Hash: SHA256

             AUSCERT External Security Bulletin Redistribution

         SUSE-SU-2020:0584-1 Security update for the Linux Kernel
                               5 March 2020


        AusCERT Security Bulletin Summary

Product:           linux kernel
Publisher:         SUSE
Operating System:  SUSE
Impact/Access:     Execute Arbitrary Code/Commands -- Remote/Unauthenticated
                   Increased Privileges            -- Existing Account      
                   Access Privileged Data          -- Existing Account      
                   Denial of Service               -- Remote/Unauthenticated
                   Access Confidential Data        -- Existing Account      
Resolution:        Patch/Upgrade
CVE Names:         CVE-2020-8992 CVE-2020-8648 CVE-2020-8428
                   CVE-2020-7053 CVE-2020-2732 CVE-2019-20096
                   CVE-2019-20095 CVE-2019-20054 CVE-2019-19966
                   CVE-2019-19965 CVE-2019-19767 CVE-2019-19543
                   CVE-2019-19537 CVE-2019-19536 CVE-2019-19535
                   CVE-2019-19534 CVE-2019-19533 CVE-2019-19532
                   CVE-2019-19531 CVE-2019-19530 CVE-2019-19529
                   CVE-2019-19528 CVE-2019-19527 CVE-2019-19526
                   CVE-2019-19525 CVE-2019-19524 CVE-2019-19523
                   CVE-2019-19447 CVE-2019-19338 CVE-2019-19332
                   CVE-2019-19319 CVE-2019-19318 CVE-2019-19066
                   CVE-2019-19054 CVE-2019-19051 CVE-2019-19045
                   CVE-2019-19036 CVE-2019-18808 CVE-2019-16994
                   CVE-2019-15213 CVE-2019-14897 CVE-2019-14896

Reference:         ASB-2020.0010

Original Bulletin: 

- --------------------------BEGIN INCLUDED TEXT--------------------

SUSE Security Update: Security update for the Linux Kernel


Announcement ID:   SUSE-SU-2020:0584-1
Rating:            important
References:        #1046303 #1050244 #1051510 #1051858 #1061840 #1065600
                   #1065729 #1071995 #1083647 #1085030 #1086301 #1086313
                   #1086314 #1088810 #1090888 #1104427 #1105392 #1111666
                   #1112178 #1112504 #1114279 #1115026 #1118338 #1120853
                   #1123328 #1127371 #1133021 #1133147 #1134973 #1140025
                   #1141054 #1142095 #1143959 #1144333 #1146519 #1146544
                   #1151548 #1151910 #1151927 #1152631 #1153917 #1154243
                   #1155331 #1155334 #1155689 #1156259 #1156286 #1156462
                   #1157155 #1157157 #1157169 #1157303 #1157424 #1157692
                   #1157853 #1157908 #1157966 #1158013 #1158021 #1158026
                   #1158094 #1158132 #1158381 #1158394 #1158398 #1158407
                   #1158410 #1158413 #1158417 #1158427 #1158445 #1158533
                   #1158637 #1158638 #1158639 #1158640 #1158641 #1158643
                   #1158644 #1158645 #1158646 #1158647 #1158649 #1158651
                   #1158652 #1158819 #1158823 #1158824 #1158827 #1158834
                   #1158893 #1158900 #1158903 #1158904 #1158954 #1159024
                   #1159028 #1159271 #1159297 #1159394 #1159483 #1159484
                   #1159569 #1159588 #1159841 #1159908 #1159909 #1159910
                   #1159911 #1159955 #1160195 #1160210 #1160211 #1160218
                   #1160433 #1160442 #1160476 #1160560 #1160755 #1160756
                   #1160784 #1160787 #1160802 #1160803 #1160804 #1160917
                   #1160966 #1160979 #1161087 #1161360 #1161514 #1161518
                   #1161522 #1161523 #1161549 #1161552 #1161674 #1161702
                   #1161875 #1161907 #1161931 #1161933 #1161934 #1161935
                   #1161936 #1161937 #1162028 #1162067 #1162109 #1162139
                   #1162557 #1162617 #1162618 #1162619 #1162623 #1162928
                   #1162943 #1163383 #1163384 #1163762 #1163774 #1163836
                   #1163840 #1163841 #1163842 #1163843 #1163844 #1163845
                   #1163846 #1163849 #1163850 #1163851 #1163852 #1163853
                   #1163855 #1163856 #1163857 #1163858 #1163859 #1163860
                   #1163861 #1163862 #1163863 #1163867 #1163869 #1163880
                   #1163971 #1164069 #1164098 #1164115 #1164314 #1164315
                   #1164388 #1164471 #1164632 #1164705 #1164712 #1164727
                   #1164728 #1164729 #1164730 #1164731 #1164732 #1164733
                   #1164734 #1164735
Cross-References:  CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15213
                   CVE-2019-16994 CVE-2019-18808 CVE-2019-19036 CVE-2019-19045
                   CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318
                   CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447
                   CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19526
                   CVE-2019-19527 CVE-2019-19528 CVE-2019-19529 CVE-2019-19530
                   CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534
                   CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19543
                   CVE-2019-19767 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054
                   CVE-2019-20095 CVE-2019-20096 CVE-2020-2732 CVE-2020-7053
                   CVE-2020-8428 CVE-2020-8648 CVE-2020-8992
Affected Products:
                   SUSE Linux Enterprise Workstation Extension 12-SP4
                   SUSE Linux Enterprise Software Development Kit 12-SP4
                   SUSE Linux Enterprise Server 12-SP4
                   SUSE Linux Enterprise Live Patching 12-SP4
                   SUSE Linux Enterprise High Availability 12-SP4

An update that solves 43 vulnerabilities and has 163 fixes is now available.


The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security
and bugfixes.

The following security bugs were fixed:

  o CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may
    trick the L0 hypervisor into accessing sensitive L1 resources (bsc#
  o CVE-2019-19338: There was an incomplete fix for an issue with Transactional
    Synchronisation Extensions in the KVM code (bsc#1158954).
  o CVE-2019-14615: An information disclosure vulnerability existed due to
    insufficient control flow in certain data structures for some Intel(R)
    Processors (bnc#1160195).
  o CVE-2019-14896: A heap overflow was found in the add_ie_rates() function of
    the Marvell Wifi Driver (bsc#1157157).
  o CVE-2019-14897: A stack overflow was found in the lbs_ibss_join_existing()
    function of the Marvell Wifi Driver (bsc#1157155).
  o CVE-2019-15213: A use-after-free bug caused by a malicious USB device was
    found in drivers/media/usb/dvb-usb/dvb-usb-init.c (bsc#1146544).
  o CVE-2019-16994: A memory leak existed in sit_init_net() in net/ipv6/sit.c
    which might have caused denial of service, aka CID-07f12b26e21a (bnc#
  o CVE-2019-18808: A memory leak in drivers/crypto/ccp/ccp-ops.c allowed
    attackers to cause a denial of service (memory consumption), aka
    CID-128c66429247 (bnc#1156259).
  o CVE-2019-19036: An issue discovered in btrfs_root_node in fs/btrfs/ctree.c
    allowed a NULL pointer dereference because rcu_dereference(root->node) can
    be zero (bnc#1157692).
  o CVE-2019-19045: A memory leak in drivers/net/ethernet/mellanox/mlx5/core/
    fpga/conn.c allowed attackers to cause a denial of service (memory
    consumption) by triggering mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7
  o CVE-2019-19051: A memory leak in drivers/net/wimax/i2400m/op-rfkill.c
    allowed attackers to cause a denial of service (memory consumption), aka
    CID-6f3ef5c25cc7 (bnc#1159024).
  o CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers
    /media/pci/cx23885/cx23888-ir.c allowed attackers to cause a denial of
    service (memory consumption) by triggering kfifo_alloc() failures, aka
    CID-a7b2df76b42b (bnc#1161518).
  o CVE-2019-19066: A memory leak in drivers/scsi/bfa/bfad_attr.c allowed
    attackers to cause a denial of service (memory consumption), aka
    CID-0e62395da2bd (bnc#1157303).
  o CVE-2019-19318: Mounting a crafted btrfs image twice could have caused a
    use-after-free (bnc#1158026).
  o CVE-2019-19319: A slab-out-of-bounds write access could have occured when
    setxattr was called after mounting of a specially crafted ext4 image (bnc#
  o CVE-2019-19332: An out-of-bounds memory write issue was found in the way
    the KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to
    get CPUID features emulated by the KVM hypervisor. A user or process able
    to access the '/dev/kvm' device could have used this flaw to crash the
    system (bnc#1158827).
  o CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing some
    operations, and unmounting could have led to a use-after-free in fs/ext4/
    super.c (bnc#1158819).
  o CVE-2019-19523: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/usb/misc/adutux.c driver, aka
    CID-44efc269db79 (bsc#1158823).
  o CVE-2019-19524: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/input/ff-memless.c driver, aka
    CID-fa3a5a1880c9 (bsc#1158413).
  o CVE-2019-19525: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka
    CID-7fd25e6fc035 (bsc#1158417).
  o CVE-2019-19526: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/nfc/pn533/usb.c driver, aka
    CID-6af3aa57a098 (bsc#1158893).
  o CVE-2019-19527: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka
    CID-9c09b214f30e (bsc#1158900).
  o CVE-2019-19528: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka
    CID-edc4746f253d (bsc#1158407).
  o CVE-2019-19529: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/net/can/usb/mcba_usb.c driver, aka
    CID-4d6636498c41 (bnc#1158381).
  o CVE-2019-19530: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka
    CID-c52873e5a1ef (bsc#1158410).
  o CVE-2019-19531: There was a use-after-free bug that can be caused by a
    malicious USB device in the drivers/usb/misc/yurex.c driver, aka
    CID-fc05481b2fca (bsc#1158445).
  o CVE-2019-19532: There were multiple out-of-bounds write bugs that can be
    caused by a malicious USB HID device, aka CID-d9d4b1e46d95 (bsc#1158824).
  o CVE-2019-19533: There was an info-leak bug that can be caused by a
    malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver,
    aka CID-a10feaf8c464 (bsc#1158834).
  o CVE-2019-19534: There was an info-leak bug that can be caused by a
    malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c
    driver, aka CID-f7a1337f0d29 (bsc#1158398).
  o CVE-2019-19535: There was an info-leak bug that can be caused by a
    malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c
    driver, aka CID-30a8beeb3042 (bsc#1158903).
  o CVE-2019-19536: There was an info-leak bug that can be caused by a
    malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c
    driver, aka CID-ead16e53c2f0 (bsc#1158394).
  o CVE-2019-19537: There was a race condition bug that can be caused by a
    malicious USB device in the USB character device driver layer, aka
    CID-303911cfc5b9 (bsc#1158904).
  o CVE-2019-19543: There was a use-after-free in serial_ir_init_module() in
    drivers/media/rc/serial_ir.c (bnc#1158427).
  o CVE-2019-19767: There were multiple use-after-free errors in
    __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/
    inode.c and fs/ext4/super.c, aka CID-4ea99936a163 (bnc#1159297).
  o CVE-2019-19965: There was a NULL pointer dereference in drivers/scsi/libsas
    /sas_discover.c because of mishandling of port disconnection during
    discovery, related to a PHY down race condition, aka CID-f70267f379b5 (bnc#
  o CVE-2019-19966: There was a use-after-free in cpia2_exit() in drivers/media
    /usb/cpia2/cpia2_v4l.c that could have caused a denial of service, aka
    CID-dea37a972655 (bnc#1159841).
  o CVE-2019-20054: There was a NULL pointer dereference in drop_sysctl_table()
    in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e (bnc#
  o CVE-2019-20095: Several memory leaks were found in drivers/net/wireless/
    marvell/mwifiex/cfg80211.c, aka CID-003b686ace82 (bnc#1159909).
  o CVE-2019-20096: There was a memory leak in __feat_register_sp() in net/dccp
    /feat.c, aka CID-1d3ff0950e2b (bnc#1159908).
  o CVE-2020-7053: There was a use-after-free (write) in the i915_ppgtt_close
    function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c (bnc#
  o CVE-2020-8428: There was a use-after-free bug in fs/namei.c, which allowed
    local users to cause a denial of service (OOPS) or possibly obtain
    sensitive information from kernel memory, aka CID-d0cb50185ae9 (bnc#
  o CVE-2020-8648: There was a use-after-free vulnerability in the
    n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).
  o CVE-2020-8992: An issue was discovered in ext4_protect_reserved_inode in fs
    /ext4/block_validity.c that allowed attackers to cause a soft lockup via a
    crafted journal size (bnc#1164069).

The following non-security bugs were fixed:

  o 6pack,mkiss: fix possible deadlock (bsc#1051510).
  o ACPI / APEI: Do not wait to serialise with oops messages when panic()ing
  o ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510).
  o ACPI / LPSS: Ignore acpi_device_fix_up_power() return value (bsc#1051510).
  o ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510).
  o ACPI / watchdog: Fix init failure with overlapping register regions (bsc#
  o ACPI / watchdog: Set default timeout in probe (bsc#1162557).
  o ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() (bsc#
  o ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion()
  o ACPI: OSL: only free map once in osl.c (bsc#1051510).
  o ACPI: PM: Avoid attaching ACPI PM domain to certain devices (bsc#1051510).
  o ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 (bsc#1051510).
  o ACPI: video: Do not export a non working backlight interface on MSI MS-7721
    boards (bsc#1051510).
  o ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557).
  o af_packet: set defaule value for tmo (bsc#1051510).
  o ALSA: control: remove useless assignment in .info callback of PCM chmap
    element (git-fixes).
  o ALSA: echoaudio: simplify get_audio_levels (bsc#1051510).
  o ALSA: fireface: fix return value in error path of isochronous resources
    reservation (bsc#1051510).
  o ALSA: hda - Add docking station support for Lenovo Thinkpad T420s
  o ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes).
  o ALSA: hda/analog - Minor optimization for SPDIF mux connections
  o ALSA: hda/ca0132 - Avoid endless loop (git-fixes).
  o ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes).
  o ALSA: hda/ca0132 - Keep power on during processing DSP response
  o ALSA: hda/hdmi - Add new pci ids for AMD GPU display audio (git-fixes).
  o ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes).
  o ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510).
  o ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510).
  o ALSA: hda/hdmi - fix vgaswitcheroo detection for AMD (git-fixes).
  o ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510).
  o ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236
  o ALSA: hda/realtek - Fix silent output on MSI-GL73 (git-fixes).
  o ALSA: hda/realtek - Line-out jack does not work on a Dell AIO (bsc#
  o ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).
  o ALSA: hda: Reset stream if DMA RUN bit not cleared (bsc#1111666).
  o ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs (git-fixes).
  o ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code (bsc#
  o ALSA: oxfw: fix return value in error path of isochronous resources
    reservation (bsc#1051510).
  o ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes).
  o ALSA: pcm: oss: Avoid potential buffer overflows (git-fixes).
  o ALSA: seq: Avoid concurrent access to queue flags (git-fixes).
  o ALSA: seq: Fix concurrent access to queue current tick/time (git-fixes).
  o ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510).
  o ALSA: sh: Fix compile warning wrt const (git-fixes).
  o ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 (git-fixes).
  o ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510).
  o ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510).
  o apparmor: fix unsigned len comparison with less than zero (git-fixes).
  o ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510).
  o arm64: Revert support for execute-only user mappings (bsc#1160218).
  o ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510).
  o ASoC: compress: fix unsigned integer overflow check (bsc#1051510).
  o ASoC: cs4349: Use PM ops 'cs4349_runtime_pm' (bsc#1051510).
  o ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report (bsc#
  o ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 (bsc#
  o ASoC: sun8i-codec: Fix setting DAI data format (git-fixes).
  o ASoC: wm8962: fix lambda value (git-fixes).
  o ata: ahci: Add shutdown to freeze hardware resources of ahci (bsc#1164388).
  o ath10k: fix fw crash by moving chip reset after napi disabled (bsc#
  o ath6kl: Fix off by one error in scan completion (bsc#1051510).
  o ath9k: fix storage endpoint lookup (git-fixes).
  o atl1e: checking the status of atl1e_write_phy_reg (bsc#1051510).
  o audit: Allow auditd to set pid to 0 to end auditing (bsc#1158094).
  o batman-adv: Fix DAT candidate selection on little endian systems (bsc#
  o bcache: add code comment bch_keylist_pop() and bch_keylist_pop_front() (bsc
  o bcache: add code comments for state->pool in __btree_sort() (bsc#1163762).
  o bcache: add code comments in bch_btree_leaf_dirty() (bsc#1163762).
  o bcache: add cond_resched() in __bch_cache_cmp() (bsc#1163762).
  o bcache: add idle_max_writeback_rate sysfs interface (bsc#1163762).
  o bcache: add more accurate error messages in read_super() (bsc#1163762).
  o bcache: add readahead cache policy options via sysfs interface (bsc#
  o bcache: at least try to shrink 1 node in bch_mca_scan() (bsc#1163762).
  o bcache: avoid unnecessary btree nodes flushing in btree_flush_write() (bsc#
  o bcache: check return value of prio_read() (bsc#1163762).
  o bcache: deleted code comments for dead code in bch_data_insert_keys() (bsc#
  o bcache: do not export symbols (bsc#1163762).
  o bcache: explicity type cast in bset_bkey_last() (bsc#1163762).
  o bcache: fix a lost wake-up problem caused by mca_cannibalize_lock (bsc#
  o bcache: Fix an error code in bch_dump_read() (bsc#1163762).
  o bcache: fix deadlock in bcache_allocator (bsc#1163762).
  o bcache: fix incorrect data type usage in btree_flush_write() (bsc#1163762).
  o bcache: fix memory corruption in bch_cache_accounting_clear() (bsc#
  o bcache: fix static checker warning in bcache_device_free() (bsc#1163762).
  o bcache: ignore pending signals when creating gc and allocator thread (bsc#
    1163762, bsc#1112504).
  o bcache: print written and keys in trace_bcache_btree_write (bsc#1163762).
  o bcache: reap c->btree_cache_freeable from the tail in bch_mca_scan() (bsc#
  o bcache: reap from tail of c->btree_cache in bch_mca_scan() (bsc#1163762).
  o bcache: remove macro nr_to_fifo_front() (bsc#1163762).
  o bcache: remove member accessed from struct btree (bsc#1163762).
  o bcache: remove the extra cflags for request.o (bsc#1163762).
  o bcache: Revert "bcache: shrink btree node cache after bch_btree_check()"
    (bsc#1163762, bsc#1112504).
  o bcma: remove set but not used variable 'sizel' (git-fixes).
  o blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1163840).
  o blk-mq: make sure that line break can be printed (bsc#1164098).
  o Bluetooth: Fix race condition in hci_release_sock() (bsc#1051510).
  o Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading
  o bonding: fix active-backup transition after link failure (git-fixes).
  o bonding: fix potential NULL deref in bond_update_slave_arr (bsc#1051510).
  o bonding: fix slave stuck in BOND_LINK_FAIL state
  o bonding: fix state transition issue in link monitoring
  o bonding: fix unexpected IFF_BONDING bit unset (bsc#1051510).
  o bpf: Make use of probe_user_write in probe write helper (bsc#1083647).
  o brcmfmac: fix interface sanity check (git-fixes).
  o brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes).
  o brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes).
  o btrfs: abort transaction after failed inode updates in create_subvol (bsc#
  o btrfs: add missing extents release on file extent cluster relocation error
  o btrfs: avoid fallback to transaction commit during fsync of files with
    holes (bsc#1159569).
  o btrfs: dev-replace: remove warning for unknown return codes when finished
    (dependency for bsc#1162067).
  o btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934).
  o btrfs: do not double lock the subvol_sem for rename exchange (bsc#1162943).
  o btrfs: Ensure we trim ranges across block group boundary (bsc#1151910).
  o btrfs: fix block group remaining RO forever after error during device
    replace (bsc#1160442).
  o btrfs: fix btrfs_write_inode vs delayed iput deadlock (bsc#1154243).
  o btrfs: fix infinite loop during fsync after rename operations (bsc#
  o btrfs: fix infinite loop during nocow writeback due to race (bsc#1160804).
  o btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433).
  o btrfs: fix missing data checksums after replaying a log tree (bsc#1161931).
  o btrfs: fix negative subv_writers counter and data space leak after buffered
    write (bsc#1160802).
  o btrfs: fix race between adding and putting tree mod seq elements and nodes
  o btrfs: fix removal logic of the tree mod log that leads to use-after-free
    issues (bsc#1160803).
  o btrfs: fix selftests failure due to uninitialized i_mode in test inodes
    (Fix for dependency of bsc#1157692).
  o btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937).
  o btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973).
  o btrfs: inode: Verify inode mode to avoid NULL pointer dereference
    (dependency for bsc#1157692).
  o btrfs: make tree checker detect checksum items with overlapping ranges (bsc
  o btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it
    (dependency for bsc#1157692).
  o btrfs: record all roots for rename exchange on a subvol (bsc#1161933).
  o btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588).
  o btrfs: scrub: Require mandatory block group RO for dev-replace (bsc#
  o btrfs: send, skip backreference walking for extents with many references
  o btrfs: simplify inode locking for RWF_NOWAIT (git-fixes).
  o btrfs: skip log replay on orphaned roots (bsc#1161935).
  o btrfs: tree-checker: Check chunk item at tree block read time (dependency
    for bsc#1157692).
  o btrfs: tree-checker: Check level for leaves and nodes (dependency for bsc#
  o btrfs: tree-checker: Enhance chunk checker to validate chunk profile
    (dependency for bsc#1157692).
  o btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency of
  o btrfs: tree-checker: get fs_info from eb in block_group_err (dependency for
  o btrfs: tree-checker: get fs_info from eb in check_block_group_item
    (dependency for bsc#1157692).
  o btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency for
  o btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency for
  o btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency for
  o btrfs: tree-checker: get fs_info from eb in check_extent_data_item
    (dependency for bsc#1157692).
  o btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency
    for bsc#1157692).
  o btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for bsc#
  o btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency for
  o btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for bsc#
  o btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for
  o btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for
  o btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency for
  o btrfs: tree-checker: get fs_info from eb in generic_err (dependency for bsc
  o btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead
    of EIO (dependency for bsc#1157692).
  o btrfs: tree-checker: Make chunk item checker messages more readable
    (dependency for bsc#1157692).
  o btrfs: tree-checker: Verify dev item (dependency for bsc#1157692).
  o btrfs: tree-checker: Verify inode item (dependency for bsc#1157692).
  o btrfs: volumes: Use more straightforward way to calculate map length (bsc#
  o can, slip: Protect tty->disc_data in write_wakeup and close with RCU (bsc#
  o can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing
    CAN sk_buffs (bsc#1051510).
  o can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open
  o can: gs_usb: gs_usb_probe(): use descriptors of current altsetting (bsc#
  o can: mscan: mscan_rx_poll(): fix rx path lockup when returning from polling
    to irq mode (bsc#1051510).
  o can: peak_usb: report bus recovery as well (bsc#1051510).
  o can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error (bsc#
  o can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error
  o can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on
    queue overflow or OOM (bsc#1051510).
  o can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate
    error value in case of errors (bsc#1051510).
  o can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510).
  o CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10).
  o cdrom: respect device capabilities during opening action (boo#1164632).
  o cfg80211/mac80211: make ieee80211_send_layer2_update a public function (bsc
  o cfg80211: check for set_wiphy_params (bsc#1051510).
  o cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510).
  o cgroup,writeback: do not switch wbs immediately on dead wbs if the memcg is
    dead (bsc#1158645).
  o cgroup: pids: use atomic64_t for pids->limit (bsc#1161514).
  o chardev: Avoid potential use-after-free in 'chrdev_open()' (bsc#1163849).
  o cifs: add support for flock (bsc#1144333).
  o cifs: Close cached root handle only if it had a lease (bsc#1144333).
  o cifs: Close open handle after interrupted close (bsc#1144333).
  o cifs: close the shared root handle on tree disconnect (bsc#1144333).
  o cifs: Do not miss cancelled OPEN responses (bsc#1144333).
  o cifs: Fix lookup of root ses in DFS referral cache (bsc#1144333).
  o cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333).
  o cifs: fix mount option display for sec=krb5i (bsc#1161907).
  o cifs: Fix mount options set in automount (bsc#1144333).
  o cifs: Fix NULL pointer dereference in mid callback (bsc#1144333).
  o cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bsc#
  o cifs: Fix potential softlockups while refreshing DFS cache (bsc#1144333).
  o cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333).
  o cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1144333).
  o cifs: Properly process SMB3 lease breaks (bsc#1144333).
  o cifs: remove set but not used variables 'cinode' and 'netfid' (bsc#
  o cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333).
  o clk: Do not try to enable critical clocks if prepare failed (bsc#1051510).
  o clk: mmp2: Fix the order of timer mux parents (bsc#1051510).
  o clk: qcom: rcg2: Do not crash if our parent can't be found; return an error
  o clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510).
  o clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510).
  o clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering (bsc#1051510).
  o clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510).
  o clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock (bsc#1051510).
  o clk: sunxi: sun9i-mmc: Implement reset callback for reset controls (bsc#
  o clk: tegra: Mark fuse clock as critical (bsc#1051510).
  o clocksource/drivers/bcm2835_timer: Fix memory leak of timer (bsc#1051510).
  o clocksource: Prevent double add_timer_on() for watchdog_timer (bsc#
  o closures: fix a race on wakeup from closure_sync (bsc#1163762).
  o compat_ioctl: handle SIOCOUTQNSD (bsc#1051510).
  o configfs_register_group() shouldn't be (and isn't) called in rmdirable
    parts (bsc#1051510).
  o copy/pasted "Recommends:" instead of "Provides:", "Obsoletes:" and
  o Cover up kABI breakage due to DH key verification (bsc#1155331).
  o crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510).
  o crypto: api - Check spawn->alg under lock in crypto_drop_spawn (bsc#
  o crypto: api - Fix race condition in crypto_spawn_alg (bsc#1051510).
  o crypto: atmel-sha - fix error handling when setting hmac key (bsc#1051510).
  o crypto: ccp - fix uninitialized list head (bsc#1051510).
  o crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510).
  o crypto: dh - add public key verification test (bsc#1155331).
  o crypto: dh - fix calculating encoded key size (bsc#1155331).
  o crypto: dh - fix memory leak (bsc#1155331).
  o crypto: dh - update test for public key verification (bsc#1155331).
  o crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334).
  o crypto: ecdh - add public key verification test (bsc#1155331).
  o crypto: ecdh - fix typo of P-192 b value (bsc#1155331).
  o crypto: mxc-scc - fix build warnings on ARM64 (bsc#1051510).
  o crypto: pcrypt - Do not clear MAY_SLEEP flag in original request (bsc#
  o crypto: picoxcell - adjust the position of tasklet_init and fix missed
    tasklet_kill (bsc#1051510).
  o crypto: reexport crypto_shoot_alg() (bsc#1051510, kABI fix).
  o cxgb4: request the TX CIDX updates to status page (bsc#1127371).
  o dma-buf: Fix memory leak in sync_file_merge() (git-fixes).
  o dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510).
  o dmaengine: coh901318: Fix a double-lock bug (bsc#1051510).
  o dmaengine: coh901318: Remove unused variable (bsc#1051510).
  o dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510).
  o Documentation: Document arm64 kpti control (bsc#1162623).
  o drivers/base/memory.c: cache blocks in radix tree to accelerate lookup (bsc
    #1159955 ltc#182993).
  o drivers/base/memory.c: do not access uninitialized memmaps in
    soft_offline_page_store() (bsc#1051510).
  o drivers/base/platform.c: kmemleak ignore a known leak (bsc#1051510).
  o drivers/regulator: fix a missing check of return value (bsc#1051510).
  o drm/amdgpu: add function parameter description in 'amdgpu_gart_bind' (bsc#
  o drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1114279)
  o drm/amdgpu: remove 4 set but not used variable in
    amdgpu_atombios_get_connector_info_from_object_table (bsc#1051510).
  o drm/amdgpu: remove always false comparison in
    'amdgpu_atombios_i2c_process_i2c_ch' (bsc#1051510).
  o drm/amdgpu: remove set but not used variable 'amdgpu_connector' (bsc#
  o drm/amdgpu: remove set but not used variable 'dig' (bsc#1051510).
  o drm/amdgpu: remove set but not used variable 'dig_connector' (bsc#1051510).
  o drm/amdgpu: remove set but not used variable 'mc_shared_chmap' (bsc#
  o drm/amdgpu: remove set but not used variable 'mc_shared_chmap' from
    'gfx_v6_0.c' and 'gfx_v7_0.c' (bsc#1051510).
  o drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510).
  o drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510).
  o drm/i810: Prevent underflow in ioctl (bsc#1114279)
  o drm/i915: Add missing include file (bsc#1051510).
  o drm/i915: Fix pid leak with banned clients (bsc#1114279)
  o drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510).
  o drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() (bsc#
  o drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler (bsc
  o drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)
  o drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279)
  o drm/rockchip: lvds: Fix indentation of a #define (bsc#1051510).
  o drm/rockchip: Round up _before_ giving to the clock framework (bsc#1114279)
  o drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add (bsc#1051510).
  o drm: bridge: dw-hdmi: constify copied structure (bsc#1051510).
  o drm: limit to INT_MAX in create_blob ioctl (bsc#1051510).
  o drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510).
  o drm: panel-lvds: Potential Oops in probe error handling (bsc#1114279)
  o e1000e: Add support for Comet Lake (bsc#1158533).
  o e1000e: Add support for Tiger Lake (bsc#1158533).
  o e1000e: Increase pause and refresh time (bsc#1158533).
  o e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait (bsc#
  o ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable (bsc#
  o ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either
  o EDAC/ghes: Fix locking and memory barrier issues (bsc#1114279). EDAC/ghes:
    Do not warn when incrementing refcount on 0 (bsc#1114279).
  o Enable CONFIG_BLK_DEV_SR_VENDOR (boo#1164632).
  o enic: prevent waking up stopped tx queues over watchdog reset (bsc#
  o exit: panic before exit_mm() on global init exit (bsc#1161549).
  o ext2: check err when partial != NULL (bsc#1163859).
  o ext4, jbd2: ensure panic when aborting with zero errno (bsc#1163853).
  o ext4: check for directory entries too close to block end (bsc#1163861).
  o ext4: fix a bug in ext4_wait_for_tail_page_commit (bsc#1163841).
  o ext4: fix checksum errors with indexed dirs (bsc#1160979).
  o ext4: fix deadlock allocating crypto bounce page from mempool (bsc#
  o ext4: Fix mount failure with quota configured as module (bsc#1164471).
  o ext4: fix punch hole for inline_data file systems (bsc#1158640).
  o ext4: improve explanation of a mount failure caused by a misconfigured
    kernel (bsc#1163843).
  o ext4: update direct I/O read lock pattern for IOCB_NOWAIT (bsc#1158639).
  o extcon: max8997: Fix lack of path setting in USB device mode (bsc#1051510).
  o firestream: fix memory leaks (bsc#1051510).
  o fix autofs regression caused by follow_managed() changes (bsc#1159271).
  o fix dget_parent() fastpath race (bsc#1159271).
  o Fix partial checked out tree build ... so that bisection does not break.
  o Fix the locking in dcache_readdir() and friends (bsc#1123328).
  o fjes: fix missed check in fjes_acpi_add (bsc#1051510).
  o fs/namei.c: fix missing barriers when checking positivity (bsc#1159271).
  o fs/namei.c: pull positivity check into follow_managed() (bsc#1159271).
  o fs/open.c: allow opening only regular files during execve() (bsc#1163845).
  o fs: cifs: Fix atime update check vs mtime (bsc#1144333).
  o fscrypt: do not set policy for a dead directory (bsc#1163846).
  o ftrace: Add comment to why rcu_dereference_sched() is open coded
  o ftrace: Avoid potential division by zero in function profiler (bsc#
  o ftrace: Introduce PERMANENT ftrace_ops flag (bsc#1120853).
  o ftrace: Protect ftrace_graph_hash with ftrace_sync (git-fixes).
  o genirq/proc: Return proper error code when irq_set_affinity() fails (bnc#
  o genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510).
  o genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510).
  o gpio: Fix error message on out-of-range GPIO in lookup table (bsc#1051510).
  o gtp: avoid zero size hashtable (networking-stable-20_01_01).
  o gtp: do not allow adding duplicate tid and ms_addr pdp context
  o gtp: fix an use-after-free in ipv4_pdp_find() (networking-stable-20_01_01).
  o gtp: fix wrong condition in gtp_genl_dump_pdp()
  o HID: doc: fix wrong data structure reference for UHID_OUTPUT (bsc#1051510).
  o HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510).
  o HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510).
  o HID: intel-ish-hid: fixes incorrect error handling (bsc#1051510).
  o HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510).
  o hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510).
  o hwmon: (adt7475) Make volt2reg return same reg as reg2volt input (bsc#
  o hwmon: (core) Do not use device managed functions for memory allocations
  o hwmon: (nct7802) Fix voltage limits to wrong registers (bsc#1051510).
  o hwmon: (pmbus/ltc2978) Fix PMBus polling of MFR_COMMON definitions (bsc#
  o hwrng: stm32 - fix unbalanced pm_runtime_enable (bsc#1051510).
  o i2c: imx: do not print error message on probe defer (bsc#1051510).
  o ibmveth: Detect unsupported packets before sending to the hypervisor (bsc#
    1159484 ltc#182983).
  o ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).
  o ibmvnic: Fix completion structure initialization (bsc#1155689 ltc#182047).
  o ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).
  o ibmvnic: Terminate waiting device threads after loss of service (bsc#
    1155689 ltc#182047).
  o idr: Fix idr_alloc_u32 on 32-bit systems (bsc#1051510).
  o iio: adc: max9611: Fix too short conversion time delay (bsc#1051510).
  o iio: buffer: align the size of scan bytes to size of the largest element
  o inet: protect against too small mtu values (networking-stable-19_12_16).
  o init: add arch_call_rest_init to allow stack switching (jsc#SLE-11179).
  o Input: aiptek - fix endpoint sanity check (bsc#1051510).
  o Input: cyttsp4_core - fix use after free bug (bsc#1051510).
  o Input: goodix - add upside-down quirk for Teclast X89 tablet (bsc#1051510).
  o Input: gtco - fix endpoint sanity check (bsc#1051510).
  o Input: keyspan-remote - fix control-message timeouts (bsc#1051510).
  o Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510).
  o Input: pm8xxx-vib - fix handling of separate enable register (bsc#1051510).
  o Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510).
  o Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register (bsc
  o Input: sur40 - fix interface sanity checks (bsc#1051510).
  o Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510).
  o Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers (bsc#
  o Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510).
  o iomap: Fix pipe page leakage during splicing (bsc#1158651).
  o iommu/amd: Fix IOMMU perf counter clobbering during init (bsc#1162617).
  o iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA (bsc#
  o iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() (bsc#1164115).
  o iommu/vt-d: Unlink device if failed to add to group (bsc#1160756).
  o iommu: Remove device link to group on failure (bsc#1160755).
  o ipv4: Fix table id reference in fib_sync_down_addr
  o iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop
  o iwlwifi: do not throw error when trying to remove IGTK (bsc#1051510).
  o iwlwifi: mvm: fix NVM check for 3168 devices (bsc#1051510).
  o iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510).
  o iwlwifi: mvm: synchronize TID queue removal (bsc#1051510).
  o jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info
    when load journal (bsc#1163862).
  o jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer
  o jbd2: Fix possible overflow in jbd2_log_space_left() (bsc#1163860).
  o jbd2: make sure ESHUTDOWN to be recorded in the journal superblock (bsc#
  o jbd2: move the clearing of b_modified flag to the journal_unmap_buffer()
  o jbd2: switch to use jbd2_journal_abort() when failed to submit the commit
    record (bsc#1163852).
  o kABI workaround for can/skb.h inclusion (bsc#1051510).
  o kABI: add _q suffix to exports that take struct dh (bsc#1155331).
  o kABI: protect struct sctp_ep_common (kabi).
  o kconfig: fix broken dependency in randconfig-generated .config (bsc#
  o kernel-binary.spec.in: do not recommend firmware for kvmsmall and azure
    flavor (boo#1161360).
  o kernel/trace: Fix do not unregister tracepoints when register
    sched_migrate_task fail (bsc#1160787).
  o kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510).
  o kexec: bail out upon SIGKILL when allocating memory (git-fixes).
  o KVM: Clean up __kvm_gfn_to_hva_cache_init() and its callers (bsc#1133021).
  o KVM: fix spectrev1 gadgets (bsc#1164705).
  o KVM: PPC: Book3S HV: Uninit vCPU if vcore creation fails (bsc#1061840).
  o KVM: PPC: Book3S PR: Fix -Werror=return-type build failure (bsc#1061840).
  o KVM: PPC: Book3S PR: Free shared page if mmu initialization fails (bsc#
  o KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl
  o KVM: s390: Test for bad access register and size at the start of
    S390_MEM_OP (git-fixes).
  o KVM: SVM: Guard against DEACTIVATE when performing WBINVD/DF_FLUSH (bsc#
  o KVM: SVM: Override default MMIO mask if memory encryption is enabled (bsc#
  o KVM: SVM: Serialize access to the SEV ASID bitmap (bsc#1114279).
  o KVM: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD
  o KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks
  o KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks (bsc#
  o KVM: x86: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks (bsc
  o KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF
    attacks (bsc#1164712).
  o KVM: x86: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks (bsc#
  o KVM: x86: Protect MSR-based index computations from Spectre-v1/L1TF attacks
    in x86.c (bsc#1164733).
  o KVM: x86: Protect MSR-based index computations in fixed_msr_to_seg_unit()
    from Spectre-v1/L1TF attacks (bsc#1164731).
  o KVM: x86: Protect MSR-based index computations in pmu.h from Spectre-v1/
    L1TF attacks (bsc#1164732).
  o KVM: x86: Protect pmu_intel.c from Spectre-v1/L1TF attacks (bsc#1164735).
  o KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks (bsc#
  o KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks (bsc#
  o KVM: x86: Remove a spurious export of a static function (bsc#1158954).
  o leds: Allow to call led_classdev_unregister() unconditionally (bsc#
  o leds: class: ensure workqueue is initialized before setting brightness (bsc
  o lib/scatterlist.c: adjust indentation in __sg_alloc_table (bsc#1051510).
  o lib/test_kasan.c: fix memory leak in kmalloc_oob_krealloc_more() (bsc#
  o lib: crc64: include for 'crc64_be' (bsc#1163762).
  o livepatch/samples/selftest: Use klp_shadow_alloc() API correctly (bsc#
  o livepatch/selftest: Clean up shadow variable names and type (bsc#1071995).
  o livepatch: Allow to distinguish different version of system state changes
  o livepatch: Basic API to track system state changes (bsc#1071995 ).
  o livepatch: Keep replaced patches until post_patch callback is called (bsc#
  o livepatch: Selftests of the API for tracking system state changes (bsc#
  o livepatch: Simplify stack trace retrieval (jsc#SLE-11179).
  o loop: fix no-unmap write-zeroes request behavior (bsc#1158637).
  o mac80211: Do not send Layer 2 Update frame before authorization (bsc#
  o mac80211: fix station inactive_time shortly after boot (bsc#1051510).
  o mac80211: Fix TKIP replay protection immediately after key setup (bsc#
  o mac80211: mesh: restrict airtime metric to peered established plinks (bsc#
  o macvlan: do not assume mac_header is set in macvlan_broadcast() (bsc#
  o macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() (bsc#1051510).
  o mailbox: mailbox-test: fix null pointer if no mmio (bsc#1051510).
  o media/v4l2-core: set pages dirty upon releasing DMA buffers (bsc#1051510).
  o media: af9005: uninitialized variable printked (bsc#1051510).
  o media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510).
  o media: cec: CEC 2.0-only bcast messages were ignored (git-fixes).
  o media: cec: report Vendor ID after initialization (bsc#1051510).
  o media: digitv: do not continue if remote control state can't be read (bsc#
  o media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 (bsc#1051510).
  o media: exynos4-is: fix wrong mdev and v4l2 dev order in error path
  o media: gspca: zero usb_buf (bsc#1051510).
  o media: iguanair: fix endpoint sanity check (bsc#1051510).
  o media: ov6650: Fix control handler not freed on init error (git-fixes).
  o media: ov6650: Fix crop rectangle alignment not passed back (git-fixes).
  o media: ov6650: Fix incorrect use of JPEG colorspace (git-fixes).
  o media: pulse8-cec: fix lost cec_transmit_attempt_done() call.
  o media: pulse8-cec: return 0 when invalidating the logical address (bsc#
  o media: stkwebcam: Bugfix for wrong return values (bsc#1051510).
  o media: uvcvideo: Avoid cyclic entity chains due to malformed USB
    descriptors (bsc#1051510).
  o media: uvcvideo: Fix error path in control parsing failure (git-fixes).
  o media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE (bsc#1051510).
  o media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT (bsc#1051510).
  o media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments (bsc#
  o mei: bus: prefix device names on bus with the bus name (bsc#1051510).
  o mfd: da9062: Fix watchdog compatible string (bsc#1051510).
  o mfd: dln2: More sanity checking for endpoints (bsc#1051510).
  o mfd: rn5t618: Mark ADC control register volatile (bsc#1051510).
  o missing escaping of backslashes in macro expansions Fixes: f3b74b0ae86b
    ("rpm/kernel-subpackage-spec: Unify dependency handling.") Fixes:
    3fd22e219f77 ("rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#
  o mlx5: add parameter to disable enhanced IPoIB (bsc#1142095)
  o mm, memory_hotplug: do not clear numa_node association after hot_remove
  o mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock (bsc
  o mm: memory_hotplug: use put_device() if device_register fail (bsc#1159955
  o mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510).
  o mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510).
  o mmc: sdhci-of-esdhc: Revert "mmc: sdhci-of-esdhc: add erratum A-009204
    support" (bsc#1051510).
  o mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510).
  o mmc: spi: Toggle SPI polarity, do not hardcode it (bsc#1051510).
  o mmc: tegra: fix SDR50 tuning override (bsc#1051510).
  o moduleparam: fix parameter description mismatch (bsc#1051510).
  o mod_devicetable: fix PHY module format (networking-stable-19_12_28).
  o mtd: fix mtd_oobavail() incoherent returned value (bsc#1051510).
  o mwifiex: debugfs: correct histogram spacing, formatting (bsc#1051510).
  o mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame()
  o mwifiex: fix potential NULL dereference and use after free (bsc#1051510).
  o namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1163851).
  o nbd: prevent memory leak (bsc#1158638).
  o net/ibmvnic: Fix typo in retry check (bsc#1155689 ltc#182047).
  o net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25).
  o net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303).
  o net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25).
  o net/mlx5e: Fix SFF 8472 eeprom length (git-fixes).
  o net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858).
  o net/sched: act_pedit: fix WARN() in the traffic path
  o net: bridge: deny dev_set_mac_address() when unregistering
  o net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes).
  o net: dst: Force 4-byte alignment of dst_metrics
  o net: ena: fix napi handler misbehavior when the napi budget is zero
  o net: ethernet: octeon_mgmt: Account for second possible VLAN header
  o net: ethernet: ti: cpsw: fix extra rx interrupt
  o net: fix data-race in neigh_event_send() (networking-stable-19_11_10).
  o net: hisilicon: Fix a BUG trigered by wrong bytes_compl
  o net: nfc: nci: fix a possible sleep-in-atomic-context bug in
    nci_uart_tty_receive() (networking-stable-19_12_28).
  o net: phy: at803x: Change error to EINVAL for invalid MAC (bsc#1051510).
  o net: phy: broadcom: Use strlcpy() for ethtool::get_strings (bsc#1051510).
  o net: phy: Check against net_device being NULL (bsc#1051510).
  o net: phy: dp83867: Set up RGMII TX delay (bsc#1051510).
  o net: phy: Fix not to call phy_resume() if PHY is not attached (bsc#
  o net: phy: Fix the register offsets in Broadcom iProc mdio mux driver (bsc#
  o net: phy: fixed_phy: Fix fixed_phy not checking GPIO (bsc#1051510).
  o net: phy: marvell: clear wol event before setting it (bsc#1051510).
  o net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1051510).
  o net: phy: meson-gxl: check phy_write return value (bsc#1051510).
  o net: phy: micrel: Use strlcpy() for ethtool::get_strings (bsc#1051510).
  o net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 (bsc#1051510).
  o net: phy: mscc: read 'vsc8531,vddmac' as an u32 (bsc#1051510).
  o net: phy: xgene: disable clk on error paths (bsc#1051510).
  o net: phy: xgmiitorgmii: Check phy_driver ready before accessing (bsc#
  o net: phy: xgmiitorgmii: Check read_status results (bsc#1051510).
  o net: phy: xgmiitorgmii: Support generic PHY status read (bsc#1051510).
  o net: psample: fix skb_over_panic (networking-stable-19_12_03).
  o net: qlogic: Fix error paths in ql_alloc_large_buffers()
  o net: rtnetlink: prevent underflows in do_setvfinfo()
  o net: sched: correct flower port blocking (git-fixes).
  o net: sched: fix `tc -s class show` no bstats on class with nolock subqueues
  o net: usb: lan78xx: Fix suspend/resume PHY register access error
  o net: usb: lan78xx: limit size of local TSO packets (bsc#1051510).
  o net: usb: qmi_wwan: add support for DW5821e with eSIM support
  o net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules
  o netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes).
  o new helper: lookup_positive_unlocked() (bsc#1159271).
  o NFC: fdp: fix incorrect free object (networking-stable-19_11_10).
  o NFC: pn533: fix bulk-message timeout (bsc#1051510).
  o NFC: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes).
  o NFC: st21nfca: fix double free (networking-stable-19_11_10).
  o nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info
  o ocfs2: fix panic due to ocfs2_wq is null (bsc#1158644).
  o ocfs2: fix passing zero to 'PTR_ERR' warning (bsc#1158649).
  o openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info()
  o openvswitch: remove another BUG_ON() (networking-stable-19_12_03).
  o openvswitch: support asymmetric conntrack (networking-stable-19_12_16).
  o orinoco_usb: fix interface sanity check (git-fixes).
  o PCI/IOV: Fix memory leak in pci_iov_add_virtfn() (git-fixes).
  o PCI/MSI: Fix incorrect MSI-X masking on resume (bsc#1051510).
  o PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() (bsc#
  o PCI/PTM: Remove spurious "d" from granularity message (bsc#1051510).
  o PCI/switchtec: Fix vep_vector_number ioread width (bsc#1051510).
  o PCI: Add DMA alias quirk for Intel VCA NTB (bsc#1051510).
  o PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 (bsc#1051510).
  o PCI: Do not disable bridge BARs when assigning bus resources (bsc#1051510).
  o PCI: dwc: Fix find_next_bit() usage (bsc#1051510).
  o PCI: Fix Intel ACS quirk UPDCR register address (bsc#1051510).
  o PCI: rcar: Fix missing MACCTLR register setting in initialization sequence
  o PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30 (git-fixes).
  o percpu: Separate decrypted varaibles anytime encryption can be enabled (bsc
  o perf/x86/intel: Fix inaccurate period in context switch for auto-reload
  o phy: qualcomm: Adjust indentation in read_poll_timeout (bsc#1051510).
  o pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510).
  o pinctrl: sh-pfc: r8a7778: Fix duplicate SDSELF_B and SD1_CLK_B (bsc#
  o pinctrl: xway: fix gpio-hog related boot issues (bsc#1051510).
  o pktcdvd: remove warning on attempting to register non-passthrough dev (bsc#
  o platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 (bsc#
  o platform/x86: hp-wmi: Fix ACPI errors caused by passing 0 as input size
  o platform/x86: hp-wmi: Fix ACPI errors caused by too small buffer (bsc#
  o platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes (bsc#
  o platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI
    table (bsc#1051510).
  o PM / AVS: SmartReflex: NULL check before some freeing functions is not
    needed (bsc#1051510).
  o PM / Domains: Deal with multiple states but no governor in genpd (bsc#
  o power: supply: ltc2941-battery-gauge: fix use-after-free (bsc#1051510).
  o powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729).
  o powerpc/irq: fix stack overflow verification (bsc#1065729).
  o powerpc/livepatch: return -ERRNO values in save_stack_trace_tsk_reliable()
    (bsc#1071995 bsc#1161875).
  o powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729).
  o powerpc/mm: Remove kvm radix prefetch workaround for Power9 DD2.2 (bsc#
  o powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729).
  o powerpc/powernv: Disable native PCIe port management (bsc#1065729).
  o powerpc/pseries/hotplug-memory: Change rc variable to bool (bsc#1065729).
  o powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028 ltc#
  o powerpc/pseries/mobility: notify network peers after migration (bsc#1152631
  o powerpc/pseries/vio: Fix iommu_table use-after-free refcount warning (bsc#
  o powerpc/pseries: Advance pfn if section is not present in lmb_is_removable
    () (bsc#1065729).
  o powerpc/pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce
    for DDW (bsc#1065729).
  o powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init()
  o powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729).
  o powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal
    delivery (bsc#1118338 ltc#173734).
  o powerpc/tools: Do not quote $objdump in scripts (bsc#1065729).
  o powerpc/xive: Discard ESB load value when interrupt is invalid (bsc#
  o powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts (bsc#1085030).
  o powerpc/xmon: do not access ASDR in VMs (bsc#1065729).
  o powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB
    (bnc#1151927 5.3.17).
  o powerpc: Allow flush_icache_range to work across ranges >4GB (bnc#1151927
  o powerpc: avoid adjusting memory_limit for capture kernel memory reservation
    (bsc#1140025 ltc#176086).
  o powerpc: Fix vDSO clock_getres() (bsc#1065729).
  o powerpc: reserve memory for capture kernel after hugepages init (bsc#
    1140025 ltc#176086).
  o ppp: Adjust indentation into ppp_async_input (git-fixes).
  o prevent active file list thrashing due to refault detection (VM
    Performance, bsc#1156286).
  o printk: Export console_printk (bsc#1071995).
  o pstore/ram: Write new dumps to start of recycled zones (bsc#1051510).
  o pwm: Clear chip_data in pwm_put() (bsc#1051510).
  o pwm: clps711x: Fix period calculation (bsc#1051510).
  o pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional
  o pwm: Remove set but not set variable 'pwm' (git-fixes).
  o pxa168fb: Fix the function used to release some memory in an error (bsc#
  o qede: Disable hardware gro when xdp prog is installed (bsc#1086314 bsc#
    1086313 bsc#1086301 ).
  o qede: Fix multicast mac configuration (networking-stable-19_12_28).
  o qede: fix NULL pointer deref in __qede_remove()
  o qmi_wwan: Add support for Quectel RM500Q (bsc#1051510).
  o quota: Check that quota is not dirty before release (bsc#1163858).
  o quota: fix livelock in dquot_writeback_dquots (bsc#1163857).
  o r8152: add missing endpoint sanity check (bsc#1051510).
  o r8152: get default setting of WOL before initializing (bsc#1051510).
  o random: move FIPS continuous test to output functions (bsc#1155334).
  o RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244).
  o RDMA/hns: Prevent memory leaks of eq->buf_list (bsc#1104427 ).
  o regulator: Fix return value of _set_load() stub (bsc#1051510).
  o regulator: rk808: Lower log level on optional GPIOs being not available
  o regulator: rn5t618: fix module aliases (bsc#1051510).
  o regulator: tps65910: fix a missing check of return value (bsc#1051510).
  o reiserfs: Fix memory leak of journal device string (bsc#1163867).
  o reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling (bsc#
  o reset: fix reset_control_ops kerneldoc comment (bsc#1051510).
  o resource: fix locking in find_next_iomem_res() (bsc#1114279).
  o rpm/kabi.pl: support new (>=5.4) Module.symvers format (new symbol
    namespace field)
  o rpm/kernel-binary.spec.in: Replace Novell with SUSE
  o rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends (bsc#
    1143959) For reducing the dependency on kernel-firmware in sub packages
  o rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959)
  o rpm/kernel-subpackage-spec: fix kernel-default-base build There were some
    issues with recent changes to subpackage dependencies handling:
  o rpm/kernel-subpackage-spec: Unify dependency handling.
  o rpm/modules.fips: update module list (bsc#1157853)
  o rsi_91x_usb: fix interface sanity check (git-fixes).
  o rt2800: remove errornous duplicate condition (git-fixes).
  o rtc: cmos: Stop using shared IRQ (bsc#1051510).
  o rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510).
  o rtc: hym8563: Return -EINVAL if the time is known to be invalid (bsc#
  o rtc: max8997: Fix the returned value in case of error in
    'max8997_rtc_read_alarm()' (bsc#1051510).
  o rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510).
  o rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510).
  o rtc: s35390a: Change buf's type to u8 in s35390a_init (bsc#1051510).
  o rtl818x: fix potential use after free (bsc#1051510).
  o rtl8xxxu: fix interface sanity check (git-fixes).
  o rtlwifi: Fix MAX MPDU of VHT capability (git-fixes).
  o rtlwifi: Remove redundant semicolon in wifi.h (git-fixes).
  o s390/ftrace: generate traced function stack frame (jsc#SLE-11178 jsc#
  o s390/ftrace: save traced function caller (jsc#SLE-11179).
  o s390/ftrace: use HAVE_FUNCTION_GRAPH_RET_ADDR_PTR (jsc#SLE-11179).
  o s390/head64: correct init_task stack setup (jsc#SLE-11179).
  o s390/kasan: avoid false positives during stack unwind (jsc#SLE-11179).
  o s390/kasan: avoid report in get_wchan (jsc#SLE-11179).
  o s390/livepatch: Implement reliable stack tracing for the consistency model
  o s390/mm: properly clear _PAGE_NOEXEC bit when it is not supported (bsc#
  o s390/process: avoid custom stack unwinding in get_wchan (jsc#SLE-11179).
  o s390/qeth: clean up page frag creation (git-fixes).
  o s390/qeth: consolidate skb allocation (git-fixes).
  o s390/qeth: ensure linear access to packet headers (git-fixes).
  o s390/qeth: guard against runt packets (git-fixes).
  o s390/stacktrace: use common arch_stack_walk infrastructure (jsc#SLE-11179).
  o s390/suspend: fix stack setup in swsusp_arch_suspend (jsc#SLE-11179).
  o s390/test_unwind: print verbose unwinding results (jsc#SLE-11179).
  o s390/unwind: add stack pointer alignment sanity checks (jsc#SLE-11179).
  o s390/unwind: always inline get_stack_pointer (jsc#SLE-11179).
  o s390/unwind: avoid int overflow in outside_of_stack (jsc#SLE-11179).
  o s390/unwind: cleanup unused READ_ONCE_TASK_STACK (jsc#SLE-11179).
  o s390/unwind: correct stack switching during unwind (jsc#SLE-11179).
  o s390/unwind: drop unnecessary code around calling ftrace_graph_ret_addr()
  o s390/unwind: filter out unreliable bogus %r14 (jsc#SLE-11179).
  o s390/unwind: fix get_stack_pointer(NULL, NULL) (jsc#SLE-11179).
  o s390/unwind: fix mixing regs and sp (jsc#SLE-11179).
  o s390/unwind: introduce stack unwind API (jsc#SLE-11179).
  o s390/unwind: make reuse_sp default when unwinding pt_regs (jsc#SLE-11179).
  o s390/unwind: remove stack recursion warning (jsc#SLE-11179).
  o s390/unwind: report an error if pt_regs are not on stack (jsc#SLE-11179).
  o s390/unwind: start unwinding from reliable state (jsc#SLE-11179).
  o s390/unwind: stop gracefully at task pt_regs (jsc#SLE-11179).
  o s390/unwind: stop gracefully at user mode pt_regs in irq stack (jsc#
  o s390/unwind: unify task is current checks (jsc#SLE-11179).
  o s390: add stack switch helper (jsc#SLE-11179).
  o s390: add support for virtually mapped kernel stacks (jsc#SLE-11179).
  o s390: always inline current_stack_pointer() (jsc#SLE-11179).
  o s390: always inline disabled_wait (jsc#SLE-11179).
  o s390: avoid misusing CALL_ON_STACK for task stack setup (jsc#SLE-11179).
  o s390: clean up stacks setup (jsc#SLE-11179).
  o s390: correct CALL_ON_STACK back_chain saving (jsc#SLE-11179).
  o s390: disable preemption when switching to nodat stack with CALL_ON_STACK
  o s390: fine-tune stack switch helper (jsc#SLE-11179).
  o s390: fix register clobbering in CALL_ON_STACK (jsc#SLE-11179).
  o s390: kabi workaround for ftrace_ret_stack (jsc#SLE-11179).
  o s390: kabi workaround for lowcore changes due to vmap stack (jsc#
  o s390: kabi workaround for reliable stack tracing (jsc#SLE-11179).
  o s390: preserve kabi for stack unwind API (jsc#SLE-11179).
  o s390: unify stack size definitions (jsc#SLE-11179).
  o sched/fair: Add tmp_alone_branch assertion (bnc#1156462).
  o sched/fair: Fix insertion in rq->leaf_cfs_rq_list (bnc#1156462).
  o sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462).
  o sched/fair: Optimize update_blocked_averages() (bnc#1156462).
  o sched/fair: WARN() and refuse to set buddy when !se->on_rq (bsc#1158132).
  o scsi: qla2xxx: Add a shadow variable to hold disc_state history of fcport
  o scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs (bsc#1158013).
  o scsi: qla2xxx: Added support for MPI and PEP regions for ISP28XX (bsc#
    1157424, bsc#1157908, bsc#1157169, bsc#1151548).
  o scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013).
  o scsi: qla2xxx: Consolidate fabric scan (bsc#1158013).
  o scsi: qla2xxx: Correct fcport flags handling (bsc#1158013).
  o scsi: qla2xxx: Correctly retrieve and interpret active flash region (bsc#
    1157424, bsc#1157908, bsc#1157169, bsc#1151548).
  o scsi: qla2xxx: Fix a NULL pointer dereference in an error path (bsc#1157966
    bsc#1158013 bsc#1157424).
  o scsi: qla2xxx: Fix fabric scan hang (bsc#1158013).
  o scsi: qla2xxx: Fix incorrect SFUB length used for Secure Flash Update MB
    Cmd (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).
  o scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013).
  o scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013).
  o scsi: qla2xxx: Fix stuck login session using prli_pend_timer (bsc#1158013).
  o scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013).
  o scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type
  o scsi: qla2xxx: Fix unbound NVME response length (bsc#1157966 bsc#1158013
  o scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013).
  o scsi: qla2xxx: Improve readability of the code that handles qla_flt_header
  o scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss (bsc#
  o scsi: qla2xxx: Update driver version to (bsc#1158013).
  o scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013).
  o scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these functions
  o scsi: zfcp: trace channel log even for FCP command responses (git-fixes).
  o sctp: cache netns in sctp_ep_common (networking-stable-19_12_03).
  o sctp: fully initialize v4 addr in some functions
  o serial: 8250_bcm2835aux: Fix line mismatch on driver unbind (bsc#1051510).
  o serial: ifx6x60: add missed pm_runtime_disable (bsc#1051510).
  o serial: max310x: Fix tx_empty() callback (bsc#1051510).
  o serial: pl011: Fix DMA ->flush_buffer() (bsc#1051510).
  o serial: serial_core: Perform NULL checks for break_ctl ops (bsc#1051510).
  o serial: stm32: fix transmit_chars when tx is stopped (bsc#1051510).
  o sfc: Only cancel the PPS workqueue if it exists
  o sh_eth: check sh_eth_cpu_data::dual_port when dumping registers (bsc#
  o sh_eth: fix dumping ARSTR (bsc#1051510).
  o sh_eth: fix invalid context bug while calling auto-negotiation by ethtool
  o sh_eth: fix invalid context bug while changing link options by ethtool (bsc
  o sh_eth: fix TSU init on SH7734/R8A7740 (bsc#1051510).
  o sh_eth: fix TXALCR1 offsets (bsc#1051510).
  o sh_eth: TSU_QTAG0/1 registers the same as TSU_QTAGM0/1 (bsc#1051510).
  o smb3: Fix crash in SMB2_open_init due to uninitialized field in compounding
    path (bsc#1144333).
  o smb3: Fix persistent handles reconnect (bsc#1144333).
  o smb3: fix refcount underflow warning on unmount when no directory leases
  o smb3: remove confusing dmesg when mounting with encryption ("seal") (bsc#
  o soc/tegra: fuse: Correct straps' address for older Tegra124 device trees
  o soc: renesas: rcar-sysc: Add goto to of_node_put() before return (bsc#
  o soc: ti: wkup_m3_ipc: Fix race condition with rproc_boot (bsc#1051510).
  o spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch (bsc#
  o spi: omap2-mcspi: Set FIFO DMA trigger level to word length (bsc#1051510).
  o spi: tegra114: clear packed bit for unpacked mode (bsc#1051510).
  o spi: tegra114: configure dma burst size to fifo trig level (bsc#1051510).
  o spi: tegra114: fix for unpacked mode transfers (bsc#1051510).
  o spi: tegra114: flush fifos (bsc#1051510).
  o spi: tegra114: terminate dma and reset on transfer timeout (bsc#1051510).
  o sr_vendor: support Beurer GL50 evo CD-on-a-chip devices (boo#1164632).
  o stacktrace: Do not skip first entry on noncurrent tasks (jsc#SLE-11179).
  o stacktrace: Force USER_DS for stack_trace_save_user() (jsc#SLE-11179).
  o stacktrace: Get rid of unneeded '!!' pattern (jsc#SLE-11179).
  o stacktrace: Provide common infrastructure (jsc#SLE-11179).
  o stacktrace: Provide helpers for common stack trace operations (jsc#
  o stacktrace: Unbreak stack_trace_save_tsk_reliable() (jsc#SLE-11179).
  o stacktrace: Use PF_KTHREAD to check for kernel threads (jsc#SLE-11179).
  o staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 (bsc#
  o staging: iio: adt7316: Fix i2c data reading, set the data field (bsc#
  o staging: rtl8188eu: fix interface sanity check (bsc#1051510).
  o staging: rtl8192e: fix potential use after free (bsc#1051510).
  o staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids (bsc#
  o staging: rtl8723bs: Drop ACPI device ids (bsc#1051510).
  o staging: vt6656: correct packet types for CTS protect, mode (bsc#1051510).
  o staging: vt6656: Fix false Tx excessive retries reporting (bsc#1051510).
  o staging: vt6656: use NULLFUCTION stack on mac80211 (bsc#1051510).
  o staging: wlan-ng: ensure error return is actually returned (bsc#1051510).
  o stm class: Fix a double free of stm_source_device (bsc#1051510).
  o stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock (bsc#
    1088810, bsc#1161702).
  o stop_machine: Atomically queue and wake stopper threads (bsc#1088810, bsc#
  o stop_machine: Disable preemption after queueing stopper threads (bsc#
    1088810, bsc#1161702).
  o stop_machine: Disable preemption when waking two stopper threads (bsc#
    1088810, bsc#1161702).
  o supported.conf:
  o synclink_gt(): fix compat_ioctl() (bsc#1051510).
  o tcp: clear tp->packets_out when purging write queue (bsc#1160560).
  o tcp: do not send empty skb from tcp_write_xmit()
  o tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable
  o tcp: md5: fix potential overestimation of TCP option space
  o tcp_nv: fix potential integer overflow in tcpnv_acked (bsc#1051510).
  o thermal: Fix deadlock in thermal thermal_zone_device_check (bsc#1051510).
  o tipc: Avoid copying bytes beyond the supplied data (bsc#1051510).
  o tipc: check bearer name with right length in tipc_nl_compat_bearer_enable
  o tipc: check link name with right length in tipc_nl_compat_link_set (bsc#
  o tipc: check msg->req data len in tipc_nl_compat_bearer_disable (bsc#
  o tipc: compat: allow tipc commands without arguments (bsc#1051510).
  o tipc: fix a missing check of genlmsg_put (bsc#1051510).
  o tipc: fix link name length check (bsc#1051510).
  o tipc: fix memory leak in tipc_nl_compat_publ_dump (bsc#1051510).
  o tipc: fix skb may be leaky in tipc_link_input (bsc#1051510).
  o tipc: fix tipc_mon_delete() oops in tipc_enable_bearer() error path (bsc#
  o tipc: fix wrong timeout input for tipc_wait_for_cond() (bsc#1051510).
  o tipc: handle the err returned from cmd header function (bsc#1051510).
  o tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb (bsc#1051510).
  o tipc: tipc clang warning (bsc#1051510).
  o tracing: Annotate ftrace_graph_hash pointer with __rcu (git-fixes).
  o tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu (git-fixes).
  o tracing: Cleanup stack trace code (jsc#SLE-11179).
  o tracing: Fix tracing_stat return values in error handling paths
  o tracing: Fix very unlikely race of registering two stat tracers
  o tracing: Have the histogram compare functions convert to u64 first (bsc#
  o tracing: xen: Ordered comparison of function pointers (git-fixes).
  o tty/serial: atmel: Add is_half_duplex helper (bsc#1051510).
  o tty: n_hdlc: fix build on SPARC (bsc#1051510).
  o tty: serial: fsl_lpuart: use the sg count from dma_map_sg (bsc#1051510).
  o tty: serial: imx: use the sg count from dma_map_sg (bsc#1051510).
  o tty: serial: msm_serial: Fix flow control (bsc#1051510).
  o tty: serial: msm_serial: Fix lockup for sysrq and oops (bsc#1051510).
  o tty: serial: pch_uart: correct usage of dma_unmap_sg (bsc#1051510).
  o tty: vt: keyboard: reject invalid keycodes (bsc#1051510).
  o uaccess: Add non-pagefault user-space write function (bsc#1083647).
  o ubifs: Correctly initialize c->min_log_bytes (bsc#1158641).
  o ubifs: do not trigger assertion on invalid no-key filename (bsc#1163850).
  o ubifs: Fix deadlock in concurrent bulk-read and writepage (bsc#1163856).
  o ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag (bsc#
  o ubifs: Limit the number of pages in shrink_liability (bsc#1158643).
  o ubifs: Reject unsupported ioctl flags explicitly (bsc#1163844).
  o udp: fix integer overflow while computing available space in sk_rcvbuf
  o usb-storage: Disable UAS on JMicron SATA enclosure (bsc#1051510).
  o usb: adutux: fix interface sanity check (bsc#1051510).
  o usb: Allow USB device to be warm reset in suspended state (bsc#1051510).
  o usb: atm: ueagle-atm: add missing endpoint check (bsc#1051510).
  o usb: chipidea: host: Disable port power only if previously enabled (bsc#
  o usb: core: fix check for duplicate endpoints (git-fixes).
  o usb: core: hub: Improved device recognition on remote wakeup (bsc#1051510).
  o usb: core: urb: fix URB structure initialization function (bsc#1051510).
  o usb: documentation: flags on usb-storage versus UAS (bsc#1051510).
  o usb: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510).
  o usb: dwc3: do not log probe deferrals; but do log other error codes (bsc#
  o usb: dwc3: ep0: Clear started flag on completion (bsc#1051510).
  o usb: dwc3: turn off VBUS when leaving host mode (bsc#1051510).
  o usb: EHCI: Do not return -EPIPE when hub is disconnected (git-fixes).
  o usb: gadget: f_ecm: Use atomic_t to track in-flight request (bsc#1051510).
  o usb: gadget: f_ncm: Use atomic_t to track in-flight request (bsc#1051510).
  o usb: gadget: legacy: set max_speed to super-speed (bsc#1051510).
  o usb: gadget: pch_udc: fix use after free (bsc#1051510).
  o usb: gadget: u_serial: add missing port entry locking (bsc#1051510).
  o usb: gadget: Zero ffs_io_data (bsc#1051510).
  o usb: host: xhci-hub: fix extra endianness conversion (bsc#1051510).
  o usb: idmouse: fix interface sanity checks (bsc#1051510).
  o usb: misc: appledisplay: fix backlight update_status return code (bsc#
  o usb: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510).
  o usb: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510).
  o usb: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510).
  o usb: musb: fix idling for suspend after disconnect interrupt (bsc#1051510).
  o usb: serial: ch341: handle unbound port at reset_resume (bsc#1051510).
  o usb: serial: ftdi_sio: add device IDs for U-Blox C099-F9P (bsc#1051510).
  o usb: serial: io_edgeport: add missing active-port sanity check (bsc#
  o usb: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510).
  o usb: serial: io_edgeport: handle unbound ports on URB completion (bsc#
  o usb: serial: io_edgeport: use irqsave() in USB's complete callback (bsc#
  o usb: serial: ir-usb: add missing endpoint sanity check (bsc#1051510).
  o usb: serial: ir-usb: fix IrLAP framing (bsc#1051510).
  o usb: serial: ir-usb: fix link-speed handling (bsc#1051510).
  o usb: serial: keyspan: handle unbound ports (bsc#1051510).
  o usb: serial: opticon: fix control-message timeouts (bsc#1051510).
  o usb: serial: option: Add support for Quectel RM500Q (bsc#1051510).
  o usb: serial: option: add support for Quectel RM500Q in QDL mode
  o usb: serial: option: add Telit ME910G1 0x110a composition (git-fixes).
  o usb: serial: option: add ZLP support for 0x1bc7/0x9010 (git-fixes).
  o usb: serial: quatech2: handle unbound ports (bsc#1051510).
  o usb: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx (bsc#
  o usb: serial: suppress driver bind attributes (bsc#1051510).
  o usb: typec: tcpci: mask event interrupts when remove driver (bsc#1051510).
  o usb: uas: heed CAPACITY_HEURISTICS (bsc#1051510).
  o usb: uas: honor flag to avoid CAPACITY16 (bsc#1051510).
  o usb: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510).
  o usb: xhci: only set D3hot for pci device (bsc#1051510).
  o usbip: Fix error path of vhci_recv_ret_submit() (git-fixes).
  o usbip: Fix receive error in vhci-hcd when using scatter-gather (bsc#
  o vfs: fix preadv64v2 and pwritev64v2 compat syscalls with offset == -1 (bsc#
  o vhost/vsock: accept only packets with the right dst_cid
  o video: backlight: Add devres versions of of_find_backlight (bsc#1090888)
    Taken for 6010831dde5.
  o video: backlight: Add of_find_backlight helper in backlight.c (bsc#1090888)
    Taken for 6010831dde5.
  o vsock/virtio: fix sock refcnt holding during the shutdown (git-fixes).
  o watchdog: max77620_wdt: fix potential build errors (bsc#1051510).
  o watchdog: rn5t618_wdt: fix module aliases (bsc#1051510).
  o watchdog: sama5d4: fix WDD value to be always set to max (bsc#1051510).
  o watchdog: wdat_wdt: fix get_timeleft call for wdat_wdt (bsc#1162557).
  o wireless: fix enabling channel 12 for custom regulatory domain (bsc#
  o wireless: wext: avoid gcc -O3 warning (bsc#1051510).
  o workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211).
  o x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR (bsc#
  o x86/intel_rdt: Split resource group removal in two (bsc#1112178).
  o x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279).
  o x86/mce/AMD: Allow any CPU to initialize the smca_banks array (bsc#
  o x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks (bsc#
  o x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() (bsc#
  o x86/mce: Fix possibly incorrect severity calculation on AMD (bsc#1114279).
  o x86/resctrl: Check monitoring static key in the MBM overflow handler (bsc#
  o x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).
  o x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279).
  o x86/resctrl: Fix potential memory leak (bsc#1114279).
  o x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc
  o x86/resctrl: Fix use-after-free when deleting resource groups (bsc#
  o x86/speculation: Fix incorrect MDS/TAA mitigation status (bsc#1114279).
  o x86/speculation: Fix redundant MDS mitigation message (bsc#1114279).
  o xen-blkfront: switch kcalloc to kvcalloc for large array allocation (bsc#
  o xen/balloon: Support xend-based toolstack take two (bsc#1065600).
  o xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600).
  o xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600).
  o xen: Enable interrupts when calling _cond_resched() (bsc#1065600).
  o xfrm: Fix transport mode skb control buffer usage (bsc#1161552).
  o xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087, bsc#
  o xfs: Sanity check flags of Q_XQUOTARM call (bsc#1158652).
  o xhci: Fix memory leak in xhci_add_in_port() (bsc#1051510).
  o xhci: fix USB3 device initiated resume race with roothub autosuspend (bsc#
  o xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour
  o xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510).
  o xhci: make sure interrupts are restored to correct state (bsc#1051510).
  o zd1211rw: fix storage endpoint lookup (git-fixes).

Special Instructions and Notes:

Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  o SUSE Linux Enterprise Workstation Extension 12-SP4:
    zypper in -t patch SUSE-SLE-WE-12-SP4-2020-584=1
  o SUSE Linux Enterprise Software Development Kit 12-SP4:
    zypper in -t patch SUSE-SLE-SDK-12-SP4-2020-584=1
  o SUSE Linux Enterprise Server 12-SP4:
    zypper in -t patch SUSE-SLE-SERVER-12-SP4-2020-584=1
  o SUSE Linux Enterprise Live Patching 12-SP4:
    zypper in -t patch SUSE-SLE-Live-Patching-12-SP4-2020-584=1
  o SUSE Linux Enterprise High Availability 12-SP4:
    zypper in -t patch SUSE-SLE-HA-12-SP4-2020-584=1

Package List:

  o SUSE Linux Enterprise Workstation Extension 12-SP4 (x86_64):
  o SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 ppc64le
    s390x x86_64):
  o SUSE Linux Enterprise Software Development Kit 12-SP4 (noarch):
  o SUSE Linux Enterprise Server 12-SP4 (aarch64 ppc64le s390x x86_64):
  o SUSE Linux Enterprise Server 12-SP4 (x86_64):
  o SUSE Linux Enterprise Server 12-SP4 (noarch):
  o SUSE Linux Enterprise Server 12-SP4 (s390x):
  o SUSE Linux Enterprise Live Patching 12-SP4 (ppc64le x86_64):
  o SUSE Linux Enterprise High Availability 12-SP4 (ppc64le s390x x86_64):


  o https://www.suse.com/security/cve/CVE-2019-14615.html
  o https://www.suse.com/security/cve/CVE-2019-14896.html
  o https://www.suse.com/security/cve/CVE-2019-14897.html
  o https://www.suse.com/security/cve/CVE-2019-15213.html
  o https://www.suse.com/security/cve/CVE-2019-16994.html
  o https://www.suse.com/security/cve/CVE-2019-18808.html
  o https://www.suse.com/security/cve/CVE-2019-19036.html
  o https://www.suse.com/security/cve/CVE-2019-19045.html
  o https://www.suse.com/security/cve/CVE-2019-19051.html
  o https://www.suse.com/security/cve/CVE-2019-19054.html
  o https://www.suse.com/security/cve/CVE-2019-19066.html
  o https://www.suse.com/security/cve/CVE-2019-19318.html
  o https://www.suse.com/security/cve/CVE-2019-19319.html
  o https://www.suse.com/security/cve/CVE-2019-19332.html
  o https://www.suse.com/security/cve/CVE-2019-19338.html
  o https://www.suse.com/security/cve/CVE-2019-19447.html
  o https://www.suse.com/security/cve/CVE-2019-19523.html
  o https://www.suse.com/security/cve/CVE-2019-19524.html
  o https://www.suse.com/security/cve/CVE-2019-19525.html
  o https://www.suse.com/security/cve/CVE-2019-19526.html
  o https://www.suse.com/security/cve/CVE-2019-19527.html
  o https://www.suse.com/security/cve/CVE-2019-19528.html
  o https://www.suse.com/security/cve/CVE-2019-19529.html
  o https://www.suse.com/security/cve/CVE-2019-19530.html
  o https://www.suse.com/security/cve/CVE-2019-19531.html
  o https://www.suse.com/security/cve/CVE-2019-19532.html
  o https://www.suse.com/security/cve/CVE-2019-19533.html
  o https://www.suse.com/security/cve/CVE-2019-19534.html
  o https://www.suse.com/security/cve/CVE-2019-19535.html
  o https://www.suse.com/security/cve/CVE-2019-19536.html
  o https://www.suse.com/security/cve/CVE-2019-19537.html
  o https://www.suse.com/security/cve/CVE-2019-19543.html
  o https://www.suse.com/security/cve/CVE-2019-19767.html
  o https://www.suse.com/security/cve/CVE-2019-19965.html
  o https://www.suse.com/security/cve/CVE-2019-19966.html
  o https://www.suse.com/security/cve/CVE-2019-20054.html
  o https://www.suse.com/security/cve/CVE-2019-20095.html
  o https://www.suse.com/security/cve/CVE-2019-20096.html
  o https://www.suse.com/security/cve/CVE-2020-2732.html
  o https://www.suse.com/security/cve/CVE-2020-7053.html
  o https://www.suse.com/security/cve/CVE-2020-8428.html
  o https://www.suse.com/security/cve/CVE-2020-8648.html
  o https://www.suse.com/security/cve/CVE-2020-8992.html
  o https://bugzilla.suse.com/1046303
  o https://bugzilla.suse.com/1050244
  o https://bugzilla.suse.com/1051510
  o https://bugzilla.suse.com/1051858
  o https://bugzilla.suse.com/1061840
  o https://bugzilla.suse.com/1065600
  o https://bugzilla.suse.com/1065729
  o https://bugzilla.suse.com/1071995
  o https://bugzilla.suse.com/1083647
  o https://bugzilla.suse.com/1085030
  o https://bugzilla.suse.com/1086301
  o https://bugzilla.suse.com/1086313
  o https://bugzilla.suse.com/1086314
  o https://bugzilla.suse.com/1088810
  o https://bugzilla.suse.com/1090888
  o https://bugzilla.suse.com/1104427
  o https://bugzilla.suse.com/1105392
  o https://bugzilla.suse.com/1111666
  o https://bugzilla.suse.com/1112178
  o https://bugzilla.suse.com/1112504
  o https://bugzilla.suse.com/1114279
  o https://bugzilla.suse.com/1115026
  o https://bugzilla.suse.com/1118338
  o https://bugzilla.suse.com/1120853
  o https://bugzilla.suse.com/1123328
  o https://bugzilla.suse.com/1127371
  o https://bugzilla.suse.com/1133021
  o https://bugzilla.suse.com/1133147
  o https://bugzilla.suse.com/1134973
  o https://bugzilla.suse.com/1140025
  o https://bugzilla.suse.com/1141054
  o https://bugzilla.suse.com/1142095
  o https://bugzilla.suse.com/1143959
  o https://bugzilla.suse.com/1144333
  o https://bugzilla.suse.com/1146519
  o https://bugzilla.suse.com/1146544
  o https://bugzilla.suse.com/1151548
  o https://bugzilla.suse.com/1151910
  o https://bugzilla.suse.com/1151927
  o https://bugzilla.suse.com/1152631
  o https://bugzilla.suse.com/1153917
  o https://bugzilla.suse.com/1154243
  o https://bugzilla.suse.com/1155331
  o https://bugzilla.suse.com/1155334
  o https://bugzilla.suse.com/1155689
  o https://bugzilla.suse.com/1156259
  o https://bugzilla.suse.com/1156286
  o https://bugzilla.suse.com/1156462
  o https://bugzilla.suse.com/1157155
  o https://bugzilla.suse.com/1157157
  o https://bugzilla.suse.com/1157169
  o https://bugzilla.suse.com/1157303
  o https://bugzilla.suse.com/1157424
  o https://bugzilla.suse.com/1157692
  o https://bugzilla.suse.com/1157853
  o https://bugzilla.suse.com/1157908
  o https://bugzilla.suse.com/1157966
  o https://bugzilla.suse.com/1158013
  o https://bugzilla.suse.com/1158021
  o https://bugzilla.suse.com/1158026
  o https://bugzilla.suse.com/1158094
  o https://bugzilla.suse.com/1158132
  o https://bugzilla.suse.com/1158381
  o https://bugzilla.suse.com/1158394
  o https://bugzilla.suse.com/1158398
  o https://bugzilla.suse.com/1158407
  o https://bugzilla.suse.com/1158410
  o https://bugzilla.suse.com/1158413
  o https://bugzilla.suse.com/1158417
  o https://bugzilla.suse.com/1158427
  o https://bugzilla.suse.com/1158445
  o https://bugzilla.suse.com/1158533
  o https://bugzilla.suse.com/1158637
  o https://bugzilla.suse.com/1158638
  o https://bugzilla.suse.com/1158639
  o https://bugzilla.suse.com/1158640
  o https://bugzilla.suse.com/1158641
  o https://bugzilla.suse.com/1158643
  o https://bugzilla.suse.com/1158644
  o https://bugzilla.suse.com/1158645
  o https://bugzilla.suse.com/1158646
  o https://bugzilla.suse.com/1158647
  o https://bugzilla.suse.com/1158649
  o https://bugzilla.suse.com/1158651
  o https://bugzilla.suse.com/1158652
  o https://bugzilla.suse.com/1158819
  o https://bugzilla.suse.com/1158823
  o https://bugzilla.suse.com/1158824
  o https://bugzilla.suse.com/1158827
  o https://bugzilla.suse.com/1158834
  o https://bugzilla.suse.com/1158893
  o https://bugzilla.suse.com/1158900
  o https://bugzilla.suse.com/1158903
  o https://bugzilla.suse.com/1158904
  o https://bugzilla.suse.com/1158954
  o https://bugzilla.suse.com/1159024
  o https://bugzilla.suse.com/1159028
  o https://bugzilla.suse.com/1159271
  o https://bugzilla.suse.com/1159297
  o https://bugzilla.suse.com/1159394
  o https://bugzilla.suse.com/1159483
  o https://bugzilla.suse.com/1159484
  o https://bugzilla.suse.com/1159569
  o https://bugzilla.suse.com/1159588
  o https://bugzilla.suse.com/1159841
  o https://bugzilla.suse.com/1159908
  o https://bugzilla.suse.com/1159909
  o https://bugzilla.suse.com/1159910
  o https://bugzilla.suse.com/1159911
  o https://bugzilla.suse.com/1159955
  o https://bugzilla.suse.com/1160195
  o https://bugzilla.suse.com/1160210
  o https://bugzilla.suse.com/1160211
  o https://bugzilla.suse.com/1160218
  o https://bugzilla.suse.com/1160433
  o https://bugzilla.suse.com/1160442
  o https://bugzilla.suse.com/1160476
  o https://bugzilla.suse.com/1160560
  o https://bugzilla.suse.com/1160755
  o https://bugzilla.suse.com/1160756
  o https://bugzilla.suse.com/1160784
  o https://bugzilla.suse.com/1160787
  o https://bugzilla.suse.com/1160802
  o https://bugzilla.suse.com/1160803
  o https://bugzilla.suse.com/1160804
  o https://bugzilla.suse.com/1160917
  o https://bugzilla.suse.com/1160966
  o https://bugzilla.suse.com/1160979
  o https://bugzilla.suse.com/1161087
  o https://bugzilla.suse.com/1161360
  o https://bugzilla.suse.com/1161514
  o https://bugzilla.suse.com/1161518
  o https://bugzilla.suse.com/1161522
  o https://bugzilla.suse.com/1161523
  o https://bugzilla.suse.com/1161549
  o https://bugzilla.suse.com/1161552
  o https://bugzilla.suse.com/1161674
  o https://bugzilla.suse.com/1161702
  o https://bugzilla.suse.com/1161875
  o https://bugzilla.suse.com/1161907
  o https://bugzilla.suse.com/1161931
  o https://bugzilla.suse.com/1161933
  o https://bugzilla.suse.com/1161934
  o https://bugzilla.suse.com/1161935
  o https://bugzilla.suse.com/1161936
  o https://bugzilla.suse.com/1161937
  o https://bugzilla.suse.com/1162028
  o https://bugzilla.suse.com/1162067
  o https://bugzilla.suse.com/1162109
  o https://bugzilla.suse.com/1162139
  o https://bugzilla.suse.com/1162557
  o https://bugzilla.suse.com/1162617
  o https://bugzilla.suse.com/1162618
  o https://bugzilla.suse.com/1162619
  o https://bugzilla.suse.com/1162623
  o https://bugzilla.suse.com/1162928
  o https://bugzilla.suse.com/1162943
  o https://bugzilla.suse.com/1163383
  o https://bugzilla.suse.com/1163384
  o https://bugzilla.suse.com/1163762
  o https://bugzilla.suse.com/1163774
  o https://bugzilla.suse.com/1163836
  o https://bugzilla.suse.com/1163840
  o https://bugzilla.suse.com/1163841
  o https://bugzilla.suse.com/1163842
  o https://bugzilla.suse.com/1163843
  o https://bugzilla.suse.com/1163844
  o https://bugzilla.suse.com/1163845
  o https://bugzilla.suse.com/1163846
  o https://bugzilla.suse.com/1163849
  o https://bugzilla.suse.com/1163850
  o https://bugzilla.suse.com/1163851
  o https://bugzilla.suse.com/1163852
  o https://bugzilla.suse.com/1163853
  o https://bugzilla.suse.com/1163855
  o https://bugzilla.suse.com/1163856
  o https://bugzilla.suse.com/1163857
  o https://bugzilla.suse.com/1163858
  o https://bugzilla.suse.com/1163859
  o https://bugzilla.suse.com/1163860
  o https://bugzilla.suse.com/1163861
  o https://bugzilla.suse.com/1163862
  o https://bugzilla.suse.com/1163863
  o https://bugzilla.suse.com/1163867
  o https://bugzilla.suse.com/1163869
  o https://bugzilla.suse.com/1163880
  o https://bugzilla.suse.com/1163971
  o https://bugzilla.suse.com/1164069
  o https://bugzilla.suse.com/1164098
  o https://bugzilla.suse.com/1164115
  o https://bugzilla.suse.com/1164314
  o https://bugzilla.suse.com/1164315
  o https://bugzilla.suse.com/1164388
  o https://bugzilla.suse.com/1164471
  o https://bugzilla.suse.com/1164632
  o https://bugzilla.suse.com/1164705
  o https://bugzilla.suse.com/1164712
  o https://bugzilla.suse.com/1164727
  o https://bugzilla.suse.com/1164728
  o https://bugzilla.suse.com/1164729
  o https://bugzilla.suse.com/1164730
  o https://bugzilla.suse.com/1164731
  o https://bugzilla.suse.com/1164732
  o https://bugzilla.suse.com/1164733
  o https://bugzilla.suse.com/1164734
  o https://bugzilla.suse.com/1164735

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:


Australian Computer Emergency Response Team
The University of Queensland
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
Comment: http://www.auscert.org.au/render.html?it=1967