Hash: SHA256

             AUSCERT External Security Bulletin Redistribution

         SUSE-SU-2020:1085-1 Security update for the Linux Kernel
                               24 April 2020


        AusCERT Security Bulletin Summary

Product:           Kernel
Publisher:         SUSE
Operating System:  SUSE
                   UNIX variants (UNIX, Linux, OSX)
Impact/Access:     Root Compromise        -- Existing Account      
                   Increased Privileges   -- Existing Account      
                   Access Privileged Data -- Existing Account      
                   Denial of Service      -- Remote/Unauthenticated
                   Reduced Security       -- Existing Account      
Resolution:        Patch/Upgrade
CVE Names:         CVE-2020-11669 CVE-2020-11494 CVE-2020-10942
                   CVE-2020-9383 CVE-2020-8834 CVE-2020-8649
                   CVE-2020-8647 CVE-2019-19770 CVE-2019-19768
                   CVE-2019-9458 CVE-2019-3701 

Reference:         ESB-2020.1424

Original Bulletin: 

Comment: This advisory references vulnerabilities in the Linux kernel that 
         also affect distributions other than SUSE. It is recommended that 
         administrators running Linux check for an updated version of the 
         kernel for their system.

- --------------------------BEGIN INCLUDED TEXT--------------------

SUSE Security Update: Security update for the Linux Kernel


Announcement ID:   SUSE-SU-2020:1085-1
Rating:            important
References:        #1044231 #1050549 #1051510 #1051858 #1056686 #1060463
                   #1065600 #1065729 #1083647 #1085030 #1104967 #1109911
                   #1114279 #1118338 #1120386 #1133021 #1136157 #1137325
                   #1144333 #1145051 #1145929 #1146539 #1148868 #1154385
                   #1157424 #1158552 #1158983 #1159037 #1159142 #1159198
                   #1159285 #1160659 #1161951 #1162929 #1162931 #1163403
                   #1163508 #1163897 #1164078 #1164284 #1164507 #1164893
                   #1165019 #1165111 #1165182 #1165404 #1165488 #1165527
                   #1165741 #1165813 #1165873 #1165949 #1165984 #1165985
                   #1166003 #1166101 #1166102 #1166103 #1166104 #1166632
                   #1166730 #1166731 #1166732 #1166733 #1166734 #1166735
                   #1166780 #1166860 #1166861 #1166862 #1166864 #1166866
                   #1166867 #1166868 #1166870 #1166940 #1167005 #1167288
                   #1167290 #1167316 #1167421 #1167423 #1167629 #1168075
                   #1168202 #1168276 #1168295 #1168424 #1168443 #1168486
                   #1168760 #1168762 #1168763 #1168764 #1168765 #1168829
                   #1168854 #1168881 #1168884 #1168952 #1169057 #1169390
Cross-References:  CVE-2019-19768 CVE-2019-19770 CVE-2019-3701 CVE-2019-9458
                   CVE-2020-10942 CVE-2020-11494 CVE-2020-11669 CVE-2020-8647
                   CVE-2020-8649 CVE-2020-8834 CVE-2020-9383
Affected Products:
                   SUSE Linux Enterprise Real Time Extension 12-SP4

An update that solves 11 vulnerabilities and has 91 fixes is now available.


The SUSE Linux Enterprise 12 SP4 RT kernel was updated to 3.12.31 to receive
various security and bugfixes.
The following security bugs were fixed:

  o CVE-2020-8834: KVM on Power8 processors had a conflicting use of
    HSTATE_HOST_R1 to store r1 state in kvmppc_hv_entry plus in kvmppc_
    {save,restore}_tm, leading to a stack corruption. Because of this, an
    attacker with the ability to run code in kernel space of a guest VM can
    cause the host kernel to panic (bnc#1168276).
  o CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/
    slcan.c, which allowed attackers to read uninitialized can_frame data,
    potentially containing sensitive information from kernel stack memory, if
    the configuration lacks CONFIG_INIT_STACK_ALL (bnc#1168424).
  o CVE-2020-10942: In get_raw_socket in drivers/vhost/net.c lacks validation
    of an sk_family field, which might allow attackers to trigger kernel stack
    corruption via crafted system calls (bnc#1167629).
  o CVE-2020-8647: Fixed a use-after-free vulnerability in the vc_do_resize
    function in drivers/tty/vt/vt.c (bnc#1162929).
  o CVE-2020-8649: Fixed a use-after-free vulnerability in the
    vgacon_invert_region function in drivers/video/console/vgacon.c (bnc#
  o CVE-2020-9383: Fixed an issue in set_fdc in drivers/block/floppy.c, which
    leads to a wait_til_ready out-of-bounds read (bnc#1165111).
  o CVE-2019-9458: In the video driver there was a use after free due to a race
    condition. This could lead to local escalation of privilege with no
    additional execution privileges needed (bnc#1168295).
  o CVE-2019-3701: Fixed an issue in can_can_gw_rcv, which could cause a system
    crash (bnc#1120386).
  o CVE-2019-19768: Fixed a use-after-free in the __blk_add_trace function in
    kernel/trace/blktrace.c (bnc#1159285).
  o CVE-2019-19770: Fixed a use-after-free in the debugfs_remove function (bsc#

The following non-security bugs were fixed:

  o ACPICA: Introduce ACPI_ACCESS_BYTE_WIDTH() macro (bsc#1051510).
  o ACPI: watchdog: Fix gas->access_width usage (bsc#1051510).
  o ALSA: ali5451: remove redundant variable capture_flag (bsc#1051510).
  o ALSA: core: Replace zero-length array with flexible-array member (bsc#
  o ALSA: emu10k1: Fix endianness annotations (bsc#1051510).
  o ALSA: hda/ca0132 - Replace zero-length array with flexible-array member
  o ALSA: hda_codec: Replace zero-length array with flexible-array member (bsc#
  o ALSA: hda: Fix potential access overflow in beep helper (bsc#1051510).
  o ALSA: hda/realtek: Fix pop noise on ALC225 (git-fixes).
  o ALSA: hda/realtek - Set principled PC Beep configuration for ALC256 (bsc#
  o ALSA: hda: remove redundant assignment to variable timeout (bsc#1051510).
  o ALSA: hda: Use scnprintf() for string truncation (bsc#1051510).
  o ALSA: hdsp: remove redundant assignment to variable err (bsc#1051510).
  o ALSA: ice1724: Fix invalid access for enumerated ctl items (bsc#1051510).
  o ALSA: info: remove redundant assignment to variable c (bsc#1051510).
  o ALSA: korg1212: fix if-statement empty body warnings (bsc#1051510).
  o ALSA: line6: Fix endless MIDI read loop (git-fixes).
  o ALSA: pcm: oss: Avoid plugin buffer overflow (git-fixes).
  o ALSA: pcm: oss: Fix regression by buffer overflow fix (bsc#1051510).
  o ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks
  o ALSA: seq: oss: Fix running status after receiving sysex (git-fixes).
  o ALSA: seq: virmidi: Fix running status after receiving sysex (git-fixes).
  o ALSA: usx2y: Adjust indentation in snd_usX2Y_hwdep_dsp_status (bsc#
  o ALSA: via82xx: Fix endianness annotations (bsc#1051510).
  o ASoC: dapm: Correct DAPM handling of active widgets during shutdown (bsc#
  o ASoC: Intel: atom: Take the drv->lock mutex before calling
    sst_send_slot_map() (bsc#1051510).
  o ASoC: Intel: mrfld: fix incorrect check on p->sink (bsc#1051510).
  o ASoC: Intel: mrfld: return error codes when an error occurs (bsc#1051510).
  o ASoC: jz4740-i2s: Fix divider written at incorrect offset in register (bsc#
  o ASoC: pcm512x: Fix unbalanced regulator enable call in probe error path
  o ASoC: pcm: Fix possible buffer overflow in dpcm state sysfs output (bsc#
  o ASoC: pcm: update FE/BE trigger order based on the command (bsc#1051510).
  o ASoC: sun8i-codec: Remove unused dev from codec struct (bsc#1051510).
  o ASoC: topology: Fix memleak in soc_tplg_link_elems_load() (bsc#1051510).
  o ath9k: Handle txpower changes even when TPC is disabled (bsc#1051510).
  o atm: zatm: Fix empty body Clang warnings (bsc#1051510).
  o atomic: Add irqsave variant of atomic_dec_and_lock() (bsc#1166003).
  o b43legacy: Fix -Wcast-function-type (bsc#1051510).
  o batman-adv: Avoid spurious warnings from bat_v neigh_cmp implementation
  o batman-adv: Do not schedule OGM for disabled interface (bsc#1051510).
  o batman-adv: prevent TT request storms by not sending inconsistent TT TLVLs
  o blk: Fix kabi due to blk_trace_mutex addition (bsc#1159285).
  o blk-mq: Allow blocking queue tag iter callbacks (bsc#1167316).
  o blktrace: fix dereference after null check (bsc#1159285).
  o blktrace: fix trace mutex deadlock (bsc#1159285).
  o block: allow gendisk's request_queue registration to be (bsc#1104967,bsc#
  o block, bfq: fix use-after-free in bfq_idle_slice_timer_body (bsc#1168760).
  o block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices
  o Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl (bsc#1051510).
  o bnxt_en: Fix TC queue mapping (networking-stable-20_02_05).
  o bonding/alb: properly access headers in bond_alb_xmit()
  o bpf: Explicitly memset some bpf info structures declared on the stack (bsc#
  o bpf: Explicitly memset the bpf_attr structure (bsc#1083647).
  o bpf: fix ldx in ld_abs rewrite for large offsets (bsc#1154385).
  o bpf: implement ld_abs/ld_ind in native bpf (bsc#1154385).
  o bpf: make unknown opcode handling more robust (bsc#1154385).
  o bpf: prefix cbpf internal helpers with bpf_ (bsc#1154385).
  o bpf, x64: remove ld_abs/ld_ind (bsc#1154385).
  o bpf, x64: save several bytes by using mov over movabsq when possible (bsc#
  o btrfs: Account for trans_block_rsv in may_commit_transaction (bsc#1165949).
  o btrfs: add a flush step for delayed iputs (bsc#1165949).
  o btrfs: add assertions for releasing trans handle reservations (bsc#
  o btrfs: add btrfs_delete_ref_head helper (bsc#1165949).
  o btrfs: add enospc debug messages for ticket failure (bsc#1165949).
  o btrfs: Add enospc_debug printing in metadata_reserve_bytes (bsc#1165949).
  o btrfs: add new flushing states for the delayed refs rsv (bsc#1165949).
  o btrfs: add space reservation tracepoint for reserved bytes (bsc#1165949).
  o btrfs: allow us to use up to 90% of the global rsv for unlink (bsc#
  o btrfs: always reserve our entire size for the global reserve (bsc#1165949).
  o btrfs: assert on non-empty delayed iputs (bsc##1165949).
  o btrfs: be more explicit about allowed flush states (bsc#1165949).
  o btrfs: call btrfs_create_pending_block_groups unconditionally (bsc#
  o btrfs: catch cow on deleting snapshots (bsc#1165949).
  o btrfs: change the minimum global reserve size (bsc#1165949).
  o btrfs: check if there are free block groups for commit (bsc#1165949).
  o btrfs: clean up error handling in btrfs_truncate() (bsc#1165949).
  o btrfs: cleanup extent_op handling (bsc#1165949).
  o btrfs: cleanup root usage by btrfs_get_alloc_profile (bsc#1165949).
  o btrfs: cleanup the target logic in __btrfs_block_rsv_release (bsc#1165949).
  o btrfs: clear space cache inode generation always (bsc#1165949).
  o btrfs: delayed-ref: pass delayed_refs directly to btrfs_delayed_ref_lock
  o btrfs: do not account global reserve in can_overcommit (bsc#1165949).
  o btrfs: do not allow reservations if we have pending tickets (bsc#1165949).
  o btrfs: do not call btrfs_start_delalloc_roots in flushoncommit (bsc#
  o btrfs: do not end the transaction for delayed refs in throttle (bsc#
  o btrfs: do not enospc all tickets on flush failure (bsc#1165949).
  o btrfs: do not run delayed_iputs in commit (bsc##1165949).
  o btrfs: do not run delayed refs in the end transaction logic (bsc#1165949).
  o btrfs: do not use ctl->free_space for max_extent_size (bsc##1165949).
  o btrfs: do not use global reserve for chunk allocation (bsc#1165949).
  o btrfs: drop min_size from evict_refill_and_join (bsc##1165949).
  o btrfs: drop unused space_info parameter from create_space_info (bsc#
  o btrfs: dump block_rsv details when dumping space info (bsc#1165949).
  o btrfs: export block group accounting helpers (bsc#1165949).
  o btrfs: export block_rsv_use_bytes (bsc#1165949).
  o btrfs: export btrfs_block_rsv_add_bytes (bsc#1165949).
  o btrfs: export __btrfs_block_rsv_release (bsc#1165949).
  o btrfs: export space_info_add_*_bytes (bsc#1165949).
  o btrfs: export the block group caching helpers (bsc#1165949).
  o btrfs: export the caching control helpers (bsc#1165949).
  o btrfs: export the excluded extents helpers (bsc#1165949).
  o btrfs: extent-tree: Add lockdep assert when updating space info (bsc#
  o btrfs: extent-tree: Add trace events for space info numbers update (bsc#
  o btrfs: extent-tree: Detect bytes_may_use underflow earlier (bsc#1165949).
  o btrfs: extent-tree: Detect bytes_pinned underflow earlier (bsc#1165949).
  o btrfs: factor out the ticket flush handling (bsc#1165949).
  o btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered
    extents (bsc#1163508).
  o btrfs: fix insert_reserved error handling (bsc##1165949).
  o btrfs: fix may_commit_transaction to deal with no partial filling (bsc#
  o btrfs: fix missing delayed iputs on unmount (bsc#1165949).
  o btrfs: fix panic during relocation after ENOSPC before writeback happens
  o btrfs: fix qgroup double free after failure to reserve metadata for
    delalloc (bsc#1165949).
  o btrfs: fix race leading to metadata space leak after task received signal
  o btrfs: fix truncate throttling (bsc#1165949).
  o btrfs: force chunk allocation if our global rsv is larger than metadata
  o btrfs: Improve global reserve stealing logic (bsc#1165949).
  o btrfs: introduce an evict flushing state (bsc#1165949).
  o btrfs: introduce delayed_refs_rsv (bsc#1165949).
  o btrfs: loop in inode_rsv_refill (bsc#1165949).
  o btrfs: make btrfs_destroy_delayed_refs use btrfs_delayed_ref_lock (bsc#
  o btrfs: make btrfs_destroy_delayed_refs use btrfs_delete_ref_head (bsc#
  o btrfs: make caching_thread use btrfs_find_next_key (bsc#1165949).
  o btrfs: migrate btrfs_trans_release_chunk_metadata (bsc#1165949).
  o btrfs: migrate inc/dec_block_group_ro code (bsc#1165949).
  o btrfs: migrate nocow and reservation helpers (bsc#1165949).
  o btrfs: migrate the alloc_profile helpers (bsc#1165949).
  o btrfs: migrate the block group caching code (bsc#1165949).
  o btrfs: migrate the block group cleanup code (bsc#1165949).
  o btrfs: migrate the block group lookup code (bsc#1165949).
  o btrfs: migrate the block group read/creation code (bsc#1165949).
  o btrfs: migrate the block group ref counting stuff (bsc#1165949).
  o btrfs: migrate the block group removal code (bsc#1165949).
  o btrfs: migrate the block group space accounting helpers (bsc#1165949).
  o btrfs: migrate the block-rsv code to block-rsv.c (bsc#1165949).
  o btrfs: migrate the chunk allocation code (bsc#1165949).
  o btrfs: migrate the delalloc space stuff to it's own home (bsc#1165949).
  o btrfs: migrate the delayed refs rsv code (bsc#1165949).
  o btrfs: migrate the dirty bg writeout code (bsc#1165949).
  o btrfs: migrate the global_block_rsv helpers to block-rsv.c (bsc#1165949).
  o btrfs: move and export can_overcommit (bsc#1165949).
  o btrfs: move basic block_group definitions to their own header (bsc#
  o btrfs: move btrfs_add_free_space out of a header file (bsc#1165949).
  o btrfs: move btrfs_block_rsv definitions into it's own header (bsc#1165949).
  o btrfs: move btrfs_raid_group values to btrfs_raid_attr table (bsc#1165949).
  o btrfs: move btrfs_space_info_add_*_bytes to space-info.c (bsc#1165949).
  o btrfs: move dump_space_info to space-info.c (bsc#1165949).
  o btrfs: move reserve_metadata_bytes and supporting code to space-info.c (bsc
  o btrfs: move space_info to space-info.h (bsc#1165949).
  o btrfs: move the space_info handling code to space-info.c (bsc#1165949).
  o btrfs: move the space info update macro to space-info.h (bsc#1165949).
  o btrfs: move the subvolume reservation stuff out of extent-tree.c (bsc#
  o btrfs: only check delayed ref usage in should_end_transaction (bsc#
  o btrfs: only check priority tickets for priority flushing (bsc#1165949).
  o btrfs: only free reserved extent if we didn't insert it (bsc##1165949).
  o btrfs: only reserve metadata_size for inodes (bsc#1165949).
  o btrfs: only track ref_heads in delayed_ref_updates (bsc#1165949).
  o btrfs: Output ENOSPC debug info in inc_block_group_ro (bsc#1165949).
  o btrfs: pass root to various extent ref mod functions (bsc#1165949).
  o btrfs: refactor block group replication factor calculation to a helper (bsc
  o btrfs: refactor priority_reclaim_metadata_space (bsc#1165949).
  o btrfs: refactor the ticket wakeup code (bsc#1165949).
  o btrfs: release metadata before running delayed refs (bsc##1165949).
  o btrfs: Remove btrfs_inode::delayed_iput_count (bsc#1165949).
  o btrfs: Remove fs_info from do_chunk_alloc (bsc#1165949).
  o btrfs: remove orig_bytes from reserve_ticket (bsc#1165949).
  o btrfs: Remove redundant argument of flush_space (bsc#1165949).
  o btrfs: rename btrfs_space_info_add_old_bytes (bsc#1165949).
  o btrfs: rename do_chunk_alloc to btrfs_chunk_alloc (bsc#1165949).
  o btrfs: rename the btrfs_calc_*_metadata_size helpers (bsc#1165949).
  o btrfs: replace cleaner_delayed_iput_mutex with a waitqueue (bsc#1165949).
  o btrfs: reserve delalloc metadata differently (bsc#1165949).
  o btrfs: reserve extra space during evict (bsc#1165949).
  o btrfs: reset max_extent_size on clear in a bitmap (bsc##1165949).
  o btrfs: reset max_extent_size properly (bsc##1165949).
  o btrfs: rework btrfs_check_space_for_delayed_refs (bsc#1165949).
  o btrfs: rework wake_all_tickets (bsc#1165949).
  o btrfs: roll tracepoint into btrfs_space_info_update helper (bsc#1165949).
  o btrfs: run btrfs_try_granting_tickets if a priority ticket fails (bsc#
  o btrfs: run delayed iput at unlink time (bsc#1165949).
  o btrfs: run delayed iputs before committing (bsc#1165949).
  o btrfs: set max_extent_size properly (bsc##1165949).
  o btrfs: stop partially refilling tickets when releasing space (bsc#1165949).
  o btrfs: stop using block_rsv_release_bytes everywhere (bsc#1165949).
  o btrfs: temporarily export btrfs_get_restripe_target (bsc#1165949).
  o btrfs: temporarily export fragment_free_space (bsc#1165949).
  o btrfs: temporarily export inc_block_group_ro (bsc#1165949).
  o btrfs: track DIO bytes in flight (bsc#1165949).
  o btrfs: unexport can_overcommit (bsc#1165949).
  o btrfs: unexport the temporary exported functions (bsc#1165949).
  o btrfs: unify error handling for ticket flushing (bsc#1165949).
  o btrfs: update may_commit_transaction to use the delayed refs rsv (bsc#
  o btrfs: use btrfs_try_granting_tickets in update_global_rsv (bsc#1165949).
  o btrfs: wait on caching when putting the bg cache (bsc#1165949).
  o btrfs: wait on ordered extents on abort cleanup (bsc#1165949).
  o btrfs: wakeup cleaner thread when adding delayed iput (bsc#1165949).
  o ceph: canonicalize server path in place (bsc#1168443).
  o ceph: remove the extra slashes in the server path (bsc#1168443).
  o cfg80211: check reg_rule for NULL in handle_channel_custom() (bsc#1051510).
  o cfg80211: check wiphy driver existence for drvinfo report (bsc#1051510).
  o cgroup: memcg: net: do not associate sock with unrelated cgroup (bsc#
  o cifs: add a debug macro that prints \\server\share for errors (bsc#
  o cifs: add missing mount option to /proc/mounts (bsc#1144333).
  o cifs: add new debugging macro cifs_server_dbg (bsc#1144333).
  o cifs: add passthrough for smb2 setinfo (bsc#1144333).
  o cifs: add SMB2_open() arg to return POSIX data (bsc#1144333).
  o cifs: add smb2 POSIX info level (bsc#1144333).
  o cifs: add SMB3 change notification support (bsc#1144333).
  o cifs: add support for fallocate mode 0 for non-sparse files (bsc#1144333).
  o cifs: Add support for setting owner info, dos attributes, and create time
  o cifs: Add tracepoints for errors on flush or fsync (bsc#1144333).
  o cifs: Adjust indentation in smb2_open_file (bsc#1144333).
  o cifs: allow chmod to set mode bits using special sid (bsc#1144333).
  o cifs: Avoid doing network I/O while holding cache lock (bsc#1144333).
  o cifs: call wake_up(server->response_q) inside of cifs_reconnect() (bsc#
  o cifs: Clean up DFS referral cache (bsc#1144333).
  o cifs: create a helper function to parse the query-directory response buffer
  o cifs: do d_move in rename (bsc#1144333).
  o cifs: Do not display RDMA transport on reconnect (bsc#1144333).
  o cifs: do not ignore the SYNC flags in getattr (bsc#1144333).
  o cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1144333).
  o cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1144333).
  o cifs: enable change notification for SMB2.1 dialect (bsc#1144333).
  o cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1144333).
  o cifs: fix a comment for the timeouts when sending echos (bsc#1144333).
  o cifs: fix a white space issue in cifs_get_inode_info() (bsc#1144333).
  o cifs: fix dereference on ses before it is null checked (bsc#1144333).
  o cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333).
  o cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#
  o cifs: Fix mode output in debugging statements (bsc#1144333).
  o cifs: Fix mount options set in automount (bsc#1144333).
  o cifs: fix NULL dereference in match_prepath (bsc#1144333).
  o cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#
  o cifs: fix potential mismatch of UNC paths (bsc#1144333).
  o cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#
  o cifs: Fix return value in __update_cache_entry (bsc#1144333).
  o cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).
  o cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).
  o cifs: Fix task struct use-after-free on reconnect (bsc#1144333).
  o cifs: fix unitialized variable poential problem with network I/O cache lock
    patch (bsc#1144333).
  o cifs: get mode bits from special sid on stat (bsc#1144333).
  o cifs: Get rid of kstrdup_const()'d paths (bsc#1144333).
  o cifs: handle prefix paths in reconnect (bsc#1144333).
  o cifs: ignore cached share root handle closing errors (bsc#1166780).
  o cifs: Introduce helpers for finding TCP connection (bsc#1144333).
  o cifs: log warning message (once) if out of disk space (bsc#1144333).
  o cifs: make sure we do not overflow the max EA buffer size (bsc#1144333).
  o cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1144333).
  o cifs: Merge is_path_valid() into get_normalized_path() (bsc#1144333).
  o cifs: modefromsid: make room for 4 ACE (bsc#1144333).
  o cifs: modefromsid: write mode ACE first (bsc#1144333).
  o cifs: Optimize readdir on reparse points (bsc#1144333).
  o cifs: plumb smb2 POSIX dir enumeration (bsc#1144333).
  o cifs: potential unintitliazed error code in cifs_getattr() (bsc#1144333).
  o cifs: prepare SMB2_query_directory to be used with compounding (bsc#
  o cifs: print warning once if mounting with vers=1.0 (bsc#1144333).
  o cifs: refactor cifs_get_inode_info() (bsc#1144333).
  o cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1144333).
  o cifs: remove redundant assignment to variable rc (bsc#1144333).
  o cifs: remove set but not used variables (bsc#1144333).
  o cifs: remove set but not used variable 'server' (bsc#1144333).
  o cifs: remove unused variable (bsc#1144333).
  o cifs: remove unused variable 'sid_user' (bsc#1144333).
  o cifs: rename a variable in SendReceive() (bsc#1144333).
  o cifs: rename posix create rsp (bsc#1144333).
  o cifs: replace various strncpy with strscpy and similar (bsc#1144333).
  o cifs: Return directly after a failed build_path_from_dentry() in
    cifs_do_create() (bsc#1144333).
  o cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1144333).
  o cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#
  o cifs: smbd: Invalidate and deregister memory registration on re-send for
    direct I/O (bsc#1144333).
  o cifs: smbd: Only queue work for error recovery on memory registration (bsc#
  o cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1144333).
  o cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state
  o cifs: smbd: Return -EINVAL when the number of iovs exceeds
    SMBDIRECT_MAX_SGE (bsc#1144333).
  o cifs: Use common error handling code in smb2_ioctl_query_info() (bsc#
  o cifs: use compounding for open and first query-dir for readdir() (bsc#
  o cifs: Use #define in cifs_dbg (bsc#1144333).
  o cifs: Use memdup_user() rather than duplicating its implementation (bsc#
  o cifs: use mod_delayed_work() for server->reconnect if already queued (bsc#
  o cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1144333).
  o clk: qcom: rcg: Return failure for RCG update (bsc#1051510).
  o cls_rsvp: fix rsvp_policy (networking-stable-20_02_05).
  o configfs: Fix bool initialization/comparison (bsc#1051510).
  o cpufreq: powernv: Fix unsafe notifiers (bsc#1065729).
  o cpufreq: powernv: Fix use-after-free (bsc#1065729).
  o cpufreq: Register drivers only after CPU devices have been registered (bsc#
  o cpuidle: Do not unset the driver if it is there already (bsc#1051510).
  o crypto: arm64/sha-ce - implement export/import (bsc#1051510).
  o crypto: mxs-dcp - fix scatterlist linearization for hash (bsc#1051510).
  o crypto: pcrypt - Fix user-after-free on module unload (git-fixes).
  o crypto: tcrypt - fix printed skcipher [a]sync mode (bsc#1051510).
  o debugfs: add support for more elaborate ->d_fsdata (bsc#1159198 bsc#
  o debugfs: call debugfs_real_fops() only after debugfs_file_get() (bsc#
    1159198 bsc#1109911).
  o debugfs: convert to debugfs_file_get() and -put() (bsc#1159198 bsc#
  o debugfs: debugfs_real_fops(): drop __must_hold sparse annotation (bsc#
    1159198 bsc#1109911).
  o debugfs: debugfs_use_start/finish do not exist anymore (bsc#1159198).
  o debugfs: defer debugfs_fsdata allocation to first usage (bsc#1159198 bsc#
  o debugfs: fix debugfs_real_fops() build error (bsc#1159198 bsc#1109911).
  o debugfs: implement per-file removal protection (bsc#1159198 bsc#1109911).
  o debugfs: purge obsolete SRCU based removal protection (bsc#1159198 bsc#
  o debugfs: simplify __debugfs_remove_file() (bsc#1159198).
  o Delete patches which cause regression (bsc#1165527 ltc#184149).
  o Deprecate NR_UNSTABLE_NFS, use NR_WRITEBACK (bsc#1163403).
  o device: Use overflow helpers for devm_kmalloc() (bsc#1166003).
  o dmaengine: coh901318: Fix a double lock bug in dma_tc_handle() (bsc#
  o dmaengine: ste_dma40: fix unneeded variable warning (bsc#1051510).
  o dm: fix incomplete request_queue initialization (bsc#1104967,bsc#1159142).
  o driver core: platform: fix u32 greater or equal to zero comparison (bsc#
  o driver core: platform: Prevent resouce overflow from causing infinite loops
  o driver core: Print device when resources present in really_probe() (bsc#
  o drivers/md/raid5.c: use the new spelling of RWH_WRITE_LIFE_NOT_SET (bsc#
  o drivers/md/raid5: Do not disable irq on release_inactive_stripe_list() call
  o drivers/md/raid5-ppl.c: use the new spelling of RWH_WRITE_LIFE_NOT_SET (bsc
  o drivers/md/raid5: Use irqsave variant of atomic_dec_and_lock() (bsc#
  o drm/amd/display: remove duplicated assignment to grph_obj_type (bsc#
  o drm/amdkfd: fix a use after free race with mmu_notifer unregister (bsc#
  o drm: atmel-hlcdc: enable clock before configuring timing engine (bsc#
  o drm/bochs: downgrade pci_request_region failure from error to warning (bsc#
  o drm/bridge: dw-hdmi: fix AVI frame colorimetry (bsc#1051510).
  o drm_dp_mst_topology: fix broken drm_dp_sideband_parse_remote_dpcd_read()
  o drm/drm_dp_mst:remove set but not used variable 'origlen' (bsc#1051510).
  o drm/etnaviv: fix dumping of iommuv2 (bsc#1114279)
  o drm/gma500: Fixup fbdev stolen size usage evaluation (bsc#1051510).
  o drm/i915/gvt: Separate display reset from ALL_ENGINES reset (bsc#1114279)
  o drm/i915/selftests: Fix return in assert_mmap_offset() (bsc#1114279)
  o drm/i915/userptr: fix size calculation (bsc#1114279)
  o drm/i915/userptr: Try to acquire the page lock around (bsc#1114279)
  o drm/i915: Wean off drm_pci_alloc/drm_pci_free (bsc#1114279)
  o drm/mediatek: Add gamma property according to hardware capability (bsc#
  o drm/mediatek: disable all the planes in atomic_disable (bsc#1114279)
  o drm/mediatek: handle events when enabling/disabling crtc (bsc#1051510).
  o drm/mipi_dbi: Fix off-by-one bugs in mipi_dbi_blank() (bsc#1114279)
  o drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable (bsc#1114279)
  o drm/msm: Set dma maximum segment size for mdss (bsc#1051510).
  o drm/msm: stop abusing dma_map/unmap for cache (bsc#1051510).
  o drm/msm: Use the correct dma_sync calls harder (bsc#1051510).
  o drm/msm: Use the correct dma_sync calls in msm_gem (bsc#1051510).
  o drm/nouveau/disp/nv50-: prevent oops when no channel method map provided
  o drm/nouveau/gr/gk20a,gm200-: add terminators to method lists read from fw
  o drm: rcar-du: Recognize "renesas,vsps" in addition to "vsps" (bsc#1114279)
  o drm: remove the newline for CRC source name (bsc#1051510).
  o dt-bindings: allow up to four clocks for orion-mdio (bsc#1051510).
  o EDAC/mc: Fix use-after-free and memleaks during device removal (bsc#
  o efi: Fix a race and a buffer overflow while reading efivars via sysfs (bsc#
  o ethtool: Factored out similar ethtool link settings for virtual devices to
    core (bsc#1136157 ltc#177197).
  o ext4: add cond_resched() to __ext4_find_entry() (bsc#1166862).
  o ext4: Avoid ENOSPC when avoiding to reuse recently deleted inodes (bsc#
  o ext4: Check for non-zero journal inum in ext4_calculate_overhead (bsc#
  o ext4: do not assume that mmp_nodename/bdevname have NUL (bsc#1166860).
  o ext4: fix a data race in EXT4_I(inode)->i_disksize (bsc#1166861).
  o ext4: fix incorrect group count in ext4_fill_super error message (bsc#
  o ext4: fix incorrect inodes per group in error message (bsc#1168764).
  o ext4: fix potential race between online resizing and write operations (bsc#
  o ext4: fix potential race between s_flex_groups online resizing and access
  o ext4: fix potential race between s_group_info online resizing and access
  o ext4: fix race between writepages and enabling EXT4_EXTENTS_FL (bsc#
  o ext4: fix support for inode sizes > 1024 bytes (bsc#1164284).
  o ext4: potential crash on allocation error in ext4_alloc_flex_bg_array()
  o ext4: rename s_journal_flag_rwsem to s_writepages_rwsem (bsc#1166868).
  o ext4: validate the debug_want_extra_isize mount option at parse time (bsc#
  o fat: fix uninit-memory access for partial initialized inode (bsc#1051510).
  o fat: work around race with userspace's read via blockdev while mounting
  o fbdev/g364fb: Fix build failure (bsc#1051510).
  o fcntl: fix typo in RWH_WRITE_LIFE_NOT_SET r/w hint name (bsc#1166003).
  o fix memory leak in large read decrypt offload (bsc#1144333).
  o fs/cifs/cifssmb.c: use true,false for bool variable (bsc#1144333).
  o fs: cifs: cifsssmb: remove redundant assignment to variable ret (bsc#
  o fs: cifs: Initialize filesystem timestamp ranges (bsc#1144333).
  o fs: cifs: mute -Wunused-const-variable message (bsc#1144333).
  o fs/cifs/sess.c: Remove set but not used variable 'capabilities' (bsc#
  o fs/cifs/smb2ops.c: use true,false for bool variable (bsc#1144333).
  o fs/cifs/smb2pdu.c: Make SMB2_notify_init static (bsc#1144333).
  o fs/xfs: fix f_ffree value for statfs when project quota is set (bsc#
  o ftrace/kprobe: Show the maxactive number on kprobe_events (git-fixes).
  o gtp: make sure only SOCK_DGRAM UDP sockets are accepted
  o gtp: use __GFP_NOWARN to avoid memalloc warning
  o HID: apple: Add support for recent firmware on Magic Keyboards (bsc#
  o HID: core: fix off-by-one memset in hid_report_raw_event() (bsc#1051510).
  o HID: hiddev: Fix race in in hiddev_disconnect() (git-fixes).
  o hv_netvsc: Fix memory leak when removing rndis device
  o hv_netvsc: pass netvsc_device to rndis halt
  o hwmon: (adt7462) Fix an error return in ADT7462_REG_VOLT() (bsc#1051510).
  o i2c: hix5hd2: add missed clk_disable_unprepare in remove (bsc#1051510).
  o i2c: jz4780: silence log flood on txabrt (bsc#1051510).
  o IB/hfi1: Close window for pq and request coliding (bsc#1060463 ).
  o IB/hfi1: convert to debugfs_file_get() and -put() (bsc#1159198 bsc#
  o ibmvfc: Fix NULL return compiler warning (bsc#1161951 ltc#183551).
  o ibmvnic: Do not process device remove during device reset (bsc#1065729).
  o ibmvnic: Warn unknown speed message only when carrier is present (bsc#
  o iio: gyro: adis16136: check ret val for non-zero vs less-than-zero (bsc#
  o iio: imu: adis16400: check ret val for non-zero vs less-than-zero (bsc#
  o iio: imu: adis: check ret val for non-zero vs less-than-zero (bsc#1051510).
  o iio: magnetometer: ak8974: Fix negative raw values in sysfs (bsc#1051510).
  o iio: potentiostat: lmp9100: fix iio_triggered_buffer_
    {predisable,postenable} positions (bsc#1051510).
  o Input: add safety guards to input_set_keycode() (bsc#1168075).
  o Input: avoid BIT() macro usage in the serio.h UAPI header (bsc#1051510).
  o Input: edt-ft5x06 - work around first register access error (bsc#1051510).
  o Input: raydium_i2c_ts - fix error codes in raydium_i2c_boot_trigger() (bsc#
  o Input: synaptics - enable RMI on HP Envy 13-ad105ng (bsc#1051510).
  o Input: synaptics - enable SMBus on ThinkPad L470 (bsc#1051510).
  o Input: synaptics - remove the LEN0049 dmi id from topbuttonpad list (bsc#
  o Input: synaptics - switch T470s to RMI4 by default (bsc#1051510).
  o intel_th: Fix user-visible error codes (bsc#1051510).
  o intel_th: pci: Add Elkhart Lake CPU support (bsc#1051510).
  o iommu/amd: Check feature support bit before accessing MSI capability
    registers (bsc#1166101).
  o iommu/amd: Fix the configuration of GCR3 table root pointer (bsc#1169057).
  o iommu/amd: Only support x2APIC with IVHD type 11h/40h (bsc#1166102).
  o iommu/dma: Fix MSI reservation allocation (bsc#1166730).
  o iommu/vt-d: dmar: replace WARN_TAINT with pr_warn + add_taint (bsc#
  o iommu/vt-d: Fix a bug in intel_iommu_iova_to_phys() for huge page (bsc#
  o iommu/vt-d: Fix compile warning from intel-svm.h (bsc#1166103).
  o iommu/vt-d: Fix the wrong printing in RHSA parsing (bsc#1166733).
  o iommu/vt-d: Ignore devices with out-of-spec domain number (bsc#1166734).
  o iommu/vt-d: quirk_ioat_snb_local_iommu: replace WARN_TAINT with pr_warn +
    add_taint (bsc#1166735).
  o ipmi:ssif: Handle a possible NULL pointer reference (bsc#1051510).
  o ipv4: ensure rcu_read_lock() in cipso_v4_error() (git-fixes).
  o ipvlan: do not add hardware address of master to its unicast filter list
  o irqchip/bcm2835: Quiesce IRQs left enabled by bootloader (bsc#1051510).
  o irqdomain: Fix a memory leak in irq_domain_push_irq() (bsc#1051510).
  o iwlegacy: Fix -Wcast-function-type (bsc#1051510).
  o iwlwifi: mvm: Do not require PHY_SKU NVM section for 3168 devices (bsc#
  o iwlwifi: mvm: Fix thermal zone registration (bsc#1051510).
  o kABI: fixes for debugfs per-file removal protection backports (bsc#1159198
  o kABI: invoke bpf_gen_ld_abs() directly (bsc#1158552).
  o kABI: restore debugfs_remove_recursive() (bsc#1159198).
  o kernel/module.c: Only return -EEXIST for modules that have finished loading
  o kernel/module.c: wakeup processes in module_wq on module unload (bsc#
  o KVM: arm64: Store vcpu on the stack during __guest_enter() (bsc#1133021).
  o KVM: s390: do not clobber registers during guest reset/store status (bsc#
  o KVM: s390: ENOTSUPP -> EOPNOTSUPP fixups (bsc#1133021).
  o KVM: VMX: check descriptor table exits on instruction emulation (bsc#
  o l2tp: Allow duplicate session creation with UDP
  o lcoking/rwsem: Add missing ACQUIRE to read_slowpath sleep loop (bsc#
  o libfs: fix infoleak in simple_attr_read() (bsc#1168881).
  o lib/raid6: add missing include for raid6test (bsc#1166003).
  o lib/raid6: add option to skip algo benchmarking (bsc#1166003).
  o lib/raid6/altivec: Add vpermxor implementation for raid6 Q syndrome (bsc#
  o lib/raid6: avoid __attribute_const__ redefinition (bsc#1166003).
  o locking/rwsem: Prevent decrement of reader count before increment (bsc#
  o mac80211: consider more elements in parsing CRC (bsc#1051510).
  o mac80211: Do not send mesh HWMP PREQ if HWMP is disabled (bsc#1051510).
  o mac80211: free peer keys before vif down in mesh (bsc#1051510).
  o mac80211: mesh: fix RCU warning (bsc#1051510).
  o mac80211: only warn once on chanctx_conf being NULL (bsc#1051510).
  o mac80211: rx: avoid RCU list traversal under mutex (bsc#1051510).
  o macsec: add missing attribute validation for port (bsc#1051510).
  o macsec: fix refcnt leak in module exit routine (bsc#1051510).
  o md: add __acquires/__releases annotations to handle_active_stripes (bsc#
  o md: add __acquires/__releases annotations to (un)lock_two_stripes (bsc#
  o md: add a missing endianness conversion in check_sb_changes (bsc#1166003).
  o md: add bitmap_abort label in md_run (bsc#1166003).
  o md: add feature flag MD_FEATURE_RAID0_LAYOUT (bsc#1166003).
  o md: allow last device to be forcibly removed from RAID1/RAID10 (bsc#
  o md: avoid invalid memory access for array sb->dev_roles (bsc#1166003).
  o md/bitmap: avoid race window between md_bitmap_resize and
    bitmap_file_clear_bit (bsc#1166003).
  o md-bitmap: create and destroy wb_info_pool with the change of backlog (bsc#
  o md-bitmap: create and destroy wb_info_pool with the change of bitmap (bsc#
  o md-bitmap: small cleanups (bsc#1166003).
  o md/bitmap: use mddev_suspend/resume instead of ->quiesce() (bsc#1166003).
  o md-cluster/bitmap: do not call md_bitmap_sync_with_cluster during reshaping
    stage (bsc#1166003).
  o md-cluster: introduce resync_info_get interface for sanity check (bsc#
  o md-cluster/raid10: call update_size in md_reap_sync_thread (bsc#1166003).
  o md-cluster/raid10: do not call remove_and_add_spares during reshaping stage
  o md-cluster/raid10: resize all the bitmaps before start reshape (bsc#
  o md-cluster/raid10: support add disk under grow mode (bsc#1166003).
  o md-cluster: remove suspend_info (bsc#1166003).
  o md-cluster: send BITMAP_NEEDS_SYNC message if reshaping is interrupted (bsc
  o md: convert to kvmalloc (bsc#1166003).
  o md: do not call spare_active in md_reap_sync_thread if all member devices
    can't work (bsc#1166003).
  o md: do not set In_sync if array is frozen (bsc#1166003).
  o md: fix an error code format and remove unsed bio_sector (bsc#1166003).
  o md: fix a typo s/creat/create (bsc#1166003).
  o md: fix for divide error in status_resync (bsc#1166003).
  o md: fix spelling typo and add necessary space (bsc#1166003).
  o md: introduce mddev_create/destroy_wb_pool for the change of member device
  o md: introduce new personality funciton start() (bsc#1166003).
  o md-linear: use struct_size() in kzalloc() (bsc#1166003).
  o md: Make bio_alloc_mddev use bio_alloc_bioset (bsc#1166003).
  o md: make sure desc_nr less than MD_SB_DISKS (bsc#1166003).
  o md: md.c: Return -ENODEV when mddev is NULL in rdev_attr_show (bsc#
  o md: no longer compare spare disk superblock events in super_load (bsc#
  o md/r5cache: remove redundant pointer bio (bsc#1166003).
  o md/raid0: Fix an error message in raid0_make_request() (bsc#1166003).
  o md/raid0/linear: Mark array as 'broken' and fail BIOs if a member is gone
  o md/raid10: end bio when the device faulty (bsc#1166003).
  o md/raid10: Fix raid10 replace hang when new added disk faulty (bsc#
  o md/raid10: prevent access of uninitialized resync_pages offset (bsc#
  o md/raid10: read balance chooses idlest disk for SSD (bsc#1166003).
  o md/raid10: Use struct_size() in kmalloc() (bsc#1166003).
  o md/raid1: avoid soft lockup under high load (bsc#1166003).
  o md/raid1: check rdev before reference in raid1_sync_request func (bsc#
  o md/raid1: end bio when the device faulty (bsc#1166003).
  o md/raid1: fail run raid1 array when active disk less than one (bsc#
  o md/raid1: Fix a warning message in remove_wb() (bsc#1166003).
  o md/raid1: fix potential data inconsistency issue with write behind device
  o md/raid1: get rid of extra blank line and space (bsc#1166003).
  o md/raid5: Assigning NULL to sh->batch_head before testing bit R5_Overlap of
    a stripe (bsc#1166003).
  o md/raid5: use bio_end_sector to calculate last_sector (bsc#1166003).
  o md/raid6: fix algorithm choice under larger PAGE_SIZE (bsc#1166003).
  o md/raid6: implement recovery using ARM NEON intrinsics (bsc#1166003).
  o md: remove a bogus comment (bsc#1166003).
  o md: remove redundant code that is no longer reachable (bsc#1166003).
  o md: remove set but not used variable 'bi_rdev' (bsc#1166003).
  o md: rename wb stuffs (bsc#1166003).
  o md: return -ENODEV if rdev has no mddev assigned (bsc#1166003).
  o md: use correct type in super_1_load (bsc#1166003).
  o md: use correct type in super_1_sync (bsc#1166003).
  o md: use correct types in md_bitmap_print_sb (bsc#1166003).
  o media: dib0700: fix rc endpoint lookup (bsc#1051510).
  o media: flexcop-usb: fix endpoint sanity check (git-fixes).
  o media: go7007: Fix URB type for interrupt handling (bsc#1051510).
  o media: ov519: add missing endpoint sanity checks (bsc#1168829).
  o media: ov6650: Fix .get_fmt() V4L2_SUBDEV_FORMAT_TRY support (bsc#1051510).
  o media: ov6650: Fix some format attributes not under control (bsc#1051510).
  o media: ov6650: Fix stored crop rectangle not in sync with hardware (bsc#
  o media: ov6650: Fix stored frame format not in sync with hardware (bsc#
  o media: stv06xx: add missing descriptor sanity checks (bsc#1168854).
  o media: tda10071: fix unsigned sign extension overflow (bsc#1051510).
  o media: usbtv: fix control-message timeouts (bsc#1051510).
  o media: uvcvideo: Refactor teardown of uvc on USB disconnect (bsc#1164507).
  o media: v4l2-core: fix entity initialization in device_register_subdev (bsc#
  o media: vsp1: tidyup VI6_HGT_LBn_H() macro (bsc#1051510).
  o media: xirlink_cit: add missing descriptor sanity checks (bsc#1051510).
  o mfd: dln2: Fix sanity checking for endpoints (bsc#1051510).
  o misc: pci_endpoint_test: Fix to support > 10 pci-endpoint-test devices (bsc
  o mmc: sdhci-of-at91: fix cd-gpios for SAMA5D2 (bsc#1051510).
  o mm/filemap.c: do not initiate writeback if mapping has no dirty pages (bsc#
  o mm/memory_hotplug.c: only respect mem= parameter during boot stage (bsc#
  o mm: replace PF_LESS_THROTTLE with PF_LOCAL_THROTTLE (bsc#1163403).
  o mm: Use overflow helpers in kvmalloc() (bsc#1166003).
  o mwifiex: set needed_headroom, not hard_header_len (bsc#1051510).
  o net: core: another layer of lists, around PF_MEMALLOC skb handling (bsc#
  o net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM
  o net: dsa: mv88e6xxx: Preserve priority when setting CPU port
  o net: dsa: tag_qca: fix doubled Tx statistics (networking-stable-20_01_20).
  o net: dsa: tag_qca: Make sure there is headroom for tag
  o net: ena: Add PCI shutdown handler to allow safe kexec (bsc#1167421, bsc#
  o net/ethtool: Introduce link_ksettings API for virtual network devices (bsc#
    1136157 ltc#177197).
  o net: hns: fix soft lockup when there is not enough memory
  o net: hsr: fix possible NULL deref in hsr_handle_frame()
  o net: ip6_gre: fix moving ip6gre between namespaces
  o net, ip6_tunnel: fix namespaces move (networking-stable-20_01_27).
  o net, ip_tunnel: fix namespaces move (networking-stable-20_01_27).
  o net: macb: Limit maximum GEM TX length in TSO (networking-stable-20_02_09).
  o net: macb: Remove unnecessary alignment check for TSO
  o net/mlxfw: Verify FSM error code translation does not exceed array size
  o net: mvneta: move rx_dropped and rx_errors in per-cpu stats
  o net/nfc: Avoid stalls when nfc_alloc_send_skb() returned NULL (bsc#
  o net: nfc: fix bounds checking bugs on "pipe" (bsc#1051510).
  o net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before
    accessing PHY registers (bsc#1051510).
  o net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()
  o net/sched: ematch: reject invalid TCF_EM_SIMPLE
  o net/sched: fix an OOB access in cls_tcindex (networking-stable-20_02_05).
  o net/sched: fix a resource leak in tcindex_set_parms()
  o net/sched: fix datalen for ematch (networking-stable-20_01_27).
  o net/sched: keep alloc_hash updated after hash allocation (git-fixes).
  o net/sched: flower: add missing validation of TCA_FLOWER_FLAGS
  o net/sched: matchall: add missing validation of TCA_MATCHALL_FLAGS
  o net: sch_prio: When ungrafting, replace with FIFO
  o net/smc: fix leak of kernel memory to user space
  o net: stmmac: Delete txtimer in suspend() (networking-stable-20_02_05).
  o net: stmmac: dwmac-sunxi: Allow all RGMII modes
  o net-sysfs: Fix reference count leak (networking-stable-20_01_27).
  o net: systemport: Avoid RBUF stuck in Wake-on-LAN mode
  o net: usb: lan78xx: Add .ndo_features_check (networking-stable-20_01_27).
  o net: usb: lan78xx: fix possible skb leak (networking-stable-20_01_11).
  o net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info
  o NFC: fdp: Fix a signedness bug in fdp_nci_send_patch() (bsc#1051510).
  o NFC: pn544: Fix a typo in a debug message (bsc#1051510).
  o NFC: port100: Convert cpu_to_le16(le16_to_cpu(E1) + E2) to use le16_add_cpu
    () (bsc#1051510).
  o NFS: send state management on a single connection (bsc#1167005).
  o nvme-multipath: fix possible I/O hang when paths are updated (bsc#1158983).
  o orinoco: avoid assertion in case of NULL pointer (bsc#1051510).
  o padata: always acquire cpu_hotplug_lock before pinst->lock (git-fixes).
  o partitions/efi: Fix partition name parsing in GUID partition entry (bsc#
  o PCI/ASPM: Clear the correct bits when enabling L1 substates (bsc#1051510).
  o PCI: endpoint: Fix clearing start entry in configfs (bsc#1051510).
  o PCI: pciehp: Fix MSI interrupt race (bsc#1159037).
  o PCI/switchtec: Fix init_completion race condition with poll_wait() (bsc#
  o perf/amd/uncore: Replace manual sampling check with CAP_NO_INTERRUPT flag
  o perf: qcom_l2: fix column exclusion check (git-fixes).
  o pinctrl: baytrail: Do not clear IRQ flags on direct-irq enabled pins (bsc#
  o pinctrl: core: Remove extra kref_get which blocks hogs being freed (bsc#
  o pinctrl: sh-pfc: sh7264: Fix CAN function GPIOs (bsc#1051510).
  o pinctrl: sh-pfc: sh7269: Fix CAN function GPIOs (bsc#1051510).
  o pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
  o platform/x86: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table (bsc#
  o PM: core: Fix handling of devices deleted during system-wide resume
  o powerpc/64: mark start_here_multiplatform as __ref (bsc#1148868).
  o powerpc/64s: Fix section mismatch warnings from boot code (bsc#1148868).
  o powerpc/64/tm: Do not let userspace set regs->trap via sigreturn (bsc#
    1118338 ltc#173734).
  o powerpc: fix hardware PMU exception bug on PowerVM compatibility mode
    systems (bsc#1056686).
  o powerpc/hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE
    entries (bsc#1065729).
  o powerpc/kprobes: Ignore traps that happened in real mode (bsc#1065729).
  o powerpc/mm: Fix section mismatch warning in stop_machine_change_mapping()
  o powerpc/pseries: Avoid NULL pointer dereference when drmem is unavailable
  o powerpc/pseries: group lmb operation and memblock's (bsc#1165404 ltc#
  o powerpc/pseries/memory-hotplug: Only update DT once per memory DLPAR
    request (bsc#1165404 ltc#183498).
  o powerpc/pseries: update device tree before ejecting hotplug uevents (bsc#
    1165404 ltc#183498).
  o powerpc/smp: Use nid as fallback for package_id (bsc#1165813 ltc#184091).
  o powerpc/vmlinux.lds: Explicitly retain .gnu.hash (bsc#1148868).
  o powerpc/xive: Replace msleep(x) with msleep(OPAL_BUSY_DELAY_MS) (bsc#
  o powerpc/xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs
  o pwm: bcm2835: Dynamically allocate base (bsc#1051510).
  o pwm: meson: Fix confusing indentation (bsc#1051510).
  o pwm: pca9685: Fix PWM/GPIO inter-operation (bsc#1051510).
  o pwm: rcar: Fix late Runtime PM enablement (bsc#1051510).
  o pwm: renesas-tpu: Fix late Runtime PM enablement (bsc#1051510).
  o pxa168fb: fix release function mismatch in probe failure (bsc#1051510).
  o qmi_wwan: re-add DW5821e pre-production variant (bsc#1051510).
  o qmi_wwan: unconditionally reject 2 ep interfaces (bsc#1051510).
  o raid10: refactor common wait code from regular read/write request (bsc#
  o raid1: factor out a common routine to handle the completion of sync write
  o raid1: simplify raid1_error function (bsc#1166003).
  o raid1: use an int as the return value of raise_barrier() (bsc#1166003).
  o raid5: block failing device if raid will be failed (bsc#1166003).
  o raid5-cache: Need to do start() part job after adding journal device (bsc#
  o raid5: copy write hint from origin bio to stripe (bsc#1166003).
  o raid5: do not increment read_errors on EILSEQ return (bsc#1166003).
  o raid5: do not set STRIPE_HANDLE to stripe which is in batch list (bsc#
  o raid5 improve too many read errors msg by adding limits (bsc#1166003).
  o raid5: need to set STRIPE_HANDLE for batch head (bsc#1166003).
  o raid5: remove STRIPE_OPS_REQ_PENDING (bsc#1166003).
  o raid5: remove worker_cnt_per_group argument from alloc_thread_groups (bsc#
  o raid5: set write hint for PPL (bsc#1166003).
  o raid5: use bio_end_sector in r5_next_bio (bsc#1166003).
  o raid6/test: fix a compilation error (bsc#1166003).
  o raid6/test: fix a compilation warning (bsc#1166003).
  o remoteproc: Initialize rproc_class before use (bsc#1051510).
  o rtlwifi: rtl8192de: Fix missing callback that tests for hw release of
    buffer (git-fixes).
  o rtlwifi: rtl_pci: Fix -Wcast-function-type (bsc#1051510).
  o rxrpc: Fix insufficient receive notification generation
  o s390/mm: fix dynamic pagetable upgrade for hugetlbfs (bsc#1165182 LTC#
  o scsi: core: avoid repetitive logging of device offline messages (bsc#
  o scsi: core: kABI fix offline_already (bsc#1145929).
  o scsi: fnic: do not queue commands during fwreset (bsc#1146539).
  o scsi: ibmvfc: Add failed PRLI to cmd_status lookup array (bsc#1161951 ltc#
  o scsi: ibmvfc: Avoid loss of all paths during SVC node reboot (bsc#1161951
  o scsi: ibmvfc: Byte swap status and error codes when logging (bsc#1161951
  o scsi: ibmvfc: Clean up transport events (bsc#1161951 ltc#183551).
  o scsi: ibmvfc: constify dev_pm_ops structures (bsc#1161951 ltc#183551).
  o scsi: ibmvfc: Do not call fc_block_scsi_eh() on host reset (bsc#1161951 ltc
  o scsi: ibmvfc: Fix NULL return compiler warning (bsc#1161951 ltc#183551).
    Refresh sorted patches.
  o scsi: ibmvfc: ibmvscsi: ibmvscsi_tgt: constify vio_device_id (bsc#1161951
  o scsi: ibmvfc: Mark expected switch fall-throughs (bsc#1161951 ltc#183551).
  o scsi: ibmvfc: Remove "failed" from logged errors (bsc#1161951 ltc#183551).
  o scsi: ibmvfc: Remove unneeded semicolons (bsc#1161951 ltc#183551).
  o scsi: ibmvscsi: change strncpy+truncation to strlcpy (bsc#1161951 ltc#
  o scsi: ibmvscsi: constify dev_pm_ops structures (bsc#1161951 ltc#183551).
  o scsi: ibmvscsi: Do not use rc uninitialized in ibmvscsi_do_work (bsc#
    1161951 ltc#183551).
  o scsi: ibmvscsi: fix tripping of blk_mq_run_hw_queue WARN_ON (bsc#1161951
  o scsi: ibmvscsi: redo driver work thread to use enum action states (bsc#
    1161951 ltc#183551).
  o scsi: ibmvscsi: Wire up host_reset() in the driver's scsi_host_template
    (bsc#1161951 ltc#183551).
  o scsi: qla2xxx: Add 16.0GT for PCI String (bsc#1157424).
  o scsi: qla2xxx: Add beacon LED config sysfs interface (bsc#1157424).
  o scsi: qla2xxx: Add changes in preparation for vendor extended FDMI/RDP (bsc
  o scsi: qla2xxx: Add deferred queue for processing ABTS and RDP (bsc#
  o scsi: qla2xxx: Add endianizer macro calls to fc host stats (bsc#1157424).
  o scsi: qla2xxx: Add fixes for mailbox command (bsc#1157424).
  o scsi: qla2xxx: add more FW debug information (bsc#1157424).
  o scsi: qla2xxx: Add ql2xrdpenable module parameter for RDP (bsc#1157424).
  o scsi: qla2xxx: Add sysfs node for D-Port Diagnostics AEN data (bsc#
  o scsi: qla2xxx: Add vendor extended FDMI commands (bsc#1157424).
  o scsi: qla2xxx: Add vendor extended RDP additions and amendments (bsc#
  o scsi: qla2xxx: Avoid setting firmware options twice in
    24xx_update_fw_options (bsc#1157424).
  o scsi: qla2xxx: Check locking assumptions at runtime in qla2x00_abort_srb()
  o scsi: qla2xxx: Cleanup ELS/PUREX iocb fields (bsc#1157424).
  o scsi: qla2xxx: Convert MAKE_HANDLE() from a define into an inline function
  o scsi: qla2xxx: Correction to selection of loopback/echo test (bsc#1157424).
  o scsi: qla2xxx: Display message for FCE enabled (bsc#1157424).
  o scsi: qla2xxx: Fix control flags for login/logout IOCB (bsc#1157424).
  o scsi: qla2xxx: Fix FCP-SCSI FC4 flag passing error (bsc#1157424).
  o scsi: qla2xxx: fix FW resource count values (bsc#1157424).
  o scsi: qla2xxx: Fix I/Os being passed down when FC device is being deleted
  o scsi: qla2xxx: Fix NPIV instantiation after FW dump (bsc#1157424).
  o scsi: qla2xxx: Fix qla2x00_echo_test() based on ISP type (bsc#1157424).
  o scsi: qla2xxx: Fix RDP respond data format (bsc#1157424).
  o scsi: qla2xxx: Fix RDP response size (bsc#1157424).
  o scsi: qla2xxx: Fix sparse warning reported by kbuild bot (bsc#1157424).
  o scsi: qla2xxx: Fix sparse warnings triggered by the PCI state checking code
  o scsi: qla2xxx: Force semaphore on flash validation failure (bsc#1157424).
  o scsi: qla2xxx: Handle cases for limiting RDP response payload length (bsc#
  o scsi: qla2xxx: Handle NVME status iocb correctly (bsc#1157424).
  o scsi: qla2xxx: Improved secure flash support messages (bsc#1157424).
  o scsi: qla2xxx: Move free of fcport out of interrupt context (bsc#1157424).
  o scsi: qla2xxx: Print portname for logging in qla24xx_logio_entry() (bsc#
  o scsi: qla2xxx: Remove restriction of FC T10-PI and FC-NVMe (bsc#1157424).
  o scsi: qla2xxx: Return appropriate failure through BSG Interface (bsc#
  o scsi: qla2xxx: Save rscn_gen for new fcport (bsc#1157424).
  o scsi: qla2xxx: Serialize fc_port alloc in N2N (bsc#1157424).
  o scsi: qla2xxx: Set Nport ID for N2N (bsc#1157424).
  o scsi: qla2xxx: Show correct port speed capabilities for RDP command (bsc#
  o scsi: qla2xxx: Simplify the code for aborting SCSI commands (bsc#1157424).
  o scsi: qla2xxx: Suppress endianness complaints in
    qla2x00_configure_local_loop() (bsc#1157424).
  o scsi: qla2xxx: Update BPM enablement semantics (bsc#1157424).
  o scsi: qla2xxx: Update driver version to (bsc#1157424).
  o scsi: qla2xxx: Update driver version to (bsc#1157424).
  o scsi: qla2xxx: Use a dedicated interrupt handler for 'handshake-required'
    ISPs (bsc#1157424).
  o scsi: qla2xxx: Use correct ISP28xx active FW region (bsc#1157424).
  o scsi: qla2xxx: Use endian macros to assign static fields in fwdump header
  o scsi: qla2xxx: Use FC generic update firmware options routine for ISP27xx
  o scsi: qla2xxx: Use QLA_FW_STOPPED macro to propagate flag (bsc#1157424).
  o scsi: tcm_qla2xxx: Make qlt_alloc_qfull_cmd() set cmd->se_cmd.map_tag (bsc#
  o sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY
  o serdev: ttyport: restore client ops on deregistration (bsc#1051510).
  o smb3: add debug messages for closing unmatched open (bsc#1144333).
  o smb3: Add defines for new information level, FileIdInformation (bsc#
  o smb3: add dynamic tracepoints for flush and close (bsc#1144333).
  o smb3: add missing flag definitions (bsc#1144333).
  o smb3: Add missing reparse tags (bsc#1144333).
  o smb3: add missing worker function for SMB3 change notify (bsc#1144333).
  o smb3: add mount option to allow forced caching of read only share (bsc#
  o smb3: add mount option to allow RW caching of share accessed by only 1
    client (bsc#1144333).
  o smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#
  o smb3: add some more descriptive messages about share when mounting cache=ro
  o smb3: allow decryption keys to be dumped by admin for debugging (bsc#
  o smb3: allow disabling requesting leases (bsc#1144333).
  o smb3: allow parallelizing decryption of reads (bsc#1144333).
  o smb3: allow skipping signature verification for perf sensitive
    configurations (bsc#1144333).
  o SMB3: Backup intent flag missing from some more ops (bsc#1144333).
  o smb3: cleanup some recent endian errors spotted by updated sparse (bsc#
  o smb3: display max smb3 requests in flight at any one time (bsc#1144333).
  o smb3: dump in_send and num_waiters stats counters by default (bsc#1144333).
  o smb3: enable offload of decryption of large reads via mount option (bsc#
  o smb3: fix default permissions on new files when mounting with modefromsid
  o smb3: fix mode passed in on create for modetosid mount option (bsc#
  o smb3: fix performance regression with setting mtime (bsc#1144333).
  o smb3: fix potential null dereference in decrypt offload (bsc#1144333).
  o smb3: fix problem with null cifs super block with previous patch (bsc#
  o smb3: Fix regression in time handling (bsc#1144333).
  o smb3: improve check for when we send the security descriptor context on
    create (bsc#1144333).
  o smb3: log warning if CSC policy conflicts with cache mount option (bsc#
  o smb3: missing ACL related flags (bsc#1144333).
  o smb3: only offload decryption of read responses if multiple requests (bsc#
  o smb3: pass mode bits into create calls (bsc#1144333).
  o smb3: print warning once if posix context returned on open (bsc#1144333).
  o smb3: query attributes on file close (bsc#1144333).
  o smb3: remove noisy debug message and minor cleanup (bsc#1144333).
  o smb3: remove unused flag passed into close functions (bsc#1144333).
  o staging: ccree: use signal safe completion wait (git-fixes).
  o staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table (bsc#1051510).
  o staging: rtl8188eu: Fix potential overuse of kernel memory (bsc#1051510).
  o staging: rtl8188eu: Fix potential security hole (bsc#1051510).
  o staging: rtl8723bs: Fix potential overuse of kernel memory (bsc#1051510).
  o staging: rtl8723bs: Fix potential security hole (bsc#1051510).
  o staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi (bsc#1051510).
  o staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb (bsc#1051510).
  o staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback (bsc#
  o SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202).
  o tcp_bbr: improve arithmetic division in bbr_update_bw()
  o tcp: clear tp->data_segs{in|out} in tcp_disconnect()
  o tcp: clear tp->delivered in tcp_disconnect() (networking-stable-20_02_05).
  o tcp: clear tp->segs_{in|out} in tcp_disconnect()
  o tcp: clear tp->total_retrans in tcp_disconnect()
  o tcp: fix marked lost packets not being retransmitted
  o tcp: fix "old stuff" D-SACK causing SACK to be treated as D-SACK
  o thermal: devfreq_cooling: inline all stubs for CONFIG_DEVFREQ_THERMAL=n
  o thunderbolt: Prevent crash if non-active NVMem file is read (git-fixes).
  o tick: broadcast-hrtimer: Fix a race in bc_set_next (bsc#1044231).
  o tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on
    failure (git-fixes).
  o tools: Update include/uapi/linux/fcntl.h copy from the kernel (bsc#
  o tpm: ibmvtpm: Wait for buffer to be set before proceeding (bsc#1065729).
  o tty: evh_bytechan: Fix out of bounds accesses (bsc#1051510).
  o ttyprintk: fix a potential deadlock in interrupt context issue (git-fixes).
  o tty/serial: atmel: manage shutdown in case of RS485 or ISO7816 mode (bsc#
  o tty: serial: imx: setup the correct sg entry for tx dma (bsc#1051510).
  o USB: cdc-acm: fix rounding error in TIOCSSERIAL (git-fixes).
  o USB: core: add endpoint-blacklist quirk (git-fixes).
  o USB: core: hub: do error out if usb_autopm_get_interface() fails
  o USB: core: port: do error out if usb_autopm_get_interface() fails
  o USB: Disable LPM on WD19's Realtek Hub (git-fixes).
  o USB: dwc2: Fix in ISOC request length checking (git-fixes).
  o USB: Fix novation SourceControl XL after suspend (git-fixes).
  o USB: gadget: composite: Fix bMaxPower for SuperSpeedPlus (git-fixes).
  o USB: gadget: f_fs: Fix use after free issue as part of queue failure (bsc#
  o USB: host: xhci-plat: add a shutdown (git-fixes).
  o USB: host: xhci: update event ring dequeue pointer on purpose (git-fixes).
  o USB: hub: Do not record a connect-change event during reset-resume
  o usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit()
  o USB: misc: iowarrior: add support for 2 OEMed devices (git-fixes).
  o USB: misc: iowarrior: add support for the 100 device (git-fixes).
  o USB: misc: iowarrior: add support for the 28 and 28L devices (git-fixes).
  o USB: musb: Disable pullup at init (git-fixes).
  o USB: musb: fix crash with highmen PIO and usbmon (bsc#1051510).
  o USB: quirks: add NO_LPM quirk for Logitech Screen Share (git-fixes).
  o USB: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters
  o USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 (git-fixes).
  o USB: serial: io_edgeport: fix slab-out-of-bounds read in
    edge_interrupt_callback (bsc#1051510).
  o USB: serial: option: add ME910G1 ECM composition 0x110b (git-fixes).
  o USB: serial: pl2303: add device-id for HP LD381 (git-fixes).
  o USB: storage: Add quirk for Samsung Fit flash (git-fixes).
  o USB: uas: fix a plug & unplug racing (git-fixes).
  o USB: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c
  o uvcvideo: Refactor teardown of uvc on USB disconnect (bsc#1164507).
  o vgacon: Fix a UAF in vgacon_invert_region (bsc#1114279)
  o virtio-blk: fix hw_queue stopped on arbitrary error (git-fixes).
  o vlan: fix memory leak in vlan_dev_set_egress_priority
  o vlan: vlan_changelink() should propagate errors
  o vxlan: fix tos value before xmit (networking-stable-20_01_11).
  o x86/cpu/amd: Enable the fixed Instructions Retired counter IRPERF (bsc#
  o x86/mce/amd: Fix kobject lifetime (bsc#1114279).
  o x86/mce/amd: Publish the bank pointer only after setup has succeeded (bsc#
  o x86/mce: Fix logic and comments around MSR_PPIN_CTL (bsc#1114279).
  o x86/mm: Split vmalloc_sync_all() (bsc#1165741).
  o x86/pkeys: Manually set X86_FEATURE_OSPKE to preserve existing changes (bsc
  o xen/blkfront: fix memory allocation flags in blkfront_setup_indirect() (bsc
  o xfs: also remove cached ACLs when removing the underlying attr (bsc#
  o xfs: bulkstat should copy lastip whenever userspace supplies one (bsc#
  o xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms (git-fixes).
  o xhci: Do not open code __print_symbolic() in xhci trace events (git-fixes).
  o xhci: fix runtime pm enabling for quirky Intel hosts (bsc#1051510).
  o xhci: Force Maximum Packet size for Full-speed bulk devices to valid range

Special Instructions and Notes:

Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  o SUSE Linux Enterprise Real Time Extension 12-SP4:
    zypper in -t patch SUSE-SLE-RT-12-SP4-2020-1085=1

Package List:

  o SUSE Linux Enterprise Real Time Extension 12-SP4 (x86_64):
  o SUSE Linux Enterprise Real Time Extension 12-SP4 (noarch):


  o https://www.suse.com/security/cve/CVE-2019-19768.html
  o https://www.suse.com/security/cve/CVE-2019-19770.html
  o https://www.suse.com/security/cve/CVE-2019-3701.html
  o https://www.suse.com/security/cve/CVE-2019-9458.html
  o https://www.suse.com/security/cve/CVE-2020-10942.html
  o https://www.suse.com/security/cve/CVE-2020-11494.html
  o https://www.suse.com/security/cve/CVE-2020-11669.html
  o https://www.suse.com/security/cve/CVE-2020-8647.html
  o https://www.suse.com/security/cve/CVE-2020-8649.html
  o https://www.suse.com/security/cve/CVE-2020-8834.html
  o https://www.suse.com/security/cve/CVE-2020-9383.html
  o https://bugzilla.suse.com/1044231
  o https://bugzilla.suse.com/1050549
  o https://bugzilla.suse.com/1051510
  o https://bugzilla.suse.com/1051858
  o https://bugzilla.suse.com/1056686
  o https://bugzilla.suse.com/1060463
  o https://bugzilla.suse.com/1065600
  o https://bugzilla.suse.com/1065729
  o https://bugzilla.suse.com/1083647
  o https://bugzilla.suse.com/1085030
  o https://bugzilla.suse.com/1104967
  o https://bugzilla.suse.com/1109911
  o https://bugzilla.suse.com/1114279
  o https://bugzilla.suse.com/1118338
  o https://bugzilla.suse.com/1120386
  o https://bugzilla.suse.com/1133021
  o https://bugzilla.suse.com/1136157
  o https://bugzilla.suse.com/1137325
  o https://bugzilla.suse.com/1144333
  o https://bugzilla.suse.com/1145051
  o https://bugzilla.suse.com/1145929
  o https://bugzilla.suse.com/1146539
  o https://bugzilla.suse.com/1148868
  o https://bugzilla.suse.com/1154385
  o https://bugzilla.suse.com/1157424
  o https://bugzilla.suse.com/1158552
  o https://bugzilla.suse.com/1158983
  o https://bugzilla.suse.com/1159037
  o https://bugzilla.suse.com/1159142
  o https://bugzilla.suse.com/1159198
  o https://bugzilla.suse.com/1159285
  o https://bugzilla.suse.com/1160659
  o https://bugzilla.suse.com/1161951
  o https://bugzilla.suse.com/1162929
  o https://bugzilla.suse.com/1162931
  o https://bugzilla.suse.com/1163403
  o https://bugzilla.suse.com/1163508
  o https://bugzilla.suse.com/1163897
  o https://bugzilla.suse.com/1164078
  o https://bugzilla.suse.com/1164284
  o https://bugzilla.suse.com/1164507
  o https://bugzilla.suse.com/1164893
  o https://bugzilla.suse.com/1165019
  o https://bugzilla.suse.com/1165111
  o https://bugzilla.suse.com/1165182
  o https://bugzilla.suse.com/1165404
  o https://bugzilla.suse.com/1165488
  o https://bugzilla.suse.com/1165527
  o https://bugzilla.suse.com/1165741
  o https://bugzilla.suse.com/1165813
  o https://bugzilla.suse.com/1165873
  o https://bugzilla.suse.com/1165949
  o https://bugzilla.suse.com/1165984
  o https://bugzilla.suse.com/1165985
  o https://bugzilla.suse.com/1166003
  o https://bugzilla.suse.com/1166101
  o https://bugzilla.suse.com/1166102
  o https://bugzilla.suse.com/1166103
  o https://bugzilla.suse.com/1166104
  o https://bugzilla.suse.com/1166632
  o https://bugzilla.suse.com/1166730
  o https://bugzilla.suse.com/1166731
  o https://bugzilla.suse.com/1166732
  o https://bugzilla.suse.com/1166733
  o https://bugzilla.suse.com/1166734
  o https://bugzilla.suse.com/1166735
  o https://bugzilla.suse.com/1166780
  o https://bugzilla.suse.com/1166860
  o https://bugzilla.suse.com/1166861
  o https://bugzilla.suse.com/1166862
  o https://bugzilla.suse.com/1166864
  o https://bugzilla.suse.com/1166866
  o https://bugzilla.suse.com/1166867
  o https://bugzilla.suse.com/1166868
  o https://bugzilla.suse.com/1166870
  o https://bugzilla.suse.com/1166940
  o https://bugzilla.suse.com/1167005
  o https://bugzilla.suse.com/1167288
  o https://bugzilla.suse.com/1167290
  o https://bugzilla.suse.com/1167316
  o https://bugzilla.suse.com/1167421
  o https://bugzilla.suse.com/1167423
  o https://bugzilla.suse.com/1167629
  o https://bugzilla.suse.com/1168075
  o https://bugzilla.suse.com/1168202
  o https://bugzilla.suse.com/1168276
  o https://bugzilla.suse.com/1168295
  o https://bugzilla.suse.com/1168424
  o https://bugzilla.suse.com/1168443
  o https://bugzilla.suse.com/1168486
  o https://bugzilla.suse.com/1168760
  o https://bugzilla.suse.com/1168762
  o https://bugzilla.suse.com/1168763
  o https://bugzilla.suse.com/1168764
  o https://bugzilla.suse.com/1168765
  o https://bugzilla.suse.com/1168829
  o https://bugzilla.suse.com/1168854
  o https://bugzilla.suse.com/1168881
  o https://bugzilla.suse.com/1168884
  o https://bugzilla.suse.com/1168952
  o https://bugzilla.suse.com/1169057
  o https://bugzilla.suse.com/1169390

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:


Australian Computer Emergency Response Team
The University of Queensland
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
Comment: http://www.auscert.org.au/render.html?it=1967