n\n - scsi: megaraid_sas: IRQ poll to avoid CPU hard lockups (bsc#1143962).\n\n - scsi: megaraid_sas: Release Mutex lock before OCR in case of DCMD timeout (bsc#1143962).\n\n - scsi: NCR5380: Always re-enable reselection interrupt (git-fixes).\n\n - scsi: pmcraid: do not allocate a dma coherent buffer for sense data (bsc#1135990 jsc#SLE-4709).\n\n - scsi: pmcraid: simplify pmcraid_cancel_all a bit (bsc#1135990 jsc#SLE-4709).\n\n - scsi: pmcraid: use generic DMA API (bsc#1135990 jsc#SLE-4709).\n\n - scsi: pmcraid: use sg helper to iterate over scatterlist (bsc#1135990 jsc#SLE-4709).\n\n - scsi: prefix header search paths with $(srctree)/ (bsc#1136346 jsc#SLE-4682).\n\n - scsi: qedf: Add debug information for unsolicited processing (bsc#1149976).\n\n - scsi: qedf: Add shutdown callback handler (bsc#1149976).\n\n - scsi: qedf: Add support for 20 Gbps speed (bsc#1149976).\n\n - scsi: qedf: Check both the FCF and fabric ID before servicing clear virtual link (bsc#1149976).\n\n - scsi: qedf: Check for link state before processing LL2 packets and send fipvlan retries (bsc#1149976).\n\n - scsi: qedf: Check for module unloading bit before processing link update AEN (bsc#1149976).\n\n - scsi: qedf: Decrease the LL2 MTU size to 2500 (bsc#1149976).\n\n - scsi: qedf: Fix race betwen fipvlan request and response path (bsc#1149976).\n\n - scsi: qedf: Initiator fails to re-login to switch after link down (bsc#1149976).\n\n - scsi: qedf: Print message during bailout conditions (bsc#1149976).\n\n - scsi: qedf: remove memset/memcpy to nfunc and use func instead (git-fixes).\n\n - scsi: qedf: remove set but not used variables (bsc#1149976).\n\n - scsi: qedf: Stop sending fipvlan request on unload (bsc#1149976).\n\n - scsi: qedf: Update module description string (bsc#1149976).\n\n - scsi: qedf: Update the driver version to 8.37.25.20 (bsc#1149976).\n\n - scsi: qedf: Update the version to 8.42.3.0 (bsc#1149976).\n\n - scsi: qedf: Use discovery list to traverse rports (bsc#1149976).\n\n - scsi: qedi: remove declaration of nvm_image from stack (git-fixes).\n\n - scsi: qla2xxx: Add cleanup for PCI EEH recovery (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Add cleanup for PCI EEH recovery (bsc#1129424).\n\n - scsi: qla2xxx: Allow NVMe IO to resume with short cable pull (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value (bsc#1143706).\n\n - scsi: qla2xxx: Avoid that Coverity complains about dereferencing a NULL rport pointer (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qla2x00_mem_free() crashes if called twice (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory (git-fixes).\n\n - scsi: qla2xxx: Change abort wait_loop from msleep to wait_event_timeout (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Change a stack variable into a static const variable (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Change data_dsd into an array (bsc#1143706).\n\n - scsi: qla2xxx: Change the return type of qla24xx_read_flash_data() (bsc#1143706).\n\n - scsi: qla2xxx: Change the return type of qla2x00_update_ms_fdmi_iocb() into void (bsc#1143706).\n\n - scsi: qla2xxx: Check secondary image if reading the primary image fails (bsc#1143706).\n\n - scsi: qla2xxx: Check the PCI info string output buffer size (bsc#1143706).\n\n - scsi: qla2xxx: Check the size of firmware data structures at compile time (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Cleanup fcport memory to prevent leak (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Cleanup redundant qla2x00_abort_all_cmds during unload (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: cleanup trace buffer initialization (bsc#1134476).\n\n - scsi: qla2xxx: Complain if a command is released that is owned by the firmware (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Complain if a mailbox command times out (bsc#1143706).\n\n - scsi: qla2xxx: Complain if a soft reset fails (bsc#1143706).\n\n - scsi: qla2xxx: Complain if parsing the version string fails (bsc#1143706).\n\n - scsi: qla2xxx: Complain if sp->done() is not called from the completion path (bsc#1143706).\n\n - scsi: qla2xxx: Complain if waiting for pending commands times out (bsc#1143706).\n\n - scsi: qla2xxx: Complain loudly about reference count underflow (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Correct error handling during initialization failures (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare fourth qla2x00_set_model_info() argument const (bsc#1143706).\n\n - scsi: qla2xxx: Declare local symbols static (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla24xx_build_scsi_crc_2_iocbs() static (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla2x00_find_new_loop_id() static (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla_tgt_cmd.cdb const (bsc#1143706).\n\n - scsi: qla2xxx: Declare the fourth ql_dump_buffer() argument const (bsc#1143706).\n\n - scsi: qla2xxx: Disable T10-DIF feature with FC-NVMe during probe (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Do not corrupt vha->plogi_ack_list (bsc#1143706).\n\n - scsi: qla2xxx: Enable type checking for the SRB free and done callback functions (bsc#1143706).\n\n - scsi: qla2xxx: Fix abort timeout race condition (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a format specifier (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a format specifier (git-fixes).\n\n - scsi: qla2xxx: Fix an endian bug in fcpcmd_is_corrupted() (git-fixes).\n\n - scsi: qla2xxx: Fix a NULL pointer dereference (bsc#1143706).\n\n - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a race condition between aborting and completing a SCSI command (bsc#1143706).\n\n - scsi: qla2xxx: Fix a small typo in qla_bsg.c (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix comment alignment in qla_bsg.c (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix device staying in blocked state (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix device staying in blocked state (git-fixes).\n\n - scsi: qla2xxx: Fix different size DMA Alloc/Unmap (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix DMA unmap leak (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix driver reload for ISP82xx (bsc#1143706).\n\n - scsi: qla2xxx: Fix driver unload when FC-NVMe LUNs are connected (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() (git-fixes).\n\n - scsi: qla2xxx: Fix flash read for Qlogic ISPs (bsc#1143706).\n\n - scsi: qla2xxx: Fix formatting of pointer types (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix fw dump corruption (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hang in fcport delete path (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hardirq-unsafe locking (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hardlockup in abort command during driver remove (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix kernel crash after disconnecting NVMe devices (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix message indicating vectors used by driver (bsc#1143706).\n\n - scsi: qla2xxx: Fix NULL pointer crash due to stale CPUID (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix NVME cmd and LS cmd timeout race condition (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix NVMe port discovery after a short device port loss (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix possible fcport NULL pointer dereferences (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix premature timer expiration (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() (bsc#1143706).\n\n - scsi: qla2xxx: Fix race conditions in the code for aborting SCSI commands (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix session lookup in qlt_abort_work() (bsc#1143706).\n\n - scsi: qla2xxx: fix spelling mistake 'alredy' -> 'already' (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix stale session (bsc#1143706).\n\n - scsi: qla2xxx: Fix stuck login session (bsc#1143706).\n\n - scsi: qla2xxx: Fix use-after-free issues in qla2xxx_qpair_sp_free_dma() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Further limit FLASH region write access from SysFS (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Improve Linux kernel coding style conformance (bsc#1143706).\n\n - scsi: qla2xxx: Include the <asm/unaligned.h> header file from qla_dsd.h (bsc#1143706).\n\n - scsi: qla2xxx: Increase the max_sgl_segments to 1024 (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Increase the size of the mailbox arrays from 4 to 8 (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Inline the qla2x00_fcport_event_handler() function (bsc#1143706).\n\n - scsi: qla2xxx: Insert spaces where required (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Introduce qla2x00_els_dcmd2_free() (bsc#1143706).\n\n - scsi: qla2xxx: Introduce qla2xxx_get_next_handle() (bsc#1143706).\n\n - scsi: qla2xxx: Introduce the be_id_t and le_id_t data types for FC src/dst IDs (bsc#1143706).\n\n - scsi: qla2xxx: Introduce the dsd32 and dsd64 data structures (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Introduce the function qla2xxx_init_sp() (bsc#1143706).\n\n - scsi: qla2xxx: Leave a blank line after declarations (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Let the compiler check the type of the SCSI command context pointer (bsc#1143706).\n\n - scsi: qla2xxx: Log the status code if a firmware command fails (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make it explicit that ELS pass-through IOCBs use little endian (bsc#1143706).\n\n - scsi: qla2xxx: Make qla24xx_async_abort_cmd() static (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_abort_srb() again decrease the sp reference count (bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_mem_free() easier to verify (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_process_response_queue() easier to read (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qlt_handle_abts_completion() more robust (bsc#1143706).\n\n - scsi: qla2xxx: Make sure that aborted commands are freed (bsc#1143706).\n\n - scsi: qla2xxx: Modify NVMe include directives (bsc#1143706).\n\n - scsi: qla2xxx: move IO flush to the front of NVME rport unregistration (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_clear_loop_id() from qla_inline.h into qla_init.c (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_is_reserved_id() from qla_inline.h into qla_init.c (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_set_fcport_state() from a .h into a .c file (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_set_reserved_loop_ids() definition (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move the <linux/io-64-nonatomic-lo-hi.h> include directive (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move the port_state_str definition from a .h to a .c file (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: on session delete, return nvme cmd (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Pass little-endian values to the firmware (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: qla2x00_alloc_fw_dump: set ha->eft (bsc#1134476).\n\n - scsi: qla2xxx: Really fix qla2xxx_eh_abort() (bsc#1143706).\n\n - scsi: qla2xxx: Reduce the number of casts in GID list code (bsc#1143706).\n\n - scsi: qla2xxx: Reduce the number of forward declarations (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Reduce the scope of three local variables in qla2xxx_queuecommand() (bsc#1143706).\n\n - scsi: qla2xxx: Reject EH_(abort|device_reset|target_request) (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove a comment that refers to the SCSI host lock (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove an include directive from qla_mr.c (bsc#1143706).\n\n - scsi: qla2xxx: Remove a set-but-not-used variable (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove a superfluous forward declaration (bsc#1143706).\n\n - scsi: qla2xxx: Remove a superfluous pointer check (bsc#1143706).\n\n - scsi: qla2xxx: Remove dead code (bsc#1143706).\n\n - scsi: qla2xxx: remove double assignment in qla2x00_update_fcport (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove qla_tgt_cmd.data_work and qla_tgt_cmd.data_work_free (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove qla_tgt_cmd.released (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove superfluous sts_entry_* casts (bsc#1143706).\n\n - scsi: qla2xxx: Remove the fcport test from qla_nvme_abort_work() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous casts (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous if-tests (bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous tests (bsc#1143706).\n\n - scsi: qla2xxx: Remove unnecessary locking from the target code (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove unnecessary null check (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove unreachable code from qla83xx_idc_lock() (bsc#1143706).\n\n - scsi: qla2xxx: Remove useless set memory to zero use memset() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Replace vmalloc + memset with vzalloc (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Report invalid mailbox status codes (bsc#1143706).\n\n - scsi: qla2xxx: Report the firmware status code if a mailbox command fails (bsc#1143706).\n\n - scsi: qla2xxx: Reset the FCF_ASYNC_(SENT|ACTIVE) flags (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Retry fabric Scan on IOCB queue full (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Rework key encoding in qlt_find_host_by_d_id() (bsc#1143706).\n\n - scsi: qla2xxx: Set the qpair in SRB to NULL when SRB is released (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Set the responder mode if appropriate for ELS pass-through IOCBs (bsc#1143706).\n\n - scsi: qla2xxx: Set the SCSI command result before calling the command done (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Silence Successful ELS IOCB message (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Simplify a debug statement (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qla24xx_abort_sp_done() (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qla24xx_async_abort_cmd() (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qlt_lport_dump() (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qlt_send_term_imm_notif() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Skip FW dump on LOOP initialization error (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Suppress a Coveritiy complaint about integer overflow (bsc#1143706).\n\n - scsi: qla2xxx: Suppress multiple Coverity complaint about out-of-bounds accesses (bsc#1143706).\n\n - scsi: qla2xxx: target: Fix offline port handling and host reset handling (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Uninline qla2x00_init_timer() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Unregister chrdev if module initialization fails (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Unregister chrdev if module initialization fails (git-fixes).\n\n - scsi: qla2xxx: Unregister resources in the opposite order of the registration order (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.16-k (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.18-k (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.19-k (bsc#1143706).\n\n - scsi: qla2xxx: Update two source code comments (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update two source code comments (git-fixes).\n\n - scsi: qla2xxx: Use an on-stack completion in qla24xx_control_vp() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use ARRAY_SIZE() in the definition of QLA_LAST_SPEED (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use common update-firmware-options routine for ISP27xx+ (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use Correct index for Q-Pair array (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use get/put_unaligned where appropriate (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use __le64 instead of uint32_t[2] for sending DMA addresses to firmware (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use memcpy() and strlcpy() instead of strcpy() and strncpy() (bsc#1143706).\n\n - scsi: qla2xxx: Use mutex protection during qla2x00_sysfs_read_fw_dump() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use strlcpy() instead of strncpy() (bsc#1143706).\n\n - scsi: qla2xxx: Use tabs instead of spaces for indentation (bsc#1143706).\n\n - scsi: qla2xxx: Use tabs to indent code (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Verify locking assumptions at runtime (bsc#1143706).\n\n - scsi: qla4xxx: avoid freeing unallocated dma memory (git-fixes).\n\n - scsi: raid_attrs: fix unused variable warning (git-fixes).\n\n - scsi: sas: Convert timers to use timer_setup() (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: scsi_dh_alua: Fix possible null-ptr-deref (git-fixes).\n\n - scsi: scsi_transport_fc: nvme: display FC-NVMe port roles (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: sd: Defer spinning up drive while SANITIZE is in progress (git-fixes).\n\n - scsi: sd: Fix a race between closing an sd device and sd I/O (git-fixes).\n\n - scsi: sd: Fix cache_type_store() (git-fixes).\n\n - scsi: sd: Optimal I/O size should be a multiple of physical block size (git-fixes).\n\n - scsi: sd: Quiesce warning if device does not report optimal I/O size (git-fixes).\n\n - scsi: sd: use mempool for discard special page (git-fixes).\n\n - scsi: sd_zbc: Fix potential memory leak (git-fixes).\n\n - scsi: smartpqi: unlock on error in pqi_submit_raid_request_synchronous() (git-fixes).\n\n - scsi: sr: Avoid that opening a CD-ROM hangs with runtime power management enabled (git-fixes).\n\n - scsi: target: iscsi: cxgbit: add missing spin_lock_init() (bsc#1136349 jsc#SLE-4685).\n\n - scsi: tcm_qla2xxx: Minimize #include directives (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: ufs: Avoid runtime suspend possibly being blocked forever (git-fixes).\n\n - scsi: ufs: Check that space was properly alloced in copy_query_response (git-fixes).\n\n - scsi: ufs: Fix NULL pointer dereference in ufshcd_config_vreg_hpm() (git-fixes).\n\n - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value (git-fixes).\n\n - scsi: ufs: fix wrong command type of UTRD for UFSHCI v2.1 (git-fixes).\n\n - scsi: use dma_get_cache_alignment() as minimum DMA alignment (git-fixes).\n\n - scsi: virtio_scsi: do not send sc payload with tmfs (git-fixes).\n\n - sdhci-fujitsu: add support for setting the CMD_DAT_DELAY attribute (bsc#1145256).\n\n - signal/cifs: Fix cifs_put_tcp_session to call send_sig instead of force_sig (bsc#1144333).\n\n - sis900: fix TX completion (bsc#1051510).\n\n - sky2: Disable MSI on ASUS P6T (bsc#1142496).\n\n - smb2: fix missing files in root share directory listing (bsc#1112907, bsc#1144333).\n\n - smb2: fix typo in definition of a few error flags (bsc#1144333).\n\n - smb2: fix uninitialized variable bug in smb2_ioctl_query_info (bsc#1144333).\n\n - SMB3.1.1: Add GCM crypto to the encrypt and decrypt functions (bsc#1144333).\n\n - SMB3.1.1 dialect is no longer experimental (bsc#1051510, bsc#1144333).\n\n - SMB311: Fix reconnect (bsc#1051510, bsc#1144333).\n\n - SMB311: Improve checking of negotiate security contexts (bsc#1051510, bsc#1144333).\n\n - smb3.11: replace a 4 with server->vals->header_preamble_size (bsc#1144333).\n\n - smb3: add additional ftrace entry points for entry/exit to cifs.ko (bsc#1144333).\n\n - smb3: add credits we receive from oplock/break PDUs (bsc#1144333).\n\n - smb3: add debug for unexpected mid cancellation (bsc#1144333).\n\n - smb3: Add debug message later in smb2/smb3 reconnect path (bsc#1144333).\n\n - smb3: add define for id for posix create context and corresponding struct (bsc#1144333).\n\n - smb3: Add defines for new negotiate contexts (bsc#1144333).\n\n - smb3: add dynamic trace point for query_info_enter/done (bsc#1144333).\n\n - smb3: add dynamic trace point for smb3_cmd_enter (bsc#1144333).\n\n - smb3: add dynamic tracepoint for timeout waiting for credits (bsc#1144333).\n\n - smb3: add dynamic tracepoints for simple fallocate and zero range (bsc#1144333).\n\n - smb3: Add dynamic trace points for various compounded smb3 ops (bsc#1144333).\n\n - smb3: Add ftrace tracepoints for improved SMB3 debugging (bsc#1144333).\n\n - smb3: Add handling for different FSCTL access flags (bsc#1144333).\n\n - smb3: add missing read completion trace point (bsc#1144333).\n\n - smb3: add module alias for smb3 to cifs.ko (bsc#1144333).\n\n - smb3: add new mount option to retrieve mode from special ACE (bsc#1144333).\n\n - smb3: Add posix create context for smb3.11 posix mounts (bsc#1144333).\n\n - smb3: Add protocol structs for change notify support (bsc#1144333).\n\n - smb3: add reconnect tracepoints (bsc#1144333).\n\n - smb3: Add SMB3.1.1 GCM to negotiated crypto algorigthms (bsc#1144333).\n\n - smb3: add smb3.1.1 to default dialect list (bsc#1144333).\n\n - smb3: Add support for multidialect negotiate (SMB2.1 and later) (bsc#1051510, bsc#1144333).\n\n - smb3: add support for posix negotiate context (bsc#1144333).\n\n - smb3: add support for statfs for smb3.1.1 posix extensions (bsc#1144333).\n\n - smb3: add tracepoint for sending lease break responses to server (bsc#1144333).\n\n - smb3: add tracepoint for session expired or deleted (bsc#1144333).\n\n - smb3: add tracepoint for slow responses (bsc#1144333).\n\n - smb3: add trace point for tree connection (bsc#1144333).\n\n - smb3: add tracepoints for query dir (bsc#1144333).\n\n - smb3: Add tracepoints for read, write and query_dir enter (bsc#1144333).\n\n - smb3: add tracepoints for smb2/smb3 open (bsc#1144333).\n\n - smb3: add tracepoint to catch cases where credit refund of failed op overlaps reconnect (bsc#1144333).\n\n - smb3: add way to control slow response threshold for logging and stats (bsc#1144333).\n\n - smb3: allow more detailed protocol info on open files for debugging (bsc#1144333).\n\n - smb3: Allow persistent handle timeout to be configurable on mount (bsc#1144333).\n\n - smb3: allow posix mount option to enable new SMB311 protocol extensions (bsc#1144333).\n\n - smb3: allow previous versions to be mounted with snapshot= mount parm (bsc#1144333).\n\n - smb3: Allow query of symlinks stored as reparse points (bsc#1144333).\n\n - smb3: Allow SMB3 FSCTL queries to be sent to server from tools (bsc#1144333).\n\n - smb3: allow stats which track session and share reconnects to be reset (bsc#1051510, bsc#1144333).\n\n - smb3: Backup intent flag missing for directory opens with backupuid mounts (bsc#1051510, bsc#1144333).\n\n - smb3: Backup intent flag missing from compounded ops (bsc#1144333).\n\n - smb3: check for and properly advertise directory lease support (bsc#1051510, bsc#1144333).\n\n - smb3 - clean up debug output displaying network interfaces (bsc#1144333).\n\n - smb3: Cleanup license mess (bsc#1144333).\n\n - smb3: Clean up query symlink when reparse point (bsc#1144333).\n\n - smb3: create smb3 equivalent alias for cifs pseudo-xattrs (bsc#1144333).\n\n - smb3: directory sync should not return an error (bsc#1051510, bsc#1144333).\n\n - smb3: display bytes_read and bytes_written in smb3 stats (bsc#1144333).\n\n - smb3: display security information in /proc/fs/cifs/DebugData more accurately (bsc#1144333).\n\n - smb3: display session id in debug data (bsc#1144333).\n\n - smb3: display stats counters for number of slow commands (bsc#1144333).\n\n - smb3: display volume serial number for shares in /proc/fs/cifs/DebugData (bsc#1144333).\n\n - smb3: do not allow insecure cifs mounts when using smb3 (bsc#1144333).\n\n - smb3: do not attempt cifs operation in smb3 query info error path (bsc#1051510, bsc#1144333).\n\n - smb3: do not display confusing message on mount to Azure servers (bsc#1144333).\n\n - smb3: do not display empty interface list (bsc#1144333).\n\n - smb3: Do not ignore O_SYNC/O_DSYNC and O_DIRECT flags (bsc#1085536, bsc#1144333).\n\n - smb3: do not request leases in symlink creation and query (bsc#1051510, bsc#1144333).\n\n - smb3: do not send compression info by default (bsc#1144333).\n\n - smb3: Do not send SMB3 SET_INFO if nothing changed (bsc#1051510, bsc#1144333).\n\n - smb3: enumerating snapshots was leaving part of the data off end (bsc#1051510, bsc#1144333).\n\n - smb3: fill in statfs fsid and correct namelen (bsc#1112905, bsc#1144333).\n\n - smb3: Fix 3.11 encryption to Windows and handle encrypted smb3 tcon (bsc#1051510, bsc#1144333).\n\n - smb3: fix bytes_read statistics (bsc#1144333).\n\n - smb3: fix corrupt path in subdirs on smb311 with posix (bsc#1144333).\n\n - smb3: Fix deadlock in validate negotiate hits reconnect (bsc#1144333).\n\n - smb3: Fix endian warning (bsc#1144333, bsc#1137884).\n\n - smb3: Fix enumerating snapshots to Azure (bsc#1144333).\n\n - smb3: fix large reads on encrypted connections (bsc#1144333).\n\n - smb3: fix lease break problem introduced by compounding (bsc#1144333).\n\n - smb3: Fix length checking of SMB3.11 negotiate request (bsc#1051510, bsc#1144333).\n\n - smb3: fix minor debug output for CONFIG_CIFS_STATS (bsc#1144333).\n\n - smb3: Fix mode on mkdir on smb311 mounts (bsc#1144333).\n\n - smb3: Fix potential memory leak when processing compound chain (bsc#1144333).\n\n - smb3: fix redundant opens on root (bsc#1144333).\n\n - smb3: fix reset of bytes read and written stats (bsc#1112906, bsc#1144333).\n\n - smb3: Fix rmdir compounding regression to strict servers (bsc#1144333).\n\n - smb3: Fix root directory when server returns inode number of zero (bsc#1051510, bsc#1144333).\n\n - smb3: Fix SMB3.1.1 guest mounts to Samba (bsc#1051510, bsc#1144333).\n\n - smb3: fix various xid leaks (bsc#1051510, bsc#1144333).\n\n - smb3: for kerberos mounts display the credential uid used (bsc#1144333).\n\n - smb3: handle new statx fields (bsc#1085536, bsc#1144333).\n\n - smb3: if max_credits is specified then display it in /proc/mounts (bsc#1144333).\n\n - smb3: if server does not support posix do not allow posix mount option (bsc#1144333).\n\n - smb3: improve dynamic tracing of open and posix mkdir (bsc#1144333).\n\n - smb3: increase initial number of credits requested to allow write (bsc#1144333).\n\n - smb3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL (bsc#1144333).\n\n - smb3: Log at least once if tree connect fails during reconnect (bsc#1144333).\n\n - smb3: make default i/o size for smb3 mounts larger (bsc#1144333).\n\n - smb3: minor cleanup of compound_send_recv (bsc#1144333).\n\n - smb3: minor debugging clarifications in rfc1001 len processing (bsc#1144333).\n\n - smb3: minor missing defines relating to reparse points (bsc#1144333).\n\n - smb3: missing defines and structs for reparse point handling (bsc#1144333).\n\n - smb3: note that smb3.11 posix extensions mount option is experimental (bsc#1144333).\n\n - smb3: Number of requests sent should be displayed for SMB3 not just CIFS (bsc#1144333).\n\n - smb3: on kerberos mount if server does not specify auth type use krb5 (bsc#1051510, bsc#1144333).\n\n - smb3: on reconnect set PreviousSessionId field (bsc#1112899, bsc#1144333).\n\n - smb3: optimize open to not send query file internal info (bsc#1144333).\n\n - smb3: passthru query info does not check for SMB3 FSCTL passthru (bsc#1144333).\n\n - smb3: print tree id in debugdata in proc to be able to help logging (bsc#1144333).\n\n - smb3: query inode number on open via create context (bsc#1144333).\n\n - smb3: remove noisy warning message on mount (bsc#1129664, bsc#1144333).\n\n - smb3: remove per-session operations from per-tree connection stats (bsc#1144333).\n\n - smb3: rename encryption_required to smb3_encryption_required (bsc#1144333).\n\n - smb3: request more credits on normal (non-large read/write) ops (bsc#1144333).\n\n - smb3: request more credits on tree connect (bsc#1144333).\n\n - smb3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write (bsc#1144333).\n\n - smb3: send backup intent on compounded query info (bsc#1144333).\n\n - smb3: send CAP_DFS capability during session setup (bsc#1144333).\n\n - smb3: Send netname context during negotiate protocol (bsc#1144333).\n\n - smb3: show number of current open files in /proc/fs/cifs/Stats (bsc#1144333).\n\n - smb3: simplify code by removing CONFIG_CIFS_SMB311 (bsc#1051510, bsc#1144333).\n\n - smb3: smbdirect no longer experimental (bsc#1144333).\n\n - smb3: snapshot mounts are read-only and make sure info is displayable about the mount (bsc#1144333).\n\n - smb3: track the instance of each session for debugging (bsc#1144333).\n\n - smb3: Track total time spent on roundtrips for each SMB3 command (bsc#1144333).\n\n - smb3: trivial cleanup to smb2ops.c (bsc#1144333).\n\n - smb3: update comment to clarify enumerating snapshots (bsc#1144333).\n\n - smb3: update default requested iosize to 4MB from 1MB for recent dialects (bsc#1144333).\n\n - smb3: Update POSIX negotiate context with POSIX ctxt GUID (bsc#1144333).\n\n - smb3: Validate negotiate request must always be signed (bsc#1064597, bsc#1144333).\n\n - smb3: Warn user if trying to sign connection that authenticated as guest (bsc#1085536, bsc#1144333).\n\n - smbd: Make upper layer decide when to destroy the transport (bsc#1144333).\n\n - SMB: fix leak of validate negotiate info response buffer (bsc#1064597, bsc#1144333).\n\n - SMB: fix validate negotiate info uninitialised memory use (bsc#1064597, bsc#1144333).\n\n - SMB: Validate negotiate (to protect against downgrade) even if signing off (bsc#1085536, bsc#1144333).\n\n - smpboot: Place the __percpu annotation correctly (git fixes).\n\n - soc: rockchip: power-domain: Add a sanity check on pd->num_clks (bsc#1144718,bsc#1144813).\n\n - soc: rockchip: power-domain: use clk_bulk APIs (bsc#1144718,bsc#1144813).\n\n - soc: rockchip: power-domain: Use of_clk_get_parent_count() instead of open coding (bsc#1144718,bsc#1144813).\n\n - sound: fix a memory leak bug (bsc#1051510).\n\n - spi: bcm2835aux: fix corruptions for longer spi transfers (bsc#1051510).\n\n - spi: bcm2835aux: remove dangerous uncontrolled read of fifo (bsc#1051510).\n\n - spi: bcm2835aux: unifying code between polling and interrupt driven code (bsc#1051510).\n\n - st21nfca_connectivity_event_received: null check the allocation (bsc#1051510).\n\n - staging: comedi: dt3000: Fix rounding up of timer divisor (bsc#1051510).\n\n - staging: comedi: dt3000: Fix signed integer overflow 'divider * base' (bsc#1051510).\n\n - staging: fsl-dpaa2/ethsw: fix memory leak of switchdev_work (bsc#1111666).\n\n - st_nci_hci_connectivity_event_received: null check the allocation (bsc#1051510).\n\n - supported.conf: Add missing modules (bsc#1066369).\n\n - supported.conf: Remove duplicate drivers/ata/libahci_platform\n\n - supported.conf: Remove duplicate entries\n\n - supported.conf: Sort alphabetically, align comments.\n\n - tcp: Reset bytes_acked and bytes_received when disconnecting (networking-stable-19_07_25).\n\n - test_firmware: fix a memory leak bug (bsc#1051510).\n\n - tools: bpftool: close prog FD before exit on showing a single program (bsc#1109837).\n\n - tools: bpftool: fix error message (prog -> object) (bsc#1109837).\n\n - tpm: Fix off-by-one when reading binary_bios_measurements (bsc#1082555).\n\n - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations (bsc#1082555).\n\n - tpm/tpm_i2c_atmel: Return -E2BIG when the transfer is incomplete (bsc#1082555).\n\n - tpm: Unify the send callback behaviour (bsc#1082555).\n\n - tpm: vtpm_proxy: Suppress error logging when in closed state (bsc#1082555).\n\n - Tree connect for SMB3.1.1 must be signed for non-encrypted shares (bsc#1051510, bsc#1144333).\n\n - treewide: Replace GPLv2 boilerplate/reference with SPDX\n - rule 231 (bsc#1144333).\n\n - tun: mark small packets as owned by the tap sock (bsc#1109837).\n\n - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length (bsc#1148617).\n\n - Update config files. (bsc#1145687) Add the following kernel config to ARM64: CONFIG_ACPI_PCI_SLOT=y CONFIG_HOTPLUG_PCI_ACPI=y\n\n - Update config files. - cifs: add CONFIG_CIFS_DEBUG_KEYS to dump encryption keys (bsc#1144333).\n\n - Update config files. - cifs: allow disabling insecure dialects in the config (bsc#1144333).\n\n - Update config files. - cifs: smbd: Introduce kernel config option CONFIG_CIFS_SMB_DIRECT (bsc#1144333).\n\n - update internal version number for cifs.ko (bsc#1144333).\n\n - Update patches.fixes/0001-docs-Fix-conf.py-for-Sphinx-2.0.patch (bsc#1135642). Fix patch header.\n\n - Update patches.fixes/MD-fix-invalid-stored-role-for-a-disk-try2 .patch (bsc#1143765).\n\n - Update patches.fixes/tracing-Fix-bad-use-of-igrab-in-trace_upro be.c.patch (bsc#1120046, bsc#1146141).\n\n - Update patches.suse/ceph-remove-request-from-waiting-list-befor e-unregister.patch (bsc#1148133 bsc#1138539).\n\n - Update session and share information displayed for debugging SMB2/SMB3 (bsc#1144333).\n\n - Update version of cifs module (bsc#1144333).\n\n - usb: cdc-acm: make sure a refcount is taken early enough (bsc#1142635).\n\n - usb: CDC: fix sanity checks in CDC union parser (bsc#1142635).\n\n - usb: cdc-wdm: fix race between write and disconnect due to flag abuse (bsc#1051510).\n\n - usb: chipidea: udc: do not do hardware access if gadget has stopped (bsc#1051510).\n\n - usb: core: Fix races in character device registration and deregistraion (bsc#1051510).\n\n - usb: gadget: composite: Clear 'suspended' on reset/disconnect (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: Fix sysfs interface of 'role' (bsc#1142635).\n\n - usb: host: fotg2: restart hcd after port reset (bsc#1051510).\n\n - usb: host: ohci: fix a race condition between shutdown and irq (bsc#1051510).\n\n - usb: host: xhci-rcar: Fix timeout in xhci_suspend() (bsc#1051510).\n\n - usb: host: xhci: rcar: Fix typo in compatible string matching (bsc#1051510).\n\n - usb: iowarrior: fix deadlock on disconnect (bsc#1051510).\n\n - usb: serial: option: add D-Link DWM-222 device ID (bsc#1051510).\n\n - usb: serial: option: Add Motorola modem UARTs (bsc#1051510).\n\n - usb: serial: option: Add support for ZTE MF871A (bsc#1051510).\n\n - usb: serial: option: add the BroadMobi BM818 card (bsc#1051510).\n\n - usb-storage: Add new JMS567 revision to unusual_devs (bsc#1051510).\n\n - usb: storage: ums-realtek: Update module parameter description for auto_delink_en (bsc#1051510).\n\n - usb: storage: ums-realtek: Whitelist auto-delink support (bsc#1051510).\n\n - usb: typec: tcpm: free log buf memory when remove debug file (bsc#1111666).\n\n - usb: typec: tcpm: Ignore unsupported/unknown alternate mode requests (bsc#1111666).\n\n - usb: typec: tcpm: remove tcpm dir if no children (bsc#1111666).\n\n - usb: usbfs: fix double-free of usb memory upon submiturb error (bsc#1051510).\n\n - usb: yurex: Fix use-after-free in yurex_delete (bsc#1051510).\n\n - vfs: fix page locking deadlocks when deduping files (bsc#1148619).\n\n - virtio/s390: fix race on airq_areas (bsc#1145357).\n\n - VMCI: Release resource if the work is already queued (bsc#1051510).\n\n - vrf: make sure skb->data contains ip header to make routing (networking-stable-19_07_25).\n\n - watchdog: bcm2835_wdt: Fix module autoload (bsc#1051510).\n\n - watchdog: core: fix NULL pointer dereference when releasing cdev (bsc#1051510).\n\n - watchdog: f71808e_wdt: fix F81866 bit operation (bsc#1051510).\n\n - watchdog: fix compile time error of pretimeout governors (bsc#1051510).\n\n - wimax/i2400m: fix a memory leak bug (bsc#1051510).\n\n - x86/asm: Remove dead __GNUC__ conditionals (bsc#1112178).\n\n - x86/boot: Fix memory leak in default_get_smp_config() (bsc#1114279).\n\n - x86/dma: Get rid of iommu_pass_through (bsc#1136039).\n\n - x86/entry/64/compat: Fix stack switching for XEN PV (bsc#1108382).\n\n - x86/microcode: Fix the microcode load on CPU hotplug for real (bsc#1114279).\n\n - x86/mm: Check for pfn instead of page in vmalloc_sync_one() (bsc#1118689).\n\n - x86/mm: Sync also unmappings in vmalloc_sync_all() (bsc#1118689).\n\n - x86/resctrl: Prevent NULL pointer dereference when local MBM is disabled (bsc#1112178).\n\n - x86/speculation: Allow guests to use SSBD even if host does not (bsc#1114279).\n\n - x86/speculation/mds: Apply more accurate check on hypervisor platform (bsc#1114279).\n\n - x86/unwind: Add hardcoded ORC entry for NULL (bsc#1114279).\n\n - x86/unwind: Handle NULL pointer calls better in frame unwinder (bsc#1114279).\n\n - xdp: unpin xdp umem pages in error path (bsc#1109837).\n\n - xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() (bsc#1065600).\n\n - xfrm: Fix bucket count reported to userspace (bsc#1143300).\n\n - xfrm: Fix error return code in xfrm_output_one() (bsc#1143300).\n\n - xfrm: Fix NULL pointer dereference in xfrm_input when skb_dst_force clears the dst_entry (bsc#1143300).\n\n - xfrm: Fix NULL pointer dereference when skb_dst_force clears the dst_entry (bsc#1143300).\n\n - xfs: do not crash on null attr fork xfs_bmapi_read (bsc#1148035).\n\n - xfs: do not trip over uninitialized buffer on extent read of corrupted inode (bsc#1149053).\n\n - xfs: dump transaction usage details on log reservation overrun (bsc#1145235).\n\n - xfs: eliminate duplicate icreate tx reservation functions (bsc#1145235).\n\n - xfs: fix missing ILOCK unlock when xfs_setattr_nonsize fails due to EDQUOT (bsc#1148032).\n\n - xfs: fix semicolon.cocci warnings (bsc#1145235).\n\n - xfs: fix up agi unlinked list reservations (bsc#1145235).\n\n - xfs: include an allocfree res for inobt modifications (bsc#1145235).\n\n - xfs: include inobt buffers in ifree tx log reservation (bsc#1145235).\n\n - xfs: print transaction log reservation on overrun (bsc#1145235).\n\n - xfs: refactor inode chunk alloc/free tx reservation (bsc#1145235).\n\n - xfs: refactor xlog_cil_insert_items() to facilitate transaction dump (bsc#1145235).\n\n - xfs: remove more ondisk directory corruption asserts (bsc#1148034).\n\n - xfs: separate shutdown from ticket reservation print helper (bsc#1145235).\n\n - xfs: truncate transaction does not modify the inobt (bsc#1145235).", "cvss3": {}, "published": "2019-09-25T00:00:00", "type": "nessus", "title": "openSUSE Security Update : the Linux Kernel (openSUSE-2019-2181)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2017-18551", "CVE-2018-20976", "CVE-2018-21008", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15117", "CVE-2019-15118", "CVE-2019-15211", "CVE-2019-15212", "CVE-2019-15214", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15218", "CVE-2019-15219", "CVE-2019-15220", "CVE-2019-15221", "CVE-2019-15222", "CVE-2019-15239", "CVE-2019-15290", "CVE-2019-15292", "CVE-2019-15538", "CVE-2019-15666", "CVE-2019-15902", "CVE-2019-15917", "CVE-2019-15919", "CVE-2019-15920", "CVE-2019-15921", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-15927", "CVE-2019-9456"], "modified": "2020-03-31T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:kernel-debug", "p-cpe:/a:novell:opensuse:kernel-debug-base", "p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-debuginfo", "p-cpe:/a:novell:opensuse:kernel-debug-debugsource", "p-cpe:/a:novell:opensuse:kernel-debug-devel", "p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default", "p-cpe:/a:novell:opensuse:kernel-default-base", "p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-debuginfo", "p-cpe:/a:novell:opensuse:kernel-default-debugsource", "p-cpe:/a:novell:opensuse:kernel-default-devel", "p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-devel", "p-cpe:/a:novell:opensuse:kernel-docs-html", "p-cpe:/a:novell:opensuse:kernel-kvmsmall", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel", "p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo", "p-cpe:/a:novell:opensuse:kernel-macros", "p-cpe:/a:novell:opensuse:kernel-obs-build", "p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource", "p-cpe:/a:novell:opensuse:kernel-obs-qa", "p-cpe:/a:novell:opensuse:kernel-source", "p-cpe:/a:novell:opensuse:kernel-source-vanilla", "p-cpe:/a:novell:opensuse:kernel-syms", "p-cpe:/a:novell:opensuse:kernel-vanilla", "p-cpe:/a:novell:opensuse:kernel-vanilla-base", "p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo", "p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo", "cpe:/o:novell:opensuse:15.1"], "id": "OPENSUSE-2019-2181.NASL", "href": "https://www.tenable.com/plugins/nessus/129345", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2019-2181.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(129345);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/31\");\n\n script_cve_id(\"CVE-2017-18551\", \"CVE-2018-20976\", \"CVE-2018-21008\", \"CVE-2019-14814\", \"CVE-2019-14815\", \"CVE-2019-14816\", \"CVE-2019-14835\", \"CVE-2019-15030\", \"CVE-2019-15031\", \"CVE-2019-15090\", \"CVE-2019-15098\", \"CVE-2019-15099\", \"CVE-2019-15117\", \"CVE-2019-15118\", \"CVE-2019-15211\", \"CVE-2019-15212\", \"CVE-2019-15214\", \"CVE-2019-15215\", \"CVE-2019-15216\", \"CVE-2019-15217\", \"CVE-2019-15218\", \"CVE-2019-15219\", \"CVE-2019-15220\", \"CVE-2019-15221\", \"CVE-2019-15222\", \"CVE-2019-15239\", \"CVE-2019-15290\", \"CVE-2019-15292\", \"CVE-2019-15538\", \"CVE-2019-15666\", \"CVE-2019-15902\", \"CVE-2019-15917\", \"CVE-2019-15919\", \"CVE-2019-15920\", \"CVE-2019-15921\", \"CVE-2019-15924\", \"CVE-2019-15926\", \"CVE-2019-15927\", \"CVE-2019-9456\");\n\n script_name(english:\"openSUSE Security Update : the Linux Kernel (openSUSE-2019-2181)\");\n script_summary(english:\"Check for the openSUSE-2019-2181 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The openSUSE Leap 15.1 kernel was updated to receive various security\nand bugfixes.\n\nThe following security bugs were fixed :\n\n - CVE-2017-18551: There was an out of bounds write in the\n function i2c_smbus_xfer_emulated (bnc#1146163).\n\n - CVE-2018-20976: A use after free exists, related to\n xfs_fs_fill_super failure (bnc#1146285).\n\n - CVE-2018-21008: A use-after-free can be caused by the\n function rsi_mac80211_detach in the file\n drivers/net/wireless/rsi/rsi_91x_mac80211.c\n (bnc#1149591).\n\n - CVE-2019-14814, CVE-2019-14815, CVE-2019-14816: Fix\n three heap-based buffer overflows in marvell wifi chip\n driver kernel, that allowed local users to cause a\n denial of service (system crash) or possibly execute\n arbitrary code. (bnc#1146516 bnc#1146512 bnc#1146514)\n\n - CVE-2019-14835: A buffer overflow flaw was found in the\n way Linux kernel's vhost functionality that translates\n virtqueue buffers to IOVs, logged the buffer descriptors\n during migration. A privileged guest user able to pass\n descriptors with invalid length to the host when\n migration is underway, could use this flaw to increase\n their privileges on the host (bnc#1150112).\n\n - CVE-2019-15030: In the Linux kernel on the powerpc\n platform, a local user can read vector registers of\n other users' processes via a Facility Unavailable\n exception. To exploit the venerability, a local user\n starts a transaction (via the hardware transactional\n memory instruction tbegin) and then accesses vector\n registers. At some point, the vector registers will be\n corrupted with the values from a different local Linux\n process because of a missing\n arch/powerpc/kernel/process.c check (bnc#1149713).\n\n - CVE-2019-15031: In the Linux kernel on the powerpc\n platform, a local user can read vector registers of\n other users' processes via an interrupt. To exploit the\n venerability, a local user starts a transaction (via the\n hardware transactional memory instruction tbegin) and\n then accesses vector registers. At some point, the\n vector registers will be corrupted with the values from\n a different local Linux process, because MSR_TM_ACTIVE\n is misused in arch/powerpc/kernel/process.c\n (bnc#1149713).\n\n - CVE-2019-15090: In the qedi_dbg_* family of functions,\n there was an out-of-bounds read (bnc#1146399).\n\n - CVE-2019-15098: drivers/net/wireless/ath/ath6kl/usb.c in\n the Linux kernel had a NULL pointer dereference via an\n incomplete address in an endpoint descriptor\n (bnc#1146378 1146543).\n\n - CVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c in\n the Linux kernel had a NULL pointer dereference via an\n incomplete address in an endpoint descriptor\n (bnc#1146368).\n\n - CVE-2019-15117: parse_audio_mixer_unit in\n sound/usb/mixer.c in the Linux kernel mishandled a short\n descriptor, leading to out-of-bounds memory access\n (bnc#1145920).\n\n - CVE-2019-15118: check_input_term in sound/usb/mixer.c in\n the Linux kernel mishandled recursion, leading to kernel\n stack exhaustion (bnc#1145922).\n\n - CVE-2019-15211: There was a use-after-free caused by a\n malicious USB device in the\n drivers/media/v4l2-core/v4l2-dev.c driver because\n drivers/media/radio/radio-raremono.c did not properly\n allocate memory (bnc#1146519).\n\n - CVE-2019-15212: There was a double-free caused by a\n malicious USB device in the drivers/usb/misc/rio500.c\n driver (bnc#1146391).\n\n - CVE-2019-15214: There was a use-after-free in the sound\n subsystem because card disconnection causes certain data\n structures to be deleted too early. This is related to\n sound/core/init.c and sound/core/info.c (bnc#1146550).\n\n - CVE-2019-15215: There was a use-after-free caused by a\n malicious USB device in the\n drivers/media/usb/cpia2/cpia2_usb.c driver\n (bnc#1146425).\n\n - CVE-2019-15216: There was a NULL pointer dereference\n caused by a malicious USB device in the\n drivers/usb/misc/yurex.c driver (bnc#1146361).\n\n - CVE-2019-15217: There was a NULL pointer dereference\n caused by a malicious USB device in the\n drivers/media/usb/zr364xx/zr364xx.c driver\n (bnc#1146547).\n\n - CVE-2019-15218: There was a NULL pointer dereference\n caused by a malicious USB device in the\n drivers/media/usb/siano/smsusb.c driver (bnc#1146413).\n\n - CVE-2019-15219: There was a NULL pointer dereference\n caused by a malicious USB device in the\n drivers/usb/misc/sisusbvga/sisusb.c driver\n (bnc#1146524).\n\n - CVE-2019-15220: There was a use-after-free caused by a\n malicious USB device in the\n drivers/net/wireless/intersil/p54/p54usb.c driver\n (bnc#1146526).\n\n - CVE-2019-15221: There was a NULL pointer dereference\n caused by a malicious USB device in the\n sound/usb/line6/pcm.c driver (bnc#1146529).\n\n - CVE-2019-15222: There was a NULL pointer dereference\n caused by a malicious USB device in the\n sound/usb/helper.c (motu_microbookii) driver\n (bnc#1146531).\n\n - CVE-2019-15239: In the Linux kernel, a certain\n net/ipv4/tcp_output.c change, which was properly\n incorporated into 4.16.12, was incorrectly backported to\n the earlier longterm kernels, introducing a new\n vulnerability that was potentially more severe than the\n issue that was intended to be fixed by backporting.\n Specifically, by adding to a write queue between\n disconnection and re-connection, a local attacker can\n trigger multiple use-after-free conditions. This can\n result in a kernel crash, or potentially in privilege\n escalation. (for example) Linux distributions that use\n 4.9.x longterm kernels or 4.14.x longterm kernels\n (bnc#1146589)\n\n - CVE-2019-15290: There was a NULL pointer dereference\n caused by a malicious USB device in the\n ath6kl_usb_alloc_urb_from_pipe function in the\n drivers/net/wireless/ath/ath6kl/usb.c driver\n (bnc#1146378 1146543).\n\n - CVE-2019-15292: There was a use-after-free in\n atalk_proc_exit, related to net/appletalk/atalk_proc.c,\n net/appletalk/ddp.c, and\n net/appletalk/sysctl_net_atalk.c (bnc#1146678).\n\n - CVE-2019-15538: XFS partially wedges when a chgrp fails\n on account of being out of disk quota.\n xfs_setattr_nonsize is failing to unlock the ILOCK after\n the xfs_qm_vop_chown_reserve call fails. This is\n primarily a local DoS attack vector, but it might result\n as well in remote DoS if the XFS filesystem is exported\n for instance via NFS (bnc#1148093).\n\n - CVE-2019-15666: There was an out-of-bounds array access\n in __xfrm_policy_unlink, which will cause denial of\n service, because verify_newpolicy_info in\n net/xfrm/xfrm_user.c mishandled directory validation\n (bnc#1148394).\n\n - CVE-2019-15902: Misuse of the upstream 'x86/ptrace: Fix\n possible spectre-v1 in ptrace_get_debugreg()' commit\n reintroduced the Spectre vulnerability that it aimed to\n eliminate. This occurred because the backport process\n depends on cherry picking specific commits, and because\n two (correctly ordered) code lines were swapped\n (bnc#1149376).\n\n - CVE-2019-15917: There was a use-after-free issue when\n hci_uart_register_dev() fails in hci_uart_set_proto() in\n drivers/bluetooth/hci_ldisc.c (bnc#1149539).\n\n - CVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a\n use-after-free (bnc#1149552).\n\n - CVE-2019-15920: An issue was discovered in the Linux\n kernel SMB2_read in fs/cifs/smb2pdu.c had a\n use-after-free. NOTE: this was not fixed correctly in\n 5.0.10; see the 5.0.11 ChangeLog, which documents a\n memory leak (bnc#1149626).\n\n - CVE-2019-15921: There was a memory leak issue when\n idr_alloc() fails in genl_register_family() in\n net/netlink/genetlink.c (bnc#1149602).\n\n - CVE-2019-15924: fm10k_init_module in\n drivers/net/ethernet/intel/fm10k/fm10k_main.c had a NULL\n pointer dereference because there is no -ENOMEM upon an\n alloc_workqueue failure (bnc#1149612).\n\n - CVE-2019-15926: Out of bounds access exists in the\n functions ath6kl_wmi_pstream_timeout_event_rx and\n ath6kl_wmi_cac_event_rx in the file\n drivers/net/wireless/ath/ath6kl/wmi.c (bnc#1149527).\n\n - CVE-2019-15927: An out-of-bounds access exists in the\n function build_audio_procunit in the file\n sound/usb/mixer.c (bnc#1149522).\n\n - CVE-2019-9456: In the USB monitor driver there is a\n possible OOB write due to a missing bounds check. This\n could lead to local escalation of privilege with System\n execution privileges needed. User interaction is not\n needed for exploitation (bnc#1150025).\n\nThe following non-security bugs were fixed :\n\n - ACPICA: Increase total number of possible Owner IDs\n (bsc#1148859).\n\n - ACPI: fix false-positive -Wuninitialized warning\n (bsc#1051510).\n\n - Add missing structs and defines from recent SMB3.1.1\n documentation (bsc#1144333).\n\n - Add new flag on SMB3.1.1 read (bsc#1144333).\n\n - address lock imbalance warnings in smbdirect.c\n (bsc#1144333).\n\n - Add some missing debug fields in server and tcon structs\n (bsc#1144333).\n\n - add some missing definitions (bsc#1144333).\n\n - Add some qedf commits to blacklist file (bsc#1149976)\n\n - Add vers=3.0.2 as a valid option for SMBv3.0.2\n (bsc#1144333).\n\n - ALSA: firewire: fix a memory leak bug (bsc#1051510).\n\n - ALSA: hda - Add a generic reboot_notify (bsc#1051510).\n\n - ALSA: hda - Apply workaround for another AMD chip\n 1022:1487 (bsc#1051510).\n\n - ALSA: hda/ca0132 - Add new SBZ quirk (bsc#1051510).\n\n - ALSA: hda - Do not override global PCM hw info flag\n (bsc#1051510).\n\n - ALSA: hda - Fix a memory leak bug (bsc#1051510).\n\n - ALSA: hda - Fixes inverted Conexant GPIO mic mute led\n (bsc#1051510).\n\n - ALSA: hda - Fix potential endless loop at applying\n quirks (bsc#1051510).\n\n - ALSA: hda: kabi workaround for generic parser flag\n (bsc#1051510).\n\n - ALSA: hda - Let all conexant codec enter D3 when\n rebooting (bsc#1051510).\n\n - ALSA: hda/realtek - Add quirk for HP Envy x360\n (bsc#1051510).\n\n - ALSA: hda/realtek - Add quirk for HP Pavilion 15\n (bsc#1051510).\n\n - ALSA: hda/realtek - Enable internal speaker & headset\n mic of ASUS UX431FL (bsc#1051510).\n\n - ALSA: hda/realtek - Fix overridden device-specific\n initialization (bsc#1051510).\n\n - ALSA: hda/realtek - Fix the problem of two front mics on\n a ThinkCentre (bsc#1051510).\n\n - ALSA: hda - Workaround for crackled sound on AMD\n controller (1022:1457) (bsc#1051510).\n\n - ALSA: hiface: fix multiple memory leak bugs\n (bsc#1051510).\n\n - ALSA: line6: Fix memory leak at line6_init_pcm() error\n path (bsc#1051510).\n\n - ALSA: seq: Fix potential concurrent access to the\n deleted pool (bsc#1051510).\n\n - ALSA: usb-audio: Add implicit fb quirk for Behringer\n UFX1604 (bsc#1051510).\n\n - ALSA: usb-audio: Check mixer unit bitmap yet more\n strictly (bsc#1051510).\n\n - ALSA: usb-audio: fix a memory leak bug (bsc#1111666).\n\n - ALSA: usb-audio: Fix invalid NULL check in\n snd_emuusb_set_samplerate() (bsc#1051510).\n\n - arm64: fix undefined reference to 'printk'\n (bsc#1148219).\n\n - arm64/kernel: enable A53 erratum #8434319 handling at\n runtime (bsc#1148219).\n\n - arm64/kernel: rename\n module_emit_adrp_veneer->module_emit_veneer_for_adrp\n (bsc#1148219).\n\n - arm64: module: do not BUG when exceeding preallocated\n PLT count (bsc#1148219).\n\n - arm64: PCI: Preserve firmware configuration when desired\n (SLE-9332).\n\n - ASoC: dapm: Fix handling of custom_stop_condition on\n DAPM graph walks (bsc#1051510).\n\n - ASoC: Fail card instantiation if DAI format setup fails\n (bsc#1051510).\n\n - ata: libahci: do not complain in case of deferred probe\n (bsc#1051510).\n\n - ath10k: Change the warning message string (bsc#1051510).\n\n - ath10k: Drop WARN_ON()s that always trigger during\n system resume (bsc#1111666).\n\n - batman-adv: fix uninit-value in\n batadv_netlink_get_ifindex() (bsc#1051510).\n\n - batman-adv: Only read OGM2 tvlv_len after buffer len\n check (bsc#1051510).\n\n - batman-adv: Only read OGM tvlv_len after buffer len\n check (bsc#1051510).\n\n - bcache: fix possible memory leak in bch_cached_dev_run()\n (git fixes).\n\n - bcache: Revert 'bcache: use sysfs_match_string() instead\n of __sysfs_match_string()' (git fixes).\n\n - bio: fix improper use of smp_mb__before_atomic() (git\n fixes).\n\n - blk-mq: backport fixes for\n blk_mq_complete_e_request_sync() (bsc#1145661).\n\n - blk-mq: Fix spelling in a source code comment (git\n fixes).\n\n - blk-mq: introduce blk_mq_complete_request_sync()\n (bsc#1145661).\n\n - blk-wbt: Avoid lock contention and thundering herd issue\n in wbt_wait (bsc#1141543).\n\n - block, documentation: Fix wbt_lat_usec documentation\n (git fixes).\n\n - Bluetooth: btqca: Add a short delay before downloading\n the NVM (bsc#1051510).\n\n - bnx2x: Disable multi-cos feature (bsc#1136498\n jsc#SLE-4699).\n\n - bnx2x: Prevent ptp_task to be rescheduled indefinitely\n (networking-stable-19_07_25).\n\n - bnxt_en: Fix to include flow direction in L2 key\n (bsc#1104745 FATE#325918).\n\n - bnxt_en: Fix VNIC clearing logic for 57500 chips\n (bsc#1104745 FATE#325918).\n\n - bnxt_en: Improve RX doorbell sequence (bsc#1104745\n FATE#325918).\n\n - bnxt_en: Use correct src_fid to determine direction of\n the flow (bsc#1104745 FATE#325918).\n\n - bonding: validate ip header before check IPPROTO_IGMP\n (networking-stable-19_07_25).\n\n - bpf: sockmap, only create entry if ulp is not already\n enabled (bsc#1109837).\n\n - bpf: sockmap, sock_map_delete needs to use xchg\n (bsc#1109837).\n\n - bpf: sockmap, synchronize_rcu before free'ing map\n (bsc#1109837).\n\n - btrfs: add a helper to retrive extent inline ref type\n (bsc#1149325).\n\n - btrfs: add cleanup_ref_head_accounting helper\n (bsc#1050911).\n\n - btrfs: add missing inode version, ctime and mtime\n updates when punching hole (bsc#1140487).\n\n - btrfs: add one more sanity check for shared ref type\n (bsc#1149325).\n\n - btrfs: clean up pending block groups when transaction\n commit aborts (bsc#1050911).\n\n - btrfs: convert to use btrfs_get_extent_inline_ref_type\n (bsc#1149325).\n\n - btrfs: do not abort transaction at btrfs_update_root()\n after failure to COW path (bsc#1150933).\n\n - btrfs: fix assertion failure during fsync and use of\n stale transaction (bsc#1150562).\n\n - btrfs: fix data loss after inode eviction, renaming it,\n and fsync it (bsc#1145941).\n\n - btrfs: Fix delalloc inodes invalidation during\n transaction abort (bsc#1050911).\n\n - btrfs: fix fsync not persisting dentry deletions due to\n inode evictions (bsc#1145942).\n\n - btrfs: fix incremental send failure after deduplication\n (bsc#1145940).\n\n - btrfs: fix pinned underflow after transaction aborted\n (bsc#1050911).\n\n - btrfs: fix race between send and deduplication that lead\n to failures and crashes (bsc#1145059).\n\n - btrfs: fix race leading to fs corruption after\n transaction abort (bsc#1145937).\n\n - btrfs: handle delayed ref head accounting cleanup in\n abort (bsc#1050911).\n\n - btrfs: prevent send failures and crashes due to\n concurrent relocation (bsc#1145059).\n\n - btrfs: remove BUG() in add_data_reference (bsc#1149325).\n\n - btrfs: remove BUG() in btrfs_extent_inline_ref_size\n (bsc#1149325).\n\n - btrfs: remove BUG() in print_extent_item (bsc#1149325).\n\n - btrfs: remove BUG_ON in __add_tree_block (bsc#1149325).\n\n - btrfs: Split btrfs_del_delalloc_inode into 2 functions\n (bsc#1050911).\n\n - btrfs: start readahead also in seed devices\n (bsc#1144886).\n\n - btrfs: track running balance in a simpler way\n (bsc#1145059).\n\n - caif-hsi: fix possible deadlock in cfhsi_exit_module()\n (networking-stable-19_07_25).\n\n - can: m_can: implement errata 'Needless activation of\n MRAF irq' (bsc#1051510).\n\n - can: mcp251x: add support for mcp25625 (bsc#1051510).\n\n - can: peak_usb: fix potential double kfree_skb()\n (bsc#1051510).\n\n - can: peak_usb: force the string buffer NULL-terminated\n (bsc#1051510).\n\n - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB\n devices (bsc#1051510).\n\n - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB\n devices (bsc#1051510).\n\n - can: rcar_canfd: fix possible IRQ storm on high load\n (bsc#1051510).\n\n - can: sja1000: force the string buffer NULL-terminated\n (bsc#1051510).\n\n - carl9170: fix misuse of device driver API (bsc#1142635).\n\n - ceph: add btime field to ceph_inode_info (bsc#1148133\n bsc#1136682).\n\n - ceph: add ceph.snap.btime vxattr (bsc#1148133\n bsc#1148570).\n\n - ceph: add change_attr field to ceph_inode_info\n (bsc#1148133 bsc#1136682).\n\n - ceph: always get rstat from auth mds (bsc#1146346).\n\n - ceph: carry snapshot creation time with inodes\n (bsc#1148133 bsc#1148570).\n\n - ceph: clean up ceph.dir.pin vxattr name sizeof()\n (bsc#1146346).\n\n - ceph: clear page dirty before invalidate page\n (bsc#1148133).\n\n - ceph: decode feature bits in session message\n (bsc#1146346).\n\n - ceph: do not blindly unregister session that is in\n opening state (bsc#1148133).\n\n - ceph: do not try fill file_lock on unsuccessful\n GETFILELOCK reply (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in\n __ceph_build_xattrs_blob() (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in\n __ceph_setxattr() (bsc#1148133).\n\n - ceph: fix buffer free while holding i_ceph_lock in\n fill_inode() (bsc#1148133).\n\n - ceph: fix 'ceph.dir.rctime' vxattr value (bsc#1148133\n bsc#1135219).\n\n - ceph: fix decode_locker to use ceph_decode_entity_addr\n (bsc#1148133 bsc#1136682).\n\n - ceph: fix improper use of smp_mb__before_atomic()\n (bsc#1148133).\n\n - ceph: fix infinite loop in get_quota_realm()\n (bsc#1148133).\n\n - ceph: fix listxattr vxattr buffer length calculation\n (bsc#1148133 bsc#1148570).\n\n - ceph: handle btime in cap messages (bsc#1148133\n bsc#1136682).\n\n - ceph: handle change_attr in cap messages (bsc#1148133\n bsc#1136682).\n\n - ceph: have MDS map decoding use entity_addr_t decoder\n (bsc#1148133 bsc#1136682).\n\n - ceph: hold i_ceph_lock when removing caps for freeing\n inode (bsc#1148133).\n\n - ceph: increment change_attribute on local changes\n (bsc#1148133 bsc#1136682).\n\n - ceph: initialize superblock s_time_gran to 1\n (bsc#1148133).\n\n - ceph: remove request from waiting list before unregister\n (bsc#1148133).\n\n - ceph: remove unused vxattr length helpers (bsc#1148133\n bsc#1148570).\n\n - ceph: silence a checker warning in mdsc_show()\n (bsc#1148133).\n\n - ceph: support cephfs' own feature bits (bsc#1146346).\n\n - ceph: support getting ceph.dir.pin vxattr (bsc#1146346).\n\n - ceph: support versioned reply (bsc#1146346).\n\n - ceph: use bit flags to define vxattr attributes\n (bsc#1146346).\n\n - cifs: Accept validate negotiate if server return\n NT_STATUS_NOT_SUPPORTED (bsc#1144333).\n\n - cifs: add a new SMB2_close_flags function (bsc#1144333).\n\n - cifs: add a smb2_compound_op and change QUERY_INFO to\n use it (bsc#1144333).\n\n - cifs: add a timeout argument to wait_for_free_credits\n (bsc#1144333).\n\n - cifs: add a warning if we try to to dequeue a deleted\n mid (bsc#1144333).\n\n - cifs: add compound_send_recv() (bsc#1144333).\n\n - cifs: add credits from unmatched responses/messages\n (bsc#1144333).\n\n - cifs: add debug output to show nocase mount option\n (bsc#1144333).\n\n - cifs: Add DFS cache routines (bsc#1144333).\n\n - cifs: Add direct I/O functions to file_operations\n (bsc#1144333).\n\n - cifs: add fiemap support (bsc#1144333).\n\n - cifs: add iface info to struct cifs_ses (bsc#1144333).\n\n - cifs: add IOCTL for QUERY_INFO passthrough to userspace\n (bsc#1144333).\n\n - cifs: add lease tracking to the cached root fid\n (bsc#1144333).\n\n - cifs: Add minor debug message during negprot\n (bsc#1144333).\n\n - cifs: add missing debug entries for kconfig options\n (bsc#1051510, bsc#1144333).\n\n - cifs: add missing GCM module dependency (bsc#1144333).\n\n - cifs: add missing support for ACLs in SMB 3.11\n (bsc#1051510, bsc#1144333).\n\n - cifs: add ONCE flag for cifs_dbg type (bsc#1144333).\n\n - cifs: add pdu_size to the TCP_Server_Info structure\n (bsc#1144333).\n\n - cifs: add resp_buf_size to the mid_q_entry structure\n (bsc#1144333).\n\n - cifs: address trivial coverity warning (bsc#1144333).\n\n - cifs: add server argument to the dump_detail method\n (bsc#1144333).\n\n - cifs: add server->vals->header_preamble_size\n (bsc#1144333).\n\n - cifs: add SFM mapping for 0x01-0x1F (bsc#1144333).\n\n - cifs: add sha512 secmech (bsc#1051510, bsc#1144333).\n\n - cifs: Adds information-level logging function\n (bsc#1144333).\n\n - cifs: add SMB2_close_init()/SMB2_close_free()\n (bsc#1144333).\n\n - cifs: add SMB2_ioctl_init/free helpers to be used with\n compounding (bsc#1144333).\n\n - cifs: add SMB2_query_info_[init|free]() (bsc#1144333).\n\n - cifs: Add smb2_send_recv (bsc#1144333).\n\n - cifs: add spinlock for the openFileList to cifsInodeInfo\n (bsc#1144333).\n\n - cifs: add .splice_write (bsc#1144333).\n\n - cifs: Add support for direct I/O read (bsc#1144333).\n\n - cifs: Add support for direct I/O write (bsc#1144333).\n\n - cifs: Add support for direct pages in rdata\n (bsc#1144333).\n\n - cifs: Add support for direct pages in wdata\n (bsc#1144333).\n\n - cifs: Add support for failover in cifs_mount()\n (bsc#1144333).\n\n - cifs: Add support for failover in cifs_reconnect()\n (bsc#1144333).\n\n - cifs: Add support for failover in cifs_reconnect_tcon()\n (bsc#1144333).\n\n - cifs: Add support for failover in smb2_reconnect()\n (bsc#1144333).\n\n - cifs: Add support for FSCTL passthrough that write data\n to the server (bsc#1144333).\n\n - cifs: add support for ioctl on directories\n (bsc#1144333).\n\n - cifs: Add support for reading attributes on SMB2+\n (bsc#1051510, bsc#1144333).\n\n - cifs: add support for SEEK_DATA and SEEK_HOLE\n (bsc#1144333).\n\n - cifs: Add support for writing attributes on SMB2+\n (bsc#1051510, bsc#1144333).\n\n - cifs: Adjust MTU credits before reopening a file\n (bsc#1144333).\n\n - cifs: Allocate memory for all iovs in smb2_ioctl\n (bsc#1144333).\n\n - cifs: Allocate validate negotiation request through\n kmalloc (bsc#1144333).\n\n - cifs: allow calling SMB2_xxx_free(NULL) (bsc#1144333).\n\n - cifs: allow disabling less secure legacy dialects\n (bsc#1144333).\n\n - cifs: allow guest mounts to work for smb3.11\n (bsc#1051510, bsc#1144333).\n\n - cifs: always add credits back for unsolicited PDUs\n (bsc#1144333).\n\n - cifs: Always reset read error to -EIO if no response\n (bsc#1144333).\n\n - cifs: Always resolve hostname before reconnecting\n (bsc#1051510, bsc#1144333).\n\n - cifs: a smb2_validate_and_copy_iov failure does not mean\n the handle is invalid (bsc#1144333).\n\n - cifs: auto disable 'serverino' in dfs mounts\n (bsc#1144333).\n\n - cifs: avoid a kmalloc in smb2_send_recv/SendReceive2 for\n the common case (bsc#1144333).\n\n - cifs: Avoid returning EBUSY to upper layer VFS\n (bsc#1144333).\n\n - cifs: cache FILE_ALL_INFO for the shared root handle\n (bsc#1144333).\n\n - cifs: Calculate the correct request length based on page\n offset and tail size (bsc#1144333).\n\n - cifs: Call MID callback before destroying transport\n (bsc#1144333).\n\n - cifs: change mkdir to use a compound (bsc#1144333).\n\n - cifs: change smb2_get_data_area_len to take a\n smb2_sync_hdr as argument (bsc#1144333).\n\n - cifs: Change SMB2_open to return an iov for the error\n parameter (bsc#1144333).\n\n - cifs: change SMB2_OP_RENAME and SMB2_OP_HARDLINK to use\n compounding (bsc#1144333).\n\n - cifs: change SMB2_OP_SET_EOF to use compounding\n (bsc#1144333).\n\n - cifs: change SMB2_OP_SET_INFO to use compounding\n (bsc#1144333).\n\n - cifs: change smb2_query_eas to use the compound\n query-info helper (bsc#1144333).\n\n - cifs: change unlink to use a compound (bsc#1144333).\n\n - cifs: change validate_buf to validate_iov (bsc#1144333).\n\n - cifs: change wait_for_free_request() to take flags as\n argument (bsc#1144333).\n\n - cifs: check CIFS_MOUNT_NO_DFS when trying to reuse\n existing sb (bsc#1144333).\n\n - cifs: Check for reconnects before sending async requests\n (bsc#1144333).\n\n - cifs: Check for reconnects before sending compound\n requests (bsc#1144333).\n\n - cifs: check for STATUS_USER_SESSION_DELETED\n (bsc#1112902, bsc#1144333).\n\n - cifs: Check for timeout on Negotiate stage (bsc#1091171,\n bsc#1144333).\n\n - cifs: check if SMB2 PDU size has been padded and\n suppress the warning (bsc#1144333).\n\n - cifs: check kmalloc before use (bsc#1051510,\n bsc#1144333).\n\n - cifs: check kzalloc return (bsc#1144333).\n\n - cifs: check MaxPathNameComponentLength != 0 before using\n it (bsc#1085536, bsc#1144333).\n\n - cifs: check ntwrk_buf_start for NULL before\n dereferencing it (bsc#1144333).\n\n - cifs: check rsp for NULL before dereferencing in\n SMB2_open (bsc#1085536, bsc#1144333).\n\n - cifs: cifs_read_allocate_pages: do not iterate through\n whole page array on ENOMEM (bsc#1144333).\n\n - cifs: clean up indentation, replace spaces with tab\n (bsc#1144333).\n\n - cifs: cleanup smb2ops.c and normalize strings\n (bsc#1144333).\n\n - cifs: complete PDU definitions for interface queries\n (bsc#1144333).\n\n - cifs: connect to servername instead of IP for IPC$ share\n (bsc#1051510, bsc#1144333).\n\n - cifs: Count SMB3 credits for malformed pending responses\n (bsc#1144333).\n\n - cifs: create a define for how many iovs we need for an\n SMB2_open() (bsc#1144333).\n\n - cifs: create a define for the max number of iov we need\n for a SMB2 set_info (bsc#1144333).\n\n - cifs: create a helper function for compound query_info\n (bsc#1144333).\n\n - cifs: create helpers for SMB2_set_info_init/free()\n (bsc#1144333).\n\n - cifs: create SMB2_open_init()/SMB2_open_free() helpers\n (bsc#1144333).\n\n - cifs: Display SMB2 error codes in the hex format\n (bsc#1144333).\n\n - cifs: document tcon/ses/server refcount dance\n (bsc#1144333).\n\n - cifs: do not allow creating sockets except with SMB1\n posix exensions (bsc#1102097, bsc#1144333).\n\n - cifs: Do not assume one credit for async responses\n (bsc#1144333).\n\n - cifs: do not attempt cifs operation on smb2+ rename\n error (bsc#1144333).\n\n - cifs: Do not consider -ENODATA as stat failure for reads\n (bsc#1144333).\n\n - cifs: Do not count -ENODATA as failure for query\n directory (bsc#1051510, bsc#1144333).\n\n - cifs: do not dereference smb_file_target before null\n check (bsc#1051510, bsc#1144333).\n\n - cifs: Do not hide EINTR after sending network packets\n (bsc#1051510, bsc#1144333).\n\n - cifs: Do not log credits when unmounting a share\n (bsc#1144333).\n\n - cifs: do not log STATUS_NOT_FOUND errors for DFS\n (bsc#1051510, bsc#1144333).\n\n - cifs: Do not match port on SMBDirect transport\n (bsc#1144333).\n\n - cifs: Do not modify mid entry after submitting I/O in\n cifs_call_async (bsc#1051510, bsc#1144333).\n\n - cifs: Do not reconnect TCP session in add_credits()\n (bsc#1051510, bsc#1144333).\n\n - cifs: Do not reset lease state to NONE on lease break\n (bsc#1051510, bsc#1144333).\n\n - cifs: do not return atime less than mtime (bsc#1144333).\n\n - cifs: do not send invalid input buffer on QUERY_INFO\n requests (bsc#1144333).\n\n - cifs: Do not set credits to 1 if the server didn't grant\n anything (bsc#1144333).\n\n - cifs: do not show domain= in mount output when domain is\n empty (bsc#1144333).\n\n - cifs: Do not skip SMB2 message IDs on send failures\n (bsc#1144333).\n\n - cifs: do not use __constant_cpu_to_le32() (bsc#1144333).\n\n - cifs: dump every session iface info (bsc#1144333).\n\n - cifs: dump IPC tcon in debug proc file (bsc#1071306,\n bsc#1144333).\n\n - cifs: fallback to older infolevels on findfirst\n queryinfo retry (bsc#1144333).\n\n - cifs: Find and reopen a file before get MTU credits in\n writepages (bsc#1144333).\n\n - cifs: fix a buffer leak in smb2_query_symlink\n (bsc#1144333).\n\n - cifs: fix a credits leak for compund commands\n (bsc#1144333).\n\n - cifs: Fix a debug message (bsc#1144333).\n\n - cifs: Fix adjustment of credits for MTU requests\n (bsc#1051510, bsc#1144333).\n\n - cifs: Fix an issue with re-sending rdata when transport\n returning -EAGAIN (bsc#1144333).\n\n - cifs: Fix an issue with re-sending wdata when transport\n returning -EAGAIN (bsc#1144333).\n\n - cifs: Fix a race condition with cifs_echo_request\n (bsc#1144333).\n\n - cifs: Fix a tiny potential memory leak (bsc#1144333).\n\n - cifs: Fix autonegotiate security settings mismatch\n (bsc#1087092, bsc#1144333).\n\n - cifs: fix bi-directional fsctl passthrough calls\n (bsc#1144333).\n\n - cifs: fix build break when CONFIG_CIFS_DEBUG2 enabled\n (bsc#1144333).\n\n - cifs: fix build errors for SMB_DIRECT (bsc#1144333).\n\n - cifs: Fix check for matching with existing mount\n (bsc#1144333).\n\n - cifs: fix circular locking dependency (bsc#1064701,\n bsc#1144333).\n\n - cifs: fix computation for MAX_SMB2_HDR_SIZE\n (bsc#1144333).\n\n - cifs: fix confusing warning message on reconnect\n (bsc#1144333).\n\n - cifs: fix crash in cifs_dfs_do_automount (bsc#1144333).\n\n - cifs: fix crash in\n smb2_compound_op()/smb2_set_next_command()\n (bsc#1144333).\n\n - cifs: fix crash querying symlinks stored as\n reparse-points (bsc#1144333).\n\n - cifs: Fix credit calculation for encrypted reads with\n errors (bsc#1051510, bsc#1144333).\n\n - cifs: Fix credit calculations in compound mid callback\n (bsc#1144333).\n\n - cifs: Fix credit computation for compounded requests\n (bsc#1144333).\n\n - cifs: Fix credits calculation for cancelled requests\n (bsc#1144333).\n\n - cifs: Fix credits calculations for reads with errors\n (bsc#1051510, bsc#1144333).\n\n - cifs: fix credits leak for SMB1 oplock breaks\n (bsc#1144333).\n\n - cifs: fix deadlock in cached root handling\n (bsc#1144333).\n\n - cifs: Fix DFS cache refresher for DFS links\n (bsc#1144333).\n\n - cifs: fix encryption in SMB3.1.1 (bsc#1144333).\n\n - cifs: Fix encryption/signing (bsc#1144333).\n\n - cifs: Fix error mapping for SMB2_LOCK command which\n caused OFD lock problem (bsc#1051510, bsc#1144333).\n\n - cifs: Fix error paths in writeback code (bsc#1144333).\n\n - cifs: fix GlobalMid_Lock bug in cifs_reconnect\n (bsc#1144333).\n\n - cifs: fix handle leak in smb2_query_symlink()\n (bsc#1144333).\n\n - cifs: fix incorrect handling of smb2_set_sparse() return\n in smb3_simple_falloc (bsc#1144333).\n\n - cifs: Fix infinite loop when using hard mount option\n (bsc#1091171, bsc#1144333).\n\n - cifs: Fix invalid check in __cifs_calc_signature()\n (bsc#1144333).\n\n - cifs: Fix kernel oops when traceSMB is enabled\n (bsc#1144333).\n\n - cifs: fix kref underflow in close_shroot()\n (bsc#1144333).\n\n - cifs: Fix leaking locked VFS cache pages in writeback\n retry (bsc#1144333).\n\n - cifs: Fix lease buffer length error (bsc#1144333).\n\n - cifs: fix memory leak and remove dead code\n (bsc#1144333).\n\n - cifs: fix memory leak in SMB2_open() (bsc#1112894,\n bsc#1144333).\n\n - cifs: fix memory leak in SMB2_read (bsc#1144333).\n\n - cifs: Fix memory leak in smb2_set_ea() (bsc#1051510,\n bsc#1144333).\n\n - cifs: fix memory leak of an allocated cifs_ntsd\n structure (bsc#1144333).\n\n - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl\n case (bsc#1144333).\n\n - cifs: Fix missing put_xid in cifs_file_strict_mmap\n (bsc#1087092, bsc#1144333).\n\n - cifs: Fix module dependency (bsc#1144333).\n\n - cifs: Fix mounts if the client is low on credits\n (bsc#1144333).\n\n - cifs: fix NULL deref in SMB2_read (bsc#1085539,\n bsc#1144333).\n\n - cifs: Fix NULL pointer dereference of devname\n (bnc#1129519).\n\n - cifs: Fix NULL pointer deref on SMB2_tcon() failure\n (bsc#1071009, bsc#1144333).\n\n - cifs: Fix NULL ptr deref (bsc#1144333).\n\n - cifs: fix page reference leak with readv/writev\n (bsc#1144333).\n\n - cifs: fix panic in smb2_reconnect (bsc#1144333).\n\n - cifs: fix parsing of symbolic link error response\n (bsc#1144333).\n\n - cifs: fix POSIX lock leak and invalid ptr deref\n (bsc#1114542, bsc#1144333).\n\n - cifs: Fix possible hang during async MTU reads and\n writes (bsc#1051510, bsc#1144333).\n\n - cifs: Fix possible oops and memory leaks in async IO\n (bsc#1144333).\n\n - cifs: Fix potential OOB access of lock element array\n (bsc#1051510, bsc#1144333).\n\n - cifs: Fix read after write for files with read caching\n (bsc#1051510, bsc#1144333).\n\n - cifs: fix return value for cifs_listxattr (bsc#1051510,\n bsc#1144333).\n\n - cifs: fix rmmod regression in cifs.ko caused by\n force_sig changes (bsc#1144333).\n\n - cifs: Fix separator when building path from dentry\n (bsc#1051510, bsc#1144333).\n\n - cifs: fix sha512 check in cifs_crypto_secmech_release\n (bsc#1051510, bsc#1144333).\n\n - cifs: fix signed/unsigned mismatch on aio_read patch\n (bsc#1144333).\n\n - cifs: Fix signing for SMB2/3 (bsc#1144333).\n\n - cifs: Fix slab-out-of-bounds in send_set_info() on SMB2\n ACE setting (bsc#1144333).\n\n - cifs: Fix slab-out-of-bounds when tracing SMB tcon\n (bsc#1144333).\n\n - cifs: fix SMB1 breakage (bsc#1144333).\n\n - cifs: fix smb3_zero_range for Azure (bsc#1144333).\n\n - cifs: fix smb3_zero_range so it can expand the file-size\n when required (bsc#1144333).\n\n - cifs: fix sparse warning on previous patch in a few\n printks (bsc#1144333).\n\n - cifs: fix spelling mistake, EACCESS -> EACCES\n (bsc#1144333).\n\n - cifs: Fix stack out-of-bounds in\n smb(2,3)_create_lease_buf() (bsc#1051510, bsc#1144333).\n\n - cifs: fix strcat buffer overflow and reduce raciness in\n smb21_set_oplock_level() (bsc#1144333).\n\n - cifs: Fix to use kmem_cache_free() instead of kfree()\n (bsc#1144333).\n\n - cifs: Fix trace command logging for SMB2 reads and\n writes (bsc#1144333).\n\n - cifs: fix typo in cifs_dbg (bsc#1144333).\n\n - cifs: fix typo in debug message with struct field\n ia_valid (bsc#1144333).\n\n - cifs: fix uninitialized ptr deref in smb2 signing\n (bsc#1144333).\n\n - cifs: Fix use-after-free in SMB2_read (bsc#1144333).\n\n - cifs: Fix use-after-free in SMB2_write (bsc#1144333).\n\n - cifs: Fix use after free of a mid_q_entry (bsc#1112903,\n bsc#1144333).\n\n - cifs: fix use-after-free of the lease keys\n (bsc#1144333).\n\n - cifs: Fix validation of signed data in smb2\n (bsc#1144333).\n\n - cifs: Fix validation of signed data in smb3+\n (bsc#1144333).\n\n - cifs: fix wrapping bugs in num_entries() (bsc#1051510,\n bsc#1144333).\n\n - cifs: flush before set-info if we have writeable handles\n (bsc#1144333).\n\n - cifs: For SMB2 security informaion query, check for\n minimum sized security descriptor instead of sizeof\n FileAllInformation class (bsc#1051510, bsc#1144333).\n\n - cifs: handle large EA requests more gracefully in smb2+\n (bsc#1144333).\n\n - cifs: handle netapp error codes (bsc#1136261).\n\n - cifs: hide unused functions (bsc#1051510, bsc#1144333).\n\n - cifs: implement v3.11 preauth integrity (bsc#1051510,\n bsc#1144333).\n\n - cifs: In Kconfig CONFIG_CIFS_POSIX needs depends on\n legacy (insecure cifs) (bsc#1144333).\n\n - cifs: integer overflow in in SMB2_ioctl() (bsc#1051510,\n bsc#1144333).\n\n - cifs: Introduce helper function to get page offset and\n length in smb_rqst (bsc#1144333).\n\n - cifs: Introduce offset for the 1st page in data transfer\n structures (bsc#1144333).\n\n - cifs: invalidate cache when we truncate a file\n (bsc#1051510, bsc#1144333).\n\n - cifs: keep FileInfo handle live during oplock break\n (bsc#1106284, bsc#1131565, bsc#1144333).\n\n - cifs: limit amount of data we request for xattrs to\n CIFSMaxBufSize (bsc#1144333).\n\n - cifs: Limit memory used by lock request calls to a page\n (bsc#1144333).\n\n - cifs_lookup(): cifs_get_inode_...() never returns 0 with\n *inode left NULL (bsc#1144333).\n\n - cifs_lookup(): switch to d_splice_alias() (bsc#1144333).\n\n - cifs: make arrays static const, reduces object code size\n (bsc#1144333).\n\n - cifs: Make devname param optional in\n cifs_compose_mount_options() (bsc#1144333).\n\n - cifs: make IPC a regular tcon (bsc#1071306,\n bsc#1144333).\n\n - cifs: make minor clarifications to module params for\n cifs.ko (bsc#1144333).\n\n - cifs: make mknod() an smb_version_op (bsc#1144333).\n\n - cifs: make 'nodfs' mount opt a superblock flag\n (bsc#1051510, bsc#1144333).\n\n - cifs: make rmdir() use compounding (bsc#1144333).\n\n - cifs: make smb_send_rqst take an array of requests\n (bsc#1144333).\n\n - cifs: Make sure all data pages are signed correctly\n (bsc#1144333).\n\n - cifs: Make use of DFS cache to get new DFS referrals\n (bsc#1144333).\n\n - cifs: Mask off signals when sending SMB packets\n (bsc#1144333).\n\n - cifs: minor clarification in comments (bsc#1144333).\n\n - cifs: Minor Kconfig clarification (bsc#1144333).\n\n - cifs: minor updates to module description for cifs.ko\n (bsc#1144333).\n\n - cifs: Move credit processing to mid callbacks for SMB3\n (bsc#1144333).\n\n - cifs: move default port definitions to cifsglob.h\n (bsc#1144333).\n\n - cifs: move large array from stack to heap (bsc#1144333).\n\n - cifs: Move open file handling to writepages\n (bsc#1144333).\n\n - cifs: Move unlocking pages from wdata_send_pages()\n (bsc#1144333).\n\n - cifs: OFD locks do not conflict with eachothers\n (bsc#1051510, bsc#1144333).\n\n - cifs: Only free DFS target list if we actually got one\n (bsc#1144333).\n\n - cifs: Only send SMB2_NEGOTIATE command on new TCP\n connections (bsc#1144333).\n\n - cifs: only wake the thread for the very last PDU in a\n compound (bsc#1144333).\n\n - cifs: parse and store info on iface queries\n (bsc#1144333).\n\n - cifs: pass flags down into wait_for_free_credits()\n (bsc#1144333).\n\n - cifs: Pass page offset for calculating signature\n (bsc#1144333).\n\n - cifs: Pass page offset for encrypting (bsc#1144333).\n\n - cifs: pass page offsets on SMB1 read/write\n (bsc#1144333).\n\n - cifs: prevent integer overflow in nxt_dir_entry()\n (bsc#1051510, bsc#1144333).\n\n - cifs: prevent starvation in wait_for_free_credits for\n multi-credit requests (bsc#1144333).\n\n - cifs: print CIFSMaxBufSize as part of\n /proc/fs/cifs/DebugData (bsc#1144333).\n\n - cifs: Print message when attempting a mount\n (bsc#1144333).\n\n - cifs: Properly handle auto disabling of serverino option\n (bsc#1144333).\n\n - cifs: protect against server returning invalid file\n system block size (bsc#1144333).\n\n - cifs: prototype declaration and definition for smb 2 - 3\n and cifsacl mount options (bsc#1051510, bsc#1144333).\n\n - cifs: prototype declaration and definition to set acl\n for smb 2 - 3 and cifsacl mount options (bsc#1051510,\n bsc#1144333).\n\n - cifs: push rfc1002 generation down the stack\n (bsc#1144333).\n\n - cifs: read overflow in is_valid_oplock_break()\n (bsc#1144333).\n\n - cifs: Reconnect expired SMB sessions (bnc#1060662).\n\n - cifs: refactor and clean up arguments in the reparse\n point parsing (bsc#1144333).\n\n - cifs: refactor crypto shash/sdesc allocation&free\n (bsc#1051510, bsc#1144333).\n\n - cifs: Refactor out cifs_mount() (bsc#1144333).\n\n - cifs: release auth_key.response for reconnect\n (bsc#1085536, bsc#1144333).\n\n - cifs: release cifs root_cred after exit_cifs\n (bsc#1085536, bsc#1144333).\n\n - cifs: remove coverity warning in calc_lanman_hash\n (bsc#1144333).\n\n - cifs: Remove custom credit adjustments for SMB2 async IO\n (bsc#1144333).\n\n - cifs: remove header_preamble_size where it is always 0\n (bsc#1144333).\n\n - cifs: remove redundant duplicated assignment of pointer\n 'node' (bsc#1144333).\n\n - cifs: remove rfc1002 hardcoded constants from\n cifs_discard_remaining_data() (bsc#1144333).\n\n - cifs: remove rfc1002 header from all SMB2 response\n structures (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_close_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_create_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_echo_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_flush_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_ioctl_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_lease_ack\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_lock_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_logoff_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_negotiate_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_oplock_break we\n get from server (bsc#1144333).\n\n - cifs: remove rfc1002 header from\n smb2_query_directory_req (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_query_info_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2 read/write\n requests (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_sess_setup_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_set_info_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from smb2_tree_connect_req\n (bsc#1144333).\n\n - cifs: remove rfc1002 header from\n smb2_tree_disconnect_req (bsc#1144333).\n\n - cifs: remove set but not used variable 'cifs_sb'\n (bsc#1144333).\n\n - cifs: remove set but not used variable 'sep'\n (bsc#1144333).\n\n - cifs: remove set but not used variable 'server'\n (bsc#1144333).\n\n - cifs: remove set but not used variable 'smb_buf'\n (bsc#1144333).\n\n - cifs: remove small_smb2_init (bsc#1144333).\n\n - cifs: remove smb2_send_recv() (bsc#1144333).\n\n - cifs: remove struct smb2_hdr (bsc#1144333).\n\n - cifs: remove struct smb2_oplock_break_rsp (bsc#1144333).\n\n - cifs: remove the is_falloc argument to SMB2_set_eof\n (bsc#1144333).\n\n - cifs: remove unused stats (bsc#1144333).\n\n - cifs: remove unused value pointed out by Coverity\n (bsc#1144333).\n\n - cifs: remove unused variable from SMB2_read\n (bsc#1144333).\n\n - cifs: rename and clarify CIFS_ASYNC_OP and CIFS_NO_RESP\n (bsc#1144333).\n\n - cifs: Reopen file before get SMB2 MTU credits for async\n IO (bsc#1144333).\n\n - cifs: replace a 4 with\n server->vals->header_preamble_size (bsc#1144333).\n\n - cifs: replace snprintf with scnprintf (bsc#1144333).\n\n - cifs: Respect reconnect in MTU credits calculations\n (bsc#1144333).\n\n - cifs: Respect reconnect in non-MTU credits calculations\n (bsc#1144333).\n\n - cifs: Respect SMB2 hdr preamble size in read responses\n (bsc#1144333).\n\n - cifs: return correct errors when pinning memory failed\n for direct I/O (bsc#1144333).\n\n - cifs: Return -EAGAIN instead of -ENOTSOCK (bsc#1144333).\n\n - cifs: return -ENODATA when deleting an xattr that does\n not exist (bsc#1144333).\n\n - cifs: Return error code when getting file handle for\n writeback (bsc#1144333).\n\n - cifs: return error on invalid value written to cifsFYI\n (bsc#1144333).\n\n - cifs: Save TTL value when parsing DFS referrals\n (bsc#1144333).\n\n - cifs: Select all required crypto modules (bsc#1085536,\n bsc#1144333).\n\n - cifs: set mapping error when page writeback fails in\n writepage or launder_pages (bsc#1144333).\n\n - cifs: set oparms.create_options rather than or'ing in\n CREATE_OPEN_BACKUP_INTENT (bsc#1144333).\n\n - cifs: Set reconnect instance to one initially\n (bsc#1144333).\n\n - cifs: set *resp_buf_type to NO_BUFFER on error\n (bsc#1144333).\n\n - cifs: Show locallease in /proc/mounts for cifs shares\n mounted with locallease feature (bsc#1144333).\n\n - cifs: show 'soft' in the mount options for hard mounts\n (bsc#1144333).\n\n - cifs: show the w bit for writeable /proc/fs/cifs/* files\n (bsc#1144333).\n\n - cifs: silence compiler warnings showing up with\n gcc-8.0.0 (bsc#1090734, bsc#1144333).\n\n - cifs: Silence uninitialized variable warning\n (bsc#1144333).\n\n - cifs: simple stats should always be enabled\n (bsc#1144333).\n\n - cifs: simplify code by removing CONFIG_CIFS_ACL ifdef\n (bsc#1144333). - Update config files.\n\n - cifs: simplify how we handle credits in\n compound_send_recv() (bsc#1144333).\n\n - cifs: Skip any trailing backslashes from UNC\n (bsc#1144333).\n\n - cifs: smb2 commands can not be negative, remove\n confusing check (bsc#1144333).\n\n - cifs: smb2ops: Fix listxattr() when there are no EAs\n (bsc#1051510, bsc#1144333).\n\n - cifs: smb2ops: Fix NULL check in smb2_query_symlink\n (bsc#1144333).\n\n - cifs: smb2pdu: Fix potential NULL pointer dereference\n (bsc#1144333).\n\n - cifs: smbd: Add parameter rdata to smb2_new_read_req\n (bsc#1144333).\n\n - cifs: smbd: Add rdma mount option (bsc#1144333).\n\n - cifs: smbd: Add SMB Direct debug counters (bsc#1144333).\n\n - cifs: smbd: Add SMB Direct protocol initial values and\n constants (bsc#1144333).\n\n - cifs: smbd: Avoid allocating iov on the stack\n (bsc#1144333).\n\n - cifs: smbd: avoid reconnect lockup (bsc#1144333).\n\n - cifs: smbd: Check for iov length on sending the last iov\n (bsc#1144333).\n\n - cifs: smbd: depend on INFINIBAND_ADDR_TRANS\n (bsc#1144333).\n\n - cifs: smbd: Disable signing on SMB direct transport\n (bsc#1144333).\n\n - cifs: smbd: disconnect transport on RDMA errors\n (bsc#1144333).\n\n - cifs: smbd: Do not call ib_dereg_mr on invalidated\n memory registration (bsc#1144333).\n\n - cifs: smbd: Do not destroy transport on RDMA disconnect\n (bsc#1144333).\n\n - cifs: smbd: Do not use RDMA read/write when signing is\n used (bsc#1144333).\n\n - cifs: smbd: Dump SMB packet when configured\n (bsc#1144333).\n\n - cifs: smbd: Enable signing with smbdirect (bsc#1144333).\n\n - cifs: smbd: Establish SMB Direct connection\n (bsc#1144333).\n\n - cifs: smbd: export protocol initial values\n (bsc#1144333).\n\n - cifs: smbd: fix spelling mistake: faield and legnth\n (bsc#1144333).\n\n - cifs: smbd: Fix the definition for\n SMB2_CHANNEL_RDMA_V1_INVALIDATE (bsc#1144333).\n\n - cifs: smbd: Implement function to create a SMB Direct\n connection (bsc#1144333).\n\n - cifs: smbd: Implement function to destroy a SMB Direct\n connection (bsc#1144333).\n\n - cifs: smbd: Implement function to receive data via RDMA\n receive (bsc#1144333).\n\n - cifs: smbd: Implement function to reconnect to a SMB\n Direct transport (bsc#1144333).\n\n - cifs: smbd: Implement function to send data via RDMA\n send (bsc#1144333).\n\n - cifs: smbd: Implement RDMA memory registration\n (bsc#1144333).\n\n - cifs: smbd: Indicate to retry on transport sending\n failure (bsc#1144333).\n\n - cifs: smbd: Read correct returned data length for RDMA\n write (SMB read) I/O (bsc#1144333).\n\n - cifs: smbd: Retry on memory registration failure\n (bsc#1144333).\n\n - cifs: smbd: Return EINTR when interrupted (bsc#1144333).\n\n - cifs: smbd: Set SMB Direct maximum read or write size\n for I/O (bsc#1144333).\n\n - cifs: smbd: _smbd_get_connection() can be static\n (bsc#1144333).\n\n - cifs: smbd: Support page offset in memory registration\n (bsc#1144333).\n\n - cifs: smbd: Support page offset in RDMA recv\n (bsc#1144333).\n\n - cifs: smbd: Support page offset in RDMA send\n (bsc#1144333).\n\n - cifs: smbd: take an array of reqeusts when sending upper\n layer data (bsc#1144333).\n\n - cifs: smbd: Upper layer connects to SMBDirect session\n (bsc#1144333).\n\n - cifs: smbd: Upper layer destroys SMB Direct session on\n shutdown or umount (bsc#1144333).\n\n - cifs: smbd: Upper layer performs SMB read via RDMA write\n through memory registration (bsc#1144333).\n\n - cifs: smbd: Upper layer performs SMB write via RDMA read\n through memory registration (bsc#1144333).\n\n - cifs: smbd: Upper layer receives data via RDMA receive\n (bsc#1144333).\n\n - cifs: smbd: Upper layer reconnects to SMB Direct session\n (bsc#1144333).\n\n - cifs: smbd: Upper layer sends data via RDMA send\n (bsc#1144333).\n\n - cifs:smbd Use the correct DMA direction when sending\n data (bsc#1144333).\n\n - cifs:smbd When reconnecting to server, call\n smbd_destroy() after all MIDs have been called\n (bsc#1144333).\n\n - cifs: smbd: work around gcc -Wmaybe-uninitialized\n warning (bsc#1144333).\n\n - cifs: start DFS cache refresher in cifs_mount()\n (bsc#1144333).\n\n - cifs: store the leaseKey in the fid on SMB2_open\n (bsc#1051510, bsc#1144333).\n\n - cifs: suppress some implicit-fallthrough warnings\n (bsc#1144333).\n\n - cifs: track writepages in vfs operation counters\n (bsc#1144333).\n\n - cifs: Try to acquire credits at once for compound\n requests (bsc#1144333).\n\n - cifs: update calc_size to take a server argument\n (bsc#1144333).\n\n - cifs: update init_sg, crypt_message to take an array of\n rqst (bsc#1144333).\n\n - cifs: update internal module number (bsc#1144333).\n\n - cifs: update internal module version number\n (bsc#1144333).\n\n - cifs: update internal module version number for cifs.ko\n to 2.12 (bsc#1144333).\n\n - cifs: update internal module version number for cifs.ko\n to 2.14 (bsc#1144333).\n\n - cifs: update module internal version number\n (bsc#1144333).\n\n - cifs: update multiplex loop to handle compounded\n responses (bsc#1144333).\n\n - cifs: update receive_encrypted_standard to handle\n compounded responses (bsc#1144333).\n\n - cifs: update smb2_calc_size to use smb2_sync_hdr instead\n of smb2_hdr (bsc#1144333).\n\n - cifs: update smb2_check_message to handle PDUs without a\n 4 byte length header (bsc#1144333).\n\n - cifs: update smb2_queryfs() to use compounding\n (bsc#1144333).\n\n - cifs: update __smb_send_rqst() to take an array of\n requests (bsc#1144333).\n\n - cifs: use a compound for setting an xattr (bsc#1144333).\n\n - cifs: use a refcount to protect open/closing the cached\n file handle (bsc#1144333).\n\n - cifs: use correct format characters (bsc#1144333).\n\n - cifs: Use correct packet length in SMB2_TRANSFORM header\n (bsc#1144333).\n\n - cifs: Use GFP_ATOMIC when a lock is held in cifs_mount()\n (bsc#1144333).\n\n - cifs: Use kmemdup in SMB2_ioctl_init() (bsc#1144333).\n\n - cifs: Use kmemdup rather than duplicating its\n implementation in smb311_posix_mkdir() (bsc#1144333).\n\n - cifs: Use kzfree() to free password (bsc#1144333).\n\n - cifs: Use offset when reading pages (bsc#1144333).\n\n - cifs: Use smb 2 - 3 and cifsacl mount options getacl\n functions (bsc#1051510, bsc#1144333).\n\n - cifs: Use smb 2 - 3 and cifsacl mount options setacl\n function (bsc#1051510, bsc#1144333).\n\n - cifs: use tcon_ipc instead of use_ipc parameter of\n SMB2_ioctl (bsc#1071306, bsc#1144333).\n\n - cifs: use the correct length when pinning memory for\n direct I/O for write (bsc#1144333).\n\n - cifs: Use ULL suffix for 64-bit constant (bsc#1051510,\n bsc#1144333).\n\n - cifs: wait_for_free_credits() make it possible to wait\n for >=1 credits (bsc#1144333).\n\n - cifs: we can not use small padding iovs together with\n encryption (bsc#1144333).\n\n - cifs: When sending data on socket, pass the correct page\n offset (bsc#1144333).\n\n - cifs: zero-range does not require the file is sparse\n (bsc#1144333).\n\n - cifs: zero sensitive data when freeing (bsc#1087092,\n bsc#1144333).\n\n - Cleanup some minor endian issues in smb3 rdma\n (bsc#1144333).\n\n - clk: add clk_bulk_get accessories (bsc#1144813).\n\n - clk: bcm2835: remove pllb (jsc#SLE-7294).\n\n - clk: bcm283x: add driver interfacing with Raspberry Pi's\n firmware (jsc#SLE-7294).\n\n - clk: bulk: silently error out on EPROBE_DEFER\n (bsc#1144718,bsc#1144813).\n\n - clk: Export clk_bulk_prepare() (bsc#1144813).\n\n - clk: raspberrypi: register platform device for\n raspberrypi-cpufreq (jsc#SLE-7294).\n\n - clk: renesas: cpg-mssr: Fix reset control race condition\n (bsc#1051510).\n\n - clk: rockchip: Add 1.6GHz PLL rate for rk3399\n (bsc#1144718,bsc#1144813).\n\n - clk: rockchip: assign correct id for pclk_ddr and\n hclk_sd in rk3399 (bsc#1144718,bsc#1144813).\n\n - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling\n (bsc#1051510).\n\n - config: arm64: Remove CONFIG_ARM64_MODULE_CMODEL_LARGE\n Option removed by patches in bsc#1148219\n\n - coredump: split pipe command whitespace before expanding\n template (bsc#1051510).\n\n - cpufreq: add driver for Raspberry Pi (jsc#SLE-7294).\n\n - cpufreq: dt: Try freeing static OPPs only if we have\n added them (jsc#SLE-7294).\n\n - cpu/speculation: Warn on unsupported mitigations=\n parameter (bsc#1114279).\n\n - crypto: ccp - Add support for valid authsize values less\n than 16 (bsc#1051510).\n\n - crypto: ccp - Fix oops by properly managing allocated\n structures (bsc#1051510).\n\n - crypto: ccp - Ignore tag length when decrypting GCM\n ciphertext (bsc#1051510).\n\n - crypto: ccp - Ignore unconfigured CCP device on\n suspend/resume (bnc#1145934).\n\n - crypto: ccp - Validate buffer lengths for copy\n operations (bsc#1051510).\n\n - crypto: virtio - Read crypto services and algorithm\n masks (jsc#SLE-5844 jsc#SLE-6331 FATE#327377 bsc#1145446\n LTC#175307).\n\n - crypto: virtio - Register an algo only if it's supported\n (jsc#SLE-5844 jsc#SLE-6331 FATE#327377 bsc#1145446\n LTC#175307).\n\n - cx82310_eth: fix a memory leak bug (bsc#1051510).\n\n - dax: dax_layout_busy_page() should not unmap cow pages\n (bsc#1148698).\n\n - devres: always use dev_name() in devm_ioremap_resource()\n (git fixes).\n\n - dfs_cache: fix a wrong use of kfree in flush_cache_ent()\n (bsc#1144333).\n\n - dmaengine: rcar-dmac: Reject zero-length slave DMA\n requests (bsc#1051510).\n\n - dm btree: fix order of block initialization in\n btree_split_beneath (git fixes).\n\n - dm bufio: fix deadlock with loop device (git fixes).\n\n - dm cache metadata: Fix loading discard bitset (git\n fixes).\n\n - dm crypt: do not overallocate the integrity tag space\n (git fixes).\n\n - dm crypt: fix parsing of extended IV arguments (git\n fixes).\n\n - dm delay: fix a crash when invalid device is specified\n (git fixes).\n\n - dm: fix to_sector() for 32bit (git fixes).\n\n - dm integrity: change memcmp to strncmp in\n dm_integrity_ctr (git fixes).\n\n - dm integrity: correctly calculate the size of metadata\n area (git fixes).\n\n - dm integrity: fix a crash due to BUG_ON in\n __journal_read_write() (git fixes).\n\n - dm integrity: fix deadlock with overlapping I/O (git\n fixes).\n\n - dm integrity: limit the rate of error messages (git\n fixes).\n\n - dm kcopyd: always complete failed jobs (git fixes).\n\n - dm log writes: make sure super sector log updates are\n written in order (git fixes).\n\n - dm raid: add missing cleanup in raid_ctr() (git fixes).\n\n - dm: revert 8f50e358153d ('dm: limit the max bio size as\n BIO_MAX_PAGES * PAGE_SIZE') (git fixes).\n\n - dm space map metadata: fix missing store of apply_bops()\n return value (git fixes).\n\n - dm table: fix invalid memory accesses with too high\n sector number (git fixes).\n\n - dm table: propagate BDI_CAP_STABLE_WRITES to fix\n sporadic checksum errors (git fixes).\n\n - dm thin: fix bug where bio that overwrites thin block\n ignores FUA (git fixes).\n\n - dm thin: fix passdown_double_checking_shared_status()\n (git fixes).\n\n - dm zoned: fix potential NULL dereference in\n dmz_do_reclaim() (git fixes).\n\n - dm zoned: Fix zone report handling (git fixes).\n\n - dm zoned: fix zone state management race (git fixes).\n\n - dm zoned: improve error handling in i/o map code (git\n fixes).\n\n - dm zoned: improve error handling in reclaim (git fixes).\n\n - dm zoned: properly handle backing device failure (git\n fixes).\n\n - dm zoned: Silence a static checker warning (git fixes).\n\n - Documentation: Update Documentation for\n iommu.passthrough (bsc#1136039).\n\n - Do not log confusing message on reconnect by default\n (bsc#1129664, bsc#1144333).\n\n - Do not log expected error on DFS referral request\n (bsc#1051510, bsc#1144333).\n\n - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS\n ioctl (bsc#1051510).\n\n - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate\n some strings (bsc#1051510).\n\n - drm/amd/display: Fix dc_create failure handling and 666\n color depths (bsc#1111666).\n\n - drm/amd/display: Increase size of audios array\n (bsc#1111666).\n\n - drm/amd/display: num of sw i2c/aux engines less than num\n of connectors (bsc#1145946).\n\n - drm/amd/display: Only enable audio if speaker allocation\n exists (bsc#1111666).\n\n - drm/amd/display: Remove redundant non-zero and overflow\n check (bsc#1145946).\n\n - drm/amd/display: use encoder's engine id to find matched\n free audio device (bsc#1111666).\n\n - drm/amd/display: Wait for backlight programming\n completion in set backlight level (bsc#1111666).\n\n - drm/amdgpu: Add APTX quirk for Dell Latitude 5495\n (bsc#1142635)\n\n - drm/amdgpu: added support 2nd UVD instance\n (bsc#1143331).\n\n - drm/amdgpu:change VEGA booting with firmware loaded by\n PSP (bsc#1143331).\n\n - drm/amdgpu: fix a potential information leaking bug\n (bsc#1111666).\n\n - drm/amdgpu/psp: move psp version specific function\n pointers to (bsc#1135642)\n\n - drm/bridge: lvds-encoder: Fix build error while\n CONFIG_DRM_KMS_HELPER=m (bsc#1111666).\n\n - drm/crc-debugfs: Also sprinkle irqrestore over early\n exits (bsc#1051510).\n\n - drm/edid: parse CEA blocks embedded in DisplayID\n (bsc#1111666).\n\n - drm/etnaviv: add missing failure path to destroy\n suballoc (bsc#1135642)\n\n - drm/exynos: fix missing decrement of retry counter\n (bsc#1111666).\n\n - drm/i915: Do not deballoon unused ggtt drm_mm_node in\n linux guest (bsc#1142635)\n\n - drm/i915: Fix GEN8_MCR_SELECTOR programming\n (bsc#1111666).\n\n - drm/i915: Fix HW readout for crtc_clock in HDMI mode\n (bsc#1111666).\n\n - drm/i915: Fix the TBT AUX power well enabling\n (bsc#1111666).\n\n - drm/i915: Fix wrong escape clock divisor init for GLK\n (bsc#1051510).\n\n - drm/i915: Fix wrong escape clock divisor init for GLK\n (bsc#1142635)\n\n - drm/i915/gvt: fix incorrect cache entry for guest page\n mapping (bsc#1111666).\n\n - drm/i915/perf: ensure we keep a reference on the driver\n (bsc#1051510).\n\n - drm/i915/perf: ensure we keep a reference on the driver\n (bsc#1142635)\n\n - drm/i915/perf: fix ICL perf register offsets\n (bsc#1111666).\n\n - drm/i915: Restore relaxed padding\n (OCL_OOB_SUPPRES_ENABLE) for skl+ (bsc#1142635)\n\n - drm/i915/userptr: Acquire the page lock around\n set_page_dirty() (bsc#1051510).\n\n - drm/imx: notify drm core before sending event during\n crtc disable (bsc#1135642)\n\n - drm/imx: only send event on crtc disable if kept\n disabled (bsc#1135642)\n\n - drm/mediatek: call drm_atomic_helper_shutdown() when\n unbinding driver (bsc#1135642)\n\n - drm/mediatek: call mtk_dsi_stop() after\n mtk_drm_crtc_atomic_disable() (bsc#1135642)\n\n - drm/mediatek: clear num_pipes when unbind driver\n (bsc#1135642)\n\n - drm/mediatek: fix unbind functions (bsc#1135642)\n\n - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before\n goto (bsc#1111666).\n\n - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before\n goto (bsc#1142635)\n\n - drm/mediatek: unbind components in mtk_drm_unbind()\n (bsc#1135642)\n\n - drm/mediatek: use correct device to import PRIME buffers\n (bsc#1111666).\n\n - drm/mediatek: use correct device to import PRIME buffers\n (bsc#1142635)\n\n - drm: msm: Fix add_gpu_components (bsc#1051510).\n\n - drm/msm/mdp5: Fix mdp5_cfg_init error return\n (bsc#1142635)\n\n - drm/nouveau: Do not retry infinitely when receiving no\n data on i2c (bsc#1142635)\n\n - drm/nouveau: fix memory leak in nouveau_conn_reset()\n (bsc#1051510).\n\n - drm/rockchip: Suspend DP late (bsc#1051510).\n\n - drm/rockchip: Suspend DP late (bsc#1142635)\n\n - drm: silence variable 'conn' set but not used\n (bsc#1051510).\n\n - drm/udl: introduce a macro to convert dev to udl.\n (bsc#1113722)\n\n - drm/udl: move to embedding drm device inside udl device.\n (bsc#1113722)\n\n - drm/vmwgfx: fix a warning due to missing dma_parms\n (bsc#1135642)\n\n - drm/vmwgfx: fix memory leak when too many retries have\n occurred (bsc#1051510).\n\n - drm/vmwgfx: Use the backdoor port if the HB port is not\n available (bsc#1135642)\n\n - Drop an ASoC fix that was reverted in 4.14.y stable\n\n - EDAC/amd64: Add Family 17h Model 30h PCI IDs\n (bsc#1112178).\n\n - EDAC, amd64: Add Family 17h, models 10h-2fh support\n (bsc#1112178).\n\n - EDAC/amd64: Adjust printed chip select sizes when\n interleaved (bsc#1131489).\n\n - EDAC/amd64: Cache secondary Chip Select registers\n (bsc#1131489).\n\n - EDAC/amd64: Decode syndrome before translating address\n (bsc#1131489).\n\n - EDAC/amd64: Find Chip Select memory size using Address\n Mask (bsc#1131489).\n\n - EDAC/amd64: Initialize DIMM info for systems with more\n than two channels (bsc#1131489).\n\n - EDAC/amd64: Recognize DRAM device type ECC capability\n (bsc#1131489).\n\n - EDAC/amd64: Recognize x16 symbol size (bsc#1131489).\n\n - EDAC/amd64: Set maximum channel layer size depending on\n family (bsc#1131489).\n\n - EDAC/amd64: Support asymmetric dual-rank DIMMs\n (bsc#1131489).\n\n - EDAC/amd64: Support more than two controllers for chip\n selects handling (bsc#1131489).\n\n - EDAC/amd64: Support more than two Unified Memory\n Controllers (bsc#1131489).\n\n - EDAC/amd64: Use a macro for iterating over Unified\n Memory Controllers (bsc#1131489).\n\n - ehea: Fix a copy-paste err in ehea_init_port_res\n (bsc#1051510).\n\n - ext4: use jbd2_inode dirty range scoping (bsc#1148616).\n\n - firmware: raspberrypi: register clk device\n (jsc#SLE-7294).\n\n - Fixed https://bugzilla.kernel.org/show_bug.cgi?id=202935\n allow write on the same file (bsc#1144333).\n\n - Fix encryption labels and lengths for SMB3.1.1\n (bsc#1085536, bsc#1144333).\n\n - fix incorrect error code mapping for OBJECTID_NOT_FOUND\n (bsc#1144333).\n\n - Fix match_server check to allow for auto dialect\n negotiate (bsc#1144333).\n\n - Fix SMB3.1.1 guest authentication to Samba (bsc#1085536,\n bsc#1144333).\n\n - fix smb3-encryption breakage when CONFIG_DEBUG_SG=y\n (bsc#1051510, bsc#1144333).\n\n - fix struct ufs_req removal of unused field (git-fixes).\n\n - Fix warning messages when mounting to older servers\n (bsc#1144333).\n\n - fs/cifs/cifsacl.c Fixes typo in a comment (bsc#1144333).\n\n - fs: cifs: cifsssmb: Change return type of\n convert_ace_to_cifs_ace (bsc#1144333).\n\n - fs/cifs: do not translate SFM_SLASH (U+F026) to\n backslash (bsc#1144333).\n\n - fs: cifs: Drop unlikely before IS_ERR(_OR_NULL)\n (bsc#1144333).\n\n - fs/cifs: fix uninitialised variable warnings\n (bsc#1144333).\n\n - fs: cifs: Kconfig: pedantic formatting (bsc#1144333).\n\n - fs: cifs: Replace _free_xid call in cifs_root_iget\n function (bsc#1144333).\n\n - fs/cifs: require sha512 (bsc#1051510, bsc#1144333).\n\n - fs/cifs: Simplify ib_post_(send|recv|srq_recv)() calls\n (bsc#1144333).\n\n - fs/cifs/smb2pdu.c: fix buffer free in SMB2_ioctl_free\n (bsc#1144333).\n\n - fs/cifs: suppress a string overflow warning\n (bsc#1144333).\n\n - fs/*/Kconfig: drop links to 404-compliant\n http://acl.bestbits.at (bsc#1144333).\n\n - fsl/fman: Use GFP_ATOMIC in\n (memac,tgec)_add_hash_mac_address() (bsc#1051510).\n\n - fs/xfs: Fix return code of xfs_break_leased_layouts()\n (bsc#1148031).\n\n - fs: xfs: xfs_log: Do not use KM_MAYFAIL at\n xfs_log_reserve() (bsc#1148033).\n\n - ftrace: Check for empty hash and comment the race with\n registering probes (bsc#1149418).\n\n - ftrace: Check for successful allocation of hash\n (bsc#1149424).\n\n - ftrace: Fix NULL pointer dereference in t_probe_next()\n (bsc#1149413).\n\n - gpio: Fix build error of function redefinition\n (bsc#1051510).\n\n - gpio: gpio-omap: add check for off wake capable gpios\n (bsc#1051510).\n\n - gpiolib: fix incorrect IRQ requesting of an active-low\n lineevent (bsc#1051510).\n\n - gpiolib: never report open-drain/source lines as 'input'\n to user-space (bsc#1051510).\n\n - gpio: mxs: Get rid of external API call (bsc#1051510).\n\n - gpio: pxa: handle corner case of unprobed device\n (bsc#1051510).\n\n - gpu: ipu-v3: ipu-ic: Fix saturation bit offset in TPMEM\n (bsc#1142635)\n\n - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT\n (bsc#1051510).\n\n - HID: Add quirk for HP X1200 PIXART OEM mouse\n (bsc#1051510).\n\n - HID: cp2112: prevent sleeping function called from\n invalid context (bsc#1051510).\n\n - HID: hiddev: avoid opening a disconnected device\n (bsc#1051510).\n\n - HID: hiddev: do cleanup in failure of opening a device\n (bsc#1051510).\n\n - HID: holtek: test for sanity of intfdata (bsc#1051510).\n\n - HID: sony: Fix race condition between rumble and device\n remove (bsc#1051510).\n\n - HID: wacom: Correct distance scale for 2nd-gen Intuos\n devices (bsc#1142635).\n\n - HID: wacom: correct misreported EKR ring values\n (bsc#1142635).\n\n - HID: wacom: fix bit shift for Cintiq Companion 2\n (bsc#1051510).\n\n - hwmon: (nct7802) Fix wrong detection of in4 presence\n (bsc#1051510).\n\n - i2c: emev2: avoid race when unregistering slave client\n (bsc#1051510).\n\n - i2c: piix4: Fix port selection for AMD Family 16h Model\n 30h (bsc#1051510).\n\n - i2c: qup: fixed releasing dma without flush operation\n completion (bsc#1051510).\n\n - ia64: Get rid of iommu_pass_through (bsc#1136039).\n\n - IB/mlx5: Fix MR registration flow to use UMR properly\n (bsc#1093205 bsc#1145678).\n\n - ibmveth: Convert multicast list size for little-endian\n system (bsc#1061843).\n\n - ibmvnic: Do not process reset during or after device\n removal (bsc#1149652 ltc#179635).\n\n - ibmvnic: Unmap DMA address of TX descriptor buffers\n after use (bsc#1146351 ltc#180726).\n\n - igmp: fix memory leak in igmpv3_del_delrec()\n (networking-stable-19_07_25).\n\n - iio: adc: max9611: Fix misuse of GENMASK macro\n (bsc#1051510).\n\n - iio: adc: max9611: Fix temperature reading in probe\n (bsc#1051510).\n\n - Improve security, move default dialect to SMB3 from old\n CIFS (bsc#1051510, bsc#1144333).\n\n - include/linux/bitops.h: sanitize rotate primitives (git\n fixes).\n\n - Input: iforce - add sanity checks (bsc#1051510).\n\n - Input: kbtab - sanity check for endpoint type\n (bsc#1051510).\n\n - Input: synaptics - enable RMI mode for HP Spectre X360\n (bsc#1051510).\n\n - intel_th: pci: Add support for another Lewisburg PCH\n (bsc#1051510).\n\n - intel_th: pci: Add Tiger Lake support (bsc#1051510).\n\n - iommu: Add helpers to set/get default domain type\n (bsc#1136039).\n\n - iommu/amd: Add support for X2APIC IOMMU interrupts\n (bsc#1145010).\n\n - iommu/amd: Fix race in increase_address_space()\n (bsc#1150860).\n\n - iommu/amd: Flush old domains in kdump kernel\n (bsc#1150861).\n\n - iommu/amd: Move iommu_init_pci() to .init section\n (bsc#1149105).\n\n - iommu/amd: Request passthrough mode from IOMMU core\n (bsc#1136039).\n\n - iommu: Disable passthrough mode when SME is active\n (bsc#1136039).\n\n - iommu/dma: Handle SG length overflow better\n (bsc#1146084).\n\n - iommu/iova: Remove stale cached32_node (bsc#1145018).\n\n - iommu: Print default domain type on boot (bsc#1136039).\n\n - iommu: Remember when default domain type was set on\n kernel command line (bsc#1136039).\n\n - iommu: Set default domain type at runtime (bsc#1136039).\n\n - iommu: Use Functions to set default domain type in\n iommu_set_def_domain_type() (bsc#1136039).\n\n - iommu/vt-d: Request passthrough mode from IOMMU core\n (bsc#1136039).\n\n - ipip: validate header length in ipip_tunnel_xmit\n (git-fixes).\n\n - ipv4: do not set IPv6 only flags to IPv4 addresses\n (networking-stable-19_07_25).\n\n - irqchip/gic-v2m: Add support for Amazon Graviton variant\n of GICv3+GICv2m (SLE-9332).\n\n - irqchip/gic-v3-its: fix build warnings (bsc#1144880).\n\n - ISDN: hfcsusb: checking idx of ep configuration\n (bsc#1051510).\n\n - isdn: hfcsusb: Fix mISDN driver crash caused by transfer\n buffer on the stack (bsc#1051510).\n\n - isdn: mISDN: hfcsusb: Fix possible NULL pointer\n dereferences in start_isoc_chain() (bsc#1051510).\n\n - iversion: add a routine to update a raw value with a\n larger one (bsc#1148133).\n\n - iwlwifi: dbg: split iwl_fw_error_dump to two functions\n (bsc#1119086).\n\n - iwlwifi: do not unmap as page memory that was mapped as\n single (bsc#1051510).\n\n - iwlwifi: fix bad dma handling in page_mem dumping flow\n (bsc#1120902).\n\n - iwlwifi: fw: use helper to determine whether to dump\n paging (bsc#1106434). Patch needed to be adjusted,\n because our tree does not have the global variable\n IWL_FW_ERROR_DUMP_PAGING\n\n - iwlwifi: mvm: do not send GEO_TX_POWER_LIMIT on version\n < 41 (bsc#1142635).\n\n - iwlwifi: mvm: fix an out-of-bound access (bsc#1051510).\n\n - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT\n support (bsc#1142635).\n\n - iwlwifi: pcie: do not service an interrupt that was\n masked (bsc#1142635).\n\n - iwlwifi: pcie: fix ALIVE interrupt handling for gen2\n devices w/o MSI-X (bsc#1142635).\n\n - ixgbe: fix possible deadlock in ixgbe_service_task()\n (bsc#1113994 FATE#326315 FATE#326317).\n\n - jbd2: flush_descriptor(): Do not decrease buffer head's\n ref count (bsc#1143843).\n\n - jbd2: introduce jbd2_inode dirty range scoping\n (bsc#1148616).\n\n - kABI: Fix kABI for 'struct amd_iommu' (bsc#1145010).\n\n - kABI: Fix kABI for x86 pci-dma code (bsc#1136039).\n\n - kabi/severities: Exclude drivers/crypto/ccp/*\n\n - kabi/severities: match SLE15 entry ordering.\n\n - kasan: remove redundant initialization of variable\n 'real_size' (git fixes).\n\n - kconfig/[mn]conf: handle backspace (^H) key\n (bsc#1051510).\n\n - keys: Fix missing NULL pointer check in\n request_key_auth_describe() (bsc#1051510).\n\n - kvm: Fix leak vCPU's VMCS value into other pCPU\n (bsc#1145388).\n\n - kvm: LAPIC: Fix pending interrupt in IRR blocked by\n software disable LAPIC (bsc#1145408).\n\n - kvm: nVMX: allow setting the VMFUNC controls MSR\n (bsc#1145389).\n\n - kvm: nVMX: do not use dangling shadow VMCS after guest\n reset (bsc#1145390).\n\n - kvm: nVMX: Remove unnecessary sync_roots from\n handle_invept (bsc#1145391).\n\n - kvm: nVMX: Use adjusted pin controls for vmcs02\n (bsc#1145392).\n\n - kvm: PPC: Book3S HV: Fix CR0 setting in TM emulation\n (bsc#1061840).\n\n - kvm: s390: add debug logging for cpu model subfunctions\n (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add deflate conversion facilty to cpu model\n (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add enhanced sort facilty to cpu model\n (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add MSA9 to cpumodel (jsc#SLE-6240\n FATE#327380).\n\n - kvm: s390: add vector BCD enhancements facility to\n cpumodel (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: add vector enhancements facility 2 to\n cpumodel (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: enable MSA9 keywrapping functions depending\n on cpu model (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: implement subfunction processor calls\n (jsc#SLE-6240 FATE#327380).\n\n - kvm: s390: provide query function for instructions\n returning 32 byte (jsc#SLE-6240 FATE#327380).\n\n - kvm: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT\n with bad value (bsc#1145393).\n\n - kvm: VMX: check CPUID before allowing read/write of\n IA32_XSS (bsc#1145394).\n\n - kvm: VMX: Fix handling of #MC that occurs during\n VM-Entry (bsc#1145395).\n\n - kvm: x86: degrade WARN to pr_warn_ratelimited\n (bsc#1145409).\n\n - kvm: x86: Do not update RIP or do single-step on\n faulting emulation (bsc#1149104).\n\n - kvm: x86: fix backward migration with async_PF\n (bsc#1146074).\n\n - kvm/x86: Move MSR_IA32_ARCH_CAPABILITIES to array\n emulated_msrs (bsc#1134881 bsc#1134882).\n\n - kvm: X86: Reduce the overhead when lapic_timer_advance\n is disabled (bsc#1149083).\n\n - kvm: x86: Unconditionally enable irqs in guest context\n (bsc#1145396).\n\n - kvm: x86/vPMU: refine kvm_pmu err msg when event\n creation failed (bsc#1145397).\n\n - lan78xx: Fix memory leaks (bsc#1051510).\n\n - libata: add SG safety checks in SFF pio transfers\n (bsc#1051510).\n\n - libata: have ata_scsi_rw_xlat() fail invalid passthrough\n requests (bsc#1051510).\n\n - libceph: add ceph_decode_entity_addr (bsc#1148133\n bsc#1136682).\n\n - libceph: ADDR2 support for monmap (bsc#1148133\n bsc#1136682).\n\n - libceph: allow ceph_buffer_put() to receive a NULL\n ceph_buffer (bsc#1148133).\n\n - libceph: correctly decode ADDR2 addresses in incremental\n OSD maps (bsc#1148133 bsc#1136682).\n\n - libceph: fix PG split vs OSD (re)connect race\n (bsc#1148133).\n\n - libceph: fix sa_family just after reading address\n (bsc#1148133 bsc#1136682).\n\n - libceph: fix unaligned accesses in ceph_entity_addr\n handling (bsc#1136682).\n\n - libceph: fix watch_item_t decoding to use\n ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - libceph: make ceph_pr_addr take an struct\n ceph_entity_addr pointer (bsc#1136682).\n\n - libceph: rename ceph_encode_addr to\n ceph_encode_banner_addr (bsc#1148133 bsc#1136682).\n\n - libceph: switch osdmap decoding to use\n ceph_decode_entity_addr (bsc#1148133 bsc#1136682).\n\n - libceph: turn on CEPH_FEATURE_MSG_ADDR2 (bsc#1148133\n bsc#1136682).\n\n - libceph: use TYPE_LEGACY for entity addrs instead of\n TYPE_NONE (bsc#1148133 bsc#1136682).\n\n - libnvdimm/pfn: Store correct value of npfns in namespace\n superblock (bsc#1146381 ltc#180720).\n\n - liquidio: add cleanup in octeon_setup_iq()\n (bsc#1051510).\n\n - loop: set PF_MEMALLOC_NOIO for the worker thread (git\n fixes).\n\n - lpfc: fix 12.4.0.0 GPF at boot (bsc#1148308).\n\n - mac80211: Correctly set noencrypt for PAE frames\n (bsc#1111666).\n\n - mac80211: Do not memset RXCB prior to PAE intercept\n (bsc#1111666).\n\n - mac80211: do not warn about CW params when not using\n them (bsc#1051510).\n\n - mac80211: do not WARN on short WMM parameters from AP\n (bsc#1051510).\n\n - mac80211: fix possible memory leak in\n ieee80211_assign_beacon (bsc#1142635).\n\n - mac80211: fix possible sta leak (bsc#1051510).\n\n - mac80211_hwsim: Fix possible NULL pointer dereferences\n in hwsim_dump_radio_nl() (bsc#1111666).\n\n - md: add mddev->pers to avoid potential NULL pointer\n dereference (git fixes).\n\n - md/raid: raid5 preserve the writeback action after the\n parity check (git fixes).\n\n - media: au0828: fix null dereference in error path\n (bsc#1051510).\n\n - media: pvrusb2: use a different format for warnings\n (bsc#1051510).\n\n - mfd: arizona: Fix undefined behavior (bsc#1051510).\n\n - mfd: core: Set fwnode for created devices (bsc#1051510).\n\n - mfd: hi655x-pmic: Fix missing return value check for\n devm_regmap_init_mmio_clk (bsc#1051510).\n\n - mfd: intel-lpss: Add Intel Comet Lake PCI IDs\n (jsc#SLE-4875).\n\n - mlxsw: spectrum: Fix error path in\n mlxsw_sp_module_init() (bsc#1112374).\n\n - mm: add filemap_fdatawait_range_keep_errors()\n (bsc#1148616).\n\n - mmc: cavium: Add the missing dma unmap when the dma has\n finished (bsc#1051510).\n\n - mmc: cavium: Set the correct dma max segment size for\n mmc_host (bsc#1051510).\n\n - mmc: core: Fix init of SD cards reporting an invalid VDD\n range (bsc#1051510).\n\n - mmc: dw_mmc: Fix occasional hang after tuning on eMMC\n (bsc#1051510).\n\n - mmc: sdhci-of-at91: add quirk for broken HS200\n (bsc#1051510).\n\n - mmc: sdhci-pci: Add support for Intel CML\n (jsc#SLE-4875).\n\n - mmc: sdhci-pci: Add support for Intel ICP\n (jsc#SLE-4875).\n\n - mmc: sdhci-pci: Fix BYT OCP setting (bsc#1051510).\n\n - mm: do not stall register_shrinker() (bsc#1104902, VM\n Performance).\n\n - mm/hmm: fix bad subpage pointer in try_to_unmap_one\n (bsc#1148202, HMM, VM Functionality).\n\n - mm/hotplug: fix offline undo_isolate_page_range()\n (bsc#1148196, VM Functionality).\n\n - mm/list_lru.c: fix memory leak in\n __memcg_init_list_lru_node (bsc#1148379, VM\n Functionality).\n\n - mm/memcontrol.c: fix use after free in mem_cgroup_iter()\n (bsc#1149224, VM Functionality).\n\n - mm/memory.c: recheck page table entry with page table\n lock held (bsc#1148363, VM Functionality).\n\n - mm/migrate.c: initialize pud_entry in migrate_vma()\n (bsc#1148198, HMM, VM Functionality).\n\n - mm/mlock.c: change count_mm_mlocked_page_nr return type\n (bsc#1148527, VM Functionality).\n\n - mm/mlock.c: mlockall error for flag MCL_ONFAULT\n (bsc#1148527, VM Functionality).\n\n - mm: move MAP_SYNC to asm-generic/mman-common.h\n (bsc#1148297).\n\n - mm/page_alloc.c: fix calculation of pgdat->nr_zones\n (bsc#1148192, VM Functionality).\n\n - mm: page_mapped: do not assume compound page is huge or\n THP (bsc#1148574, VM Functionality).\n\n - mm, page_owner: handle THP splits correctly\n (bsc#1149197, VM Debugging Functionality).\n\n - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy()\n (bsc#1118689).\n\n - mm/vmscan.c: fix trying to reclaim unevictable LRU page\n (bsc#1149214, VM Functionality).\n\n - mm, vmscan: do not special-case slab reclaim when\n watermarks are boosted (git fixes (mm/vmscan)).\n\n - move a few externs to smbdirect.h to eliminate warning\n (bsc#1144333).\n\n - mpls: fix warning with multi-label encap (bsc#1051510).\n\n - nbd: replace kill_bdev() with __invalidate_device()\n again (git fixes).\n\n - Negotiate and save preferred compression algorithms\n (bsc#1144333).\n\n - net: bcmgenet: use promisc for unsupported filters\n (networking-stable-19_07_25).\n\n - net: bridge: mcast: fix stale ipv6 hdr pointer when\n handling v6 query (networking-stable-19_07_25).\n\n - net: bridge: mcast: fix stale nsrcs pointer in\n igmp3/mld2 report handling (networking-stable-19_07_25).\n\n - net: bridge: stp: do not cache eth dest pointer before\n skb pull (networking-stable-19_07_25).\n\n - net: dsa: mv88e6xxx: wait after reset deactivation\n (networking-stable-19_07_25).\n\n - net: ena: add ethtool function for changing io queue\n sizes (bsc#1139020 bsc#1139021).\n\n - net: ena: add good checksum counter (bsc#1139020\n bsc#1139021).\n\n - net: ena: add handling of llq max tx burst size\n (bsc#1139020 bsc#1139021).\n\n - net: ena: add MAX_QUEUES_EXT get feature admin command\n (bsc#1139020 bsc#1139021).\n\n - net: ena: add newline at the end of pr_err prints\n (bsc#1139020 bsc#1139021).\n\n - net: ena: add support for changing max_header_size in\n LLQ mode (bsc#1139020 bsc#1139021).\n\n - net: ena: allow automatic fallback to polling mode\n (bsc#1139020 bsc#1139021).\n\n - net: ena: allow queue allocation backoff when low on\n memory (bsc#1139020 bsc#1139021).\n\n - net: ena: arrange ena_probe() function variables in\n reverse christmas tree (bsc#1139020 bsc#1139021).\n\n - net: ena: enable negotiating larger Rx ring size\n (bsc#1139020 bsc#1139021).\n\n - net: ena: ethtool: add extra properties retrieval via\n get_priv_flags (bsc#1139020 bsc#1139021).\n\n - net: ena: Fix bug where ring allocation backoff stopped\n too late (bsc#1139020 bsc#1139021).\n\n - net: ena: fix ena_com_fill_hash_function()\n implementation (bsc#1139020 bsc#1139021).\n\n - net: ena: fix: Free napi resources when ena_up() fails\n (bsc#1139020 bsc#1139021).\n\n - net: ena: fix incorrect test of supported hash function\n (bsc#1139020 bsc#1139021).\n\n - net: ena: fix: set freed objects to NULL to avoid\n failing future allocations (bsc#1139020 bsc#1139021).\n\n - net: ena: fix swapped parameters when calling\n ena_com_indirect_table_fill_entry (bsc#1139020\n bsc#1139021).\n\n - net: ena: gcc 8: fix compilation warning (bsc#1139020\n bsc#1139021).\n\n - net: ena: improve latency by disabling adaptive\n interrupt moderation by default (bsc#1139020\n bsc#1139021).\n\n - net: ena: make ethtool show correct current and max\n queue sizes (bsc#1139020 bsc#1139021).\n\n - net: ena: optimise calculations for CQ doorbell\n (bsc#1139020 bsc#1139021).\n\n - net: ena: remove inline keyword from functions in *.c\n (bsc#1139020 bsc#1139021).\n\n - net: ena: replace free_tx/rx_ids union with single\n free_ids field in ena_ring (bsc#1139020 bsc#1139021).\n\n - net: ena: update driver version from 2.0.3 to 2.1.0\n (bsc#1139020 bsc#1139021).\n\n - net: ena: use dev_info_once instead of static variable\n (bsc#1139020 bsc#1139021).\n\n - net: fix bpf_xdp_adjust_head regression for generic-XDP\n (bsc#1109837).\n\n - net: Fix netdev_WARN_ONCE macro (git-fixes).\n\n - net: hns3: add a check to pointer in error_detected and\n slot_reset (bsc#1104353 FATE#326415).\n\n - net: hns3: add all IMP return code (bsc#1104353\n FATE#326415).\n\n - net: hns3: add aRFS support for PF (bsc#1104353\n FATE#326415).\n\n - net: hns3: add Asym Pause support to fix autoneg problem\n (bsc#1104353 FATE#326415).\n\n - net: hns3: add check to number of buffer descriptors\n (bsc#1104353 FATE#326415).\n\n - net: hns3: add default value for tc_size and tc_offset\n (bsc#1104353 FATE#326415).\n\n - net: hns3: add exception handling when enable NIC HW\n error interrupts (bsc#1104353 FATE#326415).\n\n - net: hns3: add handling of two bits in MAC tunnel\n interrupts (bsc#1104353 FATE#326415).\n\n - net: hns3: add handshake with hardware while doing reset\n (bsc#1104353 FATE#326415).\n\n - net: hns3: Add missing newline at end of file\n (bsc#1104353 FATE#326415).\n\n - net: hns3: add opcode about query and clear RAS & MSI-X\n to special opcode (bsc#1104353 FATE#326415).\n\n - net: hns3: add recovery for the H/W errors occurred\n before the HNS dev initialization (bsc#1104353\n FATE#326415).\n\n - net: hns3: add some error checking in hclge_tm module\n (bsc#1104353 FATE#326415).\n\n - net: hns3: add support for dump firmware statistics by\n debugfs (bsc#1104353 FATE#326415).\n\n - net: hns3: adjust hns3_uninit_phy()'s location in the\n hns3_client_uninit() (bsc#1104353 FATE#326415).\n\n - net: hns3: bitwise operator should use unsigned type\n (bsc#1104353 FATE#326415).\n\n - net: hns3: change SSU's buffer allocation according to\n UM (bsc#1104353 FATE#326415).\n\n - net: hns3: check msg_data before memcpy in\n hclgevf_send_mbx_msg (bsc#1104353 FATE#326415).\n\n - net: hns3: clear restting state when initializing HW\n device (bsc#1104353 FATE#326415).\n\n - net: hns3: code optimizaition of\n hclge_handle_hw_ras_error() (bsc#1104353 FATE#326415).\n\n - net: hns3: delay and separate enabling of NIC and ROCE\n HW errors (bsc#1104353 FATE#326415).\n\n - net: hns3: delay ring buffer clearing during reset\n (bsc#1104353 FATE#326415).\n\n - net: hns3: delay setting of reset level for hw errors\n until slot_reset is called (bsc#1104353 FATE#326415).\n\n - net: hns3: delete the redundant user NIC codes\n (bsc#1104353 FATE#326415).\n\n - net: hns3: do not configure new VLAN ID into VF VLAN\n table when it's full (bsc#1104353 FATE#326415).\n\n - net: hns3: enable broadcast promisc mode when\n initializing VF (bsc#1104353 FATE#326415).\n\n - net: hns3: enable DCB when TC num is one and pfc_en is\n non-zero (bsc#1104353 FATE#326415).\n\n - net: hns3: extract handling of mpf/pf msi-x errors into\n functions (bsc#1104353 FATE#326415).\n\n - net: hns3: fix a memory leak issue for\n hclge_map_unmap_ring_to_vf_vector (bsc#1104353\n FATE#326415).\n\n - net: hns3: fix a statistics issue about l3l4 checksum\n error (bsc#1104353 FATE#326415).\n\n - net: hns3: fix avoid unnecessary resetting for the H/W\n errors which do not require reset (bsc#1104353\n FATE#326415).\n\n - net: hns3: fix a -Wformat-nonliteral compile warning\n (bsc#1104353 FATE#326415).\n\n - net: hns3: fix compile warning without CONFIG_RFS_ACCEL\n (bsc#1104353 FATE#326415).\n\n - net: hns3: fix dereference of ae_dev before it is null\n checked (bsc#1104353 FATE#326415).\n\n - net: hns3: fixes wrong place enabling ROCE HW error when\n loading (bsc#1104353 FATE#326415).\n\n - net: hns3: fix flow control configure issue for fibre\n port (bsc#1104353 FATE#326415).\n\n - net: hns3: fix for dereferencing before null checking\n (bsc#1104353 FATE#326415).\n\n - net: hns3: fix for skb leak when doing selftest\n (bsc#1104353 FATE#326415).\n\n - net: hns3: fix __QUEUE_STATE_STACK_XOFF not cleared\n issue (bsc#1104353 FATE#326415).\n\n - net: hns3: fix race conditions between reset and module\n loading & unloading (bsc#1104353 FATE#326415).\n\n - net: hns3: fix some coding style issues (bsc#1104353\n FATE#326415).\n\n - net: hns3: fix VLAN filter restore issue after reset\n (bsc#1104353 FATE#326415).\n\n - net: hns3: fix wrong size of mailbox responding data\n (bsc#1104353 FATE#326415).\n\n - net: hns3: free irq when exit from abnormal branch\n (bsc#1104353 FATE#326415).\n\n - net: hns3: handle empty unknown interrupt (bsc#1104353\n FATE#326415).\n\n - net: hns3: initialize CPU reverse mapping (bsc#1104353\n FATE#326415).\n\n - net: hns3: log detail error info of ROCEE ECC and AXI\n errors (bsc#1104353 FATE#326415).\n\n - net: hns3: make HW GRO handling compliant with SW GRO\n (bsc#1104353 FATE#326415).\n\n - net: hns3: modify handling of out of memory in\n hclge_err.c (bsc#1104353 FATE#326415).\n\n - net: hns3: modify hclge_init_client_instance()\n (bsc#1104353 FATE#326415).\n\n - net: hns3: modify hclgevf_init_client_instance()\n (bsc#1104353 FATE#326415).\n\n - net: hns3: optimize the CSQ cmd error handling\n (bsc#1104353 FATE#326415).\n\n - net: hns3: process H/W errors occurred before HNS dev\n initialization (bsc#1104353 FATE#326415).\n\n - net: hns3: refactor hns3_get_new_int_gl function\n (bsc#1104353 FATE#326415).\n\n - net: hns3: refactor PF/VF RSS hash key configuration\n (bsc#1104353 FATE#326415).\n\n - net: hns3: refine the flow director handle (bsc#1104353\n FATE#326415).\n\n - net: hns3: remove override_pci_need_reset (bsc#1104353\n FATE#326415).\n\n - net: hns3: remove redundant core reset (bsc#1104353\n FATE#326415).\n\n - net: hns3: remove RXD_VLD check in hns3_handle_bdinfo\n (bsc#1104353 FATE#326415).\n\n - net: hns3: remove setting bit of reset_requests when\n handling mac tunnel interrupts (bsc#1104353\n FATE#326415).\n\n - net: hns3: remove unused linkmode definition\n (bsc#1104353 FATE#326415).\n\n - net: hns3: remove VF VLAN filter entry inexistent\n warning print (bsc#1104353 FATE#326415).\n\n - net: hns3: replace numa_node_id with numa_mem_id for\n buffer reusing (bsc#1104353 FATE#326415).\n\n - net: hns3: re-schedule reset task while VF reset fail\n (bsc#1104353 FATE#326415).\n\n - net: hns3: set default value for param 'type' in\n hclgevf_bind_ring_to_vector (bsc#1104353 FATE#326415).\n\n - net: hns3: set maximum length to resp_data_len for\n exceptional case (bsc#1104353 FATE#326415).\n\n - net: hns3: set ops to null when unregister ad_dev\n (bsc#1104353 FATE#326415).\n\n - net: hns3: set the port shaper according to MAC speed\n (bsc#1104353 FATE#326415).\n\n - net: hns3: small changes for magic numbers (bsc#1104353\n FATE#326415).\n\n - net: hns3: some changes of MSI-X bits in PPU(RCB)\n (bsc#1104353 FATE#326415).\n\n - net: hns3: some modifications to simplify and optimize\n code (bsc#1104353 FATE#326415).\n\n - net: hns3: some variable modification (bsc#1104353\n FATE#326415).\n\n - net: hns3: stop schedule reset service while unloading\n driver (bsc#1104353 FATE#326415).\n\n - net: hns3: sync VLAN filter entries when kill VLAN ID\n failed (bsc#1104353 FATE#326415).\n\n - net: hns3: trigger VF reset if a VF has an\n over_8bd_nfe_err (bsc#1104353 FATE#326415).\n\n - net: hns3: typo in the name of a constant (bsc#1104353\n FATE#326415).\n\n - net: hns3: use HCLGE_STATE_NIC_REGISTERED to indicate PF\n NIC client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use HCLGE_STATE_ROCE_REGISTERED to indicate\n PF ROCE client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use HCLGEVF_STATE_NIC_REGISTERED to indicate\n VF NIC client has registered (bsc#1104353 FATE#326415).\n\n - net: hns3: use macros instead of magic numbers\n (bsc#1104353 FATE#326415).\n\n - net: hns: add support for vlan TSO (bsc#1104353\n FATE#326415).\n\n - net/ibmvnic: Fix missing ( in __ibmvnic_reset\n (bsc#1149652 ltc#179635).\n\n - net/ibmvnic: free reset work of removed device from\n queue (bsc#1149652 ltc#179635).\n\n - net: Introduce netdev_*_once functions\n (networking-stable-19_07_25).\n\n - net: make skb_dst_force return true when dst is\n refcounted (networking-stable-19_07_25).\n\n - net/mlx4_core: Zero out lkey field in SW2HW_MPT fw\n command (bsc#1145678).\n\n - net/mlx5e: always initialize frag->last_in_page\n (bsc#1103990 FATE#326006).\n\n - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn\n (networking-stable-19_07_25).\n\n - net/mlx5: Fix modify_cq_in alignment (bsc#1103990\n FATE#326006).\n\n - net: mvpp2: Do not check for 3 consecutive Idle frames\n for 10G links (bsc#1119113 FATE#326472).\n\n - net: neigh: fix multiple neigh timer scheduling\n (networking-stable-19_07_25).\n\n - net: openvswitch: fix csum updates for MPLS actions\n (networking-stable-19_07_25).\n\n - net: phylink: Fix flow control for fixed-link\n (bsc#1119113 FATE#326472).\n\n - netrom: fix a memory leak in nr_rx_frame()\n (networking-stable-19_07_25).\n\n - netrom: hold sock when setting skb->destructor\n (networking-stable-19_07_25).\n\n - net_sched: unset TCQ_F_CAN_BYPASS when adding filters\n (networking-stable-19_07_25).\n\n - net: sched: verify that q!=NULL before setting q->flags\n (git-fixes).\n\n - net: usb: pegasus: fix improper read if get_registers()\n fail (bsc#1051510).\n\n - NFS: Cleanup if nfs_match_client is interrupted\n (bsc#1134291).\n\n - NFS: Fix a double unlock from nfs_match,get_client\n (bsc#1134291).\n\n - NFS: Fix the inode request accounting when pages have\n subrequests (bsc#1140012).\n\n - NFS: make nfs_match_client killable (bsc#1134291).\n\n - nilfs2: do not use unexported\n cpu_to_le32()/le32_to_cpu() in uapi header (git fixes).\n\n - (nl,mac)80211: fix interface combinations on crypto\n controlled devices (bsc#1111666).\n\n - nvme: cancel request synchronously (bsc#1145661).\n\n - nvme: change locking for the per-subsystem controller\n list (bsc#1142541).\n\n - nvme-core: Fix extra device_put() call on error path\n (bsc#1142541).\n\n - nvme-fc: fix module unloads while lports still pending\n (bsc#1150033).\n\n - nvme: introduce NVME_QUIRK_IGNORE_DEV_SUBNQN\n (bsc#1146938).\n\n - nvme-multipath: fix ana log nsid lookup when nsid is not\n found (bsc#1141554).\n\n - nvme-multipath: relax ANA state check (bsc#1123105).\n\n - nvme-multipath: revalidate nvme_ns_head gendisk in\n nvme_validate_ns (bsc#1120876).\n\n - nvme: Return BLK_STS_TARGET if the DNR bit is set\n (bsc#1142076).\n\n - objtool: Add rewind_stack_do_exit() to the noreturn list\n (bsc#1145302).\n\n - objtool: Support GCC 9 cold subfunction naming scheme\n (bsc#1145300).\n\n - octeon_mgmt: Fix MIX registers configuration on MTU\n setup (bsc#1051510).\n\n - PCI: al: Add Amazon Annapurna Labs PCIe host controller\n driver (SLE-9332).\n\n - PCI: PM/ACPI: Refresh all stale power state data in\n pci_pm_complete() (bsc#1149106).\n\n - PCI: Restore Resizable BAR size bits correctly for 1MB\n BARs (bsc#1143841).\n\n - phy: qcom-qusb2: Fix crash if nvmem cell not specified\n (bsc#1051510).\n\n - phy: renesas: rcar-gen2: Fix memory leak at error paths\n (bsc#1051510).\n\n - PM / devfreq: rk3399_dmc: do not print error when get\n supply and clk defer (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: fix spelling mistakes\n (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: Pass ODT and auto power down\n parameters to TF-A (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: remove unneeded semicolon\n (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rk3399_dmc: remove wait for dcf irq event\n (bsc#1144718,bsc#1144813).\n\n - PM / devfreq: rockchip-dfi: Move GRF definitions to a\n common place (bsc#1144718,bsc#1144813).\n\n - PM / OPP: OF: Use pr_debug() instead of pr_err() while\n adding OPP table (jsc#SLE-7294).\n\n - powerpc/64s: Include cpu header (bsc#1065729).\n\n - powerpc/64s: support nospectre_v2 cmdline option\n (bsc#1131107).\n\n - powerpc: Allow flush_(inval_)dcache_range to work across\n ranges >4GB (bsc#1146575 ltc#180764).\n\n - powerpc/book3s/64: check for NULL pointer in pgd_alloc()\n (FATE#322447, bsc#1078248, git-fixes).\n\n - powerpc: dump kernel log before carrying out fadump or\n kdump (bsc#1149940 ltc#179958).\n\n - powerpc/fadump: use kstrtoint to handle sysfs store\n (bsc#1146376).\n\n - powerpc/fadump: when fadump is supported register the\n fadump sysfs files (bsc#1146352).\n\n - powerpc/fsl: Add nospectre_v2 command line argument\n (bsc#1131107).\n\n - powerpc/fsl: Update Spectre v2 reporting (bsc#1131107).\n\n - powerpc/lib: Fix feature fixup test of external branch\n (bsc#1065729).\n\n - powerpc/mm: Handle page table allocation failures\n (bsc#1065729).\n\n - powerpc/nvdimm: Pick nearby online node if the device\n node is not online (bsc#1142685 ltc#179509 FATE#327775).\n\n - powerpc/perf: Add constraints for power9 l2/l3 bus\n events (bsc#1056686).\n\n - powerpc/perf: Add mem access events to sysfs\n (FATE#326869, bsc#1124370).\n\n - powerpc/perf: Cleanup cache_sel bits comment\n (bsc#1056686).\n\n - powerpc/perf: Fix thresholding counter data for unknown\n type (bsc#1056686).\n\n - powerpc/perf: Remove PM_BR_CMPL_ALT from power9 event\n list (bsc#1047238, bsc#1056686).\n\n - powerpc/perf: Remove PM_BR_CMPL_ALT from power9 event\n list (fate#321438, bsc#1047238, bsc#1056686).\n\n - powerpc/perf: Update perf_regs structure to include SIER\n (bsc#1056686).\n\n - powerpc/powernv: Flush console before platform error\n reboot (bsc#1149940 ltc#179958).\n\n - powerpc/powernv/opal-dump : Use IRQ_HANDLED instead of\n numbers in interrupt handler (bsc#1065729).\n\n - powerpc/powernv: Return for invalid IMC domain\n (bsc1054914, fate#322448, git-fixes).\n\n - powerpc/powernv: Return for invalid IMC domain\n (bsc1054914, git-fixes).\n\n - powerpc/powernv: Use kernel crash path for machine\n checks (bsc#1149940 ltc#179958).\n\n - powerpc/pseries: add missing cpumask.h include file\n (bsc#1065729).\n\n - powerpc/pseries: correctly track irq state in default\n idle (bsc#1150727 ltc#178925).\n\n - powerpc/pseries, ps3: panic flush kernel messages before\n halting system (bsc#1149940 ltc#179958).\n\n - powerpc/rtas: use device model APIs and serialization\n during LPM (bsc#1144123 ltc#178840).\n\n - powerpc/security: Show powerpc_security_features in\n debugfs (bsc#1131107).\n\n - powerpc/xive: Fix dump of XIVE interrupt under pseries\n (bsc#1142019).\n\n - powerpc/xive: Fix loop exit-condition in\n xive_find_target_in_mask() (FATE#322438, bsc#1085030,\n bsc#1145189, LTC#179762).\n\n - powerpc/xmon: Add a dump of all XIVE interrupts\n (bsc#1142019).\n\n - powerpc/xmon: Check for HV mode when dumping XIVE info\n from OPAL (bsc#1142019).\n\n - qede: fix write to free'd pointer error and double free\n of ptp (bsc#1051510).\n\n - qla2xxx: kABI fixes for v10.01.00.18-k (bcs#1082635\n bcs#1141340 bcs#1143706).\n\n - raid5-cache: Need to do start() part job after adding\n journal device (git fixes).\n\n - RDMA/hns: Add mtr support for mixed multihop addressing\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Bugfix for calculating qp buffer size\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Bugfix for filling the sge of srq (bsc#1104427\n FATE#326416).\n\n - RDMA/hns: Do not stuck in endless timeout loop\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fix an error code in\n hns_roce_set_user_sq_size() (bsc#1104427 FATE#326416).\n\n - RDMA/hns: fix inverted logic of readl read and shift\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fixs hw access invalid dma memory error\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Fixup qp release bug (bsc#1104427\n FATE#326416).\n\n - RDMA/hns: Modify ba page size for cqe (bsc#1104427\n FATE#326416).\n\n - RDMA/hns: Remove set but not used variable\n 'fclr_write_fail_flag' (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Remove unnecessary print message in aeq\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Replace magic numbers with #defines\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: reset function when removing module\n (bsc#1104427 FATE#326416).\n\n - RDMA/hns: Set reset flag when hw resetting (bsc#1104427\n FATE#326416).\n\n - RDMA/hns: Use %pK format pointer print (bsc#1104427\n FATE#326416).\n\n - refresh: soc: fsl: guts: Add definition for LX2160A\n (fate#326572).\n\n - regulator: qcom_spmi: Fix math of\n spmi_regulator_set_voltage_time_sel (bsc#1051510).\n\n - Remove ifdef since SMB3 (and later) now STRONGLY\n preferred (bsc#1051510, bsc#1144333).\n\n - Remove qla2xxx-specific symbols kABI workarounds. In\n SLE15 1d5e8aad6de2285a00b4e1f2c5ea64a41e74bb7b adds kABI\n whitelists for drivers/scsi/qla2xxx/* because these\n symbols are internal to the driver. This entry was\n dropped from 15 SP1 during a kabi/severities cleanup and\n we grew a few needless kABI hacks to fix these symbols.\n Remove them again since the commit is cherry-picked on\n SP1.\n\n - Replace lpfc patch with upstream version\n\n - Revert 'Bluetooth: validate BLE connection interval\n updates' (bsc#1051510).\n\n - Revert 'cfg80211: fix processing world regdomain when\n non modular' (bsc#1051510).\n\n - Revert 'dm bufio: fix deadlock with loop device' (git\n fixes).\n\n - Revert i915 userptr page lock patch (bsc#1145051) This\n patch potentially causes a deadlock between kcompactd,\n as reported on 5.3-rc3. Revert it until a proper fix is\n found.\n\n - Revert 'net: ena: ethtool: add extra properties\n retrieval via get_priv_flags' (bsc#1139020 bsc#1139021).\n\n - Revert\n patches.suse/0001-blk-wbt-Avoid-lock-contention-and-thun\n dering-herd-is.patch (bsc#1141543) As we see stalls /\n crashes recently with the relevant code path, revert\n this patch tentatively.\n\n - Revert 'scsi: ncr5380: Increase register polling limit'\n (git-fixes).\n\n - Revert 'scsi: prefix header search paths with\n $(srctree)/ (bsc#1136346' This reverts commit\n 5f679430713da59f5367aa9499e544e6187ac17c. Reverting this\n commit fixes build for me.\n\n - Revert 'scsi: ufs: disable vccq if it's not needed by\n UFS device' (git-fixes).\n\n - rpm/kernel-binary.spec.in: Enable missing modules check.\n\n - rpmsg: added MODULE_ALIAS for rpmsg_char (bsc#1051510).\n\n - rpmsg: smd: do not use mananged resources for endpoints\n and channels (bsc#1051510).\n\n - rpmsg: smd: fix memory leak on channel create\n (bsc#1051510).\n\n - rsi: improve kernel thread handling to fix kernel panic\n (bsc#1051510).\n\n - rslib: Fix decoding of shortened codes (bsc#1051510).\n\n - rslib: Fix handling of of caller provided syndrome\n (bsc#1051510).\n\n - rtc: pcf8523: do not return invalid date when battery is\n low (bsc#1051510).\n\n - rtc: pcf8563: Clear event flags and disable interrupts\n before requesting irq (bsc#1051510).\n\n - rtc: pcf8563: Fix interrupt trigger method\n (bsc#1051510).\n\n - rxrpc: Fix send on a connected, but unbound socket\n (networking-stable-19_07_25).\n\n - s390/cio: fix ccw_device_start_timeout API (bsc#1142109\n LTC#179339).\n\n - s390/dasd: fix endless loop after read unit address\n configuration (bsc#1144912 LTC#179907).\n\n - s390/qeth: avoid control IO completion stalls\n (bsc#1142109 LTC#179339).\n\n - s390/qeth: cancel cmd on early error (bsc#1142109\n LTC#179339).\n\n - s390/qeth: fix request-side race during cmd IO timeout\n (bsc#1142109 LTC#179339).\n\n - s390/qeth: release cmd buffer in error paths\n (bsc#1142109 LTC#179339).\n\n - s390/qeth: simplify reply object handling (bsc#1142109\n LTC#179339).\n\n - samples, bpf: fix to change the buffer size for read()\n (bsc#1051510).\n\n - samples: mei: use /dev/mei0 instead of /dev/mei\n (bsc#1051510).\n\n - sched/fair: Do not free p->numa_faults with concurrent\n readers (bsc#1144920).\n\n - sched/fair: Use RCU accessors consistently for\n ->numa_group (bsc#1144920).\n\n - scripts/checkstack.pl: Fix arm64 wrong or unknown\n architecture (bsc#1051510).\n\n - scripts/decode_stacktrace: only strip base path when a\n prefix of the path (bsc#1051510).\n\n - scripts/decode_stacktrace.sh: prefix addr2line with\n $CROSS_COMPILE (bsc#1051510).\n\n - scripts/gdb: fix lx-version string output (bsc#1051510).\n\n - scripts/git_sort/git_sort.py :\n\n - scsi: aacraid: Fix missing break in switch statement\n (git-fixes).\n\n - scsi: aacraid: Fix performance issue on logical drives\n (git-fixes).\n\n - scsi: aic94xx: fix an error code in aic94xx_init()\n (git-fixes).\n\n - scsi: aic94xx: fix module loading (git-fixes).\n\n - scsi: bfa: Avoid implicit enum conversion in\n bfad_im_post_vendor_event (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_fcs_lport: Mark expected switch\n fall-throughs (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_fcs_rport: Mark expected switch\n fall-throughs (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: bfa_ioc: Mark expected switch fall-throughs\n (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: clean up a couple of indentation issues\n (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: convert to strlcpy/strlcat (git-fixes).\n\n - scsi: bfa: fix calls to dma_set_mask_and_coherent()\n (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: no need to check return value of\n debugfs_create functions (bsc#1136496 jsc#SLE-4698).\n\n - scsi: bfa: remove ScsiResult macro (bsc#1136496\n jsc#SLE-4698).\n\n - scsi: bfa: Remove unused functions (bsc#1136496\n jsc#SLE-4698).\n\n - scsi: bfa: use dma_set_mask_and_coherent (bsc#1136496\n jsc#SLE-4698).\n\n - scsi: bnx2fc: Do not allow both a cleanup completion and\n abort completion for the same request (bsc#1144582).\n\n - scsi: bnx2fc: fix bnx2fc_cmd refcount imbalance in\n send_rec (bsc#1144582).\n\n - scsi: bnx2fc: fix bnx2fc_cmd refcount imbalance in\n send_srr (bsc#1144582).\n\n - scsi: bnx2fc: fix incorrect cast to u64 on shift\n operation (git-fixes).\n\n - scsi: bnx2fc: Fix NULL dereference in error handling\n (git-fixes).\n\n - scsi: bnx2fc: Limit the IO size according to the FW\n capability (bsc#1144582).\n\n - scsi: bnx2fc: Only put reference to io_req in\n bnx2fc_abts_cleanup if cleanup times out (bsc#1144582).\n\n - scsi: bnx2fc: Redo setting source FCoE MAC\n (bsc#1144582).\n\n - scsi: bnx2fc: Separate out completion flags and\n variables for abort and cleanup (bsc#1144582).\n\n - scsi: bnx2fc: Update the driver version to 2.12.10\n (bsc#1144582).\n\n - scsi: core: Fix race on creating sense cache\n (git-fixes).\n\n - scsi: core: set result when the command cannot be\n dispatched (git-fixes).\n\n - scsi: core: Synchronize request queue PM status only on\n successful resume (git-fixes).\n\n - scsi: cxgb4i: fix incorrect spelling 'reveive' ->\n 'receive' (bsc#1136346 jsc#SLE-4682).\n\n - scsi: cxgb4i: get pf number from lldi->pf (bsc#1136346\n jsc#SLE-4682).\n\n - scsi: cxgb4i: validate tcp sequence number only if chip\n version <= T5 (bsc#1136346 jsc#SLE-4682).\n\n - scsi: cxlflash: Mark expected switch fall-throughs\n (bsc#1148868).\n\n - scsi: cxlflash: Prevent deadlock when adapter probe\n fails (git-fixes).\n\n - scsi: esp_scsi: Track residual for PIO transfers\n (git-fixes) Also, mitigate kABI changes.\n\n - scsi: fas216: fix sense buffer initialization\n (git-fixes).\n\n - scsi: hisi_sas: Add support for DIX feature for v3 hw\n (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: change queue depth from 512 to 4096\n (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Change SERDES_CFG init value to increase\n reliability of HiLink (bsc#1137322 bsc#1137323\n bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Disable stash for v3 hw (bsc#1137322\n bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Fix losing directly attached disk when\n hot-plug (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: Ignore the error code between phy down\n to phy up (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: Issue internal abort on all relevant\n queues (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: kabi fixes (bsc#1137322 bsc#1137323\n bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: print PHY RX errors count for later\n revision of v3 hw (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: Reduce HISI_SAS_SGE_PAGE_CNT in size\n (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: Reject setting programmed minimum\n linkrate > 1.5G (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: send primitive NOTIFY to SSP situation\n only (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: hisi_sas: shutdown axi bus to avoid exception CQ\n returned (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: hisi_sas: Use pci_irq_get_affinity() for v3 hw as\n experimental (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: isci: initialize shost fully before calling\n scsi_add_host() (git-fixes).\n\n - scsi: libfc: fix NULL pointer dereference on a null\n lport (git-fixes).\n\n - scsi: libsas: delete sas port if expander discover\n failed (git-fixes).\n\n - scsi: libsas: Fix rphy phy_identifier for PHYs with end\n devices attached (git-fixes).\n\n - scsi: libsas: kABI protect struct sas_task_slow\n (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: libsas: only clear phy->in_shutdown after shutdown\n event done (bsc#1137322 bsc#1137323 bsc#1138099\n bsc#1138100).\n\n - scsi: lpfc: add check for loss of ndlp when sending RRQ\n (bsc#1148308).\n\n - scsi: lpfc: Add first and second level hardware\n revisions to sysfs (bsc#1146215).\n\n - scsi: lpfc: Add MDS driver loopback diagnostics support\n (bsc#1146215).\n\n - scsi: lpfc: Add NVMe sequence level error recovery\n support (bsc#1146215).\n\n - scsi: lpfc: Add simple unlikely optimizations to reduce\n NVME latency (bsc#1146215).\n\n - scsi: lpfc: Avoid unused function warnings\n (bsc#1148308).\n\n - scsi: lpfc: change snprintf to scnprintf for possible\n overflow (bsc#1146215).\n\n - scsi: lpfc: Convert timers to use timer_setup()\n (bsc#1148308).\n\n - scsi: lpfc: correct rcu unlock issue in\n lpfc_nvme_info_show (bsc#1148308).\n\n - scsi: lpfc: Default fdmi_on to on (bsc#1148308).\n\n - scsi: lpfc: Fix ADISC reception terminating login state\n if a NVME (bsc#1146215).\n\n - scsi: lpfc: Fix BlockGuard enablement on FCoE adapters\n (bsc#1146215).\n\n - scsi: lpfc: Fix coverity warnings (bsc#1146215).\n\n - scsi: lpfc: Fix crash due to port reset racing vs\n adapter error (bsc#1146215).\n\n - scsi: lpfc: Fix crash on driver unload in wq free\n (bsc#1146215).\n\n - scsi: lpfc: Fix crash when cpu count is 1 and null irq\n affinity mask (bsc#1146215).\n\n - scsi: lpfc: Fix deadlock on host_lock during cable pulls\n (bsc#1146215).\n\n - scsi: lpfc: Fix devices that do not return after devloss\n followed by (bsc#1146215).\n\n - scsi: lpfc: Fix discovery when target has no GID_FT\n information (bsc#1146215).\n\n - scsi: lpfc: Fix ELS field alignments (bsc#1146215).\n\n - scsi: lpfc: Fix error in remote port address change\n (bsc#1146215).\n\n - scsi: lpfc: Fix failure to clear non-zero eq_delay after\n io rate (bsc#1146215).\n\n - scsi: lpfc: Fix FLOGI handling across multiple link\n up/down (bsc#1146215).\n\n - scsi: lpfc: Fix hang when downloading fw on port enabled\n for nvme (bsc#1146215).\n\n - scsi: lpfc: Fix irq raising in lpfc_sli_hba_down\n (bsc#1146215).\n\n - scsi: lpfc: Fix issuing init_vpi mbox on SLI-3 card\n (bsc#1146215).\n\n - scsi: lpfc: Fix leak of ELS completions on adapter reset\n (bsc#1146215).\n\n - scsi: lpfc: Fix loss of remote port after devloss due to\n lack of RPIs (bsc#1146215).\n\n - scsi: lpfc: Fix Max Frame Size value shown in fdmishow\n output (bsc#1146215).\n\n - scsi: lpfc: Fix null ptr oops updating lpfc_devloss_tmo\n via sysfs (bsc#1146215).\n\n - scsi: lpfc: Fix nvme first burst module parameter\n description (bsc#1146215).\n\n - scsi: lpfc: Fix nvme sg_seg_cnt display if HBA does not\n support NVME (bsc#1146215).\n\n - scsi: lpfc: Fix nvme target mode ABTSing a received ABTS\n (bsc#1146215).\n\n - scsi: lpfc: Fix Oops in nvme_register with target\n logout/login (bsc#1146215).\n\n - scsi: lpfc: Fix oops when fewer hdwqs than cpus\n (bsc#1146215).\n\n - scsi: lpfc: Fix PLOGI failure with high remoteport count\n (bsc#1146215).\n\n - scsi: lpfc: Fix port relogin failure due to GID_FT\n interaction (bsc#1146215).\n\n - scsi: lpfc: Fix propagation of devloss_tmo setting to\n nvme transport (bsc#1146215).\n\n - scsi: lpfc: Fix reported physical link speed on a\n disabled trunked (bsc#1146215).\n\n - scsi: lpfc: Fix reset recovery paths that are not\n recovering (bsc#1144375).\n\n - scsi: lpfc: Fix sg_seg_cnt for HBAs that do not support\n NVME (bsc#1146215).\n\n - scsi: lpfc: Fix sli4 adapter initialization with MSI\n (bsc#1146215).\n\n - scsi: lpfc: Fix too many sg segments spamming in kernel\n log (bsc#1146215).\n\n - scsi: lpfc: Fix upcall to bsg done in non-success cases\n (bsc#1146215).\n\n - scsi: lpfc: Limit xri count for kdump environment\n (bsc#1146215).\n\n - scsi: lpfc: lpfc_sli: Mark expected switch fall-throughs\n (bsc#1148308).\n\n - scsi: lpfc: Make some symbols static (bsc#1148308).\n\n - scsi: lpfc: Merge per-protocol WQ/CQ pairs into single\n per-cpu pair (bsc#1146215).\n\n - scsi: lpfc: Migrate to %px and %pf in kernel print calls\n (bsc#1146215).\n\n - scsi: lpfc: no need to check return value of\n debugfs_create functions (bsc#1148308).\n\n - scsi: lpfc: nvme: avoid hang / use-after-free when\n destroying localport (bsc#1148308).\n\n - scsi: lpfc: nvmet: avoid hang / use-after-free when\n destroying targetport (bsc#1148308).\n\n - scsi: lpfc: remove a bogus\n pci_dma_sync_single_for_device call (bsc#1148308).\n\n - scsi: lpfc: Remove bg debugfs buffers (bsc#1144375).\n\n - scsi: lpfc: remove NULL check before some freeing\n functions (bsc#1146215).\n\n - scsi: lpfc: remove null check on nvmebuf (bsc#1148308).\n\n - scsi: lpfc: remove ScsiResult macro (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variable 'psli'\n (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'fc_hdr'\n and 'hw_page_size' (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'qp'\n (bsc#1148308).\n\n - scsi: lpfc: Remove set but not used variables 'tgtp'\n (bsc#1148308).\n\n - scsi: lpfc: Resolve checker warning for\n lpfc_new_io_buf() (bsc#1144375).\n\n - scsi: lpfc: resolve lockdep warnings (bsc#1148308).\n\n - scsi: lpfc: Support dynamic unbounded SGL lists on G7\n hardware (bsc#1146215).\n\n - scsi: lpfc: Update lpfc version to 12.4.0.0\n (bsc#1146215).\n\n - scsi: lpfc: Use dma_zalloc_coherent (bsc#1148308).\n\n - scsi: lpfc: use sg helper to iterate over scatterlist\n (bsc#1148308).\n\n - scsi: mac_scsi: Fix pseudo DMA implementation, take 2\n (git-fixes).\n\n - scsi: mac_scsi: Increase PIO/PDMA transfer length\n threshold (git-fixes).\n\n - scsi: megaraid: fix out-of-bound array accesses\n (git-fixes).\n\n - scsi: megaraid_sas: Fix calculation of target ID\n (git-fixes).\n\n - scsi: megaraid_sas: IRQ poll to avoid CPU hard lockups\n (bsc#1143962).\n\n - scsi: megaraid_sas: Release Mutex lock before OCR in\n case of DCMD timeout (bsc#1143962).\n\n - scsi: NCR5380: Always re-enable reselection interrupt\n (git-fixes).\n\n - scsi: pmcraid: do not allocate a dma coherent buffer for\n sense data (bsc#1135990 jsc#SLE-4709).\n\n - scsi: pmcraid: simplify pmcraid_cancel_all a bit\n (bsc#1135990 jsc#SLE-4709).\n\n - scsi: pmcraid: use generic DMA API (bsc#1135990\n jsc#SLE-4709).\n\n - scsi: pmcraid: use sg helper to iterate over scatterlist\n (bsc#1135990 jsc#SLE-4709).\n\n - scsi: prefix header search paths with $(srctree)/\n (bsc#1136346 jsc#SLE-4682).\n\n - scsi: qedf: Add debug information for unsolicited\n processing (bsc#1149976).\n\n - scsi: qedf: Add shutdown callback handler (bsc#1149976).\n\n - scsi: qedf: Add support for 20 Gbps speed (bsc#1149976).\n\n - scsi: qedf: Check both the FCF and fabric ID before\n servicing clear virtual link (bsc#1149976).\n\n - scsi: qedf: Check for link state before processing LL2\n packets and send fipvlan retries (bsc#1149976).\n\n - scsi: qedf: Check for module unloading bit before\n processing link update AEN (bsc#1149976).\n\n - scsi: qedf: Decrease the LL2 MTU size to 2500\n (bsc#1149976).\n\n - scsi: qedf: Fix race betwen fipvlan request and response\n path (bsc#1149976).\n\n - scsi: qedf: Initiator fails to re-login to switch after\n link down (bsc#1149976).\n\n - scsi: qedf: Print message during bailout conditions\n (bsc#1149976).\n\n - scsi: qedf: remove memset/memcpy to nfunc and use func\n instead (git-fixes).\n\n - scsi: qedf: remove set but not used variables\n (bsc#1149976).\n\n - scsi: qedf: Stop sending fipvlan request on unload\n (bsc#1149976).\n\n - scsi: qedf: Update module description string\n (bsc#1149976).\n\n - scsi: qedf: Update the driver version to 8.37.25.20\n (bsc#1149976).\n\n - scsi: qedf: Update the version to 8.42.3.0\n (bsc#1149976).\n\n - scsi: qedf: Use discovery list to traverse rports\n (bsc#1149976).\n\n - scsi: qedi: remove declaration of nvm_image from stack\n (git-fixes).\n\n - scsi: qla2xxx: Add cleanup for PCI EEH recovery\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Add cleanup for PCI EEH recovery\n (bsc#1129424).\n\n - scsi: qla2xxx: Allow NVMe IO to resume with short cable\n pull (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Always check the\n qla2x00_wait_for_hba_online() return value\n (bsc#1143706).\n\n - scsi: qla2xxx: Avoid that Coverity complains about\n dereferencing a NULL rport pointer (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that lockdep complains about unsafe\n locking in tcm_qla2xxx_close_session() (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qla2x00_mem_free() crashes if\n called twice (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts\n memory (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts\n memory (git-fixes).\n\n - scsi: qla2xxx: Change abort wait_loop from msleep to\n wait_event_timeout (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Change a stack variable into a static\n const variable (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Change data_dsd into an array\n (bsc#1143706).\n\n - scsi: qla2xxx: Change the return type of\n qla24xx_read_flash_data() (bsc#1143706).\n\n - scsi: qla2xxx: Change the return type of\n qla2x00_update_ms_fdmi_iocb() into void (bsc#1143706).\n\n - scsi: qla2xxx: Check secondary image if reading the\n primary image fails (bsc#1143706).\n\n - scsi: qla2xxx: Check the PCI info string output buffer\n size (bsc#1143706).\n\n - scsi: qla2xxx: Check the size of firmware data\n structures at compile time (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Cleanup fcport memory to prevent leak\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Cleanup redundant qla2x00_abort_all_cmds\n during unload (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: cleanup trace buffer initialization\n (bsc#1134476).\n\n - scsi: qla2xxx: Complain if a command is released that is\n owned by the firmware (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Complain if a mailbox command times out\n (bsc#1143706).\n\n - scsi: qla2xxx: Complain if a soft reset fails\n (bsc#1143706).\n\n - scsi: qla2xxx: Complain if parsing the version string\n fails (bsc#1143706).\n\n - scsi: qla2xxx: Complain if sp->done() is not called from\n the completion path (bsc#1143706).\n\n - scsi: qla2xxx: Complain if waiting for pending commands\n times out (bsc#1143706).\n\n - scsi: qla2xxx: Complain loudly about reference count\n underflow (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Correct error handling during\n initialization failures (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Declare fourth qla2x00_set_model_info()\n argument const (bsc#1143706).\n\n - scsi: qla2xxx: Declare local symbols static (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla24xx_build_scsi_crc_2_iocbs()\n static (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla2x00_find_new_loop_id() static\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Declare qla_tgt_cmd.cdb const\n (bsc#1143706).\n\n - scsi: qla2xxx: Declare the fourth ql_dump_buffer()\n argument const (bsc#1143706).\n\n - scsi: qla2xxx: Disable T10-DIF feature with FC-NVMe\n during probe (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Do not corrupt vha->plogi_ack_list\n (bsc#1143706).\n\n - scsi: qla2xxx: Enable type checking for the SRB free and\n done callback functions (bsc#1143706).\n\n - scsi: qla2xxx: Fix abort timeout race condition\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a format specifier (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a format specifier (git-fixes).\n\n - scsi: qla2xxx: Fix an endian bug in\n fcpcmd_is_corrupted() (git-fixes).\n\n - scsi: qla2xxx: Fix a NULL pointer dereference\n (bsc#1143706).\n\n - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix a race condition between aborting and\n completing a SCSI command (bsc#1143706).\n\n - scsi: qla2xxx: Fix a small typo in qla_bsg.c\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix comment alignment in qla_bsg.c\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix device staying in blocked state\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix device staying in blocked state\n (git-fixes).\n\n - scsi: qla2xxx: Fix different size DMA Alloc/Unmap\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix DMA unmap leak (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix driver reload for ISP82xx\n (bsc#1143706).\n\n - scsi: qla2xxx: Fix driver unload when FC-NVMe LUNs are\n connected (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix error handling in\n qlt_alloc_qfull_cmd() (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Fix error handling in\n qlt_alloc_qfull_cmd() (git-fixes).\n\n - scsi: qla2xxx: Fix flash read for Qlogic ISPs\n (bsc#1143706).\n\n - scsi: qla2xxx: Fix formatting of pointer types\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix fw dump corruption (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hang in fcport delete path\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hardirq-unsafe locking (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix hardlockup in abort command during\n driver remove (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix kernel crash after disconnecting NVMe\n devices (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix message indicating vectors used by\n driver (bsc#1143706).\n\n - scsi: qla2xxx: Fix NULL pointer crash due to stale CPUID\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix NVME cmd and LS cmd timeout race\n condition (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix NVMe port discovery after a short\n device port loss (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix possible fcport NULL pointer\n dereferences (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix premature timer expiration\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd()\n (bsc#1143706).\n\n - scsi: qla2xxx: Fix race conditions in the code for\n aborting SCSI commands (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Fix Relogin to prevent modifying\n scan_state flag (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix session lookup in qlt_abort_work()\n (bsc#1143706).\n\n - scsi: qla2xxx: fix spelling mistake 'alredy' ->\n 'already' (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Fix stale session (bsc#1143706).\n\n - scsi: qla2xxx: Fix stuck login session (bsc#1143706).\n\n - scsi: qla2xxx: Fix use-after-free issues in\n qla2xxx_qpair_sp_free_dma() (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Further limit FLASH region write access\n from SysFS (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Improve Linux kernel coding style\n conformance (bsc#1143706).\n\n - scsi: qla2xxx: Include the <asm/unaligned.h> header file\n from qla_dsd.h (bsc#1143706).\n\n - scsi: qla2xxx: Increase the max_sgl_segments to 1024\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Increase the size of the mailbox arrays\n from 4 to 8 (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Inline the qla2x00_fcport_event_handler()\n function (bsc#1143706).\n\n - scsi: qla2xxx: Insert spaces where required (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Introduce qla2x00_els_dcmd2_free()\n (bsc#1143706).\n\n - scsi: qla2xxx: Introduce qla2xxx_get_next_handle()\n (bsc#1143706).\n\n - scsi: qla2xxx: Introduce the be_id_t and le_id_t data\n types for FC src/dst IDs (bsc#1143706).\n\n - scsi: qla2xxx: Introduce the dsd32 and dsd64 data\n structures (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Introduce the function qla2xxx_init_sp()\n (bsc#1143706).\n\n - scsi: qla2xxx: Leave a blank line after declarations\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Let the compiler check the type of the\n SCSI command context pointer (bsc#1143706).\n\n - scsi: qla2xxx: Log the status code if a firmware command\n fails (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make it explicit that ELS pass-through\n IOCBs use little endian (bsc#1143706).\n\n - scsi: qla2xxx: Make qla24xx_async_abort_cmd() static\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_abort_srb() again decrease\n the sp reference count (bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_mem_free() easier to verify\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qla2x00_process_response_queue()\n easier to read (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Make qlt_handle_abts_completion() more\n robust (bsc#1143706).\n\n - scsi: qla2xxx: Make sure that aborted commands are freed\n (bsc#1143706).\n\n - scsi: qla2xxx: Modify NVMe include directives\n (bsc#1143706).\n\n - scsi: qla2xxx: move IO flush to the front of NVME rport\n unregistration (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_clear_loop_id() from\n qla_inline.h into qla_init.c (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_is_reserved_id() from\n qla_inline.h into qla_init.c (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_set_fcport_state() from a .h\n into a .c file (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move qla2x00_set_reserved_loop_ids()\n definition (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move the <linux/io-64-nonatomic-lo-hi.h>\n include directive (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Move the port_state_str definition from a\n .h to a .c file (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: on session delete, return nvme cmd\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Pass little-endian values to the firmware\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: qla2x00_alloc_fw_dump: set ha->eft\n (bsc#1134476).\n\n - scsi: qla2xxx: Really fix qla2xxx_eh_abort()\n (bsc#1143706).\n\n - scsi: qla2xxx: Reduce the number of casts in GID list\n code (bsc#1143706).\n\n - scsi: qla2xxx: Reduce the number of forward declarations\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Reduce the scope of three local variables\n in qla2xxx_queuecommand() (bsc#1143706).\n\n - scsi: qla2xxx: Reject\n EH_(abort|device_reset|target_request) (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove a comment that refers to the SCSI\n host lock (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove an include directive from qla_mr.c\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove a set-but-not-used variable\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove a superfluous forward declaration\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove a superfluous pointer check\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove dead code (bsc#1143706).\n\n - scsi: qla2xxx: remove double assignment in\n qla2x00_update_fcport (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Remove qla_tgt_cmd.data_work and\n qla_tgt_cmd.data_work_free (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Remove qla_tgt_cmd.released (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove superfluous sts_entry_* casts\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove the fcport test from\n qla_nvme_abort_work() (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous casts (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous if-tests\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove two superfluous tests\n (bsc#1143706).\n\n - scsi: qla2xxx: Remove unnecessary locking from the\n target code (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove unnecessary null check\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Remove unreachable code from\n qla83xx_idc_lock() (bsc#1143706).\n\n - scsi: qla2xxx: Remove useless set memory to zero use\n memset() (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Replace vmalloc + memset with vzalloc\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Report invalid mailbox status codes\n (bsc#1143706).\n\n - scsi: qla2xxx: Report the firmware status code if a\n mailbox command fails (bsc#1143706).\n\n - scsi: qla2xxx: Reset the FCF_ASYNC_(SENT|ACTIVE) flags\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Retry fabric Scan on IOCB queue full\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Rework key encoding in\n qlt_find_host_by_d_id() (bsc#1143706).\n\n - scsi: qla2xxx: Set the qpair in SRB to NULL when SRB is\n released (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Set the responder mode if appropriate for\n ELS pass-through IOCBs (bsc#1143706).\n\n - scsi: qla2xxx: Set the SCSI command result before\n calling the command done (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Silence Successful ELS IOCB message\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Simplify a debug statement (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qla24xx_abort_sp_done()\n (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qla24xx_async_abort_cmd()\n (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qlt_lport_dump() (bsc#1143706).\n\n - scsi: qla2xxx: Simplify qlt_send_term_imm_notif()\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Skip FW dump on LOOP initialization error\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Suppress a Coveritiy complaint about\n integer overflow (bsc#1143706).\n\n - scsi: qla2xxx: Suppress multiple Coverity complaint\n about out-of-bounds accesses (bsc#1143706).\n\n - scsi: qla2xxx: target: Fix offline port handling and\n host reset handling (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Uninline qla2x00_init_timer()\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Unregister chrdev if module\n initialization fails (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Unregister chrdev if module\n initialization fails (git-fixes).\n\n - scsi: qla2xxx: Unregister resources in the opposite\n order of the registration order (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.16-k\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.18-k\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update driver version to 10.01.00.19-k\n (bsc#1143706).\n\n - scsi: qla2xxx: Update two source code comments\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Update two source code comments\n (git-fixes).\n\n - scsi: qla2xxx: Use an on-stack completion in\n qla24xx_control_vp() (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Use ARRAY_SIZE() in the definition of\n QLA_LAST_SPEED (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use common update-firmware-options\n routine for ISP27xx+ (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Use Correct index for Q-Pair array\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use get/put_unaligned where appropriate\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use __le64 instead of uint32_t[2] for\n sending DMA addresses to firmware (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Use memcpy() and strlcpy() instead of\n strcpy() and strncpy() (bsc#1143706).\n\n - scsi: qla2xxx: Use mutex protection during\n qla2x00_sysfs_read_fw_dump() (bsc#1082635 bsc#1141340\n bsc#1143706).\n\n - scsi: qla2xxx: Use strlcpy() instead of strncpy()\n (bsc#1143706).\n\n - scsi: qla2xxx: Use tabs instead of spaces for\n indentation (bsc#1143706).\n\n - scsi: qla2xxx: Use tabs to indent code (bsc#1082635\n bsc#1141340 bsc#1143706).\n\n - scsi: qla2xxx: Verify locking assumptions at runtime\n (bsc#1143706).\n\n - scsi: qla4xxx: avoid freeing unallocated dma memory\n (git-fixes).\n\n - scsi: raid_attrs: fix unused variable warning\n (git-fixes).\n\n - scsi: sas: Convert timers to use timer_setup()\n (bsc#1137322 bsc#1137323 bsc#1138099 bsc#1138100).\n\n - scsi: scsi_dh_alua: Fix possible null-ptr-deref\n (git-fixes).\n\n - scsi: scsi_transport_fc: nvme: display FC-NVMe port\n roles (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: sd: Defer spinning up drive while SANITIZE is in\n progress (git-fixes).\n\n - scsi: sd: Fix a race between closing an sd device and sd\n I/O (git-fixes).\n\n - scsi: sd: Fix cache_type_store() (git-fixes).\n\n - scsi: sd: Optimal I/O size should be a multiple of\n physical block size (git-fixes).\n\n - scsi: sd: Quiesce warning if device does not report\n optimal I/O size (git-fixes).\n\n - scsi: sd: use mempool for discard special page\n (git-fixes).\n\n - scsi: sd_zbc: Fix potential memory leak (git-fixes).\n\n - scsi: smartpqi: unlock on error in\n pqi_submit_raid_request_synchronous() (git-fixes).\n\n - scsi: sr: Avoid that opening a CD-ROM hangs with runtime\n power management enabled (git-fixes).\n\n - scsi: target: iscsi: cxgbit: add missing\n spin_lock_init() (bsc#1136349 jsc#SLE-4685).\n\n - scsi: tcm_qla2xxx: Minimize #include directives\n (bsc#1082635 bsc#1141340 bsc#1143706).\n\n - scsi: ufs: Avoid runtime suspend possibly being blocked\n forever (git-fixes).\n\n - scsi: ufs: Check that space was properly alloced in\n copy_query_response (git-fixes).\n\n - scsi: ufs: Fix NULL pointer dereference in\n ufshcd_config_vreg_hpm() (git-fixes).\n\n - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value\n (git-fixes).\n\n - scsi: ufs: fix wrong command type of UTRD for UFSHCI\n v2.1 (git-fixes).\n\n - scsi: use dma_get_cache_alignment() as minimum DMA\n alignment (git-fixes).\n\n - scsi: virtio_scsi: do not send sc payload with tmfs\n (git-fixes).\n\n - sdhci-fujitsu: add support for setting the CMD_DAT_DELAY\n attribute (bsc#1145256).\n\n - signal/cifs: Fix cifs_put_tcp_session to call send_sig\n instead of force_sig (bsc#1144333).\n\n - sis900: fix TX completion (bsc#1051510).\n\n - sky2: Disable MSI on ASUS P6T (bsc#1142496).\n\n - smb2: fix missing files in root share directory listing\n (bsc#1112907, bsc#1144333).\n\n - smb2: fix typo in definition of a few error flags\n (bsc#1144333).\n\n - smb2: fix uninitialized variable bug in\n smb2_ioctl_query_info (bsc#1144333).\n\n - SMB3.1.1: Add GCM crypto to the encrypt and decrypt\n functions (bsc#1144333).\n\n - SMB3.1.1 dialect is no longer experimental (bsc#1051510,\n bsc#1144333).\n\n - SMB311: Fix reconnect (bsc#1051510, bsc#1144333).\n\n - SMB311: Improve checking of negotiate security contexts\n (bsc#1051510, bsc#1144333).\n\n - smb3.11: replace a 4 with\n server->vals->header_preamble_size (bsc#1144333).\n\n - smb3: add additional ftrace entry points for entry/exit\n to cifs.ko (bsc#1144333).\n\n - smb3: add credits we receive from oplock/break PDUs\n (bsc#1144333).\n\n - smb3: add debug for unexpected mid cancellation\n (bsc#1144333).\n\n - smb3: Add debug message later in smb2/smb3 reconnect\n path (bsc#1144333).\n\n - smb3: add define for id for posix create context and\n corresponding struct (bsc#1144333).\n\n - smb3: Add defines for new negotiate contexts\n (bsc#1144333).\n\n - smb3: add dynamic trace point for query_info_enter/done\n (bsc#1144333).\n\n - smb3: add dynamic trace point for smb3_cmd_enter\n (bsc#1144333).\n\n - smb3: add dynamic tracepoint for timeout waiting for\n credits (bsc#1144333).\n\n - smb3: add dynamic tracepoints for simple fallocate and\n zero range (bsc#1144333).\n\n - smb3: Add dynamic trace points for various compounded\n smb3 ops (bsc#1144333).\n\n - smb3: Add ftrace tracepoints for improved SMB3 debugging\n (bsc#1144333).\n\n - smb3: Add handling for different FSCTL access flags\n (bsc#1144333).\n\n - smb3: add missing read completion trace point\n (bsc#1144333).\n\n - smb3: add module alias for smb3 to cifs.ko\n (bsc#1144333).\n\n - smb3: add new mount option to retrieve mode from special\n ACE (bsc#1144333).\n\n - smb3: Add posix create context for smb3.11 posix mounts\n (bsc#1144333).\n\n - smb3: Add protocol structs for change notify support\n (bsc#1144333).\n\n - smb3: add reconnect tracepoints (bsc#1144333).\n\n - smb3: Add SMB3.1.1 GCM to negotiated crypto algorigthms\n (bsc#1144333).\n\n - smb3: add smb3.1.1 to default dialect list\n (bsc#1144333).\n\n - smb3: Add support for multidialect negotiate (SMB2.1 and\n later) (bsc#1051510, bsc#1144333).\n\n - smb3: add support for posix negotiate context\n (bsc#1144333).\n\n - smb3: add support for statfs for smb3.1.1 posix\n extensions (bsc#1144333).\n\n - smb3: add tracepoint for sending lease break responses\n to server (bsc#1144333).\n\n - smb3: add tracepoint for session expired or deleted\n (bsc#1144333).\n\n - smb3: add tracepoint for slow responses (bsc#1144333).\n\n - smb3: add trace point for tree connection (bsc#1144333).\n\n - smb3: add tracepoints for query dir (bsc#1144333).\n\n - smb3: Add tracepoints for read, write and query_dir\n enter (bsc#1144333).\n\n - smb3: add tracepoints for smb2/smb3 open (bsc#1144333).\n\n - smb3: add tracepoint to catch cases where credit refund\n of failed op overlaps reconnect (bsc#1144333).\n\n - smb3: add way to control slow response threshold for\n logging and stats (bsc#1144333).\n\n - smb3: allow more detailed protocol info on open files\n for debugging (bsc#1144333).\n\n - smb3: Allow persistent handle timeout to be configurable\n on mount (bsc#1144333).\n\n - smb3: allow posix mount option to enable new SMB311\n protocol extensions (bsc#1144333).\n\n - smb3: allow previous versions to be mounted with\n snapshot= mount parm (bsc#1144333).\n\n - smb3: Allow query of symlinks stored as reparse points\n (bsc#1144333).\n\n - smb3: Allow SMB3 FSCTL queries to be sent to server from\n tools (bsc#1144333).\n\n - smb3: allow stats which track session and share\n reconnects to be reset (bsc#1051510, bsc#1144333).\n\n - smb3: Backup intent flag missing for directory opens\n with backupuid mounts (bsc#1051510, bsc#1144333).\n\n - smb3: Backup intent flag missing from compounded ops\n (bsc#1144333).\n\n - smb3: check for and properly advertise directory lease\n support (bsc#1051510, bsc#1144333).\n\n - smb3 - clean up debug output displaying network\n interfaces (bsc#1144333).\n\n - smb3: Cleanup license mess (bsc#1144333).\n\n - smb3: Clean up query symlink when reparse point\n (bsc#1144333).\n\n - smb3: create smb3 equivalent alias for cifs\n pseudo-xattrs (bsc#1144333).\n\n - smb3: directory sync should not return an error\n (bsc#1051510, bsc#1144333).\n\n - smb3: display bytes_read and bytes_written in smb3 stats\n (bsc#1144333).\n\n - smb3: display security information in\n /proc/fs/cifs/DebugData more accurately (bsc#1144333).\n\n - smb3: display session id in debug data (bsc#1144333).\n\n - smb3: display stats counters for number of slow commands\n (bsc#1144333).\n\n - smb3: display volume serial number for shares in\n /proc/fs/cifs/DebugData (bsc#1144333).\n\n - smb3: do not allow insecure cifs mounts when using smb3\n (bsc#1144333).\n\n - smb3: do not attempt cifs operation in smb3 query info\n error path (bsc#1051510, bsc#1144333).\n\n - smb3: do not display confusing message on mount to Azure\n servers (bsc#1144333).\n\n - smb3: do not display empty interface list (bsc#1144333).\n\n - smb3: Do not ignore O_SYNC/O_DSYNC and O_DIRECT flags\n (bsc#1085536, bsc#1144333).\n\n - smb3: do not request leases in symlink creation and\n query (bsc#1051510, bsc#1144333).\n\n - smb3: do not send compression info by default\n (bsc#1144333).\n\n - smb3: Do not send SMB3 SET_INFO if nothing changed\n (bsc#1051510, bsc#1144333).\n\n - smb3: enumerating snapshots was leaving part of the data\n off end (bsc#1051510, bsc#1144333).\n\n - smb3: fill in statfs fsid and correct namelen\n (bsc#1112905, bsc#1144333).\n\n - smb3: Fix 3.11 encryption to Windows and handle\n encrypted smb3 tcon (bsc#1051510, bsc#1144333).\n\n - smb3: fix bytes_read statistics (bsc#1144333).\n\n - smb3: fix corrupt path in subdirs on smb311 with posix\n (bsc#1144333).\n\n - smb3: Fix deadlock in validate negotiate hits reconnect\n (bsc#1144333).\n\n - smb3: Fix endian warning (bsc#1144333, bsc#1137884).\n\n - smb3: Fix enumerating snapshots to Azure (bsc#1144333).\n\n - smb3: fix large reads on encrypted connections\n (bsc#1144333).\n\n - smb3: fix lease break problem introduced by compounding\n (bsc#1144333).\n\n - smb3: Fix length checking of SMB3.11 negotiate request\n (bsc#1051510, bsc#1144333).\n\n - smb3: fix minor debug output for CONFIG_CIFS_STATS\n (bsc#1144333).\n\n - smb3: Fix mode on mkdir on smb311 mounts (bsc#1144333).\n\n - smb3: Fix potential memory leak when processing compound\n chain (bsc#1144333).\n\n - smb3: fix redundant opens on root (bsc#1144333).\n\n - smb3: fix reset of bytes read and written stats\n (bsc#1112906, bsc#1144333).\n\n - smb3: Fix rmdir compounding regression to strict servers\n (bsc#1144333).\n\n - smb3: Fix root directory when server returns inode\n number of zero (bsc#1051510, bsc#1144333).\n\n - smb3: Fix SMB3.1.1 guest mounts to Samba (bsc#1051510,\n bsc#1144333).\n\n - smb3: fix various xid leaks (bsc#1051510, bsc#1144333).\n\n - smb3: for kerberos mounts display the credential uid\n used (bsc#1144333).\n\n - smb3: handle new statx fields (bsc#1085536,\n bsc#1144333).\n\n - smb3: if max_credits is specified then display it in\n /proc/mounts (bsc#1144333).\n\n - smb3: if server does not support posix do not allow\n posix mount option (bsc#1144333).\n\n - smb3: improve dynamic tracing of open and posix mkdir\n (bsc#1144333).\n\n - smb3: increase initial number of credits requested to\n allow write (bsc#1144333).\n\n - smb3: Kernel oops mounting a encryptData share with\n CONFIG_DEBUG_VIRTUAL (bsc#1144333).\n\n - smb3: Log at least once if tree connect fails during\n reconnect (bsc#1144333).\n\n - smb3: make default i/o size for smb3 mounts larger\n (bsc#1144333).\n\n - smb3: minor cleanup of compound_send_recv (bsc#1144333).\n\n - smb3: minor debugging clarifications in rfc1001 len\n processing (bsc#1144333).\n\n - smb3: minor missing defines relating to reparse points\n (bsc#1144333).\n\n - smb3: missing defines and structs for reparse point\n handling (bsc#1144333).\n\n - smb3: note that smb3.11 posix extensions mount option is\n experimental (bsc#1144333).\n\n - smb3: Number of requests sent should be displayed for\n SMB3 not just CIFS (bsc#1144333).\n\n - smb3: on kerberos mount if server does not specify auth\n type use krb5 (bsc#1051510, bsc#1144333).\n\n - smb3: on reconnect set PreviousSessionId field\n (bsc#1112899, bsc#1144333).\n\n - smb3: optimize open to not send query file internal info\n (bsc#1144333).\n\n - smb3: passthru query info does not check for SMB3 FSCTL\n passthru (bsc#1144333).\n\n - smb3: print tree id in debugdata in proc to be able to\n help logging (bsc#1144333).\n\n - smb3: query inode number on open via create context\n (bsc#1144333).\n\n - smb3: remove noisy warning message on mount\n (bsc#1129664, bsc#1144333).\n\n - smb3: remove per-session operations from per-tree\n connection stats (bsc#1144333).\n\n - smb3: rename encryption_required to\n smb3_encryption_required (bsc#1144333).\n\n - smb3: request more credits on normal (non-large\n read/write) ops (bsc#1144333).\n\n - smb3: request more credits on tree connect\n (bsc#1144333).\n\n - smb3: retry on STATUS_INSUFFICIENT_RESOURCES instead of\n failing write (bsc#1144333).\n\n - smb3: send backup intent on compounded query info\n (bsc#1144333).\n\n - smb3: send CAP_DFS capability during session setup\n (bsc#1144333).\n\n - smb3: Send netname context during negotiate protocol\n (bsc#1144333).\n\n - smb3: show number of current open files in\n /proc/fs/cifs/Stats (bsc#1144333).\n\n - smb3: simplify code by removing CONFIG_CIFS_SMB311\n (bsc#1051510, bsc#1144333).\n\n - smb3: smbdirect no longer experimental (bsc#1144333).\n\n - smb3: snapshot mounts are read-only and make sure info\n is displayable about the mount (bsc#1144333).\n\n - smb3: track the instance of each session for debugging\n (bsc#1144333).\n\n - smb3: Track total time spent on roundtrips for each SMB3\n command (bsc#1144333).\n\n - smb3: trivial cleanup to smb2ops.c (bsc#1144333).\n\n - smb3: update comment to clarify enumerating snapshots\n (bsc#1144333).\n\n - smb3: update default requested iosize to 4MB from 1MB\n for recent dialects (bsc#1144333).\n\n - smb3: Update POSIX negotiate context with POSIX ctxt\n GUID (bsc#1144333).\n\n - smb3: Validate negotiate request must always be signed\n (bsc#1064597, bsc#1144333).\n\n - smb3: Warn user if trying to sign connection that\n authenticated as guest (bsc#1085536, bsc#1144333).\n\n - smbd: Make upper layer decide when to destroy the\n transport (bsc#1144333).\n\n - SMB: fix leak of validate negotiate info response buffer\n (bsc#1064597, bsc#1144333).\n\n - SMB: fix validate negotiate info uninitialised memory\n use (bsc#1064597, bsc#1144333).\n\n - SMB: Validate negotiate (to protect against downgrade)\n even if signing off (bsc#1085536, bsc#1144333).\n\n - smpboot: Place the __percpu annotation correctly (git\n fixes).\n\n - soc: rockchip: power-domain: Add a sanity check on\n pd->num_clks (bsc#1144718,bsc#1144813).\n\n - soc: rockchip: power-domain: use clk_bulk APIs\n (bsc#1144718,bsc#1144813).\n\n - soc: rockchip: power-domain: Use\n of_clk_get_parent_count() instead of open coding\n (bsc#1144718,bsc#1144813).\n\n - sound: fix a memory leak bug (bsc#1051510).\n\n - spi: bcm2835aux: fix corruptions for longer spi\n transfers (bsc#1051510).\n\n - spi: bcm2835aux: remove dangerous uncontrolled read of\n fifo (bsc#1051510).\n\n - spi: bcm2835aux: unifying code between polling and\n interrupt driven code (bsc#1051510).\n\n - st21nfca_connectivity_event_received: null check the\n allocation (bsc#1051510).\n\n - staging: comedi: dt3000: Fix rounding up of timer\n divisor (bsc#1051510).\n\n - staging: comedi: dt3000: Fix signed integer overflow\n 'divider * base' (bsc#1051510).\n\n - staging: fsl-dpaa2/ethsw: fix memory leak of\n switchdev_work (bsc#1111666).\n\n - st_nci_hci_connectivity_event_received: null check the\n allocation (bsc#1051510).\n\n - supported.conf: Add missing modules (bsc#1066369).\n\n - supported.conf: Remove duplicate\n drivers/ata/libahci_platform\n\n - supported.conf: Remove duplicate entries\n\n - supported.conf: Sort alphabetically, align comments.\n\n - tcp: Reset bytes_acked and bytes_received when\n disconnecting (networking-stable-19_07_25).\n\n - test_firmware: fix a memory leak bug (bsc#1051510).\n\n - tools: bpftool: close prog FD before exit on showing a\n single program (bsc#1109837).\n\n - tools: bpftool: fix error message (prog -> object)\n (bsc#1109837).\n\n - tpm: Fix off-by-one when reading\n binary_bios_measurements (bsc#1082555).\n\n - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM\n operations (bsc#1082555).\n\n - tpm/tpm_i2c_atmel: Return -E2BIG when the transfer is\n incomplete (bsc#1082555).\n\n - tpm: Unify the send callback behaviour (bsc#1082555).\n\n - tpm: vtpm_proxy: Suppress error logging when in closed\n state (bsc#1082555).\n\n - Tree connect for SMB3.1.1 must be signed for\n non-encrypted shares (bsc#1051510, bsc#1144333).\n\n - treewide: Replace GPLv2 boilerplate/reference with SPDX\n - rule 231 (bsc#1144333).\n\n - tun: mark small packets as owned by the tap sock\n (bsc#1109837).\n\n - udf: Fix incorrect final NOT_ALLOCATED (hole) extent\n length (bsc#1148617).\n\n - Update config files. (bsc#1145687) Add the following\n kernel config to ARM64: CONFIG_ACPI_PCI_SLOT=y\n CONFIG_HOTPLUG_PCI_ACPI=y\n\n - Update config files. - cifs: add CONFIG_CIFS_DEBUG_KEYS\n to dump encryption keys (bsc#1144333).\n\n - Update config files. - cifs: allow disabling insecure\n dialects in the config (bsc#1144333).\n\n - Update config files. - cifs: smbd: Introduce kernel\n config option CONFIG_CIFS_SMB_DIRECT (bsc#1144333).\n\n - update internal version number for cifs.ko\n (bsc#1144333).\n\n - Update\n patches.fixes/0001-docs-Fix-conf.py-for-Sphinx-2.0.patch\n (bsc#1135642). Fix patch header.\n\n - Update\n patches.fixes/MD-fix-invalid-stored-role-for-a-disk-try2\n .patch (bsc#1143765).\n\n - Update\n patches.fixes/tracing-Fix-bad-use-of-igrab-in-trace_upro\n be.c.patch (bsc#1120046, bsc#1146141).\n\n - Update\n patches.suse/ceph-remove-request-from-waiting-list-befor\n e-unregister.patch (bsc#1148133 bsc#1138539).\n\n - Update session and share information displayed for\n debugging SMB2/SMB3 (bsc#1144333).\n\n - Update version of cifs module (bsc#1144333).\n\n - usb: cdc-acm: make sure a refcount is taken early enough\n (bsc#1142635).\n\n - usb: CDC: fix sanity checks in CDC union parser\n (bsc#1142635).\n\n - usb: cdc-wdm: fix race between write and disconnect due\n to flag abuse (bsc#1051510).\n\n - usb: chipidea: udc: do not do hardware access if gadget\n has stopped (bsc#1051510).\n\n - usb: core: Fix races in character device registration\n and deregistraion (bsc#1051510).\n\n - usb: gadget: composite: Clear 'suspended' on\n reset/disconnect (bsc#1051510).\n\n - usb: gadget: udc: renesas_usb3: Fix sysfs interface of\n 'role' (bsc#1142635).\n\n - usb: host: fotg2: restart hcd after port reset\n (bsc#1051510).\n\n - usb: host: ohci: fix a race condition between shutdown\n and irq (bsc#1051510).\n\n - usb: host: xhci-rcar: Fix timeout in xhci_suspend()\n (bsc#1051510).\n\n - usb: host: xhci: rcar: Fix typo in compatible string\n matching (bsc#1051510).\n\n - usb: iowarrior: fix deadlock on disconnect\n (bsc#1051510).\n\n - usb: serial: option: add D-Link DWM-222 device ID\n (bsc#1051510).\n\n - usb: serial: option: Add Motorola modem UARTs\n (bsc#1051510).\n\n - usb: serial: option: Add support for ZTE MF871A\n (bsc#1051510).\n\n - usb: serial: option: add the BroadMobi BM818 card\n (bsc#1051510).\n\n - usb-storage: Add new JMS567 revision to unusual_devs\n (bsc#1051510).\n\n - usb: storage: ums-realtek: Update module parameter\n description for auto_delink_en (bsc#1051510).\n\n - usb: storage: ums-realtek: Whitelist auto-delink support\n (bsc#1051510).\n\n - usb: typec: tcpm: free log buf memory when remove debug\n file (bsc#1111666).\n\n - usb: typec: tcpm: Ignore unsupported/unknown alternate\n mode requests (bsc#1111666).\n\n - usb: typec: tcpm: remove tcpm dir if no children\n (bsc#1111666).\n\n - usb: usbfs: fix double-free of usb memory upon submiturb\n error (bsc#1051510).\n\n - usb: yurex: Fix use-after-free in yurex_delete\n (bsc#1051510).\n\n - vfs: fix page locking deadlocks when deduping files\n (bsc#1148619).\n\n - virtio/s390: fix race on airq_areas (bsc#1145357).\n\n - VMCI: Release resource if the work is already queued\n (bsc#1051510).\n\n - vrf: make sure skb->data contains ip header to make\n routing (networking-stable-19_07_25).\n\n - watchdog: bcm2835_wdt: Fix module autoload\n (bsc#1051510).\n\n - watchdog: core: fix NULL pointer dereference when\n releasing cdev (bsc#1051510).\n\n - watchdog: f71808e_wdt: fix F81866 bit operation\n (bsc#1051510).\n\n - watchdog: fix compile time error of pretimeout governors\n (bsc#1051510).\n\n - wimax/i2400m: fix a memory leak bug (bsc#1051510).\n\n - x86/asm: Remove dead __GNUC__ conditionals\n (bsc#1112178).\n\n - x86/boot: Fix memory leak in default_get_smp_config()\n (bsc#1114279).\n\n - x86/dma: Get rid of iommu_pass_through (bsc#1136039).\n\n - x86/entry/64/compat: Fix stack switching for XEN PV\n (bsc#1108382).\n\n - x86/microcode: Fix the microcode load on CPU hotplug for\n real (bsc#1114279).\n\n - x86/mm: Check for pfn instead of page in\n vmalloc_sync_one() (bsc#1118689).\n\n - x86/mm: Sync also unmappings in vmalloc_sync_all()\n (bsc#1118689).\n\n - x86/resctrl: Prevent NULL pointer dereference when local\n MBM is disabled (bsc#1112178).\n\n - x86/speculation: Allow guests to use SSBD even if host\n does not (bsc#1114279).\n\n - x86/speculation/mds: Apply more accurate check on\n hypervisor platform (bsc#1114279).\n\n - x86/unwind: Add hardcoded ORC entry for NULL\n (bsc#1114279).\n\n - x86/unwind: Handle NULL pointer calls better in frame\n unwinder (bsc#1114279).\n\n - xdp: unpin xdp umem pages in error path (bsc#1109837).\n\n - xen/swiotlb: fix condition for calling\n xen_destroy_contiguous_region() (bsc#1065600).\n\n - xfrm: Fix bucket count reported to userspace\n (bsc#1143300).\n\n - xfrm: Fix error return code in xfrm_output_one()\n (bsc#1143300).\n\n - xfrm: Fix NULL pointer dereference in xfrm_input when\n skb_dst_force clears the dst_entry (bsc#1143300).\n\n - xfrm: Fix NULL pointer dereference when skb_dst_force\n clears the dst_entry (bsc#1143300).\n\n - xfs: do not crash on null attr fork xfs_bmapi_read\n (bsc#1148035).\n\n - xfs: do not trip over uninitialized buffer on extent\n read of corrupted inode (bsc#1149053).\n\n - xfs: dump transaction usage details on log reservation\n overrun (bsc#1145235).\n\n - xfs: eliminate duplicate icreate tx reservation\n functions (bsc#1145235).\n\n - xfs: fix missing ILOCK unlock when xfs_setattr_nonsize\n fails due to EDQUOT (bsc#1148032).\n\n - xfs: fix semicolon.cocci warnings (bsc#1145235).\n\n - xfs: fix up agi unlinked list reservations\n (bsc#1145235).\n\n - xfs: include an allocfree res for inobt modifications\n (bsc#1145235).\n\n - xfs: include inobt buffers in ifree tx log reservation\n (bsc#1145235).\n\n - xfs: print transaction log reservation on overrun\n (bsc#1145235).\n\n - xfs: refactor inode chunk alloc/free tx reservation\n (bsc#1145235).\n\n - xfs: refactor xlog_cil_insert_items() to facilitate\n transaction dump (bsc#1145235).\n\n - xfs: remove more ondisk directory corruption asserts\n (bsc#1148034).\n\n - xfs: separate shutdown from ticket reservation print\n helper (bsc#1145235).\n\n - xfs: truncate transaction does not modify the inobt\n (bsc#1145235).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://acl.bestbits.at\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.kernel.org/show_bug.cgi?id=202935\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1047238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1050911\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1056686\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1060662\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1061840\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1061843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1064597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1064701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1066369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1071009\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1071306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1078248\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1082635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1085539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1087092\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1090734\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1091171\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1093205\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1102097\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1103990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104745\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1104902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106284\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1106434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1108382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1109837\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1111666\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112374\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1112907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1113722\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1113994\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1114279\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1114542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1118689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1119086\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1119113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1120046\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1120876\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1120902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1123105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1124370\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1129424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1129519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1129664\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1131107\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1131489\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1131565\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1134291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1134476\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1134881\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1134882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1135219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1135642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1135990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136039\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136349\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136498\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1136682\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1137322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1137323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1137884\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1138099\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1138100\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1138539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1139020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1139021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1140012\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1140487\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1141340\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1141543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1141554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142019\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142076\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142109\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142541\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1142685\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143331\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143706\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143765\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143841\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1143962\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144123\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144375\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144582\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144813\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144880\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144886\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1144979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145018\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145059\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145256\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145357\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145388\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145390\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145393\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145395\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145397\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145409\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145446\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145661\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145687\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145934\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145937\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145941\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145942\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1145946\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146084\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146141\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146163\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146285\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146351\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146361\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146368\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146381\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146425\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146514\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146516\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146526\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146529\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146531\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146547\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146550\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146575\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146589\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1146938\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148031\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148034\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148035\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148133\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148192\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148198\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148202\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148303\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148308\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148379\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148570\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148574\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148616\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148617\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148619\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148698\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1148868\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149053\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149083\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149106\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149197\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149214\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149224\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149325\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149552\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149591\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149602\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149612\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149713\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1149976\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150025\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150112\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150562\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150727\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150860\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150861\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1150933\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected the Linux Kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-docs-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-macros\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-obs-qa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/09/25\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE15\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"15.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(x86_64)$\") audit(AUDIT_ARCH_NOT, \"x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-base-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-base-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-debugsource-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-devel-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-debug-devel-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-base-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-base-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-debugsource-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-devel-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-default-devel-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-devel-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-docs-html-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-base-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-base-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-debugsource-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-devel-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-kvmsmall-devel-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-macros-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-obs-build-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-obs-build-debugsource-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-obs-qa-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-source-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-source-vanilla-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-syms-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-base-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-debugsource-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-devel-4.12.14-lp151.28.16.1\") ) flag++;\nif ( rpm_check(release:\"SUSE15.1\", reference:\"kernel-vanilla-devel-debuginfo-4.12.14-lp151.28.16.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-base-debuginfo / etc\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T16:39:45", "description": "According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system:\n memory allocation, process allocation, device input and output, etc.Security Fix(es):An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file driverset/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)An issue was discovered in the Linux kernel before 5.0.6.\n There is a memory leak issue when idr_alloc() fails in genl_register_family() in netetlink/genetlink.c.(CVE-2019-15921)An issue was discovered in the Linux kernel before 4.20.2. An out-of-bounds access exists in the function build_audio_procunit in the file sound/usb/mixer.c.(CVE-2019-15927)An issue was discovered in the Linux kernel before 5.0.9. There is a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c.(CVE-2019-15292)An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.(CVE-2018-20976)In the Linux kernel before 5.1.13, there is a memory leak in drivers/scsi/libsas/sas_expander.c when SAS expander discovery fails. This will cause a BUG and denial of service.(CVE-2019-15807)A vulnerability was found in Linux kernel's, versions up to 3.10, implementation of overlayfs. An attacker with local access can create a denial of service situation via NULL pointer dereference in ovl_posix_acl_create function in fs/overlayfs/dir.c. This can allow attackers with ability to create directories on overlayfs to crash the kernel creating a denial of service (DOS).(CVE-2019-10140)In the Linux kernel, a certain net/ipv4/tcp_output.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by backporting.\n Specifically, by adding to a write queue between disconnection and re-connection, a local attacker can trigger multiple use-after-free conditions. This can result in a kernel crash, or potentially in privilege escalation.(CVE-2019-15239)check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.(CVE-2019-15118)drivers et/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15099)drivers et/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15098)A flaw was found in the Linux kernel's Bluetooth implementation of UART. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.(CVE-2019-10207)It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions allowed by ceph service. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.(CVE-2018-1128)ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.(CVE-2019-17052)ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.(CVE-2019-17053)atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.(CVE-2019-17054)base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.(CVE-2019-17055)llcp_sock_create in net fc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.(CVE-2019-17056)A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parameter passed to an ioctl was incorrectly validated and used in size calculations for the page size calculation. An attacker can use this flaw to crash the system, corrupt memory, or create other adverse security affects.(CVE-2019-10142)drivers/media/usb/dvb-usb/techn isat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir).(CVE-2019-15505)An issue was discovered in the Linux kernel before 5.0.4. The 9p filesystem did not protect i_size_write() properly, which causes an i_size_read() infinite loop and denial of service on SMP systems.(CVE-2019-16413)An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota.\n xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS.(CVE-2019-15538)A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.(CVE-2019-14835)An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvm_coalesced_mmio' object, wherein write indices 'ring->first' and 'ring->last' value could be supplied by a host user-space process. An unprivileged host user or process with access to '/dev/kvm' device could use this flaw to crash the host kernel, resulting in a denial of service or potentially escalating privileges on the system.(CVE-2019-14821)An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory, aka 'Windows Kernel Information Disclosure Vulnerability'.\n (CVE-2019-1125)drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.(CVE-2019-16233)An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers et/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure.(CVE-2019-15924)An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers et/wireless/intersil/p54/p54usb.c driver.(CVE-2019-15220 )In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic is sent to multiple destination IP addresses, it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses.(CVE-2019-10638)There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.( CVE-2019-14814)** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem.\n When the candidate has been publicized, the details for this candidate will be provided.( CVE-2019-14815)There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.( CVE-2019-14816)A flaw was found in the way Linux kernel KVM hypervisor emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.(CVE-2018-10853)A NULL pointer dereference was found in the net/rds/rdma.c\n __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.(CVE-2018-7492)An issue was discovered in the Linux kernel before 4.20.15. The nfc_llcp_build_tlv function in net fc/llcp_commands.c may return NULL. If the caller does not check for this, it will trigger a NULL pointer dereference. This will cause denial of service. This affects nfc_llcp_build_gb in netfc/llcp_core.c.(CVE-2019-12818)An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.(CVE-2019-15218)An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.(CVE-2019-15219)An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.(CVE-2019-15221)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-11-08T00:00:00", "type": "nessus", "title": "EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2201)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2018-10853", "CVE-2018-1128", "CVE-2018-20976", "CVE-2018-7492", "CVE-2019-10140", "CVE-2019-10142", "CVE-2019-10207", "CVE-2019-10638", "CVE-2019-1125", "CVE-2019-12818", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14821", "CVE-2019-14835", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15118", "CVE-2019-15218", "CVE-2019-15219", "CVE-2019-15220", "CVE-2019-15221", "CVE-2019-15239", "CVE-2019-15292", "CVE-2019-15505", "CVE-2019-15538", "CVE-2019-15807", "CVE-2019-15921", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-15927", "CVE-2019-16233", "CVE-2019-16413", "CVE-2019-17052", "CVE-2019-17053", "CVE-2019-17054", "CVE-2019-17055", "CVE-2019-17056"], "modified": "2021-01-06T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:kernel", "p-cpe:/a:huawei:euleros:kernel-devel", "p-cpe:/a:huawei:euleros:kernel-headers", "p-cpe:/a:huawei:euleros:kernel-tools", "p-cpe:/a:huawei:euleros:kernel-tools-libs", "p-cpe:/a:huawei:euleros:perf", "p-cpe:/a:huawei:euleros:python-perf", "cpe:/o:huawei:euleros:2.0"], "id": "EULEROS_SA-2019-2201.NASL", "href": "https://www.tenable.com/plugins/nessus/130663", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(130663);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\n \"CVE-2018-10853\",\n \"CVE-2018-1128\",\n \"CVE-2018-20976\",\n \"CVE-2018-7492\",\n \"CVE-2019-10140\",\n \"CVE-2019-10142\",\n \"CVE-2019-10207\",\n \"CVE-2019-10638\",\n \"CVE-2019-1125\",\n \"CVE-2019-12818\",\n \"CVE-2019-14814\",\n \"CVE-2019-14815\",\n \"CVE-2019-14816\",\n \"CVE-2019-14821\",\n \"CVE-2019-14835\",\n \"CVE-2019-15098\",\n \"CVE-2019-15099\",\n \"CVE-2019-15118\",\n \"CVE-2019-15218\",\n \"CVE-2019-15219\",\n \"CVE-2019-15220\",\n \"CVE-2019-15221\",\n \"CVE-2019-15239\",\n \"CVE-2019-15292\",\n \"CVE-2019-15505\",\n \"CVE-2019-15538\",\n \"CVE-2019-15807\",\n \"CVE-2019-15921\",\n \"CVE-2019-15924\",\n \"CVE-2019-15926\",\n \"CVE-2019-15927\",\n \"CVE-2019-16233\",\n \"CVE-2019-16413\",\n \"CVE-2019-17052\",\n \"CVE-2019-17053\",\n \"CVE-2019-17054\",\n \"CVE-2019-17055\",\n \"CVE-2019-17056\"\n );\n\n script_name(english:\"EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2201)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the kernel packages installed, the\nEulerOS installation on the remote host is affected by the following\nvulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz),\n the core of any Linux operating system. The kernel\n handles the basic functions of the operating system:\n memory allocation, process allocation, device input and\n output, etc.Security Fix(es):An issue was discovered in\n the Linux kernel before 5.2.3. Out of bounds access\n exists in the functions\n ath6kl_wmi_pstream_timeout_event_rx and\n ath6kl_wmi_cac_event_rx in the file\n driverset/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)An\n issue was discovered in the Linux kernel before 5.0.6.\n There is a memory leak issue when idr_alloc() fails in\n genl_register_family() in\n netetlink/genetlink.c.(CVE-2019-15921)An issue was\n discovered in the Linux kernel before 4.20.2. An\n out-of-bounds access exists in the function\n build_audio_procunit in the file\n sound/usb/mixer.c.(CVE-2019-15927)An issue was\n discovered in the Linux kernel before 5.0.9. There is a\n use-after-free in atalk_proc_exit, related to\n net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and\n net/appletalk/sysctl_net_atalk.c.(CVE-2019-15292)An\n issue was discovered in fs/xfs/xfs_super.c in the Linux\n kernel before 4.18. A use after free exists, related to\n xfs_fs_fill_super failure.(CVE-2018-20976)In the Linux\n kernel before 5.1.13, there is a memory leak in\n drivers/scsi/libsas/sas_expander.c when SAS expander\n discovery fails. This will cause a BUG and denial of\n service.(CVE-2019-15807)A vulnerability was found in\n Linux kernel's, versions up to 3.10, implementation of\n overlayfs. An attacker with local access can create a\n denial of service situation via NULL pointer\n dereference in ovl_posix_acl_create function in\n fs/overlayfs/dir.c. This can allow attackers with\n ability to create directories on overlayfs to crash the\n kernel creating a denial of service\n (DOS).(CVE-2019-10140)In the Linux kernel, a certain\n net/ipv4/tcp_output.c change, which was properly\n incorporated into 4.16.12, was incorrectly backported\n to the earlier longterm kernels, introducing a new\n vulnerability that was potentially more severe than the\n issue that was intended to be fixed by backporting.\n Specifically, by adding to a write queue between\n disconnection and re-connection, a local attacker can\n trigger multiple use-after-free conditions. This can\n result in a kernel crash, or potentially in privilege\n escalation.(CVE-2019-15239)check_input_term in\n sound/usb/mixer.c in the Linux kernel through 5.2.9\n mishandles recursion, leading to kernel stack\n exhaustion.(CVE-2019-15118)drivers\n et/wireless/ath/ath10k/usb.c in the Linux kernel\n through 5.2.8 has a NULL pointer dereference via an\n incomplete address in an endpoint\n descriptor.(CVE-2019-15099)drivers\n et/wireless/ath/ath6kl/usb.c in the Linux kernel\n through 5.2.9 has a NULL pointer dereference via an\n incomplete address in an endpoint\n descriptor.(CVE-2019-15098)A flaw was found in the\n Linux kernel's Bluetooth implementation of UART. An\n attacker with local access and write permissions to the\n Bluetooth hardware could use this flaw to issue a\n specially crafted ioctl function call and cause the\n system to crash.(CVE-2019-10207)It was found that cephx\n authentication protocol did not verify ceph clients\n correctly and was vulnerable to replay attack. Any\n attacker having access to ceph cluster network who is\n able to sniff packets on network can use this\n vulnerability to authenticate with ceph service and\n perform actions allowed by ceph service. Ceph branches\n master, mimic, luminous and jewel are believed to be\n vulnerable.(CVE-2018-1128)ax25_create in\n net/ax25/af_ax25.c in the AF_AX25 network module in the\n Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-0614e2b73768.(CVE-2019-17052)ieee802154_create in\n net/ieee802154/socket.c in the AF_IEEE802154 network\n module in the Linux kernel through 5.3.2 does not\n enforce CAP_NET_RAW, which means that unprivileged\n users can create a raw socket, aka\n CID-e69dbd4619e7.(CVE-2019-17053)atalk_create in\n net/appletalk/ddp.c in the AF_APPLETALK network module\n in the Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-6cc03e8aa36c.(CVE-2019-17054)base_sock_create in\n drivers/isdn/mISDN/socket.c in the AF_ISDN network\n module in the Linux kernel through 5.3.2 does not\n enforce CAP_NET_RAW, which means that unprivileged\n users can create a raw socket, aka\n CID-b91ee4aa2a21.(CVE-2019-17055)llcp_sock_create in\n net fc/llcp_sock.c in the AF_NFC network module in the\n Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-3a359798b176.(CVE-2019-17056)A flaw was found in\n the Linux kernel's freescale hypervisor manager\n implementation, kernel versions 5.0.x up to, excluding\n 5.0.17. A parameter passed to an ioctl was incorrectly\n validated and used in size calculations for the page\n size calculation. An attacker can use this flaw to\n crash the system, corrupt memory, or create other\n adverse security\n affects.(CVE-2019-10142)drivers/media/usb/dvb-usb/techn\n isat-usb2.c in the Linux kernel through 5.2.9 has an\n out-of-bounds read via crafted USB device traffic\n (which may be remote via usbip or\n usbredir).(CVE-2019-15505)An issue was discovered in\n the Linux kernel before 5.0.4. The 9p filesystem did\n not protect i_size_write() properly, which causes an\n i_size_read() infinite loop and denial of service on\n SMP systems.(CVE-2019-16413)An issue was discovered in\n xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux\n kernel through 5.2.9. XFS partially wedges when a chgrp\n fails on account of being out of disk quota.\n xfs_setattr_nonsize is failing to unlock the ILOCK\n after the xfs_qm_vop_chown_reserve call fails. This is\n primarily a local DoS attack vector, but it might\n result as well in remote DoS if the XFS filesystem is\n exported for instance via NFS.(CVE-2019-15538)A buffer\n overflow flaw was found, in versions from 2.6.34 to\n 5.2.x, in the way Linux kernel's vhost functionality\n that translates virtqueue buffers to IOVs, logged the\n buffer descriptors during migration. A privileged guest\n user able to pass descriptors with invalid length to\n the host when migration is underway, could use this\n flaw to increase their privileges on the\n host.(CVE-2019-14835)An out-of-bounds access issue was\n found in the Linux kernel, all versions through 5.3, in\n the way Linux kernel's KVM hypervisor implements the\n Coalesced MMIO write operation. It operates on an MMIO\n ring buffer 'struct kvm_coalesced_mmio' object, wherein\n write indices 'ring->first' and 'ring->last' value\n could be supplied by a host user-space process. An\n unprivileged host user or process with access to\n '/dev/kvm' device could use this flaw to crash the host\n kernel, resulting in a denial of service or potentially\n escalating privileges on the system.(CVE-2019-14821)An\n information disclosure vulnerability exists when\n certain central processing units (CPU) speculatively\n access memory, aka 'Windows Kernel Information\n Disclosure Vulnerability'.\n (CVE-2019-1125)drivers/scsi/qla2xxx/qla_os.c in the\n Linux kernel 5.2.14 does not check the alloc_workqueue\n return value, leading to a NULL pointer\n dereference.(CVE-2019-16233)An issue was discovered in\n the Linux kernel before 5.0.11. fm10k_init_module in\n drivers et/ethernet/intel/fm10k/fm10k_main.c has a NULL\n pointer dereference because there is no -ENOMEM upon an\n alloc_workqueue failure.(CVE-2019-15924)An issue was\n discovered in the Linux kernel before 5.2.1. There is a\n use-after-free caused by a malicious USB device in the\n drivers et/wireless/intersil/p54/p54usb.c\n driver.(CVE-2019-15220 )In the Linux kernel before\n 5.1.7, a device can be tracked by an attacker using the\n IP ID values the kernel produces for connection-less\n protocols (e.g., UDP and ICMP). When such traffic is\n sent to multiple destination IP addresses, it is\n possible to obtain hash collisions (of indices to the\n counter array) and thereby obtain the hashing key (via\n enumeration). An attack may be conducted by hosting a\n crafted web page that uses WebRTC or gQUIC to force UDP\n traffic to attacker-controlled IP\n addresses.(CVE-2019-10638)There is heap-based buffer\n overflow in Linux kernel, all versions up to, excluding\n 5.3, in the marvell wifi chip driver in Linux kernel,\n that allows local users to cause a denial of\n service(system crash) or possibly execute arbitrary\n code.( CVE-2019-14814)** RESERVED ** This candidate has\n been reserved by an organization or individual that\n will use it when announcing a new security problem.\n When the candidate has been publicized, the details for\n this candidate will be provided.( CVE-2019-14815)There\n is heap-based buffer overflow in kernel, all versions\n up to, excluding 5.3, in the marvell wifi chip driver\n in Linux kernel, that allows local users to cause a\n denial of service(system crash) or possibly execute\n arbitrary code.( CVE-2019-14816)A flaw was found in the\n way Linux kernel KVM hypervisor emulated instructions\n such as sgdt/sidt/fxsave/fxrstor. It did not check\n current privilege(CPL) level while emulating\n unprivileged instructions. An unprivileged guest\n user/process could use this flaw to potentially\n escalate privileges inside guest.(CVE-2018-10853)A NULL\n pointer dereference was found in the net/rds/rdma.c\n __rds_rdma_map() function in the Linux kernel before\n 4.14.7 allowing local attackers to cause a system panic\n and a denial-of-service, related to RDS_GET_MR and\n RDS_GET_MR_FOR_DEST.(CVE-2018-7492)An issue was\n discovered in the Linux kernel before 4.20.15. The\n nfc_llcp_build_tlv function in net fc/llcp_commands.c\n may return NULL. If the caller does not check for this,\n it will trigger a NULL pointer dereference. This will\n cause denial of service. This affects nfc_llcp_build_gb\n in netfc/llcp_core.c.(CVE-2019-12818)An issue was\n discovered in the Linux kernel before 5.1.8. There is a\n NULL pointer dereference caused by a malicious USB\n device in the drivers/media/usb/siano/smsusb.c\n driver.(CVE-2019-15218)An issue was discovered in the\n Linux kernel before 5.1.8. There is a NULL pointer\n dereference caused by a malicious USB device in the\n drivers/usb/misc/sisusbvga/sisusb.c\n driver.(CVE-2019-15219)An issue was discovered in the\n Linux kernel before 5.1.17. There is a NULL pointer\n dereference caused by a malicious USB device in the\n sound/usb/line6/pcm.c driver.(CVE-2019-15221)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-2201\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?b3a7512b\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected kernel packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/10/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/11/08\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:2.0\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/sp\");\n script_exclude_keys(\"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nif (release !~ \"^EulerOS release 2\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"EulerOS 2.0\");\n\nsp = get_kb_item(\"Host/EulerOS/sp\");\nif (isnull(sp) || sp !~ \"^(5)$\") audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP5\");\n\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP5\", \"EulerOS UVP \" + uvp);\n\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i686 / x86_64\", cpu);\n\nflag = 0;\n\npkgs = [\"kernel-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"kernel-devel-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"kernel-headers-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"kernel-tools-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"kernel-tools-libs-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"perf-3.10.0-862.14.1.2.h291.eulerosv2r7\",\n \"python-perf-3.10.0-862.14.1.2.h291.eulerosv2r7\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", sp:\"5\", reference:pkg)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T16:17:17", "description": "The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.\n\nThe following new features were implemented :\n\njsc#SLE-4875: [CML] New device IDs for CML\n\njsc#SLE-7294: Add cpufreq driver for Raspberry Pi\n\nfate#326869: perf: pmu mem_load/store event support\n\nfate#327380: KVM: Add hardware CPU Model - kernel part\n\nfate#327377: KVM: Support for configurable virtio-crypto\n\nfate#327775: vpmem: DRAM backed persistent volumes for improved SAP HANA on POWER restart times\n\nfate#326472: Marvell Armada 7K/8K Ethernet (incl. 10G) kernel enablement\n\nfate#326416: Hi1620 (Vendor: Huawei): RDMA kernel enablement\n\nfate#326415: Hi1620 (Vendor: Huawei): HNS3 (100G) network kernel enablement\n\nThe following security bugs were fixed: CVE-2019-14835: Fix QEMU-KVM Guest to Host Kernel Escape. (bsc#1150112).\n\nCVE-2019-15216: Fix a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver. (bsc#1146361).\n\nCVE-2019-15924: Fix a NULL pointer dereference because there was no\n\n-ENOMEM upon an alloc_workqueue failure. (bsc#1149612).\n\nCVE-2019-9456: In Pixel C USB monitor driver there was a possible OOB write due to a missing bounds check. This could have lead to local escalation of privilege with System execution privileges needed.\n(bsc#1150025 CVE-2019-9456).\n\nCVE-2019-15030, CVE-2019-15031: On the powerpc platform, a local user could read vector registers of other users' processes via an interrupt. (bsc#1149713)\n\nCVE-2019-15920: SMB2_read in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149626)\n\nCVE-2019-15921: There was a memory leak issue when idr_alloc() failed (bsc#1149602)\n\nCVE-2018-21008: A use-after-free can be caused by the function rsi_mac80211_detach (bsc#1149591).\n\nCVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149552)\n\nCVE-2019-15917: There was a use-after-free issue when hci_uart_register_dev() failed in hci_uart_set_proto() (bsc#1149539)\n\nCVE-2019-15926: Out of bounds access existed in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx (bsc#1149527)\n\nCVE-2019-15927: An out-of-bounds access existed in the function build_audio_procunit (bsc#1149522)\n\nCVE-2019-15902: A backporting error reintroduced the Spectre vulnerability that it aimed to eliminate. (bnc#1149376)\n\nCVE-2019-15666: There was an out-of-bounds array access in\n__xfrm_policy_unlink, which would cause denial of service, because verify_newpolicy_info mishandled directory validation. (bsc#1148394).\n\nCVE-2019-15219: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver. (bsc#1146524)\n\nCVE-2019-14814, CVE-2019-14815, CVE-2019-14816: Fix three heap-based buffer overflows in marvell wifi chip driver kernel, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code. (bnc#1146516)\n\nCVE-2019-15220: There was a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver.\n(bsc#1146526)\n\nCVE-2019-15538: XFS partially wedged when a chgrp failed on account of being out of disk quota. This was primarily a local DoS attack vector, but it could result as well in remote DoS if the XFS filesystem was exported for instance via NFS. (bsc#1148032, bsc#1148093)\n\nCVE-2019-15290: There was a NULL pointer dereference caused by a malicious USB device in the ath6kl_usb_alloc_urb_from_pipe function (bsc#1146543).\n\nCVE-2019-15098: USB driver net/wireless/ath/ath6kl/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor. (bsc#1146378).\n\nCVE-2019-15221, CVE-2019-15222: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.\n(bsc#1146529, bsc#1146531)\n\nCVE-2019-10207: Fix a NULL pointer dereference in hci_uart bluetooth driver (bsc#1142857 bsc#1123959).\n\nCVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel mishandled a short descriptor, leading to out-of-bounds memory access. (bsc#1145920).\n\nCVE-2019-15118: check_input_term in sound/usb/mixer.c in the Linux kernel mishandled recursion, leading to kernel stack exhaustion.\n(bsc#1145922).\n\nCVE-2017-18551: There was an out of bounds write in the function i2c_smbus_xfer_emulated. (bsc#1146163).\n\nCVE-2019-15090: In the qedi_dbg_* family of functions, there was an out-of-bounds read. (bsc#1146399)\n\nCVE-2018-20976: A use after free existed, related to xfs_fs_fill_super failure. (bsc#1146285)\n\nCVE-2019-15215: There was a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver. (bsc#1135642 bsc#1146425)\n\nCVE-2019-15212: There was a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver. (bsc#1051510 bsc#1146391).\n\nCVE-2019-15292: There was a use-after-free in atalk_proc_exit (bsc#1146678)\n\nCVE-2019-15217: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver. (bsc#1146547).\n\nCVE-2019-15214: There was a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. (bsc#1146550)\n\nCVE-2019-15218: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.\n(bsc#1051510 bsc#1146413)\n\nCVE-2019-15211: There was a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c did not properly allocate memory.\n(bsc#1146519).\n\nCVE-2019-15239: An incorrect backport of a certain net/ipv4/tcp_output.c fix allowed a local attacker to trigger multiple use-after-free conditions. This could result in a kernel crash, or potentially in privilege escalation. (bsc#1146589)\n\nCVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor. (bsc#1146368)\n\nThe update package also includes non-security fixes. See advisory for details.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-09-23T00:00:00", "type": "nessus", "title": "SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2424-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2017-18551", "CVE-2018-20976", "CVE-2018-21008", "CVE-2019-10207", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15117", "CVE-2019-15118", "CVE-2019-15211", "CVE-2019-15212", "CVE-2019-15214", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15218", "CVE-2019-15219", "CVE-2019-15220", "CVE-2019-15221", "CVE-2019-15222", "CVE-2019-15239", "CVE-2019-15290", "CVE-2019-15292", "CVE-2019-15538", "CVE-2019-15666", "CVE-2019-15902", "CVE-2019-15917", "CVE-2019-15919", "CVE-2019-15920", "CVE-2019-15921", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-15927", "CVE-2019-9456"], "modified": "2021-01-13T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:kernel-debug", "p-cpe:/a:novell:suse_linux:kernel-debug-base", "p-cpe:/a:novell:suse_linux:kernel-debug-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-debug-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-debug-debugsource", "p-cpe:/a:novell:suse_linux:kernel-debug-devel", "p-cpe:/a:novell:suse_linux:kernel-debug-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-debug-livepatch-devel", "p-cpe:/a:novell:suse_linux:kernel-default", "p-cpe:/a:novell:suse_linux:kernel-default-base", "p-cpe:/a:novell:suse_linux:kernel-default-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-debugsource", "p-cpe:/a:novell:suse_linux:kernel-default-devel", "p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-livepatch", "p-cpe:/a:novell:suse_linux:kernel-default-man", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debugsource", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-kvmsmall-livepatch-devel", "p-cpe:/a:novell:suse_linux:kernel-obs-build", "p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource", "p-cpe:/a:novell:suse_linux:kernel-obs-qa", "p-cpe:/a:novell:suse_linux:kernel-syms", "p-cpe:/a:novell:suse_linux:kernel-vanilla", "p-cpe:/a:novell:suse_linux:kernel-vanilla-base", "p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource", "p-cpe:/a:novell:suse_linux:kernel-vanilla-devel", "p-cpe:/a:novell:suse_linux:kernel-vanilla-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-vanilla-livepatch-devel", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource", "p-cpe:/a:novell:suse_linux:kernel-zfcpdump-man", "p-cpe:/a:novell:suse_linux:kselftests-kmp-default", "p-cpe:/a:novell:suse_linux:kselftests-kmp-default-debuginfo", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-default", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo", "cpe:/o:novell:suse_linux:15"], "id": "SUSE_SU-2019-2424-1.NASL", "href": "https://www.tenable.com/plugins/nessus/129157", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2019:2424-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(129157);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/13\");\n\n script_cve_id(\"CVE-2017-18551\", \"CVE-2018-20976\", \"CVE-2018-21008\", \"CVE-2019-10207\", \"CVE-2019-14814\", \"CVE-2019-14815\", \"CVE-2019-14816\", \"CVE-2019-14835\", \"CVE-2019-15030\", \"CVE-2019-15031\", \"CVE-2019-15090\", \"CVE-2019-15098\", \"CVE-2019-15099\", \"CVE-2019-15117\", \"CVE-2019-15118\", \"CVE-2019-15211\", \"CVE-2019-15212\", \"CVE-2019-15214\", \"CVE-2019-15215\", \"CVE-2019-15216\", \"CVE-2019-15217\", \"CVE-2019-15218\", \"CVE-2019-15219\", \"CVE-2019-15220\", \"CVE-2019-15221\", \"CVE-2019-15222\", \"CVE-2019-15239\", \"CVE-2019-15290\", \"CVE-2019-15292\", \"CVE-2019-15538\", \"CVE-2019-15666\", \"CVE-2019-15902\", \"CVE-2019-15917\", \"CVE-2019-15919\", \"CVE-2019-15920\", \"CVE-2019-15921\", \"CVE-2019-15924\", \"CVE-2019-15926\", \"CVE-2019-15927\", \"CVE-2019-9456\");\n\n script_name(english:\"SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2424-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various\nsecurity and bugfixes.\n\nThe following new features were implemented :\n\njsc#SLE-4875: [CML] New device IDs for CML\n\njsc#SLE-7294: Add cpufreq driver for Raspberry Pi\n\nfate#326869: perf: pmu mem_load/store event support\n\nfate#327380: KVM: Add hardware CPU Model - kernel part\n\nfate#327377: KVM: Support for configurable virtio-crypto\n\nfate#327775: vpmem: DRAM backed persistent volumes for improved SAP\nHANA on POWER restart times\n\nfate#326472: Marvell Armada 7K/8K Ethernet (incl. 10G) kernel\nenablement\n\nfate#326416: Hi1620 (Vendor: Huawei): RDMA kernel enablement\n\nfate#326415: Hi1620 (Vendor: Huawei): HNS3 (100G) network kernel\nenablement\n\nThe following security bugs were fixed: CVE-2019-14835: Fix QEMU-KVM\nGuest to Host Kernel Escape. (bsc#1150112).\n\nCVE-2019-15216: Fix a NULL pointer dereference caused by a malicious\nUSB device in the drivers/usb/misc/yurex.c driver. (bsc#1146361).\n\nCVE-2019-15924: Fix a NULL pointer dereference because there was no\n\n-ENOMEM upon an alloc_workqueue failure. (bsc#1149612).\n\nCVE-2019-9456: In Pixel C USB monitor driver there was a possible OOB\nwrite due to a missing bounds check. This could have lead to local\nescalation of privilege with System execution privileges needed.\n(bsc#1150025 CVE-2019-9456).\n\nCVE-2019-15030, CVE-2019-15031: On the powerpc platform, a local user\ncould read vector registers of other users' processes via an\ninterrupt. (bsc#1149713)\n\nCVE-2019-15920: SMB2_read in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149626)\n\nCVE-2019-15921: There was a memory leak issue when idr_alloc() failed\n(bsc#1149602)\n\nCVE-2018-21008: A use-after-free can be caused by the function\nrsi_mac80211_detach (bsc#1149591).\n\nCVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149552)\n\nCVE-2019-15917: There was a use-after-free issue when\nhci_uart_register_dev() failed in hci_uart_set_proto() (bsc#1149539)\n\nCVE-2019-15926: Out of bounds access existed in the functions\nath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx\n(bsc#1149527)\n\nCVE-2019-15927: An out-of-bounds access existed in the function\nbuild_audio_procunit (bsc#1149522)\n\nCVE-2019-15902: A backporting error reintroduced the Spectre\nvulnerability that it aimed to eliminate. (bnc#1149376)\n\nCVE-2019-15666: There was an out-of-bounds array access in\n__xfrm_policy_unlink, which would cause denial of service, because\nverify_newpolicy_info mishandled directory validation. (bsc#1148394).\n\nCVE-2019-15219: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c\ndriver. (bsc#1146524)\n\nCVE-2019-14814, CVE-2019-14815, CVE-2019-14816: Fix three heap-based\nbuffer overflows in marvell wifi chip driver kernel, that allowed\nlocal users to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (bnc#1146516)\n\nCVE-2019-15220: There was a use-after-free caused by a malicious USB\ndevice in the drivers/net/wireless/intersil/p54/p54usb.c driver.\n(bsc#1146526)\n\nCVE-2019-15538: XFS partially wedged when a chgrp failed on account of\nbeing out of disk quota. This was primarily a local DoS attack vector,\nbut it could result as well in remote DoS if the XFS filesystem was\nexported for instance via NFS. (bsc#1148032, bsc#1148093)\n\nCVE-2019-15290: There was a NULL pointer dereference caused by a\nmalicious USB device in the ath6kl_usb_alloc_urb_from_pipe function\n(bsc#1146543).\n\nCVE-2019-15098: USB driver net/wireless/ath/ath6kl/usb.c had a NULL\npointer dereference via an incomplete address in an endpoint\ndescriptor. (bsc#1146378).\n\nCVE-2019-15221, CVE-2019-15222: There was a NULL pointer dereference\ncaused by a malicious USB device in the sound/usb/line6/pcm.c driver.\n(bsc#1146529, bsc#1146531)\n\nCVE-2019-10207: Fix a NULL pointer dereference in hci_uart bluetooth\ndriver (bsc#1142857 bsc#1123959).\n\nCVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c in the\nLinux kernel mishandled a short descriptor, leading to out-of-bounds\nmemory access. (bsc#1145920).\n\nCVE-2019-15118: check_input_term in sound/usb/mixer.c in the Linux\nkernel mishandled recursion, leading to kernel stack exhaustion.\n(bsc#1145922).\n\nCVE-2017-18551: There was an out of bounds write in the function\ni2c_smbus_xfer_emulated. (bsc#1146163).\n\nCVE-2019-15090: In the qedi_dbg_* family of functions, there was an\nout-of-bounds read. (bsc#1146399)\n\nCVE-2018-20976: A use after free existed, related to xfs_fs_fill_super\nfailure. (bsc#1146285)\n\nCVE-2019-15215: There was a use-after-free caused by a malicious USB\ndevice in the drivers/media/usb/cpia2/cpia2_usb.c driver. (bsc#1135642\nbsc#1146425)\n\nCVE-2019-15212: There was a double-free caused by a malicious USB\ndevice in the drivers/usb/misc/rio500.c driver. (bsc#1051510\nbsc#1146391).\n\nCVE-2019-15292: There was a use-after-free in atalk_proc_exit\n(bsc#1146678)\n\nCVE-2019-15217: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/media/usb/zr364xx/zr364xx.c\ndriver. (bsc#1146547).\n\nCVE-2019-15214: There was a use-after-free in the sound subsystem\nbecause card disconnection causes certain data structures to be\ndeleted too early. (bsc#1146550)\n\nCVE-2019-15218: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/media/usb/siano/smsusb.c driver.\n(bsc#1051510 bsc#1146413)\n\nCVE-2019-15211: There was a use-after-free caused by a malicious USB\ndevice in the drivers/media/v4l2-core/v4l2-dev.c driver because\ndrivers/media/radio/radio-raremono.c did not properly allocate memory.\n(bsc#1146519).\n\nCVE-2019-15239: An incorrect backport of a certain\nnet/ipv4/tcp_output.c fix allowed a local attacker to trigger multiple\nuse-after-free conditions. This could result in a kernel crash, or\npotentially in privilege escalation. (bsc#1146589)\n\nCVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c had a NULL\npointer dereference via an incomplete address in an endpoint\ndescriptor. (bsc#1146368)\n\nThe update package also includes non-security fixes. See advisory for\ndetails.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1047238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1050911\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1055117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1056686\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1060662\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1061840\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1061843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1064597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1064701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1066369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1071009\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1071306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1078248\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1082635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1086103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1087092\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1090734\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1091171\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1093205\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102097\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104745\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106061\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106284\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1109837\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1111666\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112374\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1113722\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1113994\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1114279\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1114542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1118689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1119086\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1119113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120046\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120876\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1123105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1123959\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1124370\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129664\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131107\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131281\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131489\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131565\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1133021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134476\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134881\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136039\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136349\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136498\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136502\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136682\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137884\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138099\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138100\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139101\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139500\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140012\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140487\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141340\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141450\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142019\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142076\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142109\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142118\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142119\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142541\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142685\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142857\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143331\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143466\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143706\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143738\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143765\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143841\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143962\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144123\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144375\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144474\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144518\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144582\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144813\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144880\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144886\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145018\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145059\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145256\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145357\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145388\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145390\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145393\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145395\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145397\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145409\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145446\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145661\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145687\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145934\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145937\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145941\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145942\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145946\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146084\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146141\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146163\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146285\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146351\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146361\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146368\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146381\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146425\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146516\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146526\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146529\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146531\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146547\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146550\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146575\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146589\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146938\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148031\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148034\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148035\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148133\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148192\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148198\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148202\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148303\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148308\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148379\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148570\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148574\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148616\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148617\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148619\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148698\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148868\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149053\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149083\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149106\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149197\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149214\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149224\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149325\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149552\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149591\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149602\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149612\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149713\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149976\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150025\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150112\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150562\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150727\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150860\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150861\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150933\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-18551/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-20976/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-21008/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-10207/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14814/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14815/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14816/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14835/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15030/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15031/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15090/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15098/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15099/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15117/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15118/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15211/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15212/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15214/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15215/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15216/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15217/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15218/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15219/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15220/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15221/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15222/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15239/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15290/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15292/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15538/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15666/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15902/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15917/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15919/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15920/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15921/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15924/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15926/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15927/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-9456/\"\n );\n # https://www.suse.com/support/update/announcement/2019/suse-su-20192424-1/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9403b426\"\n );\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Workstation Extension 15-SP1:zypper in -t patch\nSUSE-SLE-Product-WE-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise Module for Open Buildservice Development Tools\n15-SP1:zypper in -t patch\nSUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise Module for Live Patching 15-SP1:zypper in -t\npatch SUSE-SLE-Module-Live-Patching-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise Module for Legacy Software 15-SP1:zypper in -t\npatch SUSE-SLE-Module-Legacy-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise Module for Development Tools 15-SP1:zypper in -t\npatch SUSE-SLE-Module-Development-Tools-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise Module for Basesystem 15-SP1:zypper in -t patch\nSUSE-SLE-Module-Basesystem-15-SP1-2019-2424=1\n\nSUSE Linux Enterprise High Availability 15-SP1:zypper in -t patch\nSUSE-SLE-Product-HA-15-SP1-2019-2424=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-debug-livepatch-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-livepatch\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-kvmsmall-livepatch-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-obs-build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-obs-qa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-vanilla-livepatch-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-zfcpdump-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/09/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED15|SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED15 / SLES15\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP1\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED15\" && (! preg(pattern:\"^(1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED15 SP1\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-default-livepatch-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-default-man-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-man-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-default-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-obs-build-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-obs-build-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-obs-qa-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-syms-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kernel-vanilla-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kselftests-kmp-default-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"kselftests-kmp-default-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"reiserfs-kmp-default-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", reference:\"reiserfs-kmp-default-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-debug-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-kvmsmall-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-default-livepatch-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-default-man-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"s390x\", reference:\"kernel-zfcpdump-man-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-default-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-obs-build-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-obs-build-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-obs-qa-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-syms-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-base-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-base-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-debugsource-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-devel-debuginfo-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kernel-vanilla-livepatch-devel-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kselftests-kmp-default-4.12.14-197.18.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", reference:\"kselftests-kmp-default-debuginfo-4.12.14-197.18.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T14:31:14", "description": "According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system:\n memory allocation, process allocation, device input and output, etc. Security Fix(es):An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.(CVE-2019-15213)An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.(CVE-2019-15215)An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.(CVE-2019-15217)An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.(CVE-2019-15212)An issue was discovered in the Linux kernel before 5.0.14.\n There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.(CVE-2019-15216)An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.(CVE-2019-15090)An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a cd data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15923)An issue was discovered in the Linux kernel before 5.0.10.\n SMB2_negotiate in fs/cifs/smb2pdu.c has an out-of-bounds read because data structures are incompletely updated after a change from smb30 to smb21.(CVE-2019-15918)An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a pf data structure if alloc_disk fails in drivers/block/paride/pf.c.(CVE-2019-15922)An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file driverset/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)An issue was discovered in the Linux kernel before 5.0.11.\n fm10k_init_module in driverset/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure.(CVE-2019-15924)A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.(CVE-2019-14835)In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt.\n To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers.\n At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.(CVE-2019-15031)In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers.\n At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.(CVE-2019-15030)There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14816)A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.(CVE-2019-14815)There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.(CVE-2019-14814)driverset/wireless/ath/ath10k/usb.\n c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15099)driverset/wireless/ath/ath6k l/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.(CVE-2019-15098)driverset/wireless/rsi/rsi_9 1x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).CVE-2019-15504)In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.(CVE-2019-16714)drivers/scsi/qla2xxx/qla_os .c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.(CVE-2019-16233)An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/blockbd.c does not check the nla_nest_start_noflag return value.(CVE-2019-16089)llcp_sock_create in netfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.(CVE-2019-17056)base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.(CVE-2019-17055)atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.(CVE-2019-17054)ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.(CVE-2019-17053)ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.(CVE-2019-17052)An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable.\n This could allow an attacker to trigger a Denial of Service, exploitable if this driver is used on an architecture for which this stack/DMA interaction has security relevance.(CVE-2019-17075)rtl_p2p_noa_ie in driverset/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.(CVE-2019-17666)In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.(CVE-2019-17133)An issue was discovered in net/wirelessl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.(CVE-2019-16746)Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.(CVE-2019-0136)driverset/wireless/intel/iwlwifi/ pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.(CVE-2019-16234)A memory leak in the ql_alloc_large_buffers() function in driverset/ethernet/qlogic/qla3xxx.c in the Linux kernel before 5.3.5 allows local users to cause a denial of service (memory consumption) by triggering pci_dma_mapping_error() failures, aka CID-1acb8f2a7a9f.(CVE-2019-18806)A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8.(CVE-2019-18813)A memory leak in the af9005_identify_state() function in drivers/media/usb/dvb-usb/af9005.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-2289adbfa559.(CVE-2019-18809)fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15.(CVE-2019-18885)A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.(CVE-2019-18808)A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd.(CVE-2019-19066)Note:\n kernel-4.19.36-vhulk1907.1.0.h529 and earlier versions in EulerOS Virtualization for ARM 64 3.0.2.0 return incorrect time information when executing the uname -a command.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2020-03-13T00:00:00", "type": "nessus", "title": "EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1197)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2019-0136", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15212", "CVE-2019-15213", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15504", "CVE-2019-15918", "CVE-2019-15922", "CVE-2019-15923", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-16089", "CVE-2019-16233", "CVE-2019-16234", "CVE-2019-16714", "CVE-2019-16746", "CVE-2019-17052", "CVE-2019-17053", "CVE-2019-17054", "CVE-2019-17055", "CVE-2019-17056", "CVE-2019-17075", "CVE-2019-17133", "CVE-2019-17666", "CVE-2019-18806", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18813", "CVE-2019-18885", "CVE-2019-19066"], "modified": "2021-01-06T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:kernel", "p-cpe:/a:huawei:euleros:kernel-devel", "p-cpe:/a:huawei:euleros:kernel-headers", "p-cpe:/a:huawei:euleros:kernel-tools", "p-cpe:/a:huawei:euleros:kernel-tools-libs", "p-cpe:/a:huawei:euleros:kernel-tools-libs-devel", "p-cpe:/a:huawei:euleros:perf", "p-cpe:/a:huawei:euleros:python-perf", "cpe:/o:huawei:euleros:uvp:3.0.2.0"], "id": "EULEROS_SA-2020-1197.NASL", "href": "https://www.tenable.com/plugins/nessus/134486", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(134486);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\n \"CVE-2019-0136\",\n \"CVE-2019-14814\",\n \"CVE-2019-14815\",\n \"CVE-2019-14816\",\n \"CVE-2019-14835\",\n \"CVE-2019-15030\",\n \"CVE-2019-15031\",\n \"CVE-2019-15090\",\n \"CVE-2019-15098\",\n \"CVE-2019-15099\",\n \"CVE-2019-15212\",\n \"CVE-2019-15213\",\n \"CVE-2019-15215\",\n \"CVE-2019-15216\",\n \"CVE-2019-15217\",\n \"CVE-2019-15504\",\n \"CVE-2019-15918\",\n \"CVE-2019-15922\",\n \"CVE-2019-15923\",\n \"CVE-2019-15924\",\n \"CVE-2019-15926\",\n \"CVE-2019-16089\",\n \"CVE-2019-16233\",\n \"CVE-2019-16234\",\n \"CVE-2019-16714\",\n \"CVE-2019-16746\",\n \"CVE-2019-17052\",\n \"CVE-2019-17053\",\n \"CVE-2019-17054\",\n \"CVE-2019-17055\",\n \"CVE-2019-17056\",\n \"CVE-2019-17075\",\n \"CVE-2019-17133\",\n \"CVE-2019-17666\",\n \"CVE-2019-18806\",\n \"CVE-2019-18808\",\n \"CVE-2019-18809\",\n \"CVE-2019-18813\",\n \"CVE-2019-18885\",\n \"CVE-2019-19066\"\n );\n\n script_name(english:\"EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1197)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS Virtualization for ARM 64 host is missing multiple security\nupdates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the kernel packages installed, the\nEulerOS Virtualization for ARM 64 installation on the remote host is\naffected by the following vulnerabilities :\n\n - The kernel package contains the Linux kernel (vmlinuz),\n the core of any Linux operating system. The kernel\n handles the basic functions of the operating system:\n memory allocation, process allocation, device input and\n output, etc. Security Fix(es):An issue was discovered\n in the Linux kernel before 5.2.3. There is a\n use-after-free caused by a malicious USB device in the\n drivers/media/usb/dvb-usb/dvb-usb-init.c\n driver.(CVE-2019-15213)An issue was discovered in the\n Linux kernel before 5.2.6. There is a use-after-free\n caused by a malicious USB device in the\n drivers/media/usb/cpia2/cpia2_usb.c\n driver.(CVE-2019-15215)An issue was discovered in the\n Linux kernel before 5.2.3. There is a NULL pointer\n dereference caused by a malicious USB device in the\n drivers/media/usb/zr364xx/zr364xx.c\n driver.(CVE-2019-15217)An issue was discovered in the\n Linux kernel before 5.1.8. There is a double-free\n caused by a malicious USB device in the\n drivers/usb/misc/rio500.c driver.(CVE-2019-15212)An\n issue was discovered in the Linux kernel before 5.0.14.\n There is a NULL pointer dereference caused by a\n malicious USB device in the drivers/usb/misc/yurex.c\n driver.(CVE-2019-15216)An issue was discovered in\n drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before\n 5.1.12. In the qedi_dbg_* family of functions, there is\n an out-of-bounds read.(CVE-2019-15090)An issue was\n discovered in the Linux kernel before 5.0.9. There is a\n NULL pointer dereference for a cd data structure if\n alloc_disk fails in\n drivers/block/paride/pf.c.(CVE-2019-15923)An issue was\n discovered in the Linux kernel before 5.0.10.\n SMB2_negotiate in fs/cifs/smb2pdu.c has an\n out-of-bounds read because data structures are\n incompletely updated after a change from smb30 to\n smb21.(CVE-2019-15918)An issue was discovered in the\n Linux kernel before 5.0.9. There is a NULL pointer\n dereference for a pf data structure if alloc_disk fails\n in drivers/block/paride/pf.c.(CVE-2019-15922)An issue\n was discovered in the Linux kernel before 5.2.3. Out of\n bounds access exists in the functions\n ath6kl_wmi_pstream_timeout_event_rx and\n ath6kl_wmi_cac_event_rx in the file\n driverset/wireless/ath/ath6kl/wmi.c.(CVE-2019-15926)An\n issue was discovered in the Linux kernel before 5.0.11.\n fm10k_init_module in\n driverset/ethernet/intel/fm10k/fm10k_main.c has a NULL\n pointer dereference because there is no -ENOMEM upon an\n alloc_workqueue failure.(CVE-2019-15924)A buffer\n overflow flaw was found, in versions from 2.6.34 to\n 5.2.x, in the way Linux kernel's vhost functionality\n that translates virtqueue buffers to IOVs, logged the\n buffer descriptors during migration. A privileged guest\n user able to pass descriptors with invalid length to\n the host when migration is underway, could use this\n flaw to increase their privileges on the\n host.(CVE-2019-14835)In the Linux kernel through 5.2.14\n on the powerpc platform, a local user can read vector\n registers of other users' processes via an interrupt.\n To exploit the venerability, a local user starts a\n transaction (via the hardware transactional memory\n instruction tbegin) and then accesses vector registers.\n At some point, the vector registers will be corrupted\n with the values from a different local Linux process,\n because MSR_TM_ACTIVE is misused in\n arch/powerpc/kernel/process.c.(CVE-2019-15031)In the\n Linux kernel through 5.2.14 on the powerpc platform, a\n local user can read vector registers of other users'\n processes via a Facility Unavailable exception. To\n exploit the venerability, a local user starts a\n transaction (via the hardware transactional memory\n instruction tbegin) and then accesses vector registers.\n At some point, the vector registers will be corrupted\n with the values from a different local Linux process\n because of a missing arch/powerpc/kernel/process.c\n check.(CVE-2019-15030)There is heap-based buffer\n overflow in kernel, all versions up to, excluding 5.3,\n in the marvell wifi chip driver in Linux kernel, that\n allows local users to cause a denial of service(system\n crash) or possibly execute arbitrary\n code.(CVE-2019-14816)A vulnerability was found in Linux\n Kernel, where a Heap Overflow was found in\n mwifiex_set_wmm_params() function of Marvell Wifi\n Driver.(CVE-2019-14815)There is heap-based buffer\n overflow in Linux kernel, all versions up to, excluding\n 5.3, in the marvell wifi chip driver in Linux kernel,\n that allows local users to cause a denial of\n service(system crash) or possibly execute arbitrary\n code.(CVE-2019-14814)driverset/wireless/ath/ath10k/usb.\n c in the Linux kernel through 5.2.8 has a NULL pointer\n dereference via an incomplete address in an endpoint\n descriptor.(CVE-2019-15099)driverset/wireless/ath/ath6k\n l/usb.c in the Linux kernel through 5.2.8 has a NULL\n pointer dereference via an incomplete address in an\n endpoint\n descriptor.(CVE-2019-15098)driverset/wireless/rsi/rsi_9\n 1x_usb.c in the Linux kernel through 5.2.9 has a Double\n Free via crafted USB device traffic (which may be\n remote via usbip or usbredir).CVE-2019-15504)In the\n Linux kernel before 5.2.14, rds6_inc_info_copy in\n net/rds/recv.c allows attackers to obtain sensitive\n information from kernel stack memory because tos and\n flags fields are not\n initialized.(CVE-2019-16714)drivers/scsi/qla2xxx/qla_os\n .c in the Linux kernel 5.2.14 does not check the\n alloc_workqueue return value, leading to a NULL pointer\n dereference.(CVE-2019-16233)An issue was discovered in\n the Linux kernel through 5.2.13. nbd_genl_status in\n drivers/blockbd.c does not check the\n nla_nest_start_noflag return\n value.(CVE-2019-16089)llcp_sock_create in\n netfc/llcp_sock.c in the AF_NFC network module in the\n Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-3a359798b176.(CVE-2019-17056)base_sock_create in\n drivers/isdn/mISDN/socket.c in the AF_ISDN network\n module in the Linux kernel through 5.3.2 does not\n enforce CAP_NET_RAW, which means that unprivileged\n users can create a raw socket, aka\n CID-b91ee4aa2a21.(CVE-2019-17055)atalk_create in\n net/appletalk/ddp.c in the AF_APPLETALK network module\n in the Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-6cc03e8aa36c.(CVE-2019-17054)ieee802154_create in\n net/ieee802154/socket.c in the AF_IEEE802154 network\n module in the Linux kernel through 5.3.2 does not\n enforce CAP_NET_RAW, which means that unprivileged\n users can create a raw socket, aka\n CID-e69dbd4619e7.(CVE-2019-17053)ax25_create in\n net/ax25/af_ax25.c in the AF_AX25 network module in the\n Linux kernel through 5.3.2 does not enforce\n CAP_NET_RAW, which means that unprivileged users can\n create a raw socket, aka\n CID-0614e2b73768.(CVE-2019-17052)An issue was\n discovered in write_tpt_entry in\n drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel\n through 5.3.2. The cxgb4 driver is directly calling\n dma_map_single (a DMA function) from a stack variable.\n This could allow an attacker to trigger a Denial of\n Service, exploitable if this driver is used on an\n architecture for which this stack/DMA interaction has\n security relevance.(CVE-2019-17075)rtl_p2p_noa_ie in\n driverset/wireless/realtek/rtlwifi/ps.c in the Linux\n kernel through 5.3.6 lacks a certain upper-bound check,\n leading to a buffer overflow.(CVE-2019-17666)In the\n Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid\n in net/wireless/wext-sme.c does not reject a long SSID\n IE, leading to a Buffer Overflow.(CVE-2019-17133)An\n issue was discovered in net/wirelessl80211.c in the\n Linux kernel through 5.2.17. It does not check the\n length of variable elements in a beacon head, leading\n to a buffer overflow.(CVE-2019-16746)Insufficient\n access control in the Intel(R) PROSet/Wireless WiFi\n Software driver before version 21.10 may allow an\n unauthenticated user to potentially enable denial of\n service via adjacent\n access.(CVE-2019-0136)driverset/wireless/intel/iwlwifi/\n pcie/trans.c in the Linux kernel 5.2.14 does not check\n the alloc_workqueue return value, leading to a NULL\n pointer dereference.(CVE-2019-16234)A memory leak in\n the ql_alloc_large_buffers() function in\n driverset/ethernet/qlogic/qla3xxx.c in the Linux kernel\n before 5.3.5 allows local users to cause a denial of\n service (memory consumption) by triggering\n pci_dma_mapping_error() failures, aka\n CID-1acb8f2a7a9f.(CVE-2019-18806)A memory leak in the\n dwc3_pci_probe() function in\n drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through\n 5.3.9 allows attackers to cause a denial of service\n (memory consumption) by triggering\n platform_device_add_properties() failures, aka\n CID-9bbfceea12a8.(CVE-2019-18813)A memory leak in the\n af9005_identify_state() function in\n drivers/media/usb/dvb-usb/af9005.c in the Linux kernel\n through 5.3.9 allows attackers to cause a denial of\n service (memory consumption), aka\n CID-2289adbfa559.(CVE-2019-18809)fs/btrfs/volumes.c in\n the Linux kernel before 5.1 allows a\n btrfs_verify_dev_extents NULL pointer dereference via a\n crafted btrfs image because fs_devices->devices is\n mishandled within find_device, aka\n CID-09ba3bc9dd15.(CVE-2019-18885)A memory leak in the\n ccp_run_sha_cmd() function in\n drivers/crypto/ccp/ccp-ops.c in the Linux kernel\n through 5.3.9 allows attackers to cause a denial of\n service (memory consumption), aka\n CID-128c66429247.(CVE-2019-18808)A memory leak in the\n bfad_im_get_stats() function in\n drivers/scsi/bfa/bfad_attr.c in the Linux kernel\n through 5.3.11 allows attackers to cause a denial of\n service (memory consumption) by triggering\n bfa_port_get_stats() failures, aka\n CID-0e62395da2bd.(CVE-2019-19066)Note:\n kernel-4.19.36-vhulk1907.1.0.h529 and earlier versions\n in EulerOS Virtualization for ARM 64 3.0.2.0 return\n incorrect time information when executing the uname -a\n command.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1197\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c0e492e5\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected kernel packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/03/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/03/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:uvp:3.0.2.0\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (uvp != \"3.0.2.0\") audit(AUDIT_OS_NOT, \"EulerOS Virtualization 3.0.2.0\");\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\nif (\"aarch64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"aarch64\", cpu);\n\nflag = 0;\n\npkgs = [\"kernel-4.19.36-vhulk1907.1.0.h529\",\n \"kernel-devel-4.19.36-vhulk1907.1.0.h529\",\n \"kernel-headers-4.19.36-vhulk1907.1.0.h529\",\n \"kernel-tools-4.19.36-vhulk1907.1.0.h529\",\n \"kernel-tools-libs-4.19.36-vhulk1907.1.0.h529\",\n \"kernel-tools-libs-devel-4.19.36-vhulk1907.1.0.h529\",\n \"perf-4.19.36-vhulk1907.1.0.h529\",\n \"python-perf-4.19.36-vhulk1907.1.0.h529\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", reference:pkg)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-01T16:32:46", "description": "The SUSE Linux Enterprise 15 SP1 RT kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed :\n\nCVE-2019-14835: A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could have used this flaw to increase their privileges on the host (bnc#1150112).\n\nCVE-2019-15216: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver (bnc#1146361).\n\nCVE-2019-15924: fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c had a NULL pointer dereference because there was no -ENOMEM upon an alloc_workqueue failure (bnc#1149612).\n\nCVE-2019-9456: In the Pixel C USB monitor driver there was a possible OOB write due to a missing bounds check. This could have led to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1150025).\n\nCVE-2019-15031: In the Linux kernel on the powerpc platform, a local user could have read vector registers of other users' processes via an interrupt. To exploit the vulnerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE was misused in arch/powerpc/kernel/process.c (bnc#1149713).\n\nCVE-2019-15030: In the Linux kernel on the powerpc platform, a local user could have read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check (bnc#1149713).\n\nCVE-2019-15920: SMB2_read in fs/cifs/smb2pdu.c had a use-after-free.\n(bnc#1149626).\n\nCVE-2019-15921: There was a memory leak issue when idr_alloc() fails in genl_register_family() in net/netlink/genetlink.c (bnc#1149602).\n\nCVE-2018-21008: A use-after-free could have been caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c (bnc#1149591).\n\nCVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free (bnc#1149552).\n\nCVE-2019-15917: There was a use-after-free issue when hci_uart_register_dev() fails in hci_uart_set_proto() in drivers/bluetooth/hci_ldisc.c (bnc#1149539).\n\nCVE-2019-15926: An out-of-bounds access existed in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file drivers/net/wireless/ath/ath6kl/wmi.c (bnc#1149527).\n\nCVE-2019-15927: An out-of-bounds access existed in the function build_audio_procunit in the file sound/usb/mixer.c (bnc#1149522).\n\nCVE-2019-15902: Misuse of the upstream 'x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()' commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped (bnc#1149376).\n\nCVE-2019-15666: There was an out-of-bounds array access in\n__xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandled directory validation (bnc#1148394).\n\nCVE-2019-15219: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver (bnc#1146524).\n\nCVE-2019-14814: There was a heap-based buffer overflow in the Marvell wifi chip driver, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code (bnc#1146512).\n\nCVE-2019-14815: There was a heap-based buffer overflow in the Marvell wifi chip driver, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code.\n(bsc#1146514)\n\nCVE-2019-14816: There was a heap-based buffer overflow in the Marvell wifi chip driver, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code (bnc#1146516).\n\nCVE-2019-15220: There was a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver (bnc#1146526).\n\nCVE-2019-15538: An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS (bnc#1148093).\n\n - Update reference for ath6kl fix (CVE-2019-15290,bsc#1146543).\n\n - Update reference for ath6kl fix (CVE-2019-15290,bsc#1146543).\n\nCVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor (bnc#1146368).\n\nCVE-2019-15098: drivers/net/wireless/ath/ath6kl/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor (bnc#1146378).\n\nCVE-2019-15239: An incorrect backport of a certain net/ipv4/tcp_output.c fix allowed a local attacker to trigger multiple use-after-free conditions. This could result in a kernel crash, or potentially in privilege escalation. (bsc#1146589)\n\nCVE-2019-15212: There was a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver (bnc#1146391).\n\nCVE-2019-15292: There was a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c (bnc#1146678).\n\nCVE-2019-15217: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver (bnc#1146547).\n\nCVE-2019-15211: There was a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c did not properly allocate memory (bnc#1146519).\n\nCVE-2019-15214: There was a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. This is related to sound/core/init.c and sound/core/info.c (bnc#1146550).\n\nCVE-2019-15221: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver (bnc#1146529).\n\nCVE-2019-15222: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver (bnc#1146531).\n\nCVE-2019-15218: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver (bnc#1146413).\n\nCVE-2019-15215: There was a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver (bnc#1146425).\n\nCVE-2019-15090: An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the qedi_dbg_* family of functions, there is an out-of-bounds read (bnc#1146399).\n\nCVE-2018-20976: An issue was discovered in fs/xfs/xfs_super.c. A use after free exists, related to xfs_fs_fill_super failure (bnc#1146285).\n\nCVE-2017-18551: An issue was discovered in drivers/i2c/i2c-core-smbus.c. There was an out of bounds write in the function i2c_smbus_xfer_emulated (bnc#1146163).\n\nCVE-2019-15118: check_input_term in sound/usb/mixer.c mishandled recursion, leading to kernel stack exhaustion (bnc#1145922).\n\nCVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c mishandled a short descriptor, leading to out-of-bounds memory access (bnc#1145920).\n\nCVE-2019-10207: Bluetooth/hci_uart was missing a check for tty operations (bsc#1142857).\n\nThe update package also includes non-security fixes. See advisory for details.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-10-23T00:00:00", "type": "nessus", "title": "SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2738-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2017-18551", "CVE-2018-20976", "CVE-2018-21008", "CVE-2019-10207", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15117", "CVE-2019-15118", "CVE-2019-15211", "CVE-2019-15212", "CVE-2019-15214", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15218", "CVE-2019-15219", "CVE-2019-15220", "CVE-2019-15221", "CVE-2019-15222", "CVE-2019-15239", "CVE-2019-15290", "CVE-2019-15292", "CVE-2019-15538", "CVE-2019-15666", "CVE-2019-15902", "CVE-2019-15917", "CVE-2019-15919", "CVE-2019-15920", "CVE-2019-15921", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-15927", "CVE-2019-9456"], "modified": "2021-01-13T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt", "p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:dlm-kmp-rt", "p-cpe:/a:novell:suse_linux:dlm-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:dlm-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:dlm-kmp-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:gfs2-kmp-rt", "p-cpe:/a:novell:suse_linux:gfs2-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:gfs2-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:gfs2-kmp-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt", "p-cpe:/a:novell:suse_linux:kernel-rt-base", "p-cpe:/a:novell:suse_linux:kernel-rt-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt-debugsource", "p-cpe:/a:novell:suse_linux:kernel-rt-devel", "p-cpe:/a:novell:suse_linux:kernel-rt-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt-extra", "p-cpe:/a:novell:suse_linux:kernel-rt-extra-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt-livepatch", "p-cpe:/a:novell:suse_linux:kernel-rt-livepatch-devel", "p-cpe:/a:novell:suse_linux:kernel-rt_debug", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-base", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-debugsource", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-devel", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-extra", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-extra-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-livepatch", "p-cpe:/a:novell:suse_linux:kernel-rt_debug-livepatch-devel", "p-cpe:/a:novell:suse_linux:kernel-syms-rt", "p-cpe:/a:novell:suse_linux:kselftests-kmp-rt", "p-cpe:/a:novell:suse_linux:kselftests-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:kselftests-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:kselftests-kmp-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt", "p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt_debug-debuginfo", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt-debuginfo", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt_debug", "p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt_debug-debuginfo", "cpe:/o:novell:suse_linux:15"], "id": "SUSE_SU-2019-2738-1.NASL", "href": "https://www.tenable.com/plugins/nessus/130163", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2019:2738-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(130163);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/13\");\n\n script_cve_id(\"CVE-2017-18551\", \"CVE-2018-20976\", \"CVE-2018-21008\", \"CVE-2019-10207\", \"CVE-2019-14814\", \"CVE-2019-14815\", \"CVE-2019-14816\", \"CVE-2019-14835\", \"CVE-2019-15030\", \"CVE-2019-15031\", \"CVE-2019-15090\", \"CVE-2019-15098\", \"CVE-2019-15099\", \"CVE-2019-15117\", \"CVE-2019-15118\", \"CVE-2019-15211\", \"CVE-2019-15212\", \"CVE-2019-15214\", \"CVE-2019-15215\", \"CVE-2019-15216\", \"CVE-2019-15217\", \"CVE-2019-15218\", \"CVE-2019-15219\", \"CVE-2019-15220\", \"CVE-2019-15221\", \"CVE-2019-15222\", \"CVE-2019-15239\", \"CVE-2019-15290\", \"CVE-2019-15292\", \"CVE-2019-15538\", \"CVE-2019-15666\", \"CVE-2019-15902\", \"CVE-2019-15917\", \"CVE-2019-15919\", \"CVE-2019-15920\", \"CVE-2019-15921\", \"CVE-2019-15924\", \"CVE-2019-15926\", \"CVE-2019-15927\", \"CVE-2019-9456\");\n\n script_name(english:\"SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2738-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The SUSE Linux Enterprise 15 SP1 RT kernel was updated to receive\nvarious security and bugfixes.\n\nThe following security bugs were fixed :\n\nCVE-2019-14835: A buffer overflow flaw was found in the way Linux\nkernel's vhost functionality that translates virtqueue buffers to\nIOVs, logged the buffer descriptors during migration. A privileged\nguest user able to pass descriptors with invalid length to the host\nwhen migration is underway, could have used this flaw to increase\ntheir privileges on the host (bnc#1150112).\n\nCVE-2019-15216: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/usb/misc/yurex.c driver\n(bnc#1146361).\n\nCVE-2019-15924: fm10k_init_module in\ndrivers/net/ethernet/intel/fm10k/fm10k_main.c had a NULL pointer\ndereference because there was no -ENOMEM upon an alloc_workqueue\nfailure (bnc#1149612).\n\nCVE-2019-9456: In the Pixel C USB monitor driver there was a possible\nOOB write due to a missing bounds check. This could have led to local\nescalation of privilege with System execution privileges needed. User\ninteraction is not needed for exploitation (bnc#1150025).\n\nCVE-2019-15031: In the Linux kernel on the powerpc platform, a local\nuser could have read vector registers of other users' processes via an\ninterrupt. To exploit the vulnerability, a local user starts a\ntransaction (via the hardware transactional memory instruction tbegin)\nand then accesses vector registers. At some point, the vector\nregisters will be corrupted with the values from a different local\nLinux process, because MSR_TM_ACTIVE was misused in\narch/powerpc/kernel/process.c (bnc#1149713).\n\nCVE-2019-15030: In the Linux kernel on the powerpc platform, a local\nuser could have read vector registers of other users' processes via a\nFacility Unavailable exception. To exploit the venerability, a local\nuser starts a transaction (via the hardware transactional memory\ninstruction tbegin) and then accesses vector registers. At some point,\nthe vector registers will be corrupted with the values from a\ndifferent local Linux process because of a missing\narch/powerpc/kernel/process.c check (bnc#1149713).\n\nCVE-2019-15920: SMB2_read in fs/cifs/smb2pdu.c had a use-after-free.\n(bnc#1149626).\n\nCVE-2019-15921: There was a memory leak issue when idr_alloc() fails\nin genl_register_family() in net/netlink/genetlink.c (bnc#1149602).\n\nCVE-2018-21008: A use-after-free could have been caused by the\nfunction rsi_mac80211_detach in the file\ndrivers/net/wireless/rsi/rsi_91x_mac80211.c (bnc#1149591).\n\nCVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free\n(bnc#1149552).\n\nCVE-2019-15917: There was a use-after-free issue when\nhci_uart_register_dev() fails in hci_uart_set_proto() in\ndrivers/bluetooth/hci_ldisc.c (bnc#1149539).\n\nCVE-2019-15926: An out-of-bounds access existed in the functions\nath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the\nfile drivers/net/wireless/ath/ath6kl/wmi.c (bnc#1149527).\n\nCVE-2019-15927: An out-of-bounds access existed in the function\nbuild_audio_procunit in the file sound/usb/mixer.c (bnc#1149522).\n\nCVE-2019-15902: Misuse of the upstream 'x86/ptrace: Fix possible\nspectre-v1 in ptrace_get_debugreg()' commit reintroduced the Spectre\nvulnerability that it aimed to eliminate. This occurred because the\nbackport process depends on cherry picking specific commits, and\nbecause two (correctly ordered) code lines were swapped (bnc#1149376).\n\nCVE-2019-15666: There was an out-of-bounds array access in\n__xfrm_policy_unlink, which will cause denial of service, because\nverify_newpolicy_info in net/xfrm/xfrm_user.c mishandled directory\nvalidation (bnc#1148394).\n\nCVE-2019-15219: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver\n(bnc#1146524).\n\nCVE-2019-14814: There was a heap-based buffer overflow in the Marvell\nwifi chip driver, that allowed local users to cause a denial of\nservice (system crash) or possibly execute arbitrary code\n(bnc#1146512).\n\nCVE-2019-14815: There was a heap-based buffer overflow in the Marvell\nwifi chip driver, that allowed local users to cause a denial of\nservice (system crash) or possibly execute arbitrary code.\n(bsc#1146514)\n\nCVE-2019-14816: There was a heap-based buffer overflow in the Marvell\nwifi chip driver, that allowed local users to cause a denial of\nservice (system crash) or possibly execute arbitrary code\n(bnc#1146516).\n\nCVE-2019-15220: There was a use-after-free caused by a malicious USB\ndevice in the drivers/net/wireless/intersil/p54/p54usb.c driver\n(bnc#1146526).\n\nCVE-2019-15538: An issue was discovered in xfs_setattr_nonsize in\nfs/xfs/xfs_iops.c in the Linux kernel XFS partially wedges when a\nchgrp fails on account of being out of disk quota. xfs_setattr_nonsize\nis failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call\nfails. This is primarily a local DoS attack vector, but it might\nresult as well in remote DoS if the XFS filesystem is exported for\ninstance via NFS (bnc#1148093).\n\n - Update reference for ath6kl fix\n (CVE-2019-15290,bsc#1146543).\n\n - Update reference for ath6kl fix\n (CVE-2019-15290,bsc#1146543).\n\nCVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c had a NULL\npointer dereference via an incomplete address in an endpoint\ndescriptor (bnc#1146368).\n\nCVE-2019-15098: drivers/net/wireless/ath/ath6kl/usb.c had a NULL\npointer dereference via an incomplete address in an endpoint\ndescriptor (bnc#1146378).\n\nCVE-2019-15239: An incorrect backport of a certain\nnet/ipv4/tcp_output.c fix allowed a local attacker to trigger multiple\nuse-after-free conditions. This could result in a kernel crash, or\npotentially in privilege escalation. (bsc#1146589)\n\nCVE-2019-15212: There was a double-free caused by a malicious USB\ndevice in the drivers/usb/misc/rio500.c driver (bnc#1146391).\n\nCVE-2019-15292: There was a use-after-free in atalk_proc_exit, related\nto net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and\nnet/appletalk/sysctl_net_atalk.c (bnc#1146678).\n\nCVE-2019-15217: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver\n(bnc#1146547).\n\nCVE-2019-15211: There was a use-after-free caused by a malicious USB\ndevice in the drivers/media/v4l2-core/v4l2-dev.c driver because\ndrivers/media/radio/radio-raremono.c did not properly allocate memory\n(bnc#1146519).\n\nCVE-2019-15214: There was a use-after-free in the sound subsystem\nbecause card disconnection causes certain data structures to be\ndeleted too early. This is related to sound/core/init.c and\nsound/core/info.c (bnc#1146550).\n\nCVE-2019-15221: There was a NULL pointer dereference caused by a\nmalicious USB device in the sound/usb/line6/pcm.c driver\n(bnc#1146529).\n\nCVE-2019-15222: There was a NULL pointer dereference caused by a\nmalicious USB device in the sound/usb/helper.c (motu_microbookii)\ndriver (bnc#1146531).\n\nCVE-2019-15218: There was a NULL pointer dereference caused by a\nmalicious USB device in the drivers/media/usb/siano/smsusb.c driver\n(bnc#1146413).\n\nCVE-2019-15215: There was a use-after-free caused by a malicious USB\ndevice in the drivers/media/usb/cpia2/cpia2_usb.c driver\n(bnc#1146425).\n\nCVE-2019-15090: An issue was discovered in\ndrivers/scsi/qedi/qedi_dbg.c in the qedi_dbg_* family of functions,\nthere is an out-of-bounds read (bnc#1146399).\n\nCVE-2018-20976: An issue was discovered in fs/xfs/xfs_super.c. A use\nafter free exists, related to xfs_fs_fill_super failure (bnc#1146285).\n\nCVE-2017-18551: An issue was discovered in\ndrivers/i2c/i2c-core-smbus.c. There was an out of bounds write in the\nfunction i2c_smbus_xfer_emulated (bnc#1146163).\n\nCVE-2019-15118: check_input_term in sound/usb/mixer.c mishandled\nrecursion, leading to kernel stack exhaustion (bnc#1145922).\n\nCVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c mishandled\na short descriptor, leading to out-of-bounds memory access\n(bnc#1145920).\n\nCVE-2019-10207: Bluetooth/hci_uart was missing a check for tty\noperations (bsc#1142857).\n\nThe update package also includes non-security fixes. See advisory for\ndetails.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1047238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1050911\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1051510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1054914\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1055117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1056686\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1060662\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1061840\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1061843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1064597\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1064701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1065729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1066369\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1071009\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1071306\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1078248\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1082555\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1082635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1085539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1086103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1087092\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1090734\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1091171\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1093205\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1102097\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1103990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104427\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104745\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1104902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106061\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106284\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1106434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1108382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1109837\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1111666\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112374\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112894\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112899\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112903\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112905\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1112907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1113722\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1113994\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1114279\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1114542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1118689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1119086\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1119113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120046\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120876\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1120902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1123105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1123959\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1124370\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1129664\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131107\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131281\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131489\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1131565\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1132426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1133021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134291\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134476\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134881\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1134882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135897\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1135990\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136039\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136349\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136498\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136502\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1136682\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137322\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1137884\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138099\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138100\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1138539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139101\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1139500\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140012\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140426\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1140487\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141340\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141450\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1141554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142019\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142076\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142109\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142118\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142119\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142541\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142635\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142685\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1142857\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143331\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143466\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143706\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143738\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143765\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143841\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1143962\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144123\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144333\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144375\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144474\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144518\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144582\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144813\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144880\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144886\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1144979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145018\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145059\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145235\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145256\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145300\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145357\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145388\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145389\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145390\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145392\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145393\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145395\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145396\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145397\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145409\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145446\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145661\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145687\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145920\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145922\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145934\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145937\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145941\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145942\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1145946\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146084\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146141\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146163\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146285\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146346\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146351\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146361\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146368\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146381\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146399\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146425\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146514\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146516\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146519\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146524\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146526\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146529\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146531\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146547\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146550\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146575\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146589\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146678\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1146938\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148031\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148034\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148035\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148093\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148133\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148192\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148198\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148202\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148297\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148303\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148308\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148363\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148379\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148394\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148570\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148574\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148616\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148617\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148619\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148698\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1148868\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149053\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149083\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149106\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149197\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149214\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149224\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149325\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149376\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149413\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149418\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149424\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149522\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149539\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149552\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149591\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149602\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149612\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149713\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1149976\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150025\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150033\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150112\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150562\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150727\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150860\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150861\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=1150933\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-18551/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-20976/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-21008/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-10207/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14814/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14815/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14816/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-14835/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15030/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15031/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15090/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15098/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15099/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15117/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15118/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15211/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15212/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15214/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15215/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15216/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15217/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15218/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15219/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15220/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15221/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15222/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15239/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15290/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15292/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15538/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15666/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15902/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15917/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15919/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15920/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15921/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15924/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15926/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-15927/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2019-9456/\"\n );\n # https://www.suse.com/support/update/announcement/2019/suse-su-20192738-1/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ae4724f4\"\n );\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Module for Realtime 15-SP1:zypper in -t patch\nSUSE-SLE-Module-RT-15-SP1-2019-2738=1\n\nSUSE Linux Enterprise Module for Open Buildservice Development Tools\n15-SP1:zypper in -t patch\nSUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2738=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:cluster-md-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:dlm-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:dlm-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:dlm-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:dlm-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:gfs2-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:gfs2-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:gfs2-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:gfs2-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-extra-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-livepatch\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt-livepatch-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-devel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-extra-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-livepatch\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-rt_debug-livepatch-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-syms-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kselftests-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:ocfs2-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt_debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:reiserfs-kmp-rt_debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/08/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2019/10/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2019/10/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED15|SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED15 / SLES15\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\nif (cpu >!< \"x86_64\") audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP1\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED15\" && (! preg(pattern:\"^(1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED15 SP1\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-base-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-base-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-debugsource-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-devel-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-extra-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-extra-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-livepatch-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-livepatch-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-base-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-base-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-debugsource-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-devel-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-extra-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-extra-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-livepatch-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-livepatch-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-syms-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLES15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"cluster-md-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"dlm-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"gfs2-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-debugsource-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-extra-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-extra-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-livepatch-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt-livepatch-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-base-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-base-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-debugsource-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-extra-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-extra-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-livepatch-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kernel-rt_debug-livepatch-devel-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"kselftests-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"ocfs2-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt-debuginfo-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt_debug-4.12.14-14.11.1\")) flag++;\nif (rpm_check(release:\"SLED15\", sp:\"1\", cpu:\"x86_64\", reference:\"reiserfs-kmp-rt_debug-debuginfo-4.12.14-14.11.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-09-03T16:06:10", "description": "The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.\n\nThe following new features were implemented :\n\njsc#SLE-4875: [CML] New device IDs for CML\n\njsc#SLE-7294: Add cpufreq driver for Raspberry Pi\n\nfate#322438: Integrate P9 XIVE support (on PowerVM only)\n\nfate#322447: Add memory protection keys (MPK) support on POWER (on PowerVM only)\n\nfate#322448, fate#321438: P9 hardware counter (performance counters) support (on PowerVM only)\n\nfate#325306, fate#321840: Reduce memory required to boot capture kernel while using fadump\n\nfate#326869: perf: pmu mem_load/store event support\n\nThe following security bugs were fixed: CVE-2017-18551: There was an out of bounds write in the function i2c_smbus_xfer_emulated.\n(bsc#1146163).\n\nCVE-2018-20976: A use after free existed, related to xfs_fs_fill_super failure. (bsc#1146285)\n\nCVE-2018-21008: A use-after-free can be caused by the function rsi_mac80211_detach (bsc#1149591).\n\nCVE-2019-9456: In Pixel C USB monitor driver there was a possible OOB write due to a missing bounds check. This could have lead to local escalation of privilege with System execution privileges needed.\n(bsc#1150025 CVE-2019-9456).\n\nCVE-2019-10207: Fix a NULL pointer dereference in hci_uart bluetooth driver (bsc#1142857 bsc#1123959).\n\nCVE-2019-14814, CVE-2019-14815, CVE-2019-14816: Fix three heap-based buffer overflows in marvell wifi chip driver kernel, that allowed local users to cause a denial of service (system crash) or possibly execute arbitrary code. (bnc#1146516)\n\nCVE-2019-14835: Fix QEMU-KVM Guest to Host Kernel Escape.\n(bsc#1150112).\n\nCVE-2019-15030, CVE-2019-15031: On the powerpc platform, a local user could read vector registers of other users' processes via an interrupt. (bsc#1149713)\n\nCVE-2019-15090: In the qedi_dbg_* family of functions, there was an out-of-bounds read. (bsc#1146399)\n\nCVE-2019-15098: USB driver net/wireless/ath/ath6kl/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor. (bsc#1146378).\n\nCVE-2019-15099: drivers/net/wireless/ath/ath10k/usb.c had a NULL pointer dereference via an incomplete address in an endpoint descriptor. (bsc#1146368)\n\nCVE-2019-15117: parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel mishandled a short descriptor, leading to out-of-bounds memory access. (bsc#1145920).\n\nCVE-2019-15118: check_input_term in sound/usb/mixer.c in the Linux kernel mishandled recursion, leading to kernel stack exhaustion.\n(bsc#1145922).\n\nCVE-2019-15211: There was a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c did not properly allocate memory.\n(bsc#1146519).\n\nCVE-2019-15212: There was a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver. (bsc#1051510 bsc#1146391).\n\nCVE-2019-15214: There was a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. (bsc#1146550)\n\nCVE-2019-15215: There was a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver. (bsc#1135642 bsc#1146425)\n\nCVE-2019-15216: Fix a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver. (bsc#1146361).\n\nCVE-2019-15217: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver. (bsc#1146547).\n\nCVE-2019-15218: There was a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.\n(bsc#1051510 bsc#1146413)\n\nCVE-2019-15219: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver. (bsc#1146524)\n\nCVE-2019-15220: There was a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver.\n(bsc#1146526)\n\nCVE-2019-15221, CVE-2019-15222: There was a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.\n(bsc#1146529, bsc#1146531)\n\nCVE-2019-15239: An incorrect backport of a certain net/ipv4/tcp_output.c fix allowed a local attacker to trigger multiple use-after-free conditions. This could result in a kernel crash, or potentially in privilege escalation. (bsc#1146589)\n\nCVE-2019-15290: There was a NULL pointer dereference caused by a malicious USB device in the ath6kl_usb_alloc_urb_from_pipe function (bsc#1146543).\n\nCVE-2019-15292: There was a use-after-free in atalk_proc_exit (bsc#1146678)\n\nCVE-2019-15538: XFS partially wedged when a chgrp failed on account of being out of disk quota. This was primarily a local DoS attack vector, but it could result as well in remote DoS if the XFS filesystem was exported for instance via NFS. (bsc#1148032, bsc#1148093)\n\nCVE-2019-15666: There was an out-of-bounds array access in\n__xfrm_policy_unlink, which would cause denial of service, because verify_newpolicy_info mishandled directory validation. (bsc#1148394).\n\nCVE-2019-15902: A backporting error reintroduced the Spectre vulnerability that it aimed to eliminate. (bnc#1149376)\n\nCVE-2019-15917: There was a use-after-free issue when hci_uart_register_dev() failed in hci_uart_set_proto() (bsc#1149539)\n\nCVE-2019-15919: SMB2_write in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149552)\n\nCVE-2019-15920: SMB2_read in fs/cifs/smb2pdu.c had a use-after-free.\n(bsc#1149626)\n\nCVE-2019-15921: There was a memory leak issue when idr_alloc() failed (bsc#1149602)\n\nCVE-2019-15924: Fix a NULL pointer dereference because there was no\n\n-ENOMEM upon an alloc_workqueue failure. (bsc#1149612).\n\nCVE-2019-15926: Out of bounds access existed in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx (bsc#1149527)\n\nCVE-2019-15927: An out-of-bounds access existed in the function build_audio_procunit (bsc#1149522)\n\nThe update package also includes non-security fixes. See advisory for details.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "cvss3": {}, "published": "2019-09-23T00:00:00", "type": "nessus", "title": "SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:2412-1)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2017-18551", "CVE-2018-20976", "CVE-2018-21008", "CVE-2019-10207", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14835", "CVE-2019-15030", "CVE-2019-15031", "CVE-2019-15090", "CVE-2019-15098", "CVE-2019-15099", "CVE-2019-15117", "CVE-2019-15118", "CVE-2019-15211", "CVE-2019-15212", "CVE-2019-15214", "CVE-2019-15215", "CVE-2019-15216", "CVE-2019-15217", "CVE-2019-15218", "CVE-2019-15219", "CVE-2019-15220", "CVE-2019-15221", "CVE-2019-15222", "CVE-2019-15239", "CVE-2019-15290", "CVE-2019-15292", "CVE-2019-15538", "CVE-2019-15666", "CVE-2019-15902", "CVE-2019-15917", "CVE-2019-15919", "CVE-2019-15920", "CVE-2019-15921", "CVE-2019-15924", "CVE-2019-15926", "CVE-2019-15927", "CVE-2019-9456"], "modified": "2020-03-31T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:kernel-default", "p-cpe:/a:novell:suse_linux:kernel-default-base", "p-cpe:/a:novell:suse_linux:kernel-default-base-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-debugsource", "p-cpe:/a:novell:suse_linux:kernel-default-devel", "p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-extra", "p-cpe:/a:novell:suse_linux:kernel-default-extra-debuginfo", "p-cpe:/a:novell:suse_linux:kernel-default-man", "p-cpe:/a:novell:suse_linux:kernel-syms", "cpe:/o:novell:suse_linux:12"], "id": "SUSE_SU-2019-2412-1.NASL", "href": "https://www.tenable.com/plugins/nessus/129154", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2019:2412-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(129154);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/31\");\n\n script_cve_id(\"CVE-2017-18551\", \"CVE-2018-20976\", \"CVE-2018-21008\", \"CVE-2019-10207\", \"CVE-2019-14814\", \"CVE-2019-14815\", \"CVE-2019-14816\", \"CVE-2019-14835\", \"CVE-2019-15030\", \"CVE-2019-15031\", \"CVE-2019-15090\", \"CVE-2019-15098\", \"CVE-2019-15099\", \"CVE-2019-15117\", \"CVE-2019-15118\", \"CVE-2019-15211\", \"CVE-2019-15212\", \"CVE-2019-15214\", \"CVE-2019-15215\", \"CVE-2019-15216\", \"CVE-2019-15217\", \"CVE-2019-15218\", \"CVE-2019-15219\", \"CVE-2019-15220\", \"CVE-2019-15221\", \"CVE-2019-15222\", \"CVE-2019-15239\", \"CVE-2019-15290\", \"CVE-2019-15292\", \"CVE-2019-15538\", \"CVE-2019-15666\", \"CVE-2019-15902\", \"CVE-2019-15917\", \"CVE-2019-15919\", \"CVE-2019-15920\", \"CVE-2019-15921\", \"CVE-2019-15924\", \"CVE-2019-15926\", \"CVE-2019-15927\", \"CVE-2019-9456\");\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:2412-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various\nsecurity and bugfixes.\n\nThe following new features were implemented :\n\njsc#SLE-4875: [CML] New device IDs for CML\n\njsc#SLE-7294: Add cpufreq driver for Raspberry Pi\n
CVE-2019-15099
