- drivers: net: qlcnic: Fix potential memory leak in qlcnic_sriov_init() (CVE-2022-50242 bsc#1249696)
- commit 2d1b74b
- igb: Do not bring the device up after non-fatal error
(CVE-2023-53148 bsc#1249842).
- commit d58ebba
- net: If sock is dead don't access sock's sk_wq in
sk_stream_wait_memory (CVE-2022-50409 bsc#1250392).
- commit d8d8ecd
- ppp: fix memory leak in pad_compress_skb (CVE-2025-39847
bsc#1250292).
- gve: prevent ethtool ops after shutdown (CVE-2025-38735
bsc#1249288).
- igb: Fix igb_down hung on surprise removal (CVE-2023-53148
bsc#1249842).
- qlcnic: prevent ->dcb use-after-free on qlcnic_dcb_enable()
failure (CVE-2022-50288 bsc#1249802).
- igb: Do not free q_vector unless new one was allocated
(CVE-2022-50252 bsc#1249846).
- commit 0b4ef82
- Update
patches.suse/0001-media-dvb-usb-az6027-fix-null-ptr-deref-in-az6027_i2.patch
(bsc#1209291 CVE-2023-28328 CVE-2022-50272 bsc#1249808).
- Update
patches.suse/0001-ubi-ensure-that-VID-header-offset-VID-header-size-al.patch
(bsc#1210584 CVE-2023-53265 bsc#1249908).
- Update
patches.suse/0001-wifi-brcmfmac-slab-out-of-bounds-read-in-brcmf_get_a.patch
(bsc#1209287 CVE-2023-1380 CVE-2023-53213 bsc#1249918).
- Update
patches.suse/0012-md-Replace-snprintf-with-scnprintf.patch
(git-fixes bsc#1164051 CVE-2022-50299 bsc#1249734).
- Update patches.suse/NFS-Fix-an-Oops-in-nfs_d_automount.patch
(git-fixes CVE-2022-50385 bsc#1250131).
- Update
patches.suse/NFSD-Protect-against-send-buffer-overflow-in-NFSv2-R.patch
(bsc#1205128 CVE-2022-43945 bsc#1210124 CVE-2022-50410
bsc#1250187).
- Update
patches.suse/NFSD-Protect-against-send-buffer-overflow-in-NFSv2-Rdir.patch
(bsc#1205128 CVE-2022-43945 CVE-2022-50235 bsc#1249667).
- Update
patches.suse/PCI-ASPM-Disable-ASPM-on-MFD-function-removal-to-avo.patch
(git-fixes CVE-2023-53446 bsc#1250145).
- Update
patches.suse/blk-mq-fix-possible-memleak-when-register-hctx-failed-4b7a.patch
(git-fixes CVE-2022-50434 bsc#1250792).
- Update
patches.suse/bpf-make-sure-skb-len-0-when-redirecting-to-a-tunnel.patch
(CVE-2022-49975 bsc#1245196 CVE-2022-50253 bsc#1249912).
- Update
patches.suse/btrfs-fix-resolving-backrefs-for-inline-extent-follo.patch
(bsc#1213133 CVE-2022-50456 bsc#1250856).
- Update
patches.suse/chardev-fix-error-handling-in-cdev_device_add.patch
(git-fixes CVE-2022-50282 bsc#1249739).
- Update
patches.suse/cifs-Fix-memory-leak-when-build-ntlmssp-negotiate-blob-failed.patch
(bsc#1190317 CVE-2022-50372 bsc#1250052).
- Update
patches.suse/cifs-Fix-warning-and-UAF-when-destroy-the-MR-list.patch
(bsc#1190317 CVE-2023-53427 bsc#1250168).
- Update patches.suse/cifs-Fix-xid-leak-in-cifs_create-.patch
(bsc#1190317 CVE-2022-50351 bsc#1249925).
- Update patches.suse/cifs-Fix-xid-leak-in-cifs_flock-.patch
(bsc#1190317 CVE-2022-50460 bsc#1250879).
- Update
patches.suse/cifs-fix-DFS-traversal-oops-without-CONFIG_CIFS_DFS_UPCALL.patch
(bsc#1190317 CVE-2023-53246 bsc#1249867).
- Update
patches.suse/drm-vmwgfx-Validate-the-box-size-for-the-snooped-cur.patch
(bsc#1203332 CVE-2022-36280 CVE-2022-50440 bsc#1250853).
- Update
patches.suse/ext4-avoid-crash-when-inline-data-creation-follows-D.patch
(bsc#1206883 CVE-2022-50435 bsc#1250799).
- Update
patches.suse/ext4-avoid-deadlock-in-fs-reclaim-with-page-writebac.patch
(bsc#1213016 CVE-2023-53149 bsc#1249882).
- Update
patches.suse/ext4-fix-i_disksize-exceeding-i_size-problem-in-pari.patch
(bsc#1213015 CVE-2023-53270 bsc#1249872).
- Update
patches.suse/ext4-fix-null-ptr-deref-in-ext4_write_info.patch
(bsc#1206884 CVE-2022-50344 bsc#1250014).
- Update
patches.suse/ext4-init-quota-for-old.inode-in-ext4_rename.patch
(bsc#1207629 CVE-2022-50346 bsc#1250044).
- Update
patches.suse/firmware-dmi-sysfs-Fix-null-ptr-deref-in-dmi_sysfs_r.patch
(bsc#1238467 CVE-2023-53250 bsc#1249727).
- Update
patches.suse/genirq-ipi-Fix-NULL-pointer-deref-in-irq_data_get_af.patch
(git-fixes CVE-2023-53332 bsc#1249951).
- Update
patches.suse/ipv6-addrconf-fix-a-potential-refcount-underflow-for.patch
(git-fixes CVE-2023-53189 bsc#1249894).
- Update
patches.suse/jbd2-check-jh-b_transaction-before-removing-it-from-.patch
(bsc#1214953 CVE-2023-53526 bsc#1250928).
- Update
patches.suse/kernfs-fix-use-after-free-in-__kernfs_remove.patch
(git-fixes CVE-2022-50432 bsc#1250851).
- Update
patches.suse/kprobes-Fix-check-for-probe-enabled-in-kill_kprobe.patch
(git-fixes CVE-2022-50266 bsc#1249810).
- Update patches.suse/md-fix-a-crash-in-mempool_free-3410.patch
(git-fixes CVE-2022-50381 bsc#1250257).
- Update
patches.suse/md-raid10-check-slab-out-of-bounds-in-md_bitmap_get_-3018.patch
(git-fixes CVE-2023-53357 bsc#1249994).
- Update
patches.suse/md-raid10-fix-leak-of-r10bio-remaining-for-recovery-2620.patch
(git-fixes CVE-2023-53299 bsc#1249927).
- Update
patches.suse/md-raid10-fix-null-ptr-deref-of-mreplace-in-raid10_s-3481.patch
(git-fixes CVE-2023-53380 bsc#1250198).
- Update
patches.suse/md-raid10-fix-wrong-setting-of-max_corr_read_errors-f8b2.patch
(git-fixes CVE-2023-53313 bsc#1249911).
- Update
patches.suse/md-raid10-prevent-soft-lockup-while-flush-writes-0104.patch
(git-fixes CVE-2023-53151 bsc#1249865).
- Update
patches.suse/msft-hv-2841-scsi-storvsc-Fix-handling-of-virtual-Fibre-Channel-t.patch
(git-fixes CVE-2023-53245 bsc#1249641).
- Update
patches.suse/net-fec-Better-handle-pm_runtime_get-failing-in-.rem.patch
(git-fixes CVE-2023-53308 bsc#1250045).
- Update
patches.suse/netfilter-conntrack-dccp-copy-entire-header-to-stack.patch
(CVE-2023-39197 bsc#1216976 CVE-2023-53333 bsc#1249949).
- Update
patches.suse/netlink-avoid-infinite-retry-looping-in-netlink_unic.patch
(CVE-2025-38465 bsc#1247118 CVE-2025-38727 bsc#1249166).
- Update
patches.suse/nfsd-under-NFSv4.1-fix-double-svc_xprt_put-on-rpc_cr.patch
(git-fixes CVE-2022-50401 bsc#1250140).
- Update
patches.suse/ocfs2-fix-memory-leak-in-ocfs2_stack_glue_init.patch
(git-fixes CVE-2022-50289 bsc#1249981).
- Update
patches.suse/powerpc-Don-t-try-to-copy-PPR-for-task-with-NULL-pt_.patch
(bsc#1065729 CVE-2023-53326 bsc#1250071).
- Update
patches.suse/pstore-ram-Check-start-of-empty-przs-during-init.patch
(git-fixes CVE-2023-53331 bsc#1249950).
- Update
patches.suse/rbd-avoid-use-after-free-in-do_rbd_add-when-rbd_dev_-f7c4.patch
(git-fixes CVE-2023-53307 bsc#1250043).
- Update
patches.suse/sched-fair-Don-t-balance-task-to-its-current-running-CPU.patch
(git fixes (sched) CVE-2023-53215 bsc#1250397).
- Update
patches.suse/scsi-core-Fix-possible-memory-leak-if-device_add-fails.patch
(git-fixes CVE-2023-53174 bsc#1250024).
- Update
patches.suse/scsi-fcoe-Fix-transport-not-deattached-when-fcoe_if_init-fails.patch
(git-fixes CVE-2022-50414 bsc#1250183).
- Update
patches.suse/scsi-libsas-Fix-use-after-free-bug-in-smp_execute_task_sg.patch
(git-fixes CVE-2022-50422 bsc#1250774).
- Update patches.suse/scsi-mpt3sas-Fix-a-memory-leak.patch
(git-fixes CVE-2023-53512 bsc#1250915).
- Update
patches.suse/scsi-qla2xxx-Fix-potential-NULL-pointer-dereference.patch
(bsc#1213747 CVE-2023-53451 bsc#1250831).
- Update
patches.suse/scsi-qla2xxx-Pointer-may-be-dereferenced.patch
(bsc#1213747 CVE-2023-53150 bsc#1249853).
- Update
patches.suse/scsi-qla2xxx-Remove-unused-nvme_ls_waitq-wait-queue.patch
(bsc#1213747 CVE-2023-53280 bsc#1249938).
- Update
patches.suse/scsi-qla2xxx-Use-raw_smp_processor_id-instead-of-smp.patch
(git-fixes CVE-2023-53530 bsc#1250949).
- Update
patches.suse/scsi-qla2xxx-Wait-for-io-return-on-terminate-rport.patch
(bsc#1211960 CVE-2023-53322 bsc#1250323).
- Update
patches.suse/scsi-qla4xxx-Add-length-check-when-parsing-nlattrs.patch
(git-fixes CVE-2023-53456 bsc#1250765).
- Update
patches.suse/scsi-ses-Fix-slab-out-of-bounds-in-ses_intf_remove.patch
(git-fixes CVE-2023-53521 bsc#1250965).
- Update
patches.suse/scsi-snic-Fix-possible-memory-leak-if-device_add-fails.patch
(git-fixes CVE-2023-53436 bsc#1250156).
- Update
patches.suse/tpm-tpm_crb-Add-the-missed-acpi_put_table-to-fix-mem.patch
(bsc#1082555 CVE-2022-50389 bsc#1250121).
- Update
patches.suse/tracing-Fix-race-issue-between-cpu-buffer-write-and-swap.patch
(git-fixes CVE-2023-53368 bsc#1249979).
- Update
patches.suse/udf-Do-not-bother-merging-very-long-extents.patch
(bsc#1213040 CVE-2023-53506 bsc#1250963).
- Update
patches.suse/udf-Do-not-update-file-length-for-failed-writes-to-i.patch
(bsc#1213041 CVE-2023-53295 bsc#1250324).
- Update
patches.suse/udf-Fix-uninitialized-array-access-for-some-pathname.patch
(bsc#1214967 CVE-2023-53165 bsc#1250395).
- Update
patches.suse/vhost-vsock-Use-kvmalloc-kvfree-for-larger-packets.patch
(git-fixes CVE-2022-50271 bsc#1249740).
- Update
patches.suse/virtio_net-Fix-error-unwinding-of-XDP-initialization.patch
(git-fixes CVE-2023-53499 bsc#1250818).
- Update patches.suse/xen-gntdev-Prevent-leaking-grants.patch
(git-fixes CVE-2022-50257 bsc#1249743).
- Update
patches.suse/xfrm-add-NULL-check-in-xfrm_update_ae_params.patch
(bsc#1213666 CVE-2023-3772 CVE-2023-53147 bsc#1249880).
- commit f14b4f5
- i40e: Fix potential invalid access when MAC list is empty (CVE-2025-39853 bsc#1250275)
- commit 15849c1
- x86/tsc: Append the 'tsc=' description for the 'tsc=unstable'
boot parameter (git-fixes).
- Refresh
patches.suse/0004-x86-cpu-Add-a-tsx-cmdline-option-with-TSX-disabled-b.patch.
- commit fc36e71
- Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen()
(CVE-2025-39860 bsc#1250247).
- commit db1f312
- net: bridge: fix soft lockup in br_multicast_query_expired()
(CVE-2025-39773 bsc#1249504).
- net: bridge: mcast: add and enforce startup query interval
minimum (CVE-2025-39773 bsc1249504).
- net: bridge: mcast: add and enforce query interval minimum
(CVE-2025-39773 bsc1249504).
- commit 86febde
- HID: asus: fix UAF via HID_CLAIMED_INPUT validation
(CVE-2025-39824 bsc#1250007).
- commit 74f7410
- ip6mr: Fix skb_under_panic in ip6mr_cache_report()
(CVE-2023-53365 bsc#1249988).
- commit 31b9909
- dmaengine: ti: edma: Fix memory allocation size for
queue_priority_map (CVE-2025-39869 bsc#1250406).
- commit 0c7b875
- netfilter: ctnetlink: remove refcounting in expectation dumpers
(CVE-2025-39764 bsc#1249513).
- commit 21919f3
- net/sched: Fix backlog accounting in qdisc_dequeue_internal
(CVE-2025-39677 bsc#1249300).
- commit 019e014
- cifs: prevent NULL pointer dereference in UTF16 conversion
(bsc#1250365, CVE-2025-39838).
- commit a653056
- l2tp: remove unused list_head member in l2tp_tunnel (git-fixes).
- commit a146724
- Refresh
patches.suse/l2tp-prevent-lockdep-issue-in-l2tp_tunnel_register.patch.
Move the call to release_sock() to match upstream. This will make
future backports easier.
- commit 7c5477e
- Bluetooth: eir: Fix using strlen with
hdev->{dev_name,short_name} (CVE-2022-50233 bsc#1246968).
- commit 7861eb7
- Update
patches.suse/ACPICA-Fix-error-code-path-in-acpi_ds_call_control_method.patch
(bsc#1250393 CVE-2022-50411).
Fix wrongly C&Ped bug and CVE number.
- commit c1344a1
- ocfs2: fix recursive semaphore deadlock in fiemap call
(bsc#1250407 CVE-2025-39885).
- commit fa96337
- mm/smaps: fix race between smaps_hugetlb_range and migration
(CVE-2025-39754 bsc#1249524).
- commit c2c05c6
- media: cx88: Fix a null-ptr-deref bug in buffer_prepare()
(CVE-2022-50359 bsc#1250269).
- commit 680e9a1
- mISDN: hfcpci: Fix warning when deleting uninitialized timer
(CVE-2025-39833 bsc#1250028).
- commit 44dd6de
- net: ena: fix shift-out-of-bounds in exponential backoff (CVE-2023-53272 bsc#1249917)
- commit 79f3645
- Refresh
patches.suse/btrfs-fix-deadlock-when-aborting-transaction-during-.patch.
- Refresh
patches.suse/btrfs-prevent-ioctls-from-interfering-with-a-swap-file.patch.
- commit df48fdf
- wifi: brcmfmac: fix use-after-free when rescheduling
brcmf_btcoex_info work (CVE-2025-39863 bsc#1250281).
- commit b50d5fe
- serial: 8250: Fix oops for port->pm on uart_change_pm()
(CVE-2023-53176 bsc#1249991).
- commit ef178fc
- Bluetooth: L2CAP: Fix user-after-free (CVE-2022-50386
bsc#1250301).
- Refresh
patches.suse/Bluetooth-L2CAP-Fix-corrupted-list-in-hci_chan_del.patch.
- commit ef8e23b
- mm: zswap: fix missing folio cleanup in writeback race path
(CVE-2023-53178 bsc#1249827 git-fix).
- commit 556f4d6
- mm: fix zswap writeback race condition (CVE-2023-53178
bsc#1249827).
- commit 58cd2c5
- Bluetooth: hci_sysfs: Fix attempting to call device_add multiple
times (CVE-2022-50419 bsc#1250394).
- commit b4e8638
- wifi: brcmfmac: fix use-after-free bug in
brcmf_netdev_start_xmit() (CVE-2022-50408 bsc#1250391).
- commit d1d8e28
- ALSA: hda: Fix Oops by 9.1 surround channel names
(CVE-2023-53400 bsc#1250328).
- commit ba820fb
- wifi: mac80211_hwsim: drop short frames (CVE-2023-53321
bsc#1250313).
- commit 6ddc75a
- tee: fix NULL pointer dereference in tee_shm_put (CVE-2025-39865
bsc#1250294).
- commit f721184
- serial: 8250: Reinit port->pm on port specific driver unbind
(CVE-2023-53176 bsc#1249991).
- tty: serial: fsl_lpuart: disable dma rx/tx use flags in
lpuart_dma_shutdown (CVE-2022-50375 bsc#1250132).
- Refresh
patches.suse/tty-serial-fsl_lpuart-fix-race-on-RX-DMA-shutdown.patch.
- drivers: serial: jsm: fix some leaks in probe (CVE-2022-50312
bsc#1249716).
- commit 1aca549
- wifi: ath9k: verify the expected usb_endpoints are present
(CVE-2022-50297 bsc#1250250).
- commit 6950b3a
- wifi: iwl4965: Add missing check for
create_singlethread_workqueue() (CVE-2023-53302 bsc#1249958).
- commit 8f88848
- nfc: fix memory leak of se_io context in nfc_genl_se_io
(CVE-2023-53298 bsc#1249944).
- Refresh
patches.suse/nfc-change-order-inside-nfc_se_io-error-path.patch.
- commit d32133b
- x86/MCE: Always save CS register on AMD Zen IF Poison errors
(CVE-2023-53438 bsc#1250180).
- commit bf84e9b
- wifi: mwifiex: avoid possible NULL skb pointer dereference
(CVE-2023-53384 bsc#1250127).
- commit d34c18b
- ALSA: usb-audio: Fix size validation in convert_chmap_v3()
(CVE-2025-39757 bsc#1249515).
- commit 0ab86d7
- HID: hid-ntrig: fix unable to handle page fault in
ntrig_report_version() (CVE-2025-39808 bsc#1250088).
- commit 5536678
- Bluetooth: L2CAP: Fix use-after-free (CVE-2023-53305
bsc#1250049).
- Refresh
patches.suse/Bluetooth-L2CAP-Fix-corrupted-list-in-hci_chan_del.patch.
- commit ac84db6
- wifi: iwl3945: Add missing check for
create_singlethread_workqueue (CVE-2023-53277 bsc#1249936).
- commit 4da361d
- soc: qcom: mdt_loader: Deal with zero e_shentsize
(CVE-2025-39787 bsc#1249545).
- soc: qcom: mdt_loader: Fix error return values in
mdt_header_valid() (CVE-2025-39787 bsc#1249545).
- commit 529120f
- ALSA: usb-audio: Validate UAC3 cluster segment descriptors
(CVE-2025-39757 bsc#1249515).
- soc: qcom: mdt_loader: Ensure we don't read past the ELF header
(CVE-2025-39787 bsc#1249545).
- commit 5d06f31
- btrfs: abort transaction on unexpected eb generation at
btrfs_copy_root() (bsc#1250177 CVE-2025-39800).
- Refresh
patches.suse/0001-btrfs-Introduce-support-for-FSID-change-without-meta.patch.
- Refresh
patches.suse/0002-btrfs-Remove-fsid-metadata_fsid-fields-from-btrfs_in.patch.
- commit ebb9819
- kernel-source.spec: Depend on python3-base for build
Both kernel-binary and kernel-docs already have this dependency.
Adding it to kernel-source makes it possible to use python in shared
build scripts.
- commit 72fdedd
- kernel-source: Do not list mkspec and its inputs as sources
(bsc#1250522).
This excludes the files from the src.rpm. The next step is to remove
these files in tar-up so that they do not get uploaded to OBS either.
As there is only one version of tar-up these files need to be removed
from all kernels.
- commit e72b8a2
- bpf: cpumap: Fix memory leak in cpu_map_update_elem (bsc#1250150
CVE-2023-53441).
- commit 77b4844
- drivers/md/md-bitmap: check the return value of
md_bitmap_get_counter() (CVE-2022-50402, bsc#1250363).
- commit b998cb4
- ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer (bsc#1250358
CVE-2023-53395).
- commit 16cf2b4
- ACPICA: Fix error code path in acpi_ds_call_control_method()
(bsc#1249615 CVE-2025-39763).
- commit 00cd9ae
- rpm: Link arch-symbols script from scripts directory.
- commit 90b2abb
- skbuff: Account for tail adjustment during pull operations
(CVE-2022-50365 bsc#1250084).
- commit 2c0b58b
- btrfs: fix deadlock when aborting transaction during relocation
with scrub (bsc#1250018 CVE-2023-53348).
- commit 6970fda
- use uniform permission checks for all mount propagation changes
(git-fixes).
- commit 5972133
- net/tunnel: wait until all sk_user_data reader finish before
releasing the sock (CVE-2022-50405 bsc#1250155).
- commit aea82ac
- rpm: Link guards script from scripts directory.
- commit e19a893
- usb: core: config: Prevent OOB read in SS endpoint companion
parsing (CVE-2025-39760 bsc#1249598).
- commit ee5b3a5
- can: bcm: bcm_tx_setup(): fix KMSAN uninit-value in vfs_write
(CVE-2023-53344 bsc#1250023).
- net: sched: fix memory leak in tcindex_set_parms (CVE-2022-50396
bsc#1250104).
- net: hns: fix possible memory leak in hnae_ae_register()
(CVE-2022-50352 bsc#1249922).
- commit 10ff501
- drm/client: Fix memory leak in drm_client_modeset_probe (bsc#1250058 CVE-2023-53288)
- commit d2583cc
- modpost: fix off by one in is_executable_section() (bsc#1250125
CVE-2023-53397).
- commit 1e88ffb
- dma-buf: add dma_fence_get_stub (bsc#1249779)
- commit af3d574
- drm/amdgpu: install stub fence into potential unused fence pointers (bsc#1249779 CVE-2023-53248)
- commit 2f24c24
- Refresh patches.kabi/blkg_policy_data-fix-kabi.patch.
- Refresh
patches.kabi/xsk-Fix-race-condition-in-AF_XDP-generic-RX-path.patch.
- commit aee218b
- fixup patches.suse/ext4-fix-WARNING-in-mb_find_extent.patch
- commit bc062c7
- RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device (CVE-2023-53393 bsc#1250114)
- commit 3367be7
- RDMA/cxgb4: Fix potential null-ptr-deref in pass_establish() (CVE-2023-53335 bsc#1250072)
- commit de7e5a8
- drm/radeon: Fix integer overflow in radeon_cs_parser_init
(CVE-2023-53309 bsc#1250055).
- commit 0fc616d
- Refresh patches.kabi/blkg_policy_data-fix-kabi.patch.
- commit 5d9cd59
- Update config files. (bsc#1249186)
Enable where we define KABI refs + rely on Kconfig deps.
- commit a2cab75
- Refresh patches.kabi/blkg_policy_data-fix-kabi.patch.
- Refresh
patches.kabi/xsk-Fix-race-condition-in-AF_XDP-generic-RX-path.patch.
Semiautomatic
git grep -l BUILD_BUG_ON patches.kabi/ | xargs sed -i '/^+/s/\<BUILD_BUG_ON\>/suse_kabi_static_assert/'
plus manual drop of guard in blkg_policy_data-fix-kabi.patch.
- commit 7689a50
- build_bug.h: add wrapper for _Static_assert (bsc#1249186).
- commit 55004e9
- iomap: iomap: fix memory corruption when recording errors
during writeback (bsc#1250165 CVE-2022-50406).
- commit 5a4f1a7
- ext4: fix WARNING in mb_find_extent (bsc#1250081
CVE-2023-53317).
- commit 85276b3
- jbd2: prevent softlockup in jbd2_log_do_checkpoint()
(bsc#1249526 CVE-2025-39782).
- commit 3659634
- ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr
(bsc#1249258 CVE-2025-38701).
- commit a95c36d
- fs/buffer: fix use-after-free when call bh_read() helper
(bsc#1249374 CVE-2025-39691).
- commit f608a73
- kcm: annotate data-races around kcm->rx_wait (CVE-2022-50265
bsc#1249744).
- kcm: annotate data-races around kcm->rx_psock (CVE-2022-50291
bsc#1249798).
- commit aaba982
- hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file()
(bsc#1249194 CVE-2025-38712).
- commit 521eb34
- hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()
(bsc#1249200 CVE-2025-38713).
- commit 91e012f
- wifi: brcmfmac: Fix potential stack-out-of-bounds in
brcmf_c_preinit_dcmds() (CVE-2022-50258 bsc#1249947).
- commit 5e60cf0
- drivers: base: cacheinfo: Fix shared_cpu_map changes in event
of CPU hotplug (CVE-2023-53254 bsc#1249871).
- commit d73f053
- cacheinfo: Fix shared_cpu_map to handle shared caches at
different levels (CVE-2023-53254 bsc#1249871).
- commit b2d75ed
- wifi: mwifiex: Fix oob check condition in
mwifiex_process_rx_packet (CVE-2023-53226 bsc#1249658).
- wifi: mwifiex: Fix missed return in oob checks failed path
(CVE-2023-53226 bsc#1249658).
- wifi: cfg80211: Partial revert "wifi: cfg80211: Fix use after
free for wext" (CVE-2023-53153 bsc#1249877).
- commit 01aaa87
- wifi: mwifiex: Fix OOB and integer underflow when rx packets
(CVE-2023-53226 bsc#1249658).
- wifi: cfg80211: Fix use after free for wext (CVE-2023-53153
bsc#1249877).
- wifi: ath9k: hif_usb: clean up skbs if ath9k_hif_usb_rx_stream()
fails (CVE-2023-53199 bsc#1249683).
- commit f427ccc
- crypto: cavium - prevent integer overflow loading firmware
(CVE-2022-50330 bsc#1249700).
- commit 489e575
- crypto: cavium - add release_firmware to all return case
(CVE-2022-50330 bsc#1249700).
- commit 372d22d
- misc: tifm: fix possible memory leak in tifm_7xx1_switch_media()
(CVE-2022-50349 bsc#1249920).
- commit 658f5fe
- wifi: brcmfmac: fix potential memory leak in
brcmf_netdev_start_xmit() (CVE-2022-50321 bsc#1249706).
- commit d3baaae
- cxl: Fix refcount leak in cxl_calc_capp_routing (CVE-2022-50311
bsc#1249720).
- commit 70f8a07
- mm: export bdi_unregister (CVE-2022-50304 bsc#1249725).
- commit 9420929
- mtd: core: fix possible resource leak in init_mtd()
(CVE-2022-50304 bsc#1249725).
- commit 191b4a8
- mm,hugetlb: take hugetlb_lock before decrementing
h->resv_huge_pages (CVE-2022-50285 bsc#1249803).
- commit 53c2d88
- RDMA/bnxt_re: wraparound mbox producer index (CVE-2023-53201 bsc#1249687)
- commit 4aab7ab
- wifi: libertas: fix memory leak in lbs_init_adapter()
(CVE-2022-50294 bsc#1249799).
- cxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter()
(CVE-2022-50244 bsc#1249647).
- PNP: fix name memory leak in pnp_alloc_dev() (CVE-2022-50278
bsc#1249715).
- commit c3e3de7
- drm/amd/pm: fix null pointer access (CVE-2025-38705
bsc#1249334).
- commit 6b431f7
- fbdev: fix potential buffer overflow in
do_register_framebuffer() (CVE-2025-38702 bsc#1249254).
- commit 4004fc6
- drm/amdkfd: Destroy KFD debugfs after destroy KFD wq
(CVE-2025-39706 bsc#1249413).
- commit 83af3ba
- Refresh
patches.suse/Bluetooth-Replace-BT_DBG-with-bt_dev_dbg-for-managem.patch.
- commit c6ff1e0
- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control
(CVE-2025-39751 bsc#1249538).
- commit 8a44263
- kABI fix after x86/vmscape: Add conditional IBPB mitigation
(bsc#1247483 CVE-2025-40300).
- commit 0df5e36
- drm/amd/display: fix a Null pointer dereference vulnerability (bsc#1249295 CVE-2025-39705)
- commit 478e53d
- Bluetooth: hci_core: Fix calling mgmt_device_connected
(git-fixes).
- commit bd515e0
- ALSA: usb-audio: Validate UAC3 power domain descriptors, too
(CVE-2025-38729 bsc#1249164).
- commit 8b412cb
- pptp: fix pptp_xmit() error path (git-fixes).
- pptp: ensure minimal skb length in pptp_xmit() (CVE-2025-38574
bsc#1248365).
- can: netlink: can_changelink(): fix NULL pointer deref of
struct can_priv::do_set_mode (CVE-2025-38665 bsc#1248648).
- tls: separate no-async decryption request handling from async
(CVE-2024-58240 bsc#1248847).
- commit cb8a609
- Limit patch filenames to 100 characters (bsc#1249604).
- commit e94c0ca
- smb: client: fix use-after-free in cifs_oplock_break
(bsc#1248199, CVE-2025-38527).
- commit e4dac9c
- tipc: improve function tipc_wait_for_cond() (bsc#1249037).
- commit 66b60a2
- PCI: Fix use-after-free of slot->bus on hot remove
(CVE-2024-53194 bsc#1235459).
- commit 8ed6518
- kernel-subpackage-build: Decompress ghost file when compressed version exists (bsc#1249346)
- commit 40606b5
- powerpc/eeh: Export eeh_unfreeze_pe() (CVE-2025-38623
bsc#1248610).
- commit e1ab8da
- pci/hotplug/pnv-php: Wrap warnings in macro (CVE-2025-38623
bsc#1248610).
- commit fcff164
- PCI: pnv_php: Fix surprise plug detection and recovery
(CVE-2025-38623 bsc#1248610).
- commit 77a6e44
- PCI: pnv_php: Clean up allocated IRQs on unplug (CVE-2025-38624
bsc#1248617).
- commit f20bd36
- netfilter: xt_nfacct: don't assume acct name is null-terminated (CVE-2025-38639 bsc#1248674)
- commit 85e9df6
- s390/ism: fix concurrency management in ism_cmd() (git-fixes
bsc#1249266 CVE-2025-39726).
- commit 4cdfb37
- fbdev: Fix vmalloc out-of-bounds write in fast_imageblit (bsc#1249220 CVE-2025-38685)
- commit d40c5ad
- pinmux: fix race causing mux_owner NULL with active mux_usecount
(CVE-2025-38632 bsc#1248669).
- commit 417d30f
- smb: client: fix use-after-free in crypt_message when using
async crypto (bsc#1247239, CVE-2025-38488).
- commit f68b209
- wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start()
(CVE-2025-38602 bsc#1248341).
- commit 26c0123
- iwlwifi: Add missing check for alloc_ordered_workqueue
(CVE-2025-38602 bsc#1248341).
- commit 1f095f0
- wifi: rtl818x: Kill URBs before clearing tx status queue (CVE-2025-38604 bsc#1248333)
- commit 3582a16
- ipv6: reject malicious packets in ipv6_gso_segment()
(CVE-2025-38572 bsc#1248399).
- net/sched: Restrict conditions for adding duplicating netems
to qdisc tree (CVE-2025-38553 bsc#1248255).
- commit edb7431
- rpm: Configure KABI checkingness macro (bsc#1249186)
The value of the config should match presence of KABI reference data. If
it mismatches:
- !CONFIG & reference -> this is bug, immediate fail
- CONFIG & no reference -> OK temporarily, must be resolved eventually
- commit 23c1536
- Kconfig.suse: Add KABI checkiness macro (config) (bsc#1249186)
The motivation: there are patches.kabi/ patches that restore KABI and
they check validity of the approach with static_assert()s to prevent
accidental KABI breakage.
These asserts are invoked on each arch-flavor and they may signal false
negatives -- that is KABI restoration patch could break KABI but the
given arch-flavor defines no KABI.
The intended use is to disable the compile time checks in patches.kabi/
(but not to be confused with __GENKSYMS__ that affects how reference is
calculated).
The name is chosen so that it mimics HAVE_* macros that are not
configured manually (but is selected by an arch). In our case it's
(un)selected by build script depending on whether KABI reference is
defined for given arch-flavor and whether check is really requested by
the user. Default value is 'n' so that people building merely via
Makefile (not RPM with KABI checking) obtain consistent config.
- commit 75ce338