SUSEConnect
- Update to 0.3.29
- replace env ruby path with native ruby path during build phase
alsa-utils
- Fix alsactl restore behavior during locking (boo#1179904):
  0010-alsactl-Fix-double-decrease-of-lock-timeout.patch
  0011-alsactl-Fix-race-at-creating-a-lock-file.patch
- Remove unnecessary condition for alsa-restore.service
  0012-alsactl-Remove-asound.state-file-check-from-alsa-res.patch
containerd
- Update to containerd v1.3.9, which is needed for Docker v19.03.14-ce and
  fixes CVE-2020-15257. bsc#1178969 bsc#1180243
- Update to containerd v1.3.7, which is required for Docker 19.03.13-ce.
  boo#1176708 bsc#1177598 CVE-2020-15157
- Refresh patches:
  * 0001-makefile-remove-emoji.patch
- Use Go 1.13 for build.
  bsc#1153367 bsc#1157330
cups
- cups-2.2.7-CVE-2020-10001.patch fixes CVE-2020-10001
  access to uninitialized buffer in ipp.c (bsc#1180520)
- cups-2.2.7-CVE-2019-8842.patch fixes CVE-2019-8842 (bsc#1170671)
  the ippReadIO function may under-read an extension field
device-mapper
- lvm2 should use 'external_device_info_source="/udev"/' by default (bsc#1179691)
  - change lvm.conf item external_device_info_source from none to udev
- comment out lvm.conf item preferred_names by default (bsc#1179738)
  - comment out preferred_names
- pvmove destination LV always has KRahead=0 (bsc#1179326)
  + bug-1179326_pvmove-correcting-read_ahead-setting.patch
- Update lvm2.spec file (bsc#1177533)
  - in %postun, disable restart blk-availability.service & lvm2-monitor.service
dmidecode
1 recommended fix from upstream:
- dmidecode-missing-commas.patch: Two missing commas in data arrays
  cause off-by-one or mangling during index resolution
  (bsc#1174257).
docker
[NOTE: This update was only ever released in SLES and Leap.]
- Update Docker to 19.03.15-ce. See upstream changelog in the packaged
  /usr/share/doc/packages/docker/CHANGELOG.md. This update includes fixes for
  bsc#1181732 (CVE-2021-21284) and bsc#1181730 (CVE-2021-21285).
- Rebase patches:
  * bsc1073877-0001-apparmor-clobber-docker-default-profile-on-start.patch
- Only apply the boo#1178801 libnetwork patch to handle firewalld on openSUSE.
  It appears that SLES doesn't like the patch. bsc#1180401
- Re-apply secrets fix for bsc#1065609 which appears to have been lost after it
  was fixed.
  * secrets-0001-daemon-allow-directory-creation-in-run-secrets.patch
  * secrets-0002-SUSE-implement-SUSE-container-secrets.patch
- Add Conflicts and Provides for kubic flavour of docker-fish-completion.
- Update to Docker 19.03.14-ce. See upstream changelog in the packaged
  /usr/share/doc/packages/docker/CHANGELOG.md. CVE-2020-15257 bsc#1180243
  https://github.com/docker/docker-ce/releases/tag/v19.03.14
- Enable fish-completion
- Add a patch which makes Docker compatible with firewalld with
  nftables backend. Backport of https://github.com/moby/libnetwork/pull/2548
  (boo#1178801, SLE-16460)
  * boo1178801-0001-Add-docker-interfaces-to-firewalld-docker-zone.patch
- Update to Docker 19.03.13-ce. See upstream changelog in the packaged
  /usr/share/doc/packages/docker/CHANGELOG.md. bsc#1176708
- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)
- Emergency fix: %requires_eq does not work with provide symbols,
  only effective package names. Convert back to regular Requires.
- Update to Docker 19.03.12-ce. See upstream changelog in the packaged
  /usr/share/doc/packages/docker/CHANGELOG.md.
- Use Go 1.13 instead of Go 1.14 because Go 1.14 can cause all sorts of
  spurrious errors due to Go returning -EINTR from I/O syscalls much more often
  (due to Go 1.14's pre-emptive goroutine support).
  - bsc1172377-0001-unexport-testcase.Cleanup-to-fix-Go-1.14.patch
- Add BuildRequires for all -git dependencies so that we catch missing
  dependencies much more quickly.
  /usr/share/doc/packages/docker/CHANGELOG.md. bsc#1158590 bsc#1157330
docker-runc
- Switch to Go 1.13 for build.
gcc7
- Amend gcc7-aarch64-moutline-atomics.patch for glibc namespace
  violation with getauxval.  [bsc#1167939]
gmp
- adjusted to be the same license as in factory (bsc#1180603)
- correct license statement (library itself is no GPL-3.0)
golang-github-docker-libnetwork
[NOTE: This update was only ever released in SLES and Leap.]
- Only apply the boo#1178801 libnetwork patch to handle firewalld on openSUSE.
  It appears that SLES doesn't like the patch. bsc#1180401
- Update to libnetwork 55e924b8a842, which is required for Docker 19.03.14-ce.
  bsc#1180243
- Add patch which makes libnetwork compatible with firewalld with
  nftables backend. Backport of https://github.com/moby/libnetwork/pull/2548
  (boo#1178801, SLE-16460)
  * boo1178801-0001-Add-docker-interfaces-to-firewalld-docker-zone.patch
- Update to libnetwork 026aabaa6598, which is required for Docker 19.03.12-ce.
groff
- Add 0001-make-package-build-reproducible.patch
    0002-Implement-SOURCE_DATE_EPOCH-for-reproducible-builds.patch
  to make corosync build reproducibly (bsc#1180276)
java-1_8_0-ibm
- Update to Java 8.0 Service Refresh 6 Fix Pack 20 [bsc#1180063,bsc#1177943]
  CVE-2020-14792 CVE-2020-14797 CVE-2020-14781 CVE-2020-14779
  CVE-2020-14798 CVE-2020-14796 CVE-2020-14803
  * Class libraries:
  - SOCKETADAPTOR$SOCKETINPUTSTREAM.READ is blocking for more time
    that the set timeout
  - Z/OS specific C function send_file is changing the file pointer
    position
  * Java Virtual Machine:
  - Crash on iterate java stack
  - Java process hang on SIGTERM
  * JIT Compiler:
  - JMS performance regression from JDK8 SR5 FP40 TO FP41
  * Class Libraries:
  - z15 high utilization following Z/VM and Linux migration from
    z14 To z15
  * Java Virtual Machine:
  - Assertion failed when trying to write a class file
  - Assertion failure at modronapi.cpp
  - Improve the performance of defining and finding classes
  * JIT Compiler:
  - An assert in ppcbinaryencoding.cpp may trigger when running
    with traps disabled on power
  - AOT field offset off by n bytes
  - Segmentation fault in jit module on ibm z platform
kernel-default
- blacklist.conf: misattributed patch. The upstream tag is wrong.
- commit 565f00f
- target: fix XCOPY NAA identifier lookup (CVE-2020-28374,
  bsc#1178372).
- commit 2765e76
- mwifiex: Fix possible buffer overflows in
  mwifiex_cmd_802_11_ad_hoc_start (CVE-2020-36158 bsc#1180559).
- commit a833298
- Refresh patches.suse/ceph-fix-race-in-concurrent-_ceph_remove_cap-invocations.patch.
  Patch has been merged into mainline; refreshing Git-commit and Path-mainline
  tags in patch.
- commit adfe820
- usb: gadget: configfs: Fix missing spin_lock_init() (git-fixes).
- commit c3f05ce
- powerpc/pci: Remove legacy debug code (bsc#1172145 ltc#184630
  git-fixes).
- commit fa7242a
- md/cluster: fix deadlock when node is doing resync job
  (bsc#1163727).
- md/cluster: block reshape with remote resync job (bsc#1163727).
- md/bitmap: fix memory leak of temporary bitmap (bsc#1163727).
- md/bitmap: md_bitmap_get_counter returns wrong blocks
  (bsc#1163727).
- md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks
  (bsc#1163727).
- md-cluster: fix rmmod issue when md_cluster convert bitmap to
  none (bsc#1163727).
- md-cluster: fix safemode_delay value when converting to
  clustered bitmap (bsc#1163727).
- md-cluster: fix wild pointer of unlock_all_bitmaps()
  (bsc#1163727).
- commit 4237378
- s390/dasd: fix hanging device offline processing (bsc#1144912).
- commit 1bce0a7
- powerpc/pci: Fix broken INTx configuration via OF (bsc#1172145
  ltc#184630).
- powerpc/pci: Use of_irq_parse_and_map_pci() helper (bsc#1172145
  ltc#184630).
- powerpc: Convert to using %pOF instead of full_name (bsc#1172145
  ltc#184630).
- commit 3f7f68e
- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145
  ltc#184630).
- commit 871ada7
- staging: wlan-ng: fix out of bounds read in
  prism2sta_probe_usb() (git-fixes).
- video: fbdev: neofb: fix memory leak in neo_scan_monitor()
  (git-fixes).
- usb: gadget: net2280: fix memory leak on probe error handling
  paths (git-fixes).
- staging: wlan-ng: properly check endpoint types (git-fixes).
- vt: Reject zero-sized screen buffer size (git-fixes).
- usb: hso: Fix debug compile warning on sparc32 (git-fixes).
- usb: gadget: udc: gr_udc: fix memleak on error handling path
  in gr_ep_init() (git-fixes).
- usblp: poison URBs upon disconnect (git-fixes).
- watchdog: da9062: No need to ping manually before setting
  timeout (git-fixes).
- wireless: Use linux/stddef.h instead of stddef.h (git-fixes).
- vt: don't hardcode the mem allocation upper bound (git-fixes).
- wireless: Use offsetof instead of custom macro (git-fixes).
- watchdog: da9062: do not ping the hw during stop() (git-fixes).
- usb: gadget: serial: fix Tx stall after buffer overflow
  (git-fixes).
- usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags
  (git-fixes).
- usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue
  (git-fixes).
- usb: gadget: udc: fix possible sleep-in-atomic-context bugs
  in gr_probe() (git-fixes).
- usb: dwc2: Fix IN FIFO allocation (git-fixes).
- USB: Fix: Don't skip endpoint descriptors with maxpacket=0
  (git-fixes).
- staging: vt6656: set usb_set_intfdata on driver fail
  (git-fixes).
- usb: gadget: fix wrong endpoint desc (git-fixes).
- usb: usbfs: Suppress problematic bind and unbind uevents
  (git-fixes).
- USB: ldusb: use unsigned size format specifiers (git-fixes).
- USB: Skip endpoints with 0 maxpacket length (git-fixes).
- usb: dwc3: remove the call trace of USBx_GFLADJ (git-fixes).
- usb: gadget: configfs: fix concurrent issue between composite
  APIs (git-fixes).
- usb: gadget: composite: Fix possible double free memory bug
  (git-fixes).
- usb: fsl: Check memory resource before releasing it (git-fixes).
- commit b2d9cc9
- kABI workaround for HD-audio generic parser (git-fixes).
- commit d802b74
- media: gspca: Fix memory leak in probe (git-fixes).
- commit 6d853e6
- media: platform: add missing put_device() call in
  mtk_jpeg_probe() and mtk_jpeg_remove() (git-patches).
- commit 00b1c5e
- spi: st-ssc4: Fix unbalanced pm_runtime_disable() in probe
  error path (git-fixes).
- Revert "/serial: amba-pl011: Make sure we initialize the
  port.lock spinlock"/ (git-fixes).
- PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI
  bridge (git-fixes).
- commit 25a7685
- blacklist.conf: Add PM/devfreq commit that is inapplicable
- commit b54b598
- blacklist.conf: Add a net/phy patch that causes a kABI breakage
- commit aaab49a
- blacklist.conf: d9a9280a0d0a ("/seq_buf: Avoid type mismatch for seq_buf_init"/)
  It breaks kABI. It is not worth the hassle to backport.
- commit 6a8dc6f
- Revert "/ALSA: hda - Fix silent audio output and corrupted
  input on MSI X570-A PRO"/ (git-fixes).
- gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT +
  AXP288 model (git-fixes).
- gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT +
  AXP288 model (git-fixes).
- gpiolib: acpi: Rework honor_wakeup option into an ignore_wake
  option (git-fixes).
- commit a225bd4
- spi: dw: Return any value retrieved from the dma_transfer
  callback (git-fixes).
- Refresh
  patches.suse/spi-dw-Add-SPI-Rx-done-wait-method-to-DMA-based-tran.patch.
- Refresh
  patches.suse/spi-dw-Add-SPI-Tx-done-wait-method-to-DMA-based-tran.patch.
- commit 6060b5d
- mei: protect mei_cl_mtu from null dereference (git-fixes).
- serial: txx9: add missing platform_driver_unregister() on
  error in serial_txx9_init (git-fixes).
- mac80211: fix use of skb payload instead of header (git-fixes).
- PM: hibernate: remove the bogus call to get_gendisk() in
  software_resume() (git-fixes).
- serial: 8250_pci: Add Realtek 816a and 816b (git-fixes).
- spi: Fix memory leak on splited transfers (git-fixes).
- spi: spi-loopback-test: Fix out-of-bounds read (git-fixes).
- NFC: st95hf: Fix memleak in st95hf_in_send_cmd (git-fixes).
- nfc: s3fwrn5: add missing release on skb in s3fwrn5_recv_frame
  (git-fixes).
- regmap: dev_get_regmap_match(): fix string comparison
  (git-fixes).
- mei: bus: don't clean driver pointer (git-fixes).
- mac80211: allow rx of mesh eapol frames with default rx key
  (git-fixes).
- pinctrl: amd: fix npins for uart0 in kerncz_groups (git-fixes).
- spi: spidev: fix a potential use-after-free in spidev_release()
  (git-fixes).
- serial: amba-pl011: Make sure we initialize the port.lock
  spinlock (git-fixes).
- PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges
  (git-fixes).
- mfd: wm8994: Fix driver operation if loaded as modules
  (git-fixes).
- PCI: Don't disable decoding when mmio_always_on is set
  (git-fixes).
- spi: dw: Fix Rx-only DMA transfers (git-fixes).
- spi: dw: Enable interrupts in accordance with DMA xfer mode
  (git-fixes).
- regmap: debugfs: check count when read regmap file (git-fixes).
- PM: hibernate: Freeze kernel threads in software_resume()
  (git-fixes).
- PM: ACPI: Output correct message on target power state
  (git-fixes).
- power: supply: bq27xxx_battery: Silence deferred-probe error
  (git-fixes).
- rtc: 88pm860x: fix possible race condition (git-fixes).
- soc: imx: gpc: fix power up sequencing (git-fixes).
- mac80211: fix authentication with iwlwifi/mvm (git-fixes).
- mac80211: Check port authorization in the ieee80211_tx_dequeue()
  case (git-fixes).
- staging: rtl8188eu: Add device id for MERCUSYS MW150US v2
  (git-fixes).
- tty:serial:mvebu-uart:fix a wrong return (git-fixes).
- Revert "/PM / devfreq: Modify the device name as devfreq(X)
  for sysfs"/ (git-fixes).
- serial: ar933x_uart: set UART_CS_{RX,TX}_READY_ORIDE
  (git-fixes).
- radeon: insert 10ms sleep in dce5_crtc_load_lut (git-fixes).
- media: sti: bdisp: fix a possible sleep-in-atomic-context bug
  in bdisp_device_run() (git-fixes).
- media: i2c: mt9v032: fix enum mbus codes and frame sizes
  (git-fixes).
- media: v4l2-device.h: Explicitly compare grp{id,mask} to zero
  in v4l2_device macros (git-fixes).
- tty: synclink_gt: Adjust indentation in several functions
  (git-fixes).
- tty: synclinkmp: Adjust indentation in several functions
  (git-fixes).
- staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21
  (git-fixes).
- tty: always relink the port (git-fixes).
- rfkill: Fix incorrect check to avoid NULL pointer dereference
  (git-fixes).
- tty: link tty and port before configuring it as console
  (git-fixes).
- spi: spi-cavium-thunderx: Add missing pci_release_regions()
  (git-fixes).
- remoteproc: Fix wrong rvring index computation (git-fixes).
- staging: rtl8188eu: fix possible null dereference (git-fixes).
- staging: rtl8192u: fix multiple memory leaks on error path
  (git-fixes).
- parport: load lowlevel driver if ports not found (git-fixes).
- pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler()
  (git-fixes).
- pinctrl: sh-pfc: sh7734: Fix duplicate TCLK1_B (git-fixes).
- media: si470x-i2c: add missed operations in remove (git-fixes).
- media: pvrusb2: Fix oops on tear-down when radio support is
  not present (git-fixes).
- media: v4l2-core: fix touch support in v4l_g_fmt (git-fixes).
- media: ti-vpe: vpe: ensure buffers are cleaned up properly in
  abort cases (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure about frame
  sequence number (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid
  sizeimage (git-fixes).
- media: ti-vpe: vpe: Make sure YUYV is set as default format
  (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid
  pixel format (git-fixes).
- media: ti-vpe: vpe: fix a v4l2-compliance failure causing a
  kernel panic (git-fixes).
- media: cx88: Fix some error handling path in 'cx8800_initdev()'
  (git-fixes).
- media: cec-funcs.h: add status_req checks (git-fixes).
- media: i2c: ov2659: Fix missing 720p register config
  (git-fixes).
- media: i2c: ov2659: fix s_stream return value (git-fixes).
- media: am437x-vpfe: Setting STD to current value is not an error
  (git-fixes).
- PM / hibernate: memory_bm_find_bit(): Tighten node optimisation
  (git-fixes).
- spi: st-ssc4: add missed pm_runtime_disable (git-fixes).
- spi: tegra20-slink: add missed clk_unprepare (git-fixes).
- spi: pxa2xx: Add missed security checks (git-fixes).
- spi: img-spfi: fix potential double release (git-fixes).
- spi: Add call to spi_slave_abort() function when spidev driver
  is released (git-fixes).
- regulator: max8907: Fix the usage of uninitialized variable
  in max8907_regulator_probe() (git-fixes).
- rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt()
  (git-fixes).
- rtl8xxxu: fix RTL8723BU connection failure issue after warm
  reboot (git-fixes).
- regulator: pfuze100-regulator: Variable "/val"/ in
  pfuze100_regulator_probe() could be uninitialized (git-fixes).
- regulator: ti-abb: Fix timeout in
  ti_abb_wait_txdone/ti_abb_clear_all_txdone (git-fixes).
- net: usb: sr9800: fix uninitialized local variable (git-fixes).
- thunderbolt: Use 32-bit writes when writing ring
  producer/consumer (git-fixes).
- commit d4306cc
- HID: hid-sensor-hub: Fix issue with devices with no report ID
  (git-fixes).
- HID: cypress: Support Varmilo Keyboards' media hotkeys
  (git-fixes).
- Input: i8042 - allow insmod to succeed on devices without an
  i8042 controller (git-fixes).
- cfg80211: regulatory: Fix inconsistent format argument
  (git-fixes).
- ath9k_htc: Use appropriate rs_datalen type (git-fixes).
- staging: comedi: check validity of wMaxPacketSize of usb
  endpoints found (git-fixes).
- i2c: i801: Fix resume bug (git-fixes).
- i2c: algo: pca: Reapply i2c bus settings after reset
  (git-fixes).
- HID: core: Correctly handle ReportSize being zero (git-fixes).
- iio: dac: ad5592r: fix unbalanced mutex unlocks in
  ad5592r_read_raw() (git-fixes).
- Bluetooth: add a mutex lock to avoid UAF in do_enale_set
  (git-fixes).
- hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow
  (git-fixes).
- HID: apple: Disable Fn-key key-re-mapping on clone keyboards
  (git-fixes).
- Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen
  (git-fixes).
- gpio: arizona: handle pm_runtime_get_sync failure case
  (git-fixes).
- i2c: pxa: clear all master action bits in i2c_pxa_stop_message()
  (git-fixes).
- i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output
  (git-fixes).
- i2c: piix4: Detect secondary SMBus controller on AMD AM4
  chipsets (git-fixes).
- clk: qcom: msm8916: Fix the address location of pll->config_reg
  (git-fixes).
- clk: ti: composite: fix memory leak (git-fixes).
- clk: samsung: exynos5433: Add IGNORE_UNUSED flag to sclk_i2s1
  (git-fixes).
- geneve: change from tx_error to tx_dropped on missing metadata
  (git-fixes).
- drivers: base: Fix NULL pointer exception in
  __platform_driver_probe() if a driver developer is foolish
  (git-fixes).
- iio: bmp280: fix compensation of humidity (git-fixes).
- backlight: lp855x: Ensure regulators are disabled on probe
  failure (git-fixes).
- ath9k_htc: Silence undersized packet warnings (git-fixes).
- hwmon: (jc42) Fix name to have no illegal characters
  (git-fixes).
- clk: tegra: Fix Tegra PMC clock out parents (git-fixes).
- clk: at91: usb: continue if clk_hw_round_rate() return zero
  (git-fixes).
- gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk
  (git-fixes).
- gpio: gpio-grgpio: fix possible sleep-in-atomic-context bugs
  in grgpio_irq_map/unmap() (git-fixes).
- ipw2x00: Fix -Wcast-function-type (git-fixes).
- gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism
  (git-fixes).
- gpiolib: acpi: Turn dmi_system_id table into a generic quirk
  table (git-fixes).
- gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP
  (git-fixes).
- gpiolib: fix up emulated open drain outputs (git-fixes).
- gpio: mpc8xxx: Add platform device to gpiochip->parent
  (git-fixes).
- staging: comedi: gsc_hpdi: check dma_alloc_coherent() return
  value (git-fixes).
- iio: humidity: hdc100x: fix IIO_HUMIDITYRELATIVE channel
  reporting (git-fixes).
- clocksource/drivers/asm9260: Add a check for of_clk_get
  (git-fixes).
- firmware: qcom: scm: Ensure 'a0' status code is treated as
  signed (git-fixes).
- Input: atmel_mxt_ts - disable IRQ across suspend (git-fixes).
- HID: logitech-hidpp: Silence intermittent get_battery_capacity
  errors (git-fixes).
- HID: Improve Windows Precision Touchpad detection (git-fixes).
- HID: core: check whether Usage Page item is after Usage ID items
  (git-fixes).
- clk: qcom: Allow constant ratio freq tables for rcg (git-fixes).
- iio: adc: max1027: Reset the device at probe time (git-fixes).
- iio: light: bh1750: Resolve compiler warning and make code
  more readable (git-fixes).
- iwlwifi: mvm: fix unaligned read of rx_pkt_status (git-fixes).
- Bluetooth: Fix advertising duplicated flags (git-fixes).
- ath9k_htc: Discard undersized packets (git-fixes).
- ath9k_htc: Modify byte order for an error message (git-fixes).
- gpio: max77620: Fixup debounce delays (git-fixes).
- iio: srf04: fix wrong limitation in distance measuring
  (git-fixes).
- clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call
  (git-fixes).
- HID: intel-ish-hid: fix wrong error handling in
  ishtp_cl_alloc_tx_ring() (git-fixes).
- iio: fix center temperature of bmc150-accel-core (git-fixes).
- gpio: max77620: Use correct unit for debounce times (git-fixes).
- commit ed5e05c
- xhci: Give USB2 ports time to enter U3 in bus suspend
  (git-fixes).
- commit a8da5e3
- ALSA: usb-audio: Add delay quirk for all Logitech USB devices
  (git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Qu-16
  (git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for MODX
  (git-fixes).
- ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas
  devices (git-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2
  (git-fixes).
- ALSA: usb-audio: Add delay quirk for H570e USB headsets
  (git-fixes).
- ALSA: hda/realtek: Enable front panel headset LED on Lenovo
  ThinkStation P520 (git-fixes).
- ALSA: hda/realtek - Couldn't detect Mic if booting with headset
  plugged (git-fixes).
- ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity
  check (git-fixes).
- ALSA: hda - Fix silent audio output and corrupted input on
  MSI X570-A PRO (git-fixes).
- ALSA: hda/hdmi: always check pin power status in i915 pin fixup
  (git-fixes).
- ALSA: ca0106: fix error code handling (git-fixes).
- ACPICA: Do not increment operation_region reference counts
  for field units (git-fixes).
- ALSA: info: Drop WARN_ON() from buffer NULL sanity check
  (git-fixes).
- ALSA: usb-audio: Fix race against the error recovery URB
  submission (git-fixes).
- ALSA: line6: Perform sanity check for each URB creation
  (git-fixes).
- ALSA: usb-audio: Fix OOB access of mixer element list
  (git-fixes).
- ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG)
  (git-fixes).
- ALSA: usb-audio: Add registration quirk for Kingston HyperX
  Cloud Flight S (git-fixes).
- ALSA: usb-audio: add quirk for Denon DCD-1500RE (git-fixes).
- ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch
  table (git-fixes).
- ata/libata: Fix usage of page address by page_address in
  ata_scsi_mode_select_xlat function (git-fixes).
- ASoC: fsl_asrc_dma: Fix dma_chan leak when config DMA channel
  failed (git-fixes).
- ALSA: hda: Fix potential race in unsol event handler
  (git-fixes).
- ALSA: isa/wavefront: prevent out of bounds write in ioctl
  (git-fixes).
- ALSA: usb-audio: Add registration quirk for Kingston HyperX
  Cloud Alpha S (git-fixes).
- ALSA: ctl: allow TLV read operation for callback type of
  element in locked case (git-fixes).
- ACPICA: Disassembler: create buffer fields in
  ACPI_PARSE_LOAD_PASS1 (git-fixes).
- ASoC: sti: fix possible sleep-in-atomic (git-fixes).
- ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile (git-fixes).
- ASoC: wm8904: fix regcache handling (git-fixes).
- ALSA: timer: Limit max amount of slave instances (git-fixes).
- ath10k: fix get invalid tx rate for Mesh metric (git-fixes).
- ath10k: fix offchannel tx failure when no
  ath10k_mac_tx_frm_has_freq (git-fixes).
- ath10k: fix backtrace on coredump (git-fixes).
- ASoC: wm_adsp: Don't generate kcontrols without READ flags
  (git-fixes).
- ASoC: pcm3168a: The codec does not support S32_LE (git-fixes).
- commit 7b07b51
- USB: dummy-hcd: Fix uninitialized array use in init()
  (git-fixes).
- commit 7885392
- irqchip/alpine-msi: Fix freeing of interrupts on allocation
  error path (git-fixes).
- iio:imu:bmi160: Fix too large a buffer (git-fixes).
- serial_core: Check for port state when tty is in error state
  (git-fixes).
- USB: gadget: f_midi: setup SuperSpeed Plus descriptors
  (git-fixes).
- USB: gadget: f_acm: add support for SuperSpeed Plus (git-fixes).
- USB: gadget: f_rndis: fix bitrate for SuperSpeed and above
  (git-fixes).
- media: msi2500: assign SPI bus number dynamically (git-fixes).
- media: sunxi-cir: ensure IR is handled when it is continuous
  (git-fixes).
- Input: goodix - add upside-down quirk for Teclast X98 Pro tablet
  (git-fixes).
- Input: cm109 - do not stomp on control URB (git-fixes).
- Input: i8042 - add Acer laptops to the i8042 reset list
  (git-fixes).
- Input: cros_ec_keyb - send 'scancodes' in addition to key events
  (git-fixes).
- pinctrl: amd: remove debounce filter setting in IRQ type setting
  (git-fixes).
- pinctrl: baytrail: Avoid clearing debounce value when turning
  it off (git-fixes).
- pinctrl: merrifield: Set default bias in case no particular
  value given (git-fixes).
- gpio: mvebu: fix potential user-after-free on probe (git-fixes).
- iwlwifi: mvm: fix kernel panic in case of assert during CSA
  (git-fixes).
- iwlwifi: pcie: limit memory read spin time (git-fixes).
- platform/x86: acer-wmi: add automatic keyboard background
  light toggle key as KEY_LIGHTS_TOGGLE (git-fixes).
- usb: gadget: goku_udc: fix potential crashes in probe
  (git-fixes).
- commit 2c823bd
- USB: UAS: introduce a quirk to set no_write_same (git-fixes).
- commit 22516b6
- ALSA: pcm: oss: Fix a few more UBSAN fixes (git-fixes).
- ALSA: usb-audio: Disable sample read check if firmware doesn't
  give back (git-fixes).
- watchdog: coh901327: add COMMON_CLK dependency (git-fixes).
- watchdog: qcom: Avoid context switch in restart handler
  (git-fixes).
- watchdog: sirfsoc: Add missing dependency on HAS_IOMEM
  (git-fixes).
- ACPI: PNP: compare the string length in the matching_id()
  (git-fixes).
- clk: mvebu: a3700: fix the XTAL MODE pin to MPP1_9 (git-fixes).
- clk: sunxi-ng: Make sure divider tables have sentinel
  (git-fixes).
- clk: s2mps11: Fix a resource leak in error handling paths in
  the probe function (git-fixes).
- clk: ti: Fix memleak in ti_fapll_synth_setup (git-fixes).
- clk: tegra: Fix duplicated SE clock entry (git-fixes).
- ALSA: pcm: oss: Fix potential out-of-bounds shift (git-fixes).
- ALSA: usb-audio: Fix potential out-of-bounds shift (git-fixes).
- ALSA: usb-audio: Fix control 'access overflow' errors from chmap
  (git-fixes).
- ALSA: hda/realtek - Enable headset mic of ASUS Q524UQK with
  ALC255 (git-fixes).
- cfg80211: initialize rekey_data (git-fixes).
- ALSA: hda/generic: Add option to enforce preferred_dacs pairs
  (git-fixes).
- net: phy: Avoid multiple suspends (git-fixes).
- commit 2149019
- USB: add RESET_RESUME quirk for Snapscan 1212 (git-fixes).
- commit 16b0392
- ocfs2: fix unbalanced locking (bsc#1180506).
- commit 099ccd0
- net: hisilicon: Fix signedness bug in hix5hd2_dev_probe()
  (git-fixes).
- commit c49f357
- net: aquantia: Fix aq_vec_isr_legacy() return value (git-fixes).
- commit 1fd70ca
- cirrus: cs89x0: remove set but not used variable 'lp'
  (git-fixes).
- commit 6687442
- cirrus: cs89x0: use devm_platform_ioremap_resource() to simplify
  code (git-fixes).
- commit 4c54ea7
- net: dsa: bcm_sf2: Do not assume DSA master supports WoL
  (git-fixes).
- commit 5fb1080
- phy: Revert toggling reset changes (git-fixes).
- Refresh
  patches.suse/powerpc-perf-Fix-crash-with-is_sier_available-when-p.patch.
- commit 62de49e
- blacklist.conf: update blacklist
- commit 87a267c
- ibmvnic: continue fatal error reset after passive init
  (bsc#1171078 ltc#184239 git-fixes).
- commit b7607e6
- powerpc: Fix incorrect stw{, ux, u, x} instructions in
  __set_pte_at (bsc#1065729).
- commit b54cca9
- powerpc/xmon: Change printk() to pr_cont() (bsc#1065729).
- commit 03768a2
- powerpc/64: Set up a kernel stack for secondaries before
  cpu_restore() (bsc#1065729).
- commit 3691693
- Move upstreamed bt fixes into sorted section
- commit adeed42
- powerpc/smp: Add __init to init_big_cores() (bsc#1109695
  ltc#171067 git-fixes).
- commit 1c279b3
- Refresh patches.suse/powerpc-rtas-fix-typo-of-ibm-open-errinjct-in-rtas-f.patch
  Refresh to upstream version.
- commit 76e9945
- powerpc/pseries/hibernation: remove redundant cacheinfo update
  (bsc#1138374 ltc#178199 git-fixes).
- commit 266cbfe
- Revert "/powerpc/pseries/hotplug-cpu: Remove double free in
  error path"/ (bsc#1065729).
- commit fc70ab6
- blacklist.conf: Add e91d8d78237d mm/zsmalloc.c: drop ZSMALLOC_PGTABLE_MAPPING
  The option is not enabled.
- commit e440c95
- ibmvnic: fix: NULL pointer dereference (bsc#1044767 ltc#155231
  git-fixes).
- commit 17726be
- btrfs: remove a BUG_ON() from merge_reloc_roots() (bsc#1174784).
- commit 291590a
- blacklist.conf: already gone in by another ID
- commit 05679b8
- USB: serial: digi_acceleport: fix write-wakeup deadlocks
  (git-fixes).
- commit 04432c4
- USB: serial: digi_acceleport: clean up set_termios (git-fixes).
- commit 2f23f9d
- USB: serial: digi_acceleport: clean up modem-control handling
  (git-fixes).
- commit 1d56162
- USB: serial: digi_acceleport: rename tty flag variable
  (git-fixes).
- commit 88c9db6
- USB: serial: digi_acceleport: use irqsave() in USB's complete
  callback (git-fixes).
- Refresh
  patches.suse/USB-serial-digi_acceleport-remove-redundant-assignme.patch.
- commit 793718c
- USB: serial: digi_acceleport: remove in_interrupt() usage.
- commit 0518924
- USB: serial: digi_acceleport: remove redundant assignment to
  pointer priv (git-fixes).
- commit 4451caf
- blacklist.conf: fix not relevant in our kernel configs
- commit acef26c
- Delete the following patch as a quick workaround
  patches.suse/0001-dm-fix-redundant-IO-accounting-for-bios-that-need-sp.patch.
  due to  bug report for special configuration, it will be added
  back after the problem solved. (bsc#1179444)
- commit 9d32dc4
- blacklist.conf: 3d51507f29f2 x86/entry/32: Add missing ASM_CLAC to general_protection entry
- commit dc56fa2
- x86/apic: Fix integer overflow on 10 bit left shift of cpu_khz
  (bsc#1112178).
- commit f39ec16
- KVM: x86: reinstate vendor-agnostic check on SPEC_CTRL cpuid
  bits (bsc#1112178).
- commit 066a4f5
- x86/mm/ident_map: Check for errors from ident_pud_init()
  (bsc#1112178).
- commit 0f2605a
- mm,memory_failure: always pin the page in madvise_inject_error
  (bsc#1180258).
- commit 200d6f3
- blacklist.conf: ff17bbe0bb40 x86/vdso: Prevent segfaults due to hoisted vclock reads
- commit 564d16e
- rtc: hym8563: enable wakeup when applicable (git-fixes).
- commit 5b645ec
- power: supply: bq24190_charger: fix reference leak (git-fixes).
- HSI: omap_ssi: Don't jump to free ID in ssi_add_controller()
  (git-fixes).
- pwm: lp3943: Dynamically allocate PWM chip base (git-fixes).
- Bluetooth: Fix slab-out-of-bounds read in
  hci_le_direct_adv_report_evt() (git-fixes).
- inet_ecn: Fix endianness of checksum update when setting ECT(1)
  (git-fixes).
- commit 532c400
- scsi: qla2xxx: Update version to 10.02.00.104-k (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix device loss on 4G and older HBAs (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: If fcport is undergoing deletion complete I/O
  with retry (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix the call trace for flush workqueue
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix flash update in 28XX adapters on big endian
  machines (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Handle aborts correctly for port undergoing
  deletion (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix N2N and NVMe connect retry failure
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix FW initialization error on big endian
  machines (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix crash during driver load on big endian
  machines (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix compilation issue in PPC systems (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Don't check for fw_started while posting NVMe
  command (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Tear down session if FW say it is down
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Limit interrupt vectors to number of CPUs
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Change post del message from debug level to
  log level (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove trailing semicolon in macro definition
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove in_interrupt() from qla83xx-specific code
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: target: tcm_qla2xxx: Remove BUG_ON(in_interrupt())
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Remove in_interrupt() from qla82xx-specific code
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Move sess cmd list/lock to driver (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Return EBUSY on fcport deletion (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: remove incorrect sparse #ifdef (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Fix return of uninitialized value in rval
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Initialize variable in qla8044_poll_reg()
  (bsc#1172538 bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Do not consume srb greedily (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Use constant when it is known (bsc#1172538
  bsc#1179142 bsc#1179810).
- scsi: qla2xxx: Handle incorrect entry_type entries (bsc#1172538
  bsc#1179142 bsc#1179810).
- commit 54e4d29
- tracing: Fix race in trace_open and buffer resize call
  (CVE-2020-27825 bsc#1179960).
- commit 8b99744
- ring-buffer: speed up buffer resets by avoiding synchronize_rcu
  for each CPU (CVE-2020-27825 bsc#1179960).
- commit 0d53945
- ring-buffer: Make resize disable per cpu buffer instead of
  total buffer (CVE-2020-27825 bsc#1179960).
- commit 39cee5c
- scsi: lpfc: Fix fall-through warnings for Clang (bsc#1164780).
- scsi: lpfc: Correct null ndlp reference on routine exit
  (bsc#1164780).
- scsi: lpfc: Use generic power management (bsc#1164780).
- scsi: lpfc: Fix variable 'vport' set but not used in
  lpfc_sli4_abts_err_handler() (bsc#1164780).
- scsi: lpfc: Fix missing prototype for
  lpfc_nvmet_prep_abort_wqe() (bsc#1164780).
- scsi: lpfc: Fix set but unused variables in
  lpfc_dev_loss_tmo_handler() (bsc#1164780).
- scsi: lpfc: Fix set but not used warnings from Rework remote
  port lock handling (bsc#1164780).
- scsi: lpfc: Fix missing prototype warning for
  lpfc_fdmi_vendor_attr_mi() (bsc#1164780).
- scsi: lpfc: Fix memory leak on lcb_context (bsc#1164780).
- scsi: lpfc: Remove dead code on second !ndlp check
  (bsc#1164780).
- scsi: lpfc: Fix pointer defereference before it is null checked
  issue (bsc#1164780).
- scsi: lpfc: Update changed file copyrights for 2020
  (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.6 (bsc#1164780).
- scsi: lpfc: Convert abort handling to SLI-3 and SLI-4 handlers
  (bsc#1164780).
- scsi: lpfc: Convert SCSI I/O completions to SLI-3 and SLI-4
  handlers (bsc#1164780).
- scsi: lpfc: Convert SCSI path to use common I/O submission path
  (bsc#1164780).
- scsi: lpfc: Enable common send_io interface for SCSI and NVMe
  (bsc#1164780).
- scsi: lpfc: Enable common wqe_template support for both SCSI
  and NVMe (bsc#1164780).
- scsi: lpfc: Refactor WQE structure definitions for common use
  (bsc#1164780).
- scsi: lpfc: Fix NPIV Fabric Node reference counting
  (bsc#1164780).
- scsi: lpfc: Fix NPIV discovery and Fabric Node detection
  (bsc#1164780).
- scsi: lpfc: Unsolicited ELS leaves node in incorrect state
  while dropping it (bsc#1164780).
- scsi: lpfc: Remove ndlp when a PLOGI/ADISC/PRLI/REG_RPI
  ultimately fails (bsc#1164780).
- scsi: lpfc: Rework remote port lock handling (bsc#1164780).
- scsi: lpfc: Fix refcounting around SCSI and NVMe transport APIs
  (bsc#1164780).
- scsi: lpfc: Fix removal of SCSI transport device get and put
  on dev structure (bsc#1164780).
- scsi: lpfc: Rework locations of ndlp reference taking
  (bsc#1164780).
- scsi: lpfc: Rework remote port ref counting and node freeing
  (bsc#1164780).
- scsi: lpfc: lpfc_debugfs: Fix a couple of function documentation
  issues (bsc#1164780).
- scsi: lpfc: lpfc_attr: Fix-up a bunch of kernel-doc
  misdemeanours (bsc#1164780).
- scsi: lpfc: lpfc_attr: Demote kernel-doc format for redefined
  functions (bsc#1164780).
- scsi: lpfc: lpfc_scsi: Fix a whole host of kernel-doc issues
  (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.5 (bsc#1164780).
- scsi: lpfc: Reject CT request for MIB commands (bsc#1164780).
- scsi: lpfc: Add FDMI Vendor MIB support (bsc#1164780).
- scsi: lpfc: Enlarge max_sectors in scsi host templates
  (bsc#1164780).
- scsi: lpfc: Fix duplicate wq_create_version check (bsc#1164780).
- scsi: lpfc: Removed unused macros in lpfc_attr.c (bsc#1164780).
- commit 3a954de
- net: sonic: replace dev_kfree_skb in sonic_send_packet
  (git-fixes).
- commit 597c84a
- forcedeth: use per cpu to collect xmit/recv statistics
  (git-fixes).
- commit ed24dc6
- net: sonic: return NETDEV_TX_OK if failed to map buffer
  (git-fixes).
- commit 16e3e9e
- net: seeq: Fix the function used to release some memory in an
  error handling path (git-fixes).
- commit a8513c7
- Drop a backported uvcvideo patch that caused a regression (bsc#1180117)
  Also blacklisting the commit
- commit d0a83ca
- net:ethernet:aquantia: Extra spinlocks removed (git-fixes).
- commit 673b7af
- ravb: Fix use-after-free ravb_tstamp_skb (git-fixes).
- commit 3b19bd7
- can: mcp251x: add error check when wq alloc failed (git-fixes).
- commit 83dec18
- net: pasemi: fix an use-after-free in pasemi_mac_phy_init()
  (git-fixes).
- commit 432aa93
- net: macb: add missing barriers when reading descriptors
  (git-fixes).
- commit e0bb50a
- net: macb: fix dropped RX frames due to a race (git-fixes).
- commit daca00d
- Refresh patches.suse/ibmvnic-add-some-debugs.patch.
- commit d50d59c
- blacklist.conf: update blacklist
- commit 0c5fc8b
- blacklist: Add e5785d3ec32f ("/scsi: lpfc: Re-fix use after free in lpfc_rq_buf_free()"/)
  We don't need e5785d3ec32f ("/scsi: lpfc: Re-fix use after free in
  lpfc_rq_buf_free()"/) as we dont have 6c621a2229b0 ("/scsi: lpfc:
  Separate NVMET RQ buffer posting from IO resources SGL/iocbq/context"/)
  which undoes the fix by 9816ef6ecbc1 ("/scsi: lpfc: Use after free in
  lpfc_rq_buf_free()"/)
- commit 824fa9a
- scsi: lpfc: Fix scheduling call while in softirq context in
  lpfc_unreg_rpi (bsc#1164780).
- scsi: lpfc: Fix invalid sleeping context in
  lpfc_sli4_nvmet_alloc() (bsc#1164780).
- scsi: Remove unneeded break statements (bsc#1164780).
- scsi: lpfc: Remove unneeded variable 'status' in
  lpfc_fcp_cpu_map_store() (bsc#1164780).
- scsi: lpfc: Drop nodelist reference on error in lpfc_gen_req()
  (bsc#1164780).
- scsi: lpfc: Remove set but not used 'qp' (bsc#1164780).
- scsi: lpfc: Fix spelling mistake "/Cant"/ -> "/Can't"/
  (bsc#1164780).
- scsi: lpfc: Update lpfc version to 12.8.0.4 (bsc#1164780).
- scsi: lpfc: Extend the RDF FPIN Registration descriptor for
  additional events (bsc#1164780).
- scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt
  discovery (bsc#1164780).
- commit 08cb9ae
- series.conf: cleanup
- update upstream reference and resort:
  patches.suse/ibmvnic-add-some-debugs.patch
- commit b715549
- platform/x86: mlx-platform: remove an unused variable
  (git-fixes).
- commit 225af87
- crypto: af_alg - avoid undefined behavior accessing salg_name
  (git-fixes).
- commit 983a9c1
- wimax: fix duplicate initializer warning (git-fixes).
- crypto: omap-aes - Fix PM disable depth imbalance in
  omap_aes_probe (git-fixes).
- crypto: talitos - Fix return type of current_desc_hdr()
  (git-fixes).
- media: v4l2-async: Fix trivial documentation typo (git-fixes).
- media: mtk-vcodec: add missing put_device() call in
  mtk_vcodec_release_dec_pm() (git-fixes).
- drm/msm/dsi_phy_10nm: implement PHY disabling (git-fixes).
- drm/msm/dpu: Add newline to printks (git-fixes).
- drm/meson: dw-hdmi: Register a callback to disable the regulator
  (git-fixes).
- drm/omap: dmm_tiler: fix return error code in omap_dmm_probe()
  (git-fixes).
- drm/amdgpu: fix build_coefficients() argument (git-fixes).
- drm/amd/display: remove useless if/else (git-fixes).
- matroxfb: avoid -Warray-bounds warning (git-fixes).
- drm/dp_aux_dev: check aux_dev before use in
  drm_dp_aux_dev_get_by_minor() (git-fixes).
- drm/gma500: fix double free of gma_connector (git-fixes).
- commit b0a0e8e
- USB: serial: option: add interface-number sanity check to flag
  handling (git-fixes).
- USB: serial: mos7720: fix parallel-port state restore
  (git-fixes).
- USB: serial: keyspan_pda: fix write unthrottling (git-fixes).
- USB: serial: keyspan_pda: fix tx-unthrottle use-after-free
  (git-fixes).
- USB: serial: keyspan_pda: fix write-wakeup use-after-free
  (git-fixes).
- USB: serial: keyspan_pda: fix stalled writes (git-fixes).
- USB: serial: keyspan_pda: fix write deadlock (git-fixes).
- USB: serial: keyspan_pda: fix dropped unthrottle interrupts
  (git-fixes).
- usb: oxu210hp-hcd: Fix memory leak in oxu_create (git-fixes).
- commit e793376
- spi: davinci: Fix use-after-free on unbind (git-fixes).
- spi: pic32: Don't leak DMA channels in probe error path
  (git-fixes).
- spi: bcm63xx-hsspi: fix missing clk_disable_unprepare() on
  error in bcm63xx_hsspi_resume (git-fixes).
- spi: tegra114: fix reference leak in tegra spi ops (git-fixes).
- usb: ehci-omap: Fix PM disable depth umbalance in
  ehci_hcd_omap_probe (git-fixes).
- usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag
  to imx6ul (git-fixes).
- commit ff557b2
- platform/x86: mlx-platform: Fix item counter assignment for
  MSN2700, MSN24xx systems (git-fixes).
- platform/x86: dell-smbios-base: Fix error return code in
  dell_smbios_init (git-fixes).
- spi: tegra20-sflash: fix reference leak in tegra_sflash_resume
  (git-fixes).
- spi: tegra20-slink: fix reference leak in slink ops of tegra20
  (git-fixes).
- spi: spi-ti-qspi: fix reference leak in ti_qspi_setup
  (git-fixes).
- spi: spi-mem: fix reference leak in spi_mem_access_start
  (git-fixes).
- spi: spi-mem: Fix passing zero to 'PTR_ERR' warning (git-fixes).
- spi: img-spfi: fix reference leak in img_spfi_resume
  (git-fixes).
- regmap: Remove duplicate `type` field from regmap
  `regcache_sync` trace event (git-fixes).
- serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access
  (git-fixes).
- commit fce435e
- PCI: Fix pci_slot_release() NULL pointer dereference
  (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from MSN274x
  platform configuration (git-fixes).
- platform/x86: mlx-platform: Remove PSU EEPROM from default
  platform configuration (git-fixes).
- Revert "/platform/x86: wmi: Destroy on cleanup rather than
  unregister"/ (git-fixes).
- memstick: r592: Fix error return in r592_probe() (git-fixes).
- staging: olpc_dcon: Do not call platform_device_unregister()
  in dcon_probe() (git-fixes).
- nfc: s3fwrn5: Release the nfc firmware (git-fixes).
- orinoco: Move context allocation after processing the skb
  (git-fixes).
- mwifiex: fix mwifiex_shutdown_sw() causing sw reset failure
  (git-fixes).
- staging: olpc_dcon: add a missing dependency (git-fixes).
- commit a67a0cb
- Input: cyapa_gen6 - fix out-of-bounds stack access (git-fixes).
- Input: omap4-keypad - fix runtime PM error handling (git-fixes).
- Input: ads7846 - fix unaligned access on 7845 (git-fixes).
- memstick: fix a double-free bug in memstick_check (git-fixes).
- mac80211: don't set set TDLS STA bandwidth wider than possible
  (git-fixes).
- media: saa7146: fix array overflow in vidioc_s_audio()
  (git-fixes).
- media: siano: fix memory leak of debugfs members in
  smsdvb_hotplug (git-fixes).
- media: solo6x10: fix missing snd_card_free in error handling
  case (git-fixes).
- commit 7e8f579
- cpufreq: scpi: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: loongson1: Add missing MODULE_ALIAS (git-fixes).
- cpufreq: st: Add missing MODULE_DEVICE_TABLE (git-fixes).
- Input: ads7846 - fix integer overflow on Rt calculation
  (git-fixes).
- Input: ads7846 - fix race that causes missing releases
  (git-fixes).
- iio: adc: rockchip_saradc: fix missing clk_disable_unprepare()
  on error in rockchip_saradc_resume (git-fixes).
- iio:pressure:mpl3115: Force alignment of buffer (git-fixes).
- iio: buffer: Fix demux update (git-fixes).
- extcon: max77693: Fix modalias string (git-fixes).
- cw1200: fix missing destroy_workqueue() on error in
  cw1200_init_common (git-fixes).
- commit 3738e1e
- cpufreq: highbank: Add missing MODULE_DEVICE_TABLE (git-fixes).
- staging: comedi: mf6x4: Fix AI end-of-conversion detection
  (git-fixes).
- bus: fsl-mc: fix error return code in fsl_mc_object_allocate()
  (git-fixes).
- ASoC: cx2072x: Fix doubly definitions of Playback and Capture
  streams (git-fixes).
- Bluetooth: btusb: Fix detection of some fake CSR controllers
  with a bcdDevice val of 0x0134 (git-fixes).
- Bluetooth: Fix null pointer dereference in hci_event_packet()
  (git-fixes).
- ath10k: Release some resources in an error handling path
  (git-fixes).
- ath10k: Fix an error handling path (git-fixes).
- ath6kl: fix enum-conversion warning (git-fixes).
- commit 977d977
- Revert "/ACPI / resources: Use AE_CTRL_TERMINATE to terminate
  resources walks"/ (git-fixes).
- ASoC: arizona: Fix a wrong free in wm8997_probe (git-fixes).
- ASoC: wm8998: Fix PM disable depth imbalance on error
  (git-fixes).
- ASoC: pcm: DRAIN support reactivation (git-fixes).
- ASoC: wm_adsp: remove "/ctl"/ from list on error in
  wm_adsp_create_control() (git-fixes).
- ASoC: jz4740-i2s: add missed checks for clk_get() (git-fixes).
- ALSA: hda/ca0132 - Change Input Source enum strings (git-fixes).
- ALSA: hda/ca0132 - Fix AE-5 rear headphone pincfg (git-fixes).
- ALSA: hda: Fix regressions on clear and reconfig sysfs
  (git-fixes).
- commit 99727ca
- drivers: soc: ti: knav_qmss_queue: Fix error return code in
  knav_queue_probe (git-fixes).
- soc: ti: Fix reference imbalance in knav_dma_probe (git-fixes).
- soc: ti: knav_qmss: fix reference leak in knav_queue_probe
  (git-fixes).
- soc: qcom: smp2p: Safely acquire spinlock without IRQs
  (git-fixes).
- soc: mediatek: Check if power domains can be powered on at
  boot time (git-fixes).
- soc/tegra: fuse: Fix index bug in get_process_id (git-fixes).
- pinctrl: falcon: add missing put_device() call in
  pinctrl_falcon_probe() (git-fixes).
- mfd: rt5033: Fix errorneous defines (git-fixes).
- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS
  (git-fixes).
- commit 4d43e7b
- fix regression in "/epoll: Keep a reference on files added to the check list"/  (bsc#1180031, git-fixes).
- commit d9c444f
- do_epoll_ctl(): clean the failure exits up a bit
  (bsc#1180031,CVE-2020-0466).
- epoll: Keep a reference on files added to the check list
  (bsc#1180031).
- commit e792e5d
- blacklist.conf: bcee52789588 ("/tracing: Fix userstacktrace option for instances"/)
  The kernel is missing many prerequisities. It is not worth it as it is.
- commit c9bd898
- cfg80211: add missing policy for NL80211_ATTR_STATUS_CODE
  (CVE-2020-27068 bsc#1180086).
- commit 886ad61
- x86/resctrl: Fix incorrect local bandwidth when mba_sc is
  enabled (bsc#1112178).
- x86/resctrl: Remove unused struct mbm_state::chunks_bw
  (bsc#1112178).
- commit e69f129
- HID: Fix slab-out-of-bounds read in hid_field_extract
  (bsc#1180052).
- commit 5b124d9
- Input: trackpoint - enable Synaptics trackpoints (git-fixes).
- commit e88bce8
- kABI: ath10k: move a new structure member to the end
  (git-fixes).
- commit a09f969
- ath10k: Remove msdu from idr when management pkt send fails
  (git-fixes).
- commit 18aa5a0
- x86/mm/mem_encrypt: Fix definition of PMD_FLAGS_DEC_WP
  (bsc#1112178).
- commit 537b04d
- Input: i8042 - add Entroware Proteus EL07R4 to nomux and reset
  lists (git-fixes).
- commit 3be4f5a
- Input: trackpoint - add new trackpoint variant IDs (git-fixes).
- commit 4e28298
- blacklist.conf: misattributed
- commit 3901fbf
- blacklist.conf: misattributed patch
- commit dc93bbb
- HID: Add another Primax PIXART OEM mouse quirk (git-fixes).
- commit 4856fe1
- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer()
  (git-fixes).
- commit 3f777ce
- HID: core: Sanitize event code and type when mapping input
  (CVE-2020-0465 bsc#1180029).
- commit ebf9f0e
- audit: fix error handling in audit_data_to_entry()
  (CVE-2020-0444 bsc#1180027).
- commit f2e7691
- kABI workaround for dsa/b53 changes (git-fixes).
- commit 91cef6b
- blacklist.conf: update blacklist
- commit 3be6f55
- scsi: storvsc: Fix error return in storvsc_probe() (git-fixes).
- commit e765599
- USB: serial: ch341: sort device-id entries (git-fixes).
- commit 82a21d7
- USB: serial: ch341: add new Product ID for CH341A (git-fixes).
- commit 441ce2e
- USB: serial: option: add support for Thales Cinterion EXS82
  (git-fixes).
- commit f0f391f
- USB: serial: option: add Fibocom NL668 variants (git-fixes).
- commit ac04fe0
- blacklist.conf: build fix
- commit 7fd9334
- blacklist.conf: build fix
- commit d198655
- blacklist.conf: for tools for kernel development
- commit c0358a7
- fbcon: Remove the superfluous break (bsc#1129770)
  Backporting changes:
  * updated path drivers/video/fbcon/core to drivers/video/console
  * context changes
- commit e25cc3c
- drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[] (bsc#1129770)
- commit cf162c2
- fbcon: Fix user font detection test at fbcon_resize(). (bsc#1112178)
  Backporting changes:
  * updated path drivers/video/fbcon/core to drivers/video/console
- commit b08c154
- NFSD: Add missing NFSv2 .pc_func methods (git-fixes).
- NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID
  flag (git-fixes).
- NFS: fix nfs_path in case of a rename retry (git-fixes).
- NFSv4.2: fix client's attribute cache management for
  copy_file_range (git-fixes).
- xprtrdma: fix incorrect header size calculations (git-fixes).
- SUNRPC: Properly set the @subbuf parameter of
  xdr_buf_subsegment() (git-fixes).
- pNFS/flexfiles: Fix list corruption if the mirror count changes
  (git-fixes).
- sunrpc: fixed rollback in rpc_gssd_dummy_populate() (git-fixes).
- SUNRPC: The RDMA back channel mustn't disappear while requests
  are outstanding (git-fixes).
- commit 7d0cc0f
- blacklist.conf: some git-fixes that aren't wanted.
- commit 6565891
- md/raid5: fix oops during stripe resizing (git-fixes).
- commit 66e0a61
- btrfs: fix use-after-free on readahead extent after failure
  to create it (bsc#1179963).
- commit 110503c
- x86/traps: Simplify pagefault tracing logic (bsc#1179895).
- Refresh
  patches.suse/10-x86-xen-get-rid-of-paravirt-op-adjust_exception_frame.patch.
- Refresh
  patches.suse/msft-hv-1590-x86-hyperv-Reenlightenment-notifications-support.patch.
- Refresh
  patches.suse/msft-hv-1616-Drivers-hv-vmbus-Implement-Direct-Mode-for-stimer0.patch.
- commit 65edff3
- x86/tracing: Introduce a static key for exception tracing
  (bsc#1179895).
- commit c8c1b50
- net: dsa: b53: Ensure the default VID is untagged (git-fixes).
- commit ee7b5d7
- net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan() (git-fixes).
- commit d77dec2
- can: softing: softing_netdev_open(): fix error handling
  (git-fixes).
- mac80211: mesh: fix mesh_pathtbl_init() error path (git-fixes).
- commit d70481b
- tty: Fix ->session locking (bsc#1179745 CVE-2020-29660).
- tty: Fix ->pgrp locking in tiocspgrp() (bsc#1179745
  CVE-2020-29661).
- commit a59c61c
- kABI: genirq: add back irq_create_mapping (bsc#1065729).
- commit 33424fe
- genirq/irqdomain: Add an irq_create_mapping_affinity() function
  (bsc#1065729).
- commit b6d89d7
- powerpc/64s/pseries: Fix hash tlbiel_all_isa300 for guest
  kernels (bsc#1179888 ltc#190253).
- powerpc/64s: Fix hash ISA v3.0 TLBIEL instruction generation
  (bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253).
- commit 0a5bcee
- powerpc/pseries: Pass MSI affinity to irq_create_mapping()
  (bsc#1065729).
- ibmvnic: delay next reset if hard reset fails (bsc#1094840
  ltc#167098 git-fixes).
- ibmvnic: restore adapter state on failed reset (bsc#1152457
  ltc#174432 git-fixes).
- ibmvnic: avoid memset null scrq msgs (bsc#1044767 ltc#155231
  git-fixes).
- ibmvnic: enhance resetting status check during module exit
  (bsc#1065729).
- ibmvnic: fix NULL pointer dereference in reset_sub_crq_queues
  (FATE#322021 bsc#1040855 ltc#155067 git-fixes).
- ibmvnic: notify peers when failover and migration happen
  (bsc#1044120 ltc#155423 git-fixes).
- ibmvnic: fix call_netdevice_notifiers in do_reset (bsc#1115431
  ltc#171853 git-fixes).
- commit 41d7e0e
- ibmvnic: add some debugs (bsc#1179896 ltc#190255).
- commit ad19f68
- powerpc/rtas: fix typo of ibm,open-errinjct in rtas filter
  (CVE-2020-27777 bsc#1179107 bsc#1179887 ltc#190092).
- commit 153fdda
- blacklist.conf: 5861381d4866 PM / arch: x86: Rework the MSR_IA32_ENERGY_PERF_BIAS handling
- commit 14d58b3
- net: aquantia: fix LRO with FCS error (git-fixes).
- commit ea8c575
- net: stmmac: fix csr_clk can't be zero issue (git-fixes).
- commit adf66bd
- net: macb: fix error format in dev_err() (git-fixes).
- commit 8695ebc
- net: dsa: qca8k: remove leftover phy accessors (git-fixes).
- commit 8133bc6
- net: sh_eth: fix a missing check of of_get_phy_mode (git-fixes).
- commit 8dfd281
- net: dsa: b53: Properly account for VLAN filtering (git-fixes).
- commit 4a18e4f
- net: dsa: b53: Fix default VLAN ID (git-fixes).
- commit 027d280
- net: dsa: bcm_sf2: potential array overflow in bcm_sf2_sw_suspend() (git-fixes).
- commit 9dd1cb2
- timer: Fix wheel index calculation on last level (git fixes)
- commit 3d19ae6
- timer: Prevent base->clk from moving backward (git-fixes)
- commit dc0c942
- x86/insn-eval: Use new for_each_insn_prefix() macro to loop
  over prefixes bytes (bsc#1112178).
- commit b0c9a61
- Input: xpad - support Ardwiino Controllers (git-fixes).
- Input: i8042 - add ByteSpeed touchpad to noloop table
  (git-fixes).
- usbnet: ipheth: fix connectivity with iOS 14 (git-fixes).
- commit 7180cbf
- x86/uprobes: Do not use prefixes.nbytes when looping over
  prefixes.bytes (bsc#1112178).
- commit 217789f
- uapi/if_ether.h: move __UAPI_DEF_ETHHDR libc define (git-fixes).
- commit 3f679b5
- usb: gadget: f_fs: Use local copy of descriptors for userspace
  copy (git-fixes).
- commit 828ad1d
- kgdb: Fix spurious true from in_dbg_master() (git-fixes).
- commit 2f24ae4
- blacklist.conf: kABI issues
- commit ea26da1
- blacklist.conf: known to be faulty
- commit ffb8bbb
- kABI workaround for net/ipvlan changes (git-fixes).
- commit 1e1bd88
- btmrvl: Fix firmware filename for sd8997 chipset (bsc#1172694).
- commit 12f09de
- Update kabi files: sync with 2020-12 update (commit b3ff9f627d17)
- commit 75f73d9
- ext4: fix bogus warning in ext4_update_dx_flag() (bsc#1179716).
- commit 83a4d6a
- reiserfs: Fix oops during mount (bsc#1179715).
- commit da0b6c2
- quota: clear padding in v2r1_mem2diskdqb() (bsc#1179714).
- commit a9af12c
- reiserfs: Initialize inode keys properly (bsc#1179713).
- commit 8725996
- fs: Don't invalidate page buffers in block_write_full_page()
  (bsc#1179711).
- commit bc27d05
- ocfs2: initialize ip_next_orphan (bsc#1179724).
- commit d783ef4
- ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
  (bsc#1179673).
- commit 73b3913
- ext4: correctly report "/not supported"/ for {usr,grp}jquota
  when !CONFIG_QUOTA (bsc#1179672).
- commit b5db6a5
- ext4: fix invalid inode checksum (bsc#1179723).
- commit 8bd755f
- ext4: limit entries returned when counting fsmap records
  (bsc#1179671).
- commit 1b09384
- ext4: fix error handling code in add_new_gdb (bsc#1179722).
- commit 4d9a78d
- ext4: fix leaking sysfs kobject after failed mount
  (bsc#1179670).
- commit d275bba
- net/x25: prevent a couple of overflows (bsc#1178590).
- commit 3f48ad3
- SMB3: Honor 'posix' flag for multiuser mounts (bsc#1176559).
- commit 9af0dc4
- SMB3: Honor 'handletimeout' flag for multiuser mounts
  (bsc#1176558).
- commit c329fee
- SMB3: Honor lease disabling for multiuser mounts (git-fixes).
- commit 46e76fa
- net: macb: fix random memory corruption on RX with 64-bit DMA (git-fixes). - blacklist.conf:
- commit 8f3e7a6
- media: xirlink_cit: add missing descriptor sanity checks
  (bsc#1168952 CVE-2020-11668).
- commit e978e80
- net: ethernet: ti: cpsw: fix runtime_pm while add/kill vlan (git-fixes).
- commit 7051077
- net: ethernet: ti: cpsw: clear all entries when delete vid (git-fixes).
- commit 0e0028e
- ppp: remove the PPPIOCDETACH ioctl (git-fixes).
- commit 44baa88
- ipvlan: use per device spinlock to protect addrs list updates (git-fixes). - Refresh patches.suse/ipvlan-do-not-add-hardware-address-of-master-to-its-.patch. - Refresh patches.suse/ipvlan-fix-IFLA_MTU-ignored-on-NEWLINK.patch.
- commit ef3234d
- net: stmmac: Fix reception of Broadcom switches tags (git-fixes).
- commit 76370d0
- uapi/if_ether.h: prevent redefinition of struct ethhdr (git-fixes).
- commit c699bc8
- blacklist.conf: update blacklist
- commit 5abd0c8
- Avoid a GCC warning about "//*"/ within a comment.
- commit 338fc13
- Update
  patches.suse/sched-fair-Don-t-free-p-numa_faults-with-concurrent-.patch
  (bsc#1144920, bsc#1179663, CVE-2019-20934).
- commit fad2215
- kABI fix for g2d (git-fixes).
- commit 7e9c2d3
- s390/pci: fix CPU address in MSI for directed IRQ (git-fixes).
- s390/qeth: fix tear down of async TX buffers (git-fixes).
- s390/qeth: fix af_iucv notification race (git-fixes).
- s390/qeth: make af_iucv TX notification call more robust
  (git-fixes).
- s390/dasd: fix null pointer dereference for ERP requests
  (git-fixes).
- s390/cpum_sf.c: fix file permission for cpum_sfb_size
  (git-fixes).
- s390/stp: add locking to sysfs functions (git-fixes).
- net/smc: fix valid DMBE buffer sizes (git-fixes).
- s390/bpf: Fix multiple tail calls (git-fixes).
- s390/zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl (git-fixes).
- s390/cpuinfo: show processor physical address (git-fixes).
- commit 44903bb
- tty: Fix ->pgrp locking in tiocspgrp() (git-fixes).
- USB: serial: kl5kusb105: fix memleak on open (git-fixes).
- USB: serial: option: fix Quectel BG96 matching (git-fixes).
- coredump: fix core_pattern parse error (git-fixes).
- commit 5eec673
- Input: i8042 - fix error return code in i8042_setup_aux()
  (git-fixes).
- i2c: qup: Fix error return code in qup_i2c_bam_schedule_desc()
  (git-fixes).
- commit cb6c842
- blacklist.conf: 586b58cac8b4 exit: Move preemption fixup up, move blocking operations down
- commit bea10a1
- kABI workaround for snd_rawmidi buffer_ref field addition
  (CVE-2020-27786 bsc#1179601).
- commit 0e8d69d
- ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
  (CVE-2020-27786 bsc#1179601).
- commit 3c00a93
- blacklist.conf: update blacklist
- commit c2d6bf2
- powerpc/perf: Fix crash with is_sier_available when pmu is
  not set (bsc#1179578 ltc#189313).
- commit 7521d8f
- Delete patches.suse/fs-select.c-batch-user-writes-in-do_sys_poll.patch.
  (CVE-2020-4788 bsc#1179419).
  Patch causes DLM regression. Drop for now.
- commit a422074
- cifs: fix potential use-after-free in cifs_echo_request()
  (bsc#1139944).
- commit 68b342e
- cifs: allow syscalls to be restarted in __smb_send_rqst()
  (bsc#1176956).
- commit d71fec6
- Add missing RESTORE_CTR (CVE-2020-4788 bsc#1177666).
- Refresh patches.suse/powerpc-64s-Convert-slb_miss_common-to-use-RFI_TO_US.patch.
- Refresh patches.suse/powerpc-64s-Set-assembler-machine-type-to-POWER4.patch.
  patches.suse/powerpc-64s-SLB-miss-already-has-CTR-saved-for-reloc.patch
  adds RESTORE_CTR to the SLB miss handler so
  patches.suse/powerpc-64s-Convert-slb_miss_common-to-use-RFI_TO_US.patch
  must now copy it in the other fork of the exit code as well.
- commit a382dc2
- ALSA: hda/realtek: Add mute LED quirk to yet another HP x360
  model (git-fixes).
- ALSA: usb-audio: US16x08: fix value count for level meters
  (git-fixes).
- ALSA: hda/realtek - Add new codec supported for ALC897
  (git-fixes).
- ALSA: hda/realtek: Enable headset of ASUS UX482EG & B9400CEA
  with ALC294 (git-fixes).
- ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220)
  (git-fixes).
- commit 13118e3
- x86/speculation: Fix prctl() when
  spectre_v2_user={seccomp,prctl},ibpb (bsc#1112178).
- commit 2a7ed1e
- x86/resctrl: Add necessary kernfs_put() calls to prevent
  refcount leak (bsc#1112178).
- commit 835979d
- x86/resctrl: Remove superfluous kernfs_get() calls to prevent
  refcount leak (bsc#1112178).
- commit e2c3455
- mm/userfaultfd: do not access vma->vm_mm after calling
  handle_userfault() (bsc#1179204).
- commit d3ad4f2
- splice: only read in as much information as there is pipe
  buffer  space (bsc#1179520).
- commit e4a54f3
- btrfs: qgroup: don't commit transaction when we already hold
  the handle (bsc#1178634).
- commit 12019de
- bnxt_en: Protect bnxt_set_eee() and bnxt_set_pauseparam()
  with mutex (bsc#1050242 FATE#322914).
- commit cdfc450
- media: mtk-mdp: Fix a refcounting bug on error in init
  (git-fixes).
- commit 321e276
- media: s5p-g2d: Fix a memory leak in an error handling path in
  'g2d_probe()' (git-fixes).
- commit beb2b48
- blacklist.conf: cosmetic fix
- commit e651872
- media: uvcvideo: Silence shift-out-of-bounds warning
  (git-fixes).
- commit b045f99
- media: uvcvideo: Set media controller entity functions
  (git-fixes).
- commit b0b0fbf
- net: ena: fix packet's addresses for rx_offset feature
  (bsc#1174852).
- net: ena: handle bad request id in ena_netdev (git-fixes).
- tcp: Set INET_ECN_xmit configuration in
  tcp_reinit_congestion_control (bsc#1109837).
- net/tls: missing received data after fast remote close
  (bsc#1109837).
- qed: fix error return code in qed_iwarp_ll2_start() (bsc#1050536
  FATE#322898 bsc#1050545 FATE#322893).
- igc: Fix returning wrong statistics (bsc#1118657 FATE#325278).
- mlxsw: core: Fix memory leak on module removal (bsc#1112374).
- RDMA/qedr: Fix memory leak in iWARP CM (bsc#1050545
  FATE#322893).
- SUNRPC: fix copying of multiple pages in gss_read_proxy_verf()
  (bsc#1103992 FATE#326009).
- svcrdma: fix bounce buffers for unaligned offsets and multiple
  pages (bsc#1103992 FATE#326009).
- nfp: use correct define to return NONE fec (bsc#1109837).
- net: DCB: Validate DCB_ATTR_DCB_BUFFER argument (bsc#1103990
  FATE#326006).
- cxgb4: Fix offset when clearing filter byte counters
  (bsc#1064802 bsc#1066129).
- net/tls: Fix kmap usage (bsc#1109837).
- svcrdma: Fix page leak in svc_rdma_recv_read_chunk()
  (bsc#1103992 FATE#326009).
- net: thunderx: use spin_lock_bh in nicvf_set_rx_mode_task()
  (bsc#1110096).
- qed: suppress false-positives interrupt error messages on HW
  init (bsc#1136460 jsc#SLE-4691 bsc#1136461 jsc#SLE-4692).
- qed: suppress "/don't support RoCE & iWARP"/ flooding on HW init
  (bsc#1050536 FATE#322898 bsc#1050545 FATE#322893).
- bnxt_en: Fix race when modifying pause settings (bsc#1050242
  FATE#322914).
- net_sched: fix a memory leak in atm_tc_init() (bsc#1056657
  FATE#322189 bsc#1056653 FATE#322190 bsc#1056787).
- net: qed: fix "/maybe uninitialized"/ warning (bsc#1136460
  jsc#SLE-4691 bsc#1136461 jsc#SLE-4692).
- net: qede: fix use-after-free on recovery and AER handling
  (bsc#1136460 jsc#SLE-4691 bsc#1136461 jsc#SLE-4692).
- net: qede: fix PTP initialization on recovery (bsc#1136460
  jsc#SLE-4691 bsc#1136461 jsc#SLE-4692).
- net: qed: fix async event callbacks unregistering (bsc#1104393
  FATE#325891 bsc#1104389 FATE#325890).
- RDMA/qedr: Fix KASAN: use-after-free in ucma_event_handler+0x532
  (bsc#1050545 FATE#322893).
- commit 6f45bee
- blacklist.conf: false positive
- commit 37fb76a
- rpm/kernel-{source,binary}.spec: do not include ghost symlinks
  (boo#1179082).
- commit 76a9256
- scripts/lib/SUSE/MyBS.pm: properly close prjconf Macros: section
- commit 965157e
- kABI: powerpc: Add back __clear_user (CVE-2020-4788
  bsc#1177666).
- commit 9ab0140
- kABI: powerpc: avoid including pgtable.h in kup.h (CVE-2020-4788
  bsc#1177666).
- commit 81cd22b
- make 'user_access_begin()' do 'access_ok()' (CVE-2020-4788 bsc#1177666).
- Delete patches.suse/drm-i915-CVE-2018-20669-access-check.patch.
- commit ffc3685
- powerpc/64s: SLB miss already has CTR saved for relocatable kernel
  (CVE-2020-4788 bsc#1177666).
- Refresh patches.suse/powerpc-64s-Set-assembler-machine-type-to-POWER4.patch.
- commit 741f364
- powerpc/64: Add CONFIG_PPC_BARRIER_NOSPEC (CVE-2020-4788 bsc#1177666).
- Refresh patches.suse/powerpc-64-Call-setup_barrier_nospec-from-setup_arch.patch
- Refresh patches.suse/powerpc-pmem-Update-ppc64-to-use-the-new-barrier-ins.patch.
- Update config files.
- commit b0085a7
- powerpc/64s: flush L1D after user accesses (CVE-2020-4788
  bsc#1177666).
- Refresh patches.kabi/kABI-powerpc-avoid-including-pgtable.h-in-kup.h.patch.
- powerpc/uaccess: Evaluate macro arguments once, before user
  access is allowed (CVE-2020-4788 bsc#1177666).
- powerpc: Fix __clear_user() with KUAP enabled (CVE-2020-4788
  bsc#1177666).
- powerpc: Implement user_access_begin and friends (CVE-2020-4788
  bsc#1177666).
- powerpc: Add a framework for user access tracking (CVE-2020-4788
  bsc#1177666).
- powerpc/64s: flush L1D on kernel entry (CVE-2020-4788
  bsc#1177666).
- powerpc/64s: move some exception handlers out of line
  (CVE-2020-4788 bsc#1177666).
- powerpc/64s: Define MASKABLE_RELON_EXCEPTION_PSERIES_OOL
  (CVE-2020-4788 bsc#1177666).
- powerpc/64s: Rename slb_miss_realmode() to slb_miss_common()
  (CVE-2020-4788 bsc#1177666).
- powerpc/64s: Use BRANCH_TO_COMMON() for slb_miss_realmode
  (CVE-2020-4788 bsc#1177666).
- commit f7d6c42
- rpm/kernel-binary.spec.in: use grep -E instead of egrep (bsc#1179045)
  egrep is only a deprecated bash wrapper for "/grep -E"/. So use the latter
  instead.
- commit 63d7072
- kernel-{binary,source}.spec.in: do not create loop symlinks (bsc#1179082)
- commit adf56a8
- rpm/kernel-binary.spec.in: avoid using more barewords (bsc#1179014)
  %split_extra still contained two.
- commit d9b4c40
- kernel-source.spec: Fix build with rpm 4.16 (boo#1179015).
  RPM_BUILD_ROOT is cleared before %%install. Do the unpack into
  RPM_BUILD_ROOT in %%install
- commit 13bd533
- rpm/kernel-binary.spec.in: avoid using barewords (bsc#1179014)
  Author: Dominique Leuenberger <dimstar@opensuse.org>
- commit 21f8205
- rpm/mkspec: do not build kernel-obs-build on x86_32
  We want to use 64bit kernel due to various bugs (bsc#1178762 to name
  one).
  There is:
  ExportFilter: ^kernel-obs-build.*.x86_64.rpm$ . i586
  in Factory's prjconf now. No other actively maintained distro (i.e.
  merging packaging branch) builds a x86_32 kernel, hence pushing to
  packaging directly.
- commit 8099b4b
- fs/select.c: batch user writes in do_sys_poll (CVE-2020-4788
  bsc#1177666).
- commit 011abbd
- Updated Copyright line in rpm templates with SUSE LLC
- commit 39a1fcf
- rpm/kernel-obs-build.spec.in: Add -q option to modprobe calls (bsc#1178401)
- commit 33ded45
- cifs: add NULL check for ses->tcon_ipc (bsc#1178270).
- commit 2fd7b70
- cifs: fix check of tcon dfs in smb1 (bsc#1178270).
- commit 0293f73
keyutils
- adjust the library license to be LPGL-2.1+ only (the tools are GPL2+,
  the library is just LGPL-2.1+) (bsc#1180603)
libidn2
- The library is actually dual licensed, GPL-2.0-or-later or LGPL-3.0-or-later,
  match factory licenses (bsc#1180138)
libselinux
- Correct license to public domain (bsc#1180603)
libxml2
- Avoid quadratic checking of identity-constraints: [bsc#1178823]
  * key/unique/keyref schema attributes currently use qudratic loops
    to check their various constraints (that keys are unique and that
    keyrefs refer to existing keys).
  * This fix uses a hash table to avoid the quadratic behaviour.
- Add libxml2-Avoid-quadratic-checking-of-identity-constraints.patch
llvm7
- Fix dsymutil crash on ELF file. (bsc#1176964)
  * llvm-fix-a-copy-and-paste-error-that-would-cause-a-crash.patch
- Add fix-ppcle64-build.patch to fix ppc64le build.
- Add compiler-rt-sanitizer-ipc-perm.patch to fix build in the SP3 tree
- Change Provides/Conflicts to be versioned like in factory and required
  for newer llvm packages.
- Add Conflicts: clang-tools to clang7 and llvm7 packages to properly
  handle newer llvm versions.  (bsc#1179155)
lvm2
- revert commit which caused a regression:
  lvm2 should use 'external_device_info_source="/udev"/' by default (bsc#1179691)
  - change lvm.conf item external_device_info_source from none to udev
- lvm2 should use 'external_device_info_source="/udev"/' by default (bsc#1179691)
  - change lvm.conf item external_device_info_source from none to udev
- comment out lvm.conf item preferred_names by default (bsc#1179738)
  - comment out preferred_names
- pvmove destination LV always has KRahead=0 (bsc#1179326)
  + bug-1179326_pvmove-correcting-read_ahead-setting.patch
  - in %postun, disable restart blk-availability.service & lvm2-monitor.service
openldap2
- bsc#1178909 CVE-2020-25709 CVE-2020-25710 - Resolves two issues
    where openldap would crash due to malformed inputs.
  * patch: 0209-ITS-9383-remove-assert-in-certificateListValidate.patch
  * patch: 0210-ITS-9384-remove-assert-in-obsolete-csnNormalize23.patch
- bsc#1179503 - fix proxy retry binds to a remote server
  * patch: 0208-ITS-9400-back-ldap-fix-retry-binds.patch
openssh
- Add openssh-bsc1148566-scp-handle-quotes-while-checking-filenames-from-serv.patch,
  openssh-bsc1148566-scp-show-filename-match-patterns-in-verbose-mode.patch
  (bsc#1148566). Fixes a class of false alarms due to filename
  validation. Patches by Josef Cejka <jcejka@suse.com>.
- Add openssh-7.6p1-audit_race_condition.patch, fixing sshd
  termination of multichannel sessions with non-root users
  (error on 'mm_request_receive_expect') (bsc#1115550,
  bsc#1174162).
- Add openssh-bsc1139398-rowhammer-hardening.patch (bsc#1139398),
  which encrypts private keys at rest in RAM.
- Add openssh-CVE-2020-14145-information-leak.patch
  (CVE-2020-14145, bsc#1173513). This partially mitigates a
  potential information leak during host key exchange that could
  be exploited by a man-in-the-middle attacker.
pam
- Create macros.pam with definition of %_pamdir so packages which
  are commonly shared between Factory and SLE can use this macro
  [pam.spec]
python
- Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing
  bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in
  _ctypes/callproc.c, which may lead to remote code execution.
- Provide the newest setuptools wheel (bsc#1176262,
  CVE-2019-20916) in their correct form (bsc#1180686).
python-base
- Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing
  bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in
  _ctypes/callproc.c, which may lead to remote code execution.
- Provide the newest setuptools wheel (bsc#1176262,
  CVE-2019-20916) in their correct form (bsc#1180686).
python-jsonschema

      
python3
- readd --with-fpectl (bsc#1180377)
- Adjust sphinx-update-removed-function.patch
- (bsc#1179630) Update sphinx-update-removed-function.patch to
  work with all versions of Sphinx (not binding the Python
  documentation build to the latest verison of Sphinx). Updated
  version mentioned on gh#python/cpython#13236.
- Add CVE-2020-27619-no-eval-http-content.patch fixing
  CVE-2020-27619 (bsc#1178009), where Lib/test/multibytecodec_support
  calls eval() on content retrieved via HTTP.
- Add patch sphinx-update-removed-function.patch to no longer call
  a now removed function (gh#python/cpython#13236). As
  a consequence, no longer pin Sphinx version.
- Pin Sphinx version to fix doc subpackage
- Change setuptools and pip version numbers according to new wheels
- Add ignore_pip_deprec_warn.patch to switch of persistently
  failing test.
- Handful of changes to make python36 compatible with SLE15 and SLE12
  (jsc#ECO-2799, jsc#SLE-13738)
- Rebase bpo23395-PyErr_SetInterrupt-signal.patch
- Fix build with RPM 4.16: error: bare words are no longer
  supported, please use "/..."/:  x86 == ppc.
- Fix installing .desktop file
- Buildrequire timezone only for general flavor. It's used in this
  flavor for the test suite.
- Add faulthandler_stack_overflow_on_GCC10.patch to make build
  working even with GCC10 (bpo#38965).
- Just cleanup and reordering items to synchronize with python38
- Format with spec-cleaner
- riscv64-support.patch: bpo-33377: add triplets for mips-r6 and riscv
  (#6655)
- riscv64-ctypes.patch: bpo-35847: RISC-V needs CTYPES_PASS_BY_REF_HACK
  (GH-11694)
- Update list of tests to exclude under qemu linux-user
- Update the python keyring
- Correct libpython name
- Drop patches which are not mentioned in spec:
  * CVE-2019-5010-null-defer-x509-cert-DOS.patch
  * F00102-lib64.patch
  * F00251-change-user-install-location.patch
  * OBS_dev-shm.patch
  * SUSE-FEDORA-multilib.patch
  * bpo-31046_ensurepip_honours_prefix.patch
  * bpo34022-stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
  * bpo36302-sort-module-sources.patch
  * bpo40784-Fix-sqlite3-deterministic-test.patch
  * bsc1167501-invalid-alignment.patch
  * python3-imp-returntype.patch
- Working around missing python-packaging dependency in
  python-Sphinx (bsc#1174571) is not necessary anymore.
- Update to 3.6.12 (bsc#1179193)
  * Ensure python3.dll is loaded from correct locations when Python is embedded
  * The __hash__() methods of ipaddress.IPv4Interface and ipaddress.IPv6Interface
    incorrectly generated constant hash values of 32 and 128 respectively. This
    resulted in always causing hash collisions. The fix uses hash() to generate
    hash values for the tuple of (address, mask length, network address).
  * Prevent http header injection by rejecting control characters in
    http.client.putrequest(…).
  * Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now
    UnpicklingError instead of crashing.
  * Avoid infinite loop when reading specially crafted TAR files using the tarfile
    module
- Drop merged fixtures:
  * CVE-2020-14422-ipaddress-hash-collision.patch
  * CVE-2019-20907_tarfile-inf-loop.patch
  * recursion.tar
- This release also fixes CVE-2020-26116 (bsc#1177211) and CVE-2019-20907 (bsc#1174091).
- Make library names internally consistent
- Disable profile optimalizations as they deadlock in test_faulthandler
- Disable lto as it causes mess and works with 3.7 onwards only
- Sync the test disablements from the python3 in sle15
- Update to 3.6.11:
  - bpo-39073: Disallow CR or LF in email.headerregistry. Address
    arguments to guard against header injection attacks.
  - bpo-38576 (bsc#1155094): Disallow control characters in
    hostnames in http.client, addressing CVE-2019-18348. Such
    potentially malicious header injection URLs now cause
    a InvalidURL to be raised.
  - bpo-39503: CVE-2020-8492: The AbstractBasicAuthHandler class
    of the urllib.request module uses an inefficient regular
    expression which can be exploited by an attacker to cause
    a denial of service. Fix the regex to prevent the
    catastrophic backtracking. Vulnerability reported by Ben
    Caller and Matt Schwager.
  - bpo-39401: Avoid unsafe load of
    api-ms-win-core-path-l1-1-0.dll at startup on Windows 7.
- Remove merged patch CVE-2020-8492-urllib-ReDoS.patch
- Fix minor issues found in the staging.
- Do not set ourselves as a primary interpreter
  - CVE-2019-16935-xmlrpc-doc-server_title.patch (and also
    bpo37614-race_test_docxmlrpc_srv_setup.patch, which was
    resolving bsc#1174701).
python3-ec2imgutils
- Update to version 9.0.1 (bsc#1179890)
  + Support gp3 as option to create EBS root volume. This allows image
    creation with the new storage class and save 20% of cost.
release-notes-sles
- 15.1.20201217 (tracked in bsc#1180186)
- Added note about Git 2.26 update (jsc#SLE-12396)
- Added note about QEMU Guest Agent (jsc#SLE-4591)
- Added note that seccheck runs from systemd timers (bsc#1174679)
- Added note about LibreOffice 6.4 (jsc#SLE-11590)
- Added note about Vagrant (jsc#SLE-10633)
- Move NVDIMM note to Storage section
sudo
- Fix Heap-based buffer overflow in Sudo [bsc#1181090,CVE-2021-3156]
  * sudo-CVE-2021-3156.patch
- Possible Dir Existence Test due to Race Condition in `sudoedit`
  [bsc#1180684,CVE-2021-23239]
  * sudo-CVE-2021-23239.patch
- Possible Symlink Attack in SELinux Context in `sudoedit` [bsc#1180685,
  CVE-2021-23240]
  * sudo-CVE-2021-23240.patch
- User Could Enable Debug Settings not Intended for it [bsc#1180687]
  * sudo-fix-bsc-1180687.patch
systemd
- Add 0001-cgroup-actually-reset-the-cgroup-invalidation-mask-a.patch (bsc#1178775)
  It's been added in quarantine for now on.
- Import commit c720c4d784b85feab124eae39919bec59e061ff5
  bd6bedd353 udev: create /dev/disk/by-label symlink for LUKS2 (#8998) (bsc#1180885)
- Import commit 080062ed5f90b8a4085a89f2ad30ee320fab27c9
  80e37dcacc busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225)
  2ee6877bb3 core: make sure to restore the control command id, too
  d1b9949337 scope: on unified, make sure to unwatch all PIDs once they've been moved to the cgroup scope
  af5945c2f4 fileio: tweak write_string_stream_ts() to write out trailing n in one go even if buffering is off
  a28c165efa fileio: write_string_stream_ts: check for file errors immediately
  dc122eb771 fileio: write_string_stream_ts: return errors from fputs and fputc
  14c89b1424 fileio: make write_string_stream() accept flags parameter
  2959e7dfe6 journal: do not trigger assertion when journal_file_close() get NULL (bsc#1179824)
  08db1ac361 cgroup: drastically simplify caching of cgroups members mask (bsc#1175458)
  bb59042ab4 cgroup: extend comment on what unit_release_cgroup() is for
  ead2955f65 cgroup: document what the various masks variables are used for
  805fe8ecdf cgroup: extend cg_mask_supported() comment a bit
  305806da38 cgroup: tweak log message, so that it doesn't claim we always enable controllers when we actually disable them
  d02ce63463 cgroup-util: disable buffering for cg_enable_everywhere() when writing to cgroup attributes
  b4e9893f5d cgroup-util: fix enabling of controllers (#8816)
  e7dd277c1b cgroup: propagate errors when we cannot open cgroup.subtree_control
  7c8f19714f cgroup-util: optimization — open subtree_control file only once for all controllers
  7999763781 cgroup: add explanatory comment
  2829342e7a cgroup: units that aren't loaded properly should not result in cgroup controllers being pulled in
  48a0d85047 cgroup: make unit_get_needs_bpf_firewall() static too
  888dc39134 cgroup: make some functions static
  6c0efa2f01 cgroup: suffix settings with "/="/ in log messages where appropriate
  e69d9927c6 cgroup: use structured initialization
  5174fb9622 core: fix message about detected memory hierarchy
  3b6443e1ee core: use safe_fclose() where we can
  906dcf1f6b udev: Fix sound.target dependency (bsc#1179363)
  2c9866d55a rules: enable hardware-related targets also for user instances
  127e546608 sd-event: fix delays assert brain-o (#17790)
  b98b6d230c core: serialize u->pids until the processes have been moved to the scope cgroup (bsc#1174436)
  2f50b9ecf1 time-util: treat /etc/localtime missing as UTC (bsc#1141597)
tcl
- bsc#1179615: TCL_LIBS in tclConfig.sh possibly breaks build on
  newer service packs and is not needed for linking to a dynamic
  libtcl anyway, so make it empty.
timezone
- timezone update 2021a (bsc#1177460)
  * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00.
- timezone update 2020f (bsc#1177460)
  * 'make rearguard_tarballs' no longer generates a bad rearguard.zi,
    fixing a 2020e bug.
- timezone update 2020e (bsc#1177460)
  * Volgograd switches to Moscow time on 2020-12-27 at 02:00.
util-linux
- libblkid: Do not trigger CDROM autoclose (bsc#1084671,
  util-linux-libblkid-cdrom-autoclose-1.patch,
  util-linux-libblkid-cdrom-autoclose-2.patch,
  util-linux-libblkid-cdrom-autoclose-3.patch).
- Modernize patch util-linux-sulogin4bsc1175514.patch
  * Try to autoconfigure broken serial lines
- Add patch util-linux-sulogin4bsc1175514.patch
  Avoid sulogin failing on not existing or not functional console
  devices (bsc#1175514)
- Build with libudev support to support non-root users
  (boo#1169006).
- lscpu: avoid segfault on PowerPC systems with valid hardware
  configurations
  (bsc#1175623, bsc#1178554, bsc#1178825,
  lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch)
- Fix for SG#57988, bsc#1174942:
  libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts
  to CIFS with mount –a.
util-linux-systemd
- libblkid: Do not trigger CDROM autoclose (bsc#1084671,
  util-linux-libblkid-cdrom-autoclose-1.patch,
  util-linux-libblkid-cdrom-autoclose-2.patch,
  util-linux-libblkid-cdrom-autoclose-3.patch).
- Modernize patch util-linux-sulogin4bsc1175514.patch
  * Try to autoconfigure broken serial lines
- Add patch util-linux-sulogin4bsc1175514.patch
  Avoid sulogin failing on not existing or not functional console
  devices (bsc#1175514)
- Build with libudev support to support non-root users
  (boo#1169006).
- lscpu: avoid segfault on PowerPC systems with valid hardware
  configurations
  (bsc#1175623, bsc#1178554, bsc#1178825,
  lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch)
- Fix for SG#57988, bsc#1174942:
  libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts
  to CIFS with mount –a.
wavpack
- Update to version 5.4.0
  * CVE-2020-35738: Fixed an out-of-bounds write in WavpackPackSamples (bsc#1180414)
  * fixed: disable A32 asm code when building for Apple silicon
  * fixed: issues with Adobe-style floating-point WAV files
  * added: --normalize-floats option to wvunpack for correctly
    exporting un-normalized floating-point files
- Update to version 5.3.0
  * fixed: OSS-Fuzz issues 19925, 19928, 20060, 20448
  * fixed: trailing garbage characters on imported ID3v2 TXXX tags
  * fixed: various minor undefined behavior and memory access issues
  * fixed: sanitize tag extraction names for length and path inclusion
  * improved: reformat wvunpack "/help"/ and split into long + short versions
  * added: regression testing to Travis CI for OSS-Fuzz crashers
- Updated to version 5.2.0
  * fixed: potential security issues including the following CVEs:
    CVE-2018-19840, CVE-2018-19841, CVE-2018-10536 (bsc#1091344),
    CVE-2018-10537 (bsc#1091343) CVE-2018-10538 (bsc#1091342),
    CVE-2018-10539 (bsc#1091341), CVE-2018-10540 (bsc#1091340),
    CVE-2018-7254,  CVE-2018-7253, CVE-2018-6767, CVE-2019-11498
    and CVE-2019-1010319
  * added: support for CMake, Travis CI, and Google's OSS-fuzz
  * fixed: use correction file for encode verify (pipe input, Windows)
  * fixed: correct WAV header with actual length (pipe input, -i option)
  * fixed: thumb interworking and not needing v6 architecture (ARM asm)
  * added: handle more ID3v2.3 tag items and from all file types
  * fixed: coredump on Sparc64 (changed MD5 implementation)
  * fixed: handle invalid ID3v2.3 tags from sacd-ripper
  * fixed: several corner-case memory leaks
  Dropped patches that included in upstream version:
  * CVE-2018-19840.patch
  * CVE-2018-19841.patch
  * CVE-2018-7253.patch
  * CVE-2018-7254.patch
  * wavpack-CVE-2018-6767.patch
  * CVE-2019-1010319.patch
  * CVE-2019-11498.patch
wicked
- version 0.6.64
- avoid incomplete ifdown/timeout on route deletion error (bsc#1174099)
- dhcp4: add DHCLIENT_CREATE_CID to ifcfg (jsc#SLE-15770)
- wicked: fixes to ifreload on port changes (bsc#1168155,bsc#1172082)
- team: fix schema to use correct hwaddr_policy property (boo#1171234)
- team: enable ipv6 on ports when nsna_ping linkwatch is used (bsc#959556)
- version 0.6.63
- ipv6: support to apply stable secret ifsysctl (jsc#SLE-6960)
- version 0.6.62
- utils: don't reject NULL var array names/keys breaking wicked duid dump
- routes: schema fix to avoid not applying rto_min incl. new time format (bsc#1160939)
- systemd: order start wicked after network-pre.target and openvswitch.service start
- packaging: use pkgconfig(libsystemd) instead of systemd-devel
- version 0.6.61
- dracut: add initial cmdline parsing as a config source
- address: don't check hwaddr length if parsing as ARPHRD_VOID
- utils: added find and insert var array utils, cleanup
- client: add show-policy command calling policy generation
- client: initial support to generate a basic policy directly
- client: cleanup convert and show-config commands
- removed obsolete patches included in the source archive:
  [- 0006-spec-fix-old-libwicked-package-provides-obsoletes-bsc1165180.patch]
  [- 0004-dhcp6-don-t-add-free-d-IA-to-ia_pd_list-on-T1-T2-CVE.patch]
  [- 0005-dhcp4-discard-lease-on-client-id-mismatch-CVE-2020-7.patch]
  [- 0003-dhcp4-free-lease-on-response-without-message-type-CV.patch]
  [- 0002-dhcp6-fix-use-after-free-on-option-parsing-failure-C.patch]
  [- 0001-Squashed-misc-bug-fixes-from-pull-821.patch]
xen
- bsc#1176782 - L3: xl dump-core shows missing nr_pages during
  core. If maxmem and current are the same the issue doesn't happen
  5fca3b32-tools-libs-ctrl-fix-dumping-of-ballooned-guest.patch
- bsc#1179496 - VUL-0: CVE-2020-29480: xen: xenstore: watch
  notifications lacking permission checks (XSA-115)
  xsa115-1.patch
  xsa115-2.patch
  xsa115-3.patch
  xsa115-4.patch
  xsa115-5.patch
  xsa115-6.patch
  xsa115-7.patch
  xsa115-8.patch
  xsa115-9.patch
  xsa115-10.patch
- bsc#1179498 - VUL-0: CVE-2020-29481: xen: xenstore: new domains
  inheriting existing node permissions (XSA-322)
  xsa322.patch
- bsc#1179501 - VUL-0: CVE-2020-29484: xen: xenstore: guests can
  crash xenstored via watchs (XSA-324)
  xsa324.patch
- bsc#1179502 - VUL-0: CVE-2020-29483: xen: xenstore: guests can
  disturb domain cleanup (XSA-325)
  xsa325.patch
- bsc#1179506 - VUL-0: CVE-2020-29566: xen: undue recursion in x86
  HVM context switch code (XSA-348)
  xsa348.patch
- bsc#1179514 - VUL-0: CVE-2020-29570: xen: FIFO event channels
  control block related ordering (XSA-358)
  xsa358.patch
- bsc#1179516 - VUL-0: CVE-2020-29571: xen: FIFO event channels
  control structure ordering (XSA-359)
  xsa359.patch
- Upstream bug fixes (bsc#1027519)
  5faa974f-evtchn-rework-per-channel-lock.patch
  5faa978b-evtchn-revert-52e1fc47abc3a0123.patch
  5faac497-xen-arm-Always-trap-AMU-system-registers.patch (Replaces xsa351-3.patch)
  5fbcdf2e-evtchn-FIFO-access-last.patch
  5fbcdf99-x86-DMI-fix-SMBIOS-pointer-check.patch
  5fbd042b-memory-off-by-one-in-XSA-346.patch (Replaces xsa355.patch)
  5fc4ee23-evtchn-FIFO-queue-locking.patch
yast2-packager
- Backport of PR#521.
- prevent race condition between log rotation and migration
  log backup (bsc#1166174)
- 4.1.52