- SAPHanaSR
-
- Version bump to 0.162.1
* fix for SAPHanaTopology failing with error code 1
(OCF_ERR_GENERIC) during a normal stop action
(bsc#1207466)
* set srhook attribute to PRIM during a probe so that we do not
need to wait for the first srConnectionChanged() to set the
attribute
(bsc#1205535)
- Version bump to 0.162.0
* add improvements from SAP to the RA scripts regarding the
handling of the SAP tools 'HDB version', 'HDBSettings.sh' and
'pycd' and the SAPHana log filter handling
(jsc#PED-1739, jsc#PED-2608)
* fix for SAPHanaSR-monitor reporting "/LPA status of one node is
missing"/
(bsc#1192963, bsc#1203973)
* SAPHanaSRTools.pm: shows terminate node attribute too
- remove patch:
0001-bsc-1192963.patch
- apparmor
-
- add profiles-permit-php-fpm-pid-files-directly-under-run.patch
https://gitlab.com/apparmor/apparmor/-/merge_requests/914 (bsc#1202344)
- audit-secondary
-
- Fix rules not loaded when restarting auditd.service(bsc#1204844)
- autoyast2
-
- Add needed packages for kdump even when kdump section is not
defined if product enable kdump by default (bsc#1204180)
- 4.4.43
- Add support for security policies validation (jsc#SLE-24764).
- 4.4.42
- Allow empty values in ask/default, ask/selection/label and
ask/selection/value elements (bsc#1204448).
- 4.4.41
- Add needed packages for the selected network backend in order to
prevent it is not declared in the software section (bsc#1201235,
bsc#1201435)
- 4.4.40
- bash-completion
-
- Add patch fix-curl-help-completion-bsc1200791.patch (bsc#1200791)
* List all options for `curl --<TAB>`
- bind
-
- Update to release 9.16.35
Bug Fixes:
* A crash was fixed that happened when a dnssec-policy zone that
used NSEC3 was reconfigured to enable inline-signing.
* In certain resolution scenarios, quotas could be erroneously
reached for servers, including any configured forwarders,
resulting in SERVFAIL answers being sent to clients.
* rpz-ip rules in response-policy zones could be ineffective in
some cases if a query had the CD (Checking Disabled) bit set to
1.
* Previously, if Internet connectivity issues were experienced
during the initial startup of named, a BIND resolver with
dnssec-validation set to auto could enter into a state where it
would not recover without stopping named, manually deleting the
managed-keys.bind and managed-keys.bind.jnl files, and starting
named again.
* The statistics counter representing the current number of
clients awaiting recursive resolution results (RecursClients)
could overflow in certain resolution scenarios.
* Previously, BIND failed to start on Solaris-based systems with
hundreds of CPUs.
* When a DNS resource record’s TTL value was equal to the
resolver’s configured prefetch “eligibility” value, the record
was erroneously not treated as eligible for prefetching.
[jsc#SLE-24600]
- Update to release 9.16.34
New Features:
* Support for parsing and validating the dohpath service
parameter in SVCB records was added.
* named now logs the supported cryptographic algorithms during
startup and in the output of named -V.
Bug Fixes:
* Changing just the TSIG key names for primaries in catalog
zones’ member zones was not effective. This has been fixed.
Known Issues:
* Upgrading from BIND 9.16.32 or any older version may require a
manual configuration change. The following configurations are
affected:
- type primary zones configured with dnssec-policy but without
either allow-update or update-policy,
- type secondary zones configured with dnssec-policy.
In these cases please add inline-signing yes; to the individual
zone configuration(s). Without applying this change, named will
fail to start. For more details, see
https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
[jsc#SLE-24600]
- binutils
-
- Add binutils-maxpagesize.diff for a problem on old code
streams, where we would generate too large binaries.
- s390-pic-dso.diff: use %pB instead of %B
- SLE toolchain update of binutils. Update to 2.39 from 2.37,
which means obsoleting and hence removing these patches:
binutils-add-efi-aarch64-1.diff, binutils-add-efi-aarch64-2.diff,
binutils-add-efi-aarch64-3.diff, binutils-fix-keepdebug.diff,
binutils-add-z16-name.diff.
Implements [jsc#SLE-25046, jsc#PED-2029, jsc#PED-2035, jsc#PED-2033,
jsc#PED-2030, jsc#PED-2038, jsc#PED-2032, jsc#PED-2034, jsc#PED-2031,
jsc#SLE-25047]
- This fixes these CVEs relative to 2.37:
[bsc#1188374, bsc#1185597] aka (GCC) PR99935 aka CVE-2021-3648
[bsc#1193929] aka PR28694 aka CVE-2021-45078
[bsc#1194783] aka (GCC) PR98886 aka CVE-2021-46195
[bsc#1197592] aka (GCC) PR105039 aka CVE-2022-27943
[bsc#1202966] aka PR29289 aka CVE-2022-38126
[bsc#1202967] aka PR29290 aka CVE-2022-38127
[bsc#1202969] aka CVE-2021-3826
- Add binutils-pr29482.diff for PR29482, aka CVE-2022-38533
[bsc#1202816]
- Rebase binutils-2.39-branch.diff.gz that contains fix for PR29451.
- Add binutils-2.39-branch.diff.gz.
- Explicitly enable --enable-warn-execstack=yes and --enable-warn-rwx-segments=yes.
- Add gprofng subpackage.
- Update to binutils 2.39:
* The ELF linker will now generate a warning message if the stack is made
executable. Similarly it will warn if the output binary contains a
segment with all three of the read, write and execute permission
bits set. These warnings are intended to help developers identify
programs which might be vulnerable to attack via these executable
memory regions.
The warnings are enabled by default but can be disabled via a command
line option. It is also possible to build a linker with the warnings
disabled, should that be necessary.
* The ELF linker now supports a --package-metadata option that allows
embedding a JSON payload in accordance to the Package Metadata
specification.
* In linker scripts it is now possible to use TYPE=<type> in an output
section description to set the section type value.
* The objdump program now supports coloured/colored syntax
highlighting of its disassembler output for some architectures.
(Currently: AVR, RiscV, s390, x86, x86_64).
* The nm program now supports a --no-weak/-W option to make it ignore
weak symbols.
* The readelf and objdump programs now support a -wE option to prevent
them from attempting to access debuginfod servers when following
links.
* The objcopy program's --weaken, --weaken-symbol, and
- -weaken-symbols options now works with unique symbols as well.
- Rebase binutils-compat-old-behaviour.diff, binutils-revert-hlasm-insns.diff,
binutils-revert-plt32-in-branches.diff and remove binutils-2.38-branch.diff.gz.
- For now use --disable-gprofng.
- Includes fixes for these CVEs:
bnc#1142579 aka CVE-2019-1010204 aka PR23765
(Fake entry from SLE for tracking purposes:)
- Use https for variosu links.
- Update binutils-2.38-branch.diff.gz (to 93054037f1e304e)
in order to include PR29087.
- Enable multitarget build on riscv64
- On SLE15 and later, use make -Oline to synchronize configure output by
lines
(Fake entry from SLE for tracking purposes:)
- Renumber Sources.
- Fix ExcludeArch for ppc.
- Make multibuild utilize only the main binutils.spec file.
- Remove not needed README.First-for.SUSE.packagers, pre_checkin.sh.
- Start using _multibuild for cross binutils.
(forward port from SLE)
- Update binutils-2.38-branch.diff.gz (to c210342d7f5) to include
recognition of 'z16' name for 'arch14' on s390. [bsc#1198237]
(Fake entry from SLE for tracking purposes:)
- Add usage of a SUSE_ZNOW environment variable which allows switching
on "/-z now"/ by default using "/export SUSE_ZNOW=1"/, similar to
the SUSE_ASNEEDED variable. Adds binutils-znow.patch.
- Update binutils-skip-rpaths.patch: add back fix for boo#1191473,
which got lost in the update to 2.38.
- Update binutils-2.38-branch.diff.gz in order to include PR28879.
- From Stefan Brüns <stefan.bruens@rwth-aachen.de>:
* Install symlinks for all target specific tools on
arm-eabi-none [bsc#1185712]
- Do not re-generate ld/ldlex.c, ld/ldgram.c, ld/ldgram.h and verify
that corresponding flex/bison files are not modified by a patch.
- Use verbose mode for make for cross compilers.
- Make it build on SLE-11 again.
- Use verbose mode for make.
- Update to binutils 2.38:
* elfedit: Add --output-abiversion option to update ABIVERSION.
* Add support for the LoongArch instruction set.
* Tools which display symbols or strings (readelf, strings, nm, objdump)
have a new command line option which controls how unicode characters are
handled. By default they are treated as normal for the tool. Using
- -unicode=locale will display them according to the current locale.
Using --unicode=hex will display them as hex byte values, whilst
- -unicode=escape will display them as escape sequences. In addition
using --unicode=highlight will display them as unicode escape sequences
highlighted in red (if supported by the output device).
* readelf -r dumps RELR relative relocations now.
* Support for efi-app-aarch64, efi-rtdrv-aarch64 and efi-bsdrv-aarch64 has been
added to objcopy in order to enable UEFI development using binutils.
* ar: Add --thin for creating thin archives. -T is a deprecated alias without
diagnostics. In many ar implementations -T has a different meaning, as
specified by X/Open System Interface.
* Add support for AArch64 system registers that were missing in previous
releases.
* Add support for the LoongArch instruction set.
* Add a command-line option, -muse-unaligned-vector-move, for x86 target
to encode aligned vector move as unaligned vector move.
* Add support for Cortex-R52+ for Arm.
* Add support for Cortex-A510, Cortex-A710, Cortex-X2 for AArch64.
* Add support for Cortex-A710 for Arm.
* Add support for Scalable Matrix Extension (SME) for AArch64.
* The --multibyte-handling=[allow|warn|warn-sym-only] option tells the
assembler what to when it encoutners multibyte characters in the input. The
default is to allow them. Setting the option to "/warn"/ will generate a
warning message whenever any multibyte character is encountered. Using the
option to "/warn-sym-only"/ will make the assembler generate a warning whenever a
symbol is defined containing multibyte characters. (References to undefined
symbols will not generate warnings).
* Outputs of .ds.x directive and .tfloat directive with hex input from
x86 assembler have been reduced from 12 bytes to 10 bytes to match the
output of .tfloat directive.
* Add support for 'armv8.8-a', 'armv9-a', 'armv9.1-a', 'armv9.2-a' and
'armv9.3-a' for -march in AArch64 GAS.
* Add support for 'armv8.7-a', 'armv8.8-a', 'armv9-a', 'armv9.1-a',
'armv9.2-a' and 'armv9.3-a' for -march in Arm GAS.
* Add support for Intel AVX512_FP16 instructions.
* Add -z pack-relative-relocs/-z no pack-relative-relocs to x86 ELF
linker to pack relative relocations in the DT_RELR section.
* Add support for the LoongArch architecture.
* Add -z indirect-extern-access/-z noindirect-extern-access to x86 ELF
linker to control canonical function pointers and copy relocation.
* Add --max-cache-size=SIZE to set the the maximum cache size to SIZE
bytes.
- Add binutils-2.38-branch.diff.gz.
- Removed deletion of man pages as they should be properly packages
in tarball.
- Rebased patches: aarch64-common-pagesize.patch, add-ulp-section.diff,
binutils-bfd_h.patch, binutils-revert-nm-symversion.diff,
binutils-revert-plt32-in-branches.diff, binutils-skip-rpaths.patch
and binutils-compat-old-behaviour.diff.
- Enable PRU architecture for AM335x CPU (Beagle Bone Black board)
- use fdupes on datadir
- remove RPM_BUILD_ROOT usage and other cleanups
- Rebase binutils-2.37-branch.diff: fixes PR28494.
- ca-certificates-mozilla
-
- Updated to 2.60 state of Mozilla SSL root CAs (bsc#1206622)
Removed CAs:
- Global Chambersign Root
- EC-ACC
- Network Solutions Certificate Authority
- Staat der Nederlanden EV Root CA
- SwissSign Platinum CA - G2
Added CAs:
- DIGITALSIGN GLOBAL ROOT ECDSA CA
- DIGITALSIGN GLOBAL ROOT RSA CA
- Security Communication ECC RootCA1
- Security Communication RootCA3
Changed trust:
- TrustCor certificates only trusted up to Nov 30 (bsc#1206212)
- Removed CAs (bsc#1206212) as most code does not handle "/valid before nov 30 2022"/
and it is not clear how many certs were issued for SSL middleware by TrustCor:
- TrustCor RootCert CA-1
- TrustCor RootCert CA-2
- TrustCor ECA-1
Patch: remove-trustcor.patch
- catatonit
-
- Update to catatont v0.1.7
- This release adds the ability for catatonit to be used as the only
process in a pause container, by passing the -P flag (in this mode no
subprocess is spawned and thus no signal forwarding is done).
- Add 99bb9048f.patch: configure.ac: call AM_INIT_AUTOMAKE only
once. Fix build with autocnf 2.71 / automake 1.16.5.
- Update to catatonit v0.1.6, which fixes a few bugs -- mainly ones related to
socket activation or features somewhat adjacent to socket activation (such as
passing file descriptors).
- Update catatonit-rpmlintrc in order to cover that static binaries are now an
error not a warning.
- cloud-regionsrv-client
-
- Update to version 10.0.8 (bsc#1206428)
- Fix regression introduced by 10.0.7. When the hosts file was modified
such that there is no empty line at the end of the file the content
after removing the registration data does not match the content prior
to registration. The update fixes the issue triggered by an index
logic error.
- Guard dmidecode dependency (bsc#1206082)
- Update to version 10.0.7 (bsc#1191880, bsc#1195925, bsc#1195924)
- Implement functionality to detect if an update server has a new cert.
Import the new cert when it is detected.
- Forward port fix-for-sles12-disable-ipv6.patch
- From 10.0.6 (bsc#1205089)
- Credentials are equal when username and password are the same ignore
other entries in the credentials file
- Handle multiple zypper names in process table, zypper and Zypp-main
to properly detect the running process
- Add patch to block IPv6 on SLE12 (bsc#1203382)
- containerd
-
- Update to containerd v1.6.12 to fix CVE-2022-23471 bsc#1206235. Upstream release notes:
<https://github.com/containerd/containerd/releases/tag/v1.6.11>
- Update to containerd v1.6.11. Upstream release notes:
<https://github.com/containerd/containerd/releases/tag/v1.6.11>
- Update to containerd v1.6.9 for Docker v20.10.21-ce. Also includes a fix for
CVE-2022-27191. boo#1206065 bsc#1197284 Upstream release notes:
<https://github.com/containerd/containerd/releases/tag/v1.6.9>
- add devel subpackage, which is needed by open-vm-tools
- corosync
-
Deleted:
bsc#1189680-cancel_hold_on_retransmit-option.patch
bsc#1192467_dont-block-local-socket-pair.patch
bug-1163460-totemip-Add-support-for-sin6_scope_id.patch
bug-1166899-quorumtool-Fix-exit-status-codes.patch
- Update to version 2.4.6:
* totemsrp: More informative messages
* icmap: fix the icmap_get_*_r functions
* stats: Add basic schedule-miss stats to needle
* icmap: icmap_init_r() leaks if trie_create() fails
* test: Fix cpgtest
* pkgconfig: Add libqb dependency
* man: votequorum.5: use proper single quotes
* cpg: Change downlist log level
* totem: Increase ring_id seq after load
* totempg: Check sanity (length) of received message
* totemsrp: Reduce MTU to left room second mcast
* qnetd: Rename qnetd-log.c to log.c
* qnetd: Fix double -d description
* qnetd: Check log initialization error
* qnetd: Add function to set log target
* qdevice: Use log instead of libqb log
* qdevice: Import log instead of qdevice-log
* qdevice: Merge msg_decode_error functions
* qnetd: Use log-common for nodelist debug dump
* qdevice: Configurable log priority bump
* tests: Add utils_parse_bool_str test
* qdevice: Free memory used by log
* qdevice: Add log test
* qdevice: Add header files to list of test sources
* qdevice: Add chk variant of vsyslog to test-log
* qdevice: Add prototype of __vsyslog_chk
* votequorum: Ignore the icmap_get_* return value
* logconfig: Remove double free of value
* cmap: Assert copied string length
* sync: Assert sync_callbacks.name length
* votequorum: Assert copied strings length
* cpghum: Remove unused time variables and functions
* cfgtool: Remove unused callbacks
* cmapctl: Free bin_value on error
* quorumtool: Assert copied string length
* votequorum: Reflect runtime change of 2Node to WFA
* main: Add schedmiss timestamp into message
* votequorum: Change check of expected_votes
* quorumtool: Fix exit status codes
* quorumtool: exit on invalid expected votes
* votequorum: set wfa status only on startup
* Revert "/totemip: Add support for sin6_scope_id"/
* Revert "/totemip: compare sin6_scope_id and interface_num"/
* main: Make schedmiss in cmap and log equal
* totemip: Add support for sin6_scope_id
* qnetd: Do not call ffsplit_do on shutdown
* qdevice: Fix connect heuristics result callback
* qdevice: Fix connect heuristics result callback
* qdevice: Log adds newline automatically
* qnetd: Fix dpd timer
* qnetd: Add support for keep active partition vote
* common_lib: Remove trailing spaces in cs_strerror
* totemsrp: Move token received callback
* tests: Use CS_DISPATCH_BLOCKING instead of cycle
* qnetd: Fix NULL dereference of client
* qnetd: Simplify KAP Tie-breaker logic
* totem: Add cancel_hold_on_retransmit config option
* logsys: Unlock config mutex on error
* totemsrp: Switch totempg buffers at the right time
* totemudpu: Don't block local socketpair
* configure.ac: fix pkgconfig issue of rdma
* totemip: Add support for sin6_scope_id
* totemip: compare sin6_scope_id and interface_num
* qdevice: Change log level to NOTICE on PASS
* cfgtool: output error messages to stderr
* tools: use util_strtonum for options checking
* cmapctl: return EXIT_FAILURE on failure
* quorumtool: Help shouldn't require running service
* quorumtool: strict check for -o option
* cmapctl: check NULL for key type and value for -p
* man: adjust description about interface section
* qnetd: sort by node_id when add new client
* man: replace votequorum_poll for actually used fn
- crmsh
-
- Update to version 4.4.0+20221028.3e41444:
* Packaging: create /var/log/crmsh with tmpfiles.d
* Fix: log: ownership and mode of log files should be set in RotatingFileHandler
* Fix: #977 crmsh not working when using ACL
* fix: log: fail to open log file even if user is in haclient group (bsc#1204670)
* Dev: bootstrap: Show remote node name when stopping service remotely
* Dev: log: print a full-width progress bar in status_progress to prevent interleaving with log messages
* Dev: log: print begin and end marker in different lines in status_long
* Dev: ui_context: remove duplicated codes
* Dev: parallax: Add LogLevel=error ssh option to filter out warnings (bsc#1196726)
* Revert "/Fix: utils: Only raise exception when return code of systemctl command over ssh larger than 4 (bsc#1196726)"/ (bsc#1202655)
* fix: configure: refresh cib before showing or modifying if no pending changes has been made (bsc#1202465)
- curl
-
- Security Fix: [bsc#1206309, CVE-2022-43552]
* HTTP Proxy deny use-after-free
* Add curl-CVE-2022-43552.patch
- Security Fix: [bsc#1206308, CVE-2022-43551]
* Fix Another HSTS bypass via IDN
* Add curl-CVE-2022-43551.patch
- dhcp
-
- bsc#1203988, CVE-2022-2928, dhcp-CVE-2022-2928.patch:
An option refcount overflow exists in dhcpd
- bsc#1203989, CVE-2022-2929, dhcp-CVE-2022-2929.patch:
DHCP memory leak
- docker
-
- Backport <https://github.com/containerd/fifo/pull/32> to fix a crash-on-start
issue with dockerd. bsc#1200022
+ 0007-bsc1200022-fifo.Close-prevent-possible-panic-if-fifo.patch
- dracut
-
- Update to version 055+suse.323.gca0e74f0:
* fix(network-manager): always install the library plugins directory (bsc#1202014)
* feat(dracut-init.sh): add inst_libdir_dir() helper (bsc#1202014)
A series of fixes for NVMeoF boot (bsc#1203368):
* fix(network-legacy): misleading duplicate address detection using wicked
* fix(man): dracut.cmdline.7: clarify "/rd.nvmf.discover=fc,auto"/
* fix(network): avoid double brackets around IPv6 address
* feat(nvmf): set rd.neednet=1 if tcp records encountered
* fix(man): dracut.cmdline(7): correct syntax for rd.nonvmf
* fix(network): don't use same ifname multiple times
* fix(nvmf): run cmdline hook before parse-ip-opts.sh
* fix(nvmf): avoid calling "/exit"/ in a cmdline hook
* fix(nvmf): make sure "/rd.nvmf.discover=fc,auto"/ takes precedence
* fix(nvmf): don't use "/finished"/ queue for autoconnect
* fix(nvmf): don't create did-setup file
* fix(nvmf): no need to load the nvme module
* fix(nvmf): don't try to validate network connections in cmdline hook
* fix(nvmf): nvme list-subsys prints the address using commas as separator
* fix(nvmf): deprecate old nvmf cmdline options
* fix(nvmf): set executable bit on nvmf-autoconnect.sh
- Update to version 055+suse.302.gc7aee2dc:
* fix(dmsquash-live): correct regression introduced with shellcheck changes (bsc#1203894)
* fix(systemd): add missing modprobe@.service (bsc#1203749)
* fix(i18n): do not fail if FONT in /etc/vconsole.conf has the file extension (bsc#1203267)
- drbd-utils
-
- bsc#1204276 remove crm-fence-peer.sh for drbd8 to avoid confusion with v9
- expat
-
* (CVE-2022-43680, bsc#1204708) use-after free caused by overeager
destruction of a shared DTD in XML_ExternalEntityParserCreate in
out-of-memory situations
- Added patch expat-CVE-2022-43680.patch
- Security fix:
- glib2
-
- Update to version 2.70.5:
Bugs fixed: glgo#GNOME/GLib#2620, glgo#GNOME/GLib!2537,
glgo#GNOME/GLib!2555
- Split gtk-docs from -devel package, these are not needed
during building projects using glib2
- Use _multibuild as the meson buildprocess is very awkward
regarding the documentation - builds single-jobs only and
twice (again during %install). This way the rest of distribution
waiting for glib2-devel to be available is not blocked by this
- gnutls
-
- FIPS: Change all the 140-2 references to FIPS 140-3 in order to
account for the new FIPS certification [bsc#1207346]
* Add gnutls-FIPS-140-3-references.patch
- FIPS: GnuTLS DH/ECDH PCT public key regeneration [bsc#1207183]
* Add gnutls-FIPS-PCT-DH.patch gnutls-FIPS-PCT-ECDH.patch
- Fix AVX CPU feature detection for OSXSAVE [bsc#1203299]
* Fixes a SIGILL termination at the verzoupper instruction when
trying to run GnuTLS on a Linux kernel with the noxsave command
line parameter set. Relevant mostly for virutal systems.
* Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1282
* Add gnutls-clear-AVX-bits-if-it-cannot-be-queried-XSAVE.patch
- grub2
-
- Security fixes and hardenings
* 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch
* 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch
- Fix CVE-2022-2601 (bsc#1205178)
* 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch
* 0004-font-Remove-grub_font_dup_glyph.patch
* 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch
* 0006-font-Fix-integer-overflow-in-BMP-index.patch
* 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch
* 0008-fbutil-Fix-integer-overflow.patch
- Fix CVE-2022-3775 (bsc#1205182)
* 0009-font-Fix-an-integer-underflow-in-blit_comb.patch
* 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch
* 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch
* 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch
- Bump upstream SBAT generation to 3
- hawk2
-
- Update to version 2.6.4+git.1667244108.7a0cffe:
* Fix detection of partial upgrade (bsc#1196673,bsc#1203367)
* Improve handling of unmatched paths (bsc#1199258)
* Set HttpOnly by HAWK_COOKIE_HTTP_ONLY=true (bsc#1198647)
- ipset
-
- Tumbleweed is not affected by the following SLE issues:
bsc#1122853
- Update to release 7.15
* netfilter: ipset: Fix maximal range check in
hash_ipportnet4_uadt()
- Update to release 7.14
* Allow specifying protocols by number
* Limit the maximum range of consecutive elements to add/delete
- Update to release 7.11
* Argument parsing buffer overflow in ipset_parse_argv fixed
- Update to release 7.10
* Fix shift-out-of-bounds in htable_bits()
- Update to release 7.9
* Enable memory accounting for ipset allocations
* Expose the initval hash parameter to userspace
* Add bucketsize parameter to all hash types
* Support the -exist flag with the destroy command
- Update to release 7.6
* Add checking system_power_efficient_wq in the source tree.
- Update to release 7.5
* netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO
is present.
* netfilter: xt_set: Do not restrict --map-set to the
mangle table.
- Update to release 7.4
* Wildcard support for the "/hash:net,iface"/ type.
- Update to new upstream release 7.3
* Fix rename concurrency with listing, which can result broken
list/save results.
* ipset: Copy the right MAC address in bitmap:ip,mac and
hash:ip,mac sets.
* ipset: Actually allow destination MAC address for hash:ip,mac
sets too.
- Update to new upstream release 7.2
* ipset: Fix memory accounting for hash types on resize
- Update to new upstream release 7.1
* Correct the manpage about the sort option
* Implement sorting for hash types in the ipset tool
* Fix to list/save into file specified by option
- Remove ipset-file.diff (merged)
- Add ipset-file.diff [boo#1116432].
- Update to new upstream release 7.0
* A new internal protocol version between the kernel and
userspace is used. This is required in order to support two
new functions and the extendend LIST operation, which makes
possible to run ipset in every case entirely over netlink,
without the need to use getsockopt().
* The userspace library was reworked so it can be embedded
without calling the binary.
- Update to new upstream release 6.38
* Fix parsing service names for ports.
- iputils
-
- Backport 2 fixes for bsc#1203957:
0001-ping-Add-SA_RESTART-to-sa_flags.patch
0002-ping-Make-ping_rts-struct-static.patch
- java-1_8_0-ibm
-
- Update to Java 8.0 Service Refresh 7 Fix Pack 20 [bsc#1205302]
[bsc#1204472, CVE-2022-21628] [bsc#1204471, CVE-2022-21626]
[bsc#1204468, CVE-2022-21618] [bsc#1204480, CVE-2022-39399]
[bsc#1204475, CVE-2022-21624] [bsc#1204473, CVE-2022-21619]
* Security:
- The IBM ORB Does Not Support Object-Serialisation Data Filtering
- Large Allocation In CipherSuite
- Avoid Evaluating Sslalgorithmconstraints Twice
- Cache The Results Of Constraint Checks
- An incorrect ShortBufferException is thrown by IBMJCEPlus,
IBMJCEPlusFIPS during cipher update operation
- Disable SHA-1 Signed Jars For Ea
- JSSE Performance Improvement
- Oracle Road Map Kerberos Deprecation Of 3DES And RC4 Encryption
* Java 8/Orb:
- Upgrade ibmcfw.jar To Version o2228.02
* Class Libraries:
- Crash In Libjsor.So During An Rdma Failover
- High CPU Consumption Observed In ZosEventPort$EventHandlerTask.run
- Update Timezone Information To The Latest tzdata2022c
* Jit Compiler:
- Crash During JIT Compilation
- Incorrect JIT Optimization Of Java Code
- Incorrect Return From Class.isArray()
- Unexpected ClassCastException
- Performance Regression When Calling VM Helper Code On X86
* X/Os Extentions:
- Add RSA-OAEP Cipher Function To IBMJCECCA
- Update to Java 8.0 Service Refresh 7 Fix Pack 16
* Java Virtual Machine
- Assertion failure at ClassLoaderRememberedSet.cpp
- Assertion failure at StandardAccessBarrier.cpp when
- Xgc:concurrentScavenge is set.
- GC can have unflushed ownable synchronizer objects which
can eventually lead to heap corruption and failure when
- Xgc:concurrentScavenge is set.
* JIT Compiler:
- Incorrect JIT optimization of Java code
- JAVA JIT Power: JIT compile time assert on AIX or LINUXPPC
* Reliability and Serviceability:
- javacore with "/kill -3"/ SIGQUIT signal freezes Java process
- Update to Java 8.0 Service Refresh 7 Fix Pack 15 [bsc#1202427]
[bsc#1201684, CVE-2022-34169] [bsc#1201692, CVE-2022-21541]
[bsc#1201685, CVE-2022-21549] [bsc#1201694, CVE-2022-21540]
* Correction: These CVEs have been fixed in version 8.0-7.15 and
not in 8.0-7.11 as mentioned in the previous changelog entry.
- kdump
-
- Make the kdump-save.service reboot after kdump-save is finished
(bsc#1204000)
- fix renaming of qeth interfaces (bsc#1204743, bsc#1144337)
- ppc64: rebuild initrd image after migration (bsc#1191410)
- kernel-default
-
- nfc: pn533: Wait for out_urb's completion in
pn533_usb_send_frame() (git-fixes).
- ALSA: hda/realtek: Apply dual codec fixup for Dell Latitude
laptops (git-fixes).
- ALSA: line6: fix stack overflow in line6_midi_transmit
(git-fixes).
- ALSA: line6: correct midi status byte when receiving data from
podxt (git-fixes).
- ASoC: Intel: bytcr_rt5640: Add quirk for the Advantech MICA-071
tablet (git-fixes).
- drm/amdgpu: handle polaris10/11 overlap asics (v2) (git-fixes).
- drm/amdgpu: make display pinning more flexible (v2) (git-fixes).
- HID: plantronics: Additional PIDs for double volume key presses
quirk (git-fixes).
- HID: multitouch: fix Asus ExpertBook P2 P2451FA trackpoint
(git-fixes).
- remoteproc: core: Do pm_relax when in RPROC_OFFLINE state
(git-fixes).
- soundwire: dmi-quirks: add quirk variant for LAPBC710 NUC15
(git-fixes).
- PCI: Fix pci_device_is_present() for VFs by checking PF
(git-fixes).
- wifi: wilc1000: sdio: fix module autoloading (git-fixes).
- ARM: 9256/1: NWFPE: avoid compiler-generated __aeabi_uldivmod
(git-fixes).
- ima: Fix a potential NULL pointer access in
ima_restore_measurement_list (git-fixes).
- ipmi: fix long wait in unload when IPMI disconnect (git-fixes).
- drm/connector: send hotplug uevent on connector cleanup
(git-fixes).
- ALSA: patch_realtek: Fix Dell Inspiron Plus 16 (git-fixes).
- selftests: Use optional USERCFLAGS and USERLDFLAGS (git-fixes).
- ACPI: resource: Skip IRQ override on Asus Vivobook
K3402ZA/K3502ZA (git-fixes).
- selftests: set the BUILD variable to absolute path (git-fixes).
- drm/i915/migrate: fix length calculation (git-fixes).
- drm/i915/migrate: fix offset calculation (git-fixes).
- drm/i915/migrate: don't check the scratch page (git-fixes).
- commit 1d4442d
- media: stv0288: use explicitly signed char (git-fixes).
- commit 72af28b
- arm64: Avoid repeated AA64MMFR1_EL1 register read on pagefault
path (performance bsc#1203219).
- commit 82bc0ed
- octeontx2-pf: Fix lmtst ID used in aura free (jsc#SLE-24682).
- octeontx2-af: Allow mkex profile without DMAC and add L2M/L2B
header extraction support (jsc#SLE-24682).
- octeontx2-pf: Fix pfc_alloc_status array overflow
(jsc#SLE-24682).
- octeontx2-pf: Fix SQE threshold checking (jsc#SLE-24682).
- octeontx2-pf: NIX TX overwrites SQ_CTX_HW_S[SQ_INT]
(jsc#SLE-24682).
- octeontx2-pf: Fix unused variable build error (jsc#SLE-24682).
- octeontx2-af: Initialize PTP_SEC_ROLLOVER register properly
(jsc#SLE-24682).
- octeontx2-af: Add PTP PPS Errata workaround on CN10K silicon
(jsc#SLE-24682).
- octeontx2-pf: Add support for ptp 1-step mode on CN10K silicon
(jsc#SLE-24682).
- octeontx2-af: return correct ptp timestamp for CN10K silicon
(jsc#SLE-24682).
- octeontx2-pf: Add egress PFC support (jsc#SLE-24682).
- octeontx2-pf: Reduce minimum mtu size to 60 (jsc#SLE-24682).
- octeontx2-af: Set NIX link credits based on max LMAC
(jsc#SLE-24682).
- octeontx2-af: Limit link bringup time at firmware
(jsc#SLE-24682).
- octeontx2-af: Skip CGX/RPM probe incase of zero lmac count
(jsc#SLE-24682).
- octeontx2: Modify mbox request and response structures
(jsc#SLE-24682).
- octeontx2-af: Don't reset previous pfc config (jsc#SLE-24682).
- octeontx2-af: fix operand size in bitwise operation
(jsc#SLE-24682).
- commit a2de709
- cpufreq: intel_pstate: Add Sapphire Rapids support in no-HWP
mode (bsc#1201068).
- commit 15e54a9
- cpufreq: ACPI: Only set boost MSRs on supported CPUs
(bsc#1205485).
- commit 2fc91f1
- cpufreq: ACPI: Remove unused variables 'acpi_cpufreq_online'
and 'ret' (bsc#1205485).
- commit bac712b
- drbd: destroy workqueue when drbd device was freed (git-fixes).
- drbd: remove call to memset before free
device/resource/connection (git-fixes).
- drbd: use after free in drbd_create_device() (git-fixes).
- drbd: set QUEUE_FLAG_STABLE_WRITES (git-fixes).
- drbd: remove usage of list iterator variable after loop
(git-fixes).
- commit 26591d7
- Update
patches.suse/dmaengine-idxd-Fix-crc_val-field-for-completion-reco.patch
(bsc#1206554).
Added bugzilla number
- commit 1fe5012
- blacklist.conf: add two drbd git-fixes to ignore
- commit d03d927
- ibmveth: Always stop tx queues during close (bsc#1065729).
- commit 11e0f4a
- cpufreq: ACPI: Defer setting boost MSRs (bsc#1205485).
- commit 32f938b
- Refresh
patches.suse/octeontx2-Move-devlink-registration-to-be-last-devli.patch.
Added missing hunk in backport.
- commit 9b34e71
- powerpc: Take in account addition CPU node when building kexec
FDT (bsc#1207016 ltc#201108).
- powerpc: export the CPU node count (bsc#1207016 ltc#201108).
- commit 4ca3eba
- blacklist.conf: misattributed
- commit ee5f25a
- blacklist.conf: too risky
- commit 51ffe7a
- blacklist.conf: misattributed, we do not have this bug
- commit bc3473d
- cifs: Fix kmap_local_page() unmapping (git-fixes).
- commit ff2c079
- Revert "/usb: ulpi: defer ulpi_register on ulpi_read_id timeout"/
(git-fixes).
- drm/i915/gvt: fix vgpu debugfs clean in remove (git-fixes).
- drm/i915/gvt: fix gvt debugfs destroy (git-fixes).
- drm/i915: unpin on error in intel_vgpu_shadow_mm_pin()
(git-fixes).
- drm/imx: ipuv3-plane: Fix overlay plane width (git-fixes).
- drm/meson: Reduce the FIFO lines held when AFBC is not used
(git-fixes).
- drm/panfrost: Fix GEM handle creation ref-counting (git-fixes).
- thermal: int340x: Add missing attribute for data rate base
(git-fixes).
- caif: fix memory leak in cfctrl_linkup_request() (git-fixes).
- usb: rndis_host: Secure rndis_query check against int overflow
(git-fixes).
- dt-bindings: net: sun8i-emac: Add phy-supply property
(git-fixes).
- net: phy: xgmiitorgmii: Fix refcount leak in xgmiitorgmii_probe
(git-fixes).
- nfc: Fix potential resource leaks (git-fixes).
- vmxnet3: correctly report csum_level for encapsulated packet
(git-fixes).
- gpio: sifive: Fix refcount leak in sifive_gpio_probe
(git-fixes).
- fbdev: matroxfb: G200eW: Increase max memory from 1 MB to 16 MB
(git-fixes).
- commit ac1915a
- powerpc/powernv: add missing of_node_put (bsc#1065729).
- commit 678d5a8
- mm: fix race between MADV_FREE reclaim and blkdev direct IO read
(bsc#1204989,bsc#1205601).
- commit 83e47e1
- KVM: x86: fix uninitialized variable use on
KVM_REQ_TRIPLE_FAULT (bsc#1204652 CVE-2022-3344).
- blacklist.conf: blacklist commit id
df0bb47baa95aad133820b149851d5b94cbc6790 which duplicates
commit id e542baf30b48605d4336bf54b98e76b8fb98af30.
- commit c2fe422
- powerpc/xive/spapr: correct bitmap allocation size (fate#322438
git-fixes).
- commit e6f2b08
- Refresh
patches.suse/NFS-Handle-missing-attributes-in-OPEN-reply.patch.
Update commit log to prevent patch and quilt from thinking it should apply the
example hunks and fail.
- commit a6bcec2
- patches.suse/btrfs-fix-resolving-backrefs-for-inline-extent-follo.patch:
(bsc#1206456).
- commit 31db88a
- NFS: Handle missing attributes in OPEN reply (bsc#1203740).
- commit 4f80fa3
- scsi: mpt3sas: Remove usage of dma_get_required_mask() API
(bsc#1206912,bsc#1206098).
- scsi: mpt3sas: re-do lost mpt3sas DMA mask fix
(bsc#1206912,bsc#1206098).
- scsi: mpt3sas: Don't change DMA mask while reallocating pools
(bsc#1206912,bsc#1206098).
- commit 496371c
- KVM: x86: remove exit_int_info warning in svm_handle_exit
(bsc#1204652 CVE-2022-3344).
- KVM: x86: allow L1 to not intercept triple fault (bsc#1204652
CVE-2022-3344).
- KVM: x86: forcibly leave nested mode on vCPU reset (bsc#1204652
CVE-2022-3344).
- KVM: x86: add kvm_leave_nested (bsc#1204652 CVE-2022-3344).
- KVM: x86: nSVM: harden svm_free_nested against freeing vmcb02
while still in use (bsc#1204652 CVE-2022-3344).
- KVM: x86: nSVM: leave nested mode on vCPU free (bsc#1204652
CVE-2022-3344).
- commit a745b62
- net: allow retransmitting a TCP packet if original is still
in queue (bsc#1188605 bsc#1187428 bsc#1206619).
- commit 894711e
- memcg, kmem: further deprecate kmem.limit_in_bytes
(bsc#1206896).
- Refresh
patches.suse/memcg-deprecate-memory.force_empty-knob.patch.
- commit 855cb6d
- mm/mempolicy: fix memory leak in set_mempolicy_home_node system
call (bsc#1206468).
- commit 2ac9622
- vdpa_sim: fix vringh initialization in vdpasim_queue_ready()
(git-fixes).
- vhost: fix range used in translate_desc() (git-fixes).
- vringh: fix range used in iotlb_translate() (git-fixes).
- vhost/vsock: Fix error handling in vhost_vsock_init()
(git-fixes).
- vdpa_sim: fix possible memory leak in vdpasim_net_init()
and vdpasim_blk_init() (git-fixes).
- commit 4896995
- Move upstreamed kexec patch into sorted section
- commit 8762bd7
- blacklist.conf: Add ppc ddw fix only applicable to 5.15
- commit b91171d
- blacklist.conf: Add 710ffe671e01 sched/psi: Stop relying on timer_pending() for poll_work rescheduling
- commit 8adb37f
- sched/uclamp: Make task_fits_capacity() use util_fits_cpu() (git-fixes)
- commit a265076
- sched/uclamp: Fix relationship between uclamp and migration (git-fixes)
- commit d4e9f78
- sched/core: Fix comparison in sched_group_cookie_match() (git-fixes)
- commit f64ffc5
- sched/core: Fix the bug that task won't enqueue into core (git-fixes)
- commit f50eaf7
- sched/topology: Remove redundant variable and fix incorrect (git-fixes)
- commit 653c1b4
- blacklist.conf: removes a feature
- commit 4da5756
- blacklist.conf: misattributed
- commit 3e3a9a5
- blacklist.conf: pSeries and powernv get dt from firmware
- commit c257ae8
- powerpc/pseries/eeh: use correct API for error log size
(bsc#1065729).
- powerpc/perf: callchain validate kernel stack pointer bounds
(bsc#1065729).
- powerpc/xive: add missing iounmap() in error path in
xive_spapr_populate_irq_data() (fate#322438 git-fixes).
- powerpc/pci: Fix get_phb_number() locking (bsc#1065729).
- powerpc/64: Init jump labels before parse_early_param()
(bsc#1065729).
- commit 773dc74
- scsi: lpfc: Remove linux/msi.h include (jsc#PED-1445).
- scsi: lpfc: Update lpfc version to 14.2.0.9 (jsc#PED-1445).
- scsi: lpfc: Fix crash involving race between FLOGI timeout
and devloss handler (jsc#PED-1445).
- scsi: lpfc: Fix MI capability display in cmf_info sysfs
attribute (jsc#PED-1445).
- scsi: lpfc: Correct bandwidth logging during receipt of
congestion sync WCQE (jsc#PED-1445).
- scsi: lpfc: Fix WQ|CQ|EQ resource check (jsc#PED-1445).
- scsi: lpfc: Use memset_startat() helper (jsc#PED-1445).
- scsi: lpfc: Remove redundant pointer 'lp' (jsc#PED-1445).
- string.h: Introduce memset_startat() for wiping trailing
members and padding (jsc#PED-1445).
- commit 7d406bf
- scsi: qla2xxx: Fix crash when I/O abort times out (jsc#PED-568).
- scsi: qla2xxx: Initialize vha->unknown_atio_[list, work]
for NPIV hosts (jsc#PED-568).
- scsi: qla2xxx: Remove duplicate of vha->iocb_work initialization
(jsc#PED-568).
- scsi: qla2xxx: Remove unused variable 'found_devs'
(jsc#PED-568).
- scsi: qla2xxx: Fix set-but-not-used variable warnings
(jsc#PED-568).
- commit ae77c26
- xfrm: Fix oops in __xfrm_state_delete() (bsc#1206794).
- commit b8910c1
- sctp: sysctl: make extra pointers netns aware (bsc#1204760).
- commit 7c1cca0
- Refresh
patches.suse/drm-amdgpu-sdma_v4_0-turn-off-SDMA-ring-buffer-in-th.patch
Alt-commit
- commit 41b83ab
- Refresh
patches.suse/drm-i915-reg-Fix-spelling-mistake-Unsupport-Unsuppor.patch
Alt-commit
- commit d746af5
- Refresh
patches.suse/drm-amdgpu-fix-sdma-doorbell-init-ordering-on-APUs.patch
Alt-commit
- commit 0f2757b
- Refresh
patches.suse/drm-amdkfd-Fix-memory-leak-in-kfd_mem_dmamap_userptr.patch
Alt-commit
- commit a635317
- Refresh
patches.suse/drm-i915-ttm-never-purge-busy-objects.patch
Alt-commit
- commit be2dd4d
- Refresh
patches.suse/drm-msm-Make-.remove-and-.shutdown-HW-shutdown-consi.patch
Alt-commit
- commit a0ff67b
- Refresh
patches.suse/drm-msm-dsi-fix-the-inconsistent-indenting.patch
Alt-commit
- commit c6fc5ca
- Refresh
patches.suse/drm-i915-fix-a-possible-refcount-leak-in-intel_dp_ad.patch
Alt-commit
- commit d4ca67b
- Refresh
patches.suse/drm-amdgpu-move-iommu_resume-before-ip-init-resume.patch
Alt-commit
- commit d5590c6
- EDAC/mc_sysfs: Increase legacy channel support to 12
(bsc#1205263).
- commit 4cb5420
- blacklist.conf: add scsi-mpt3sas-Fix-return-value-check-of-dma_get_required_mask.patch (bsc#1206098)
- Delete
patches.suse/scsi-mpt3sas-Fix-return-value-check-of-dma_get_required_mask.patch.
This patch breaks Xen.
- commit cc3a20c
- powerpc/pseries: unregister VPA when hot unplugging a CPU
(bsc#1205695 ltc#200603).
- commit bcbd230
- RDMA/siw: Fix pointer cast warning (git-fixes)
- commit 366e50d
- IB/IPoIB: Fix queue count inconsistency for PKEY child interfaces (git-fixes)
- commit 0dbba4f
- RDMA/hns: Fix XRC caps on HIP08 (git-fixes)
- commit 59e36ed
- RDMA/hns: Fix error code of CMD (git-fixes)
- commit 5f70364
- RDMA/hns: Fix page size cap from firmware (git-fixes)
- commit 6cde7a4
- RDMA/hns: Fix PBL page MTR find (git-fixes)
- commit 8abc588
- RDMA/hns: Fix AH attr queried by query_qp (git-fixes)
- commit adf2f5b
- RDMA/srp: Fix error return code in srp_parse_options() (git-fixes)
- commit 6f932f1
- RDMA/hfi1: Fix error return code in parse_platform_config() (git-fixes)
- commit e3f1da5
- RDMA: Disable IB HW for UML (git-fixes)
- commit 79de999
- RDMA/nldev: Fix failure to send large messages (git-fixes)
- commit 8afb6ef
- RDMA/nldev: Add checks for nla_nest_start() in fill_stat_counter_qps() (git-fixes)
- commit 7f11c74
- RDMA/rxe: Fix NULL-ptr-deref in rxe_qp_do_cleanup() when socket create failed (git-fixes)
- commit 9304b2c
- RDMA/hns: fix memory leak in hns_roce_alloc_mr() (git-fixes)
- commit 8bd6757
- RDMA/irdma: Initialize net_type before checking it (git-fixes)
- commit c1ce45c
- RDMA/hfi: Decrease PCI device reference count in error path (git-fixes)
- commit 4b06dc0
- RDMA/hns: Fix ext_sge num error when post send (git-fixes)
- commit 6e743d4
- RDMA/irdma: Do not request 2-level PBLEs for CQ alloc (git-fixes)
- commit 0f16ea1
- RDMA/siw: Set defined status for work completion with undefined status (git-fixes)
- commit a9ebe54
- RDMA/nldev: Return "/-EAGAIN"/ if the cm_id isn't from expected port (git-fixes)
- commit 26efba0
- RDMA/core: Make sure "/ib_port"/ is valid when access sysfs node (git-fixes)
- commit 00cffbb
- RDMA/restrack: Release MR restrack when delete (git-fixes)
- commit 20085bc
- RDMA/siw: Fix immediate work request flush to completion queue (git-fixes)
- commit 4193611
- RDMA/irdma: Report the correct link speed (git-fixes)
- commit 83b7019
- RDMA/core: Fix order of nldev_exit call (git-fixes)
- commit 76dc905
- RDMA/efa: Add EFA 0xefa2 PCI ID (git-fixes)
- commit 7e28dca
- RDMA/hns: Repacing 'dseg_len' by macros in fill_ext_sge_inl_data() (git-fixes)
- commit 9035bce
- ALSA: seq: fix undefined behavior in bit shift for
SNDRV_SEQ_FILTER_USE_EVENT (git-fixes).
- ALSA: pcm: fix undefined behavior in bit shift for
SNDRV_PCM_RATE_KNOT (git-fixes).
- commit 1504232
- rtc: cmos: Fix wake alarm breakage (git-fixes).
- commit de5fcc7
- rtc: cmos: Fix event handler registration ordering issue
(git-fixes).
- Revert "/platform/chrome: cros_ec_typec: Cleanup switch handle
return paths"/ (git-fixes).
- commit ec01d22
- HID: wacom: Ensure bootloader PID is usable in hidraw mode
(git-fixes).
- HID: mcp2221: don't connect hidraw (git-fixes).
- remoteproc: qcom: q6v5: Fix missing clk_disable_unprepare()
in q6v5_wcss_qcs404_power_on() (git-fixes).
- remoteproc: qcom_q6v5_pas: Fix missing of_node_put() in
adsp_alloc_memory_region() (git-fixes).
- remoteproc: qcom_q6v5_pas: detach power domains on remove
(git-fixes).
- remoteproc: qcom_q6v5_pas: disable wakeup on probe fail or
remove (git-fixes).
- remoteproc: qcom: q6v5: Fix potential null-ptr-deref in
q6v5_wcss_init_mmio() (git-fixes).
- remoteproc: sysmon: fix memory leak in qcom_add_sysmon_subdev()
(git-fixes).
- mfd: pm8008: Fix return value check in pm8008_probe()
(git-fixes).
- rtc: mxc_v2: Add missing clk_disable_unprepare() (git-fixes).
- rtc: pic32: Move devm_rtc_allocate_device earlier in
pic32_rtc_probe() (git-fixes).
- rtc: st-lpc: Add missing clk_disable_unprepare in st_rtc_probe()
(git-fixes).
- rtc: snvs: Allow a time difference on clock register read
(git-fixes).
- misc: tifm: fix possible memory leak in tifm_7xx1_switch_media()
(git-fixes).
- misc: ocxl: fix possible name leak in ocxl_file_register_afu()
(git-fixes).
- vfio: platform: Do not pass return buffer to ACPI _RST method
(git-fixes).
- gpiolib: cdev: fix NULL-pointer dereferences (git-fixes).
- drm/sti: Fix return type of
sti_{dvo,hda,hdmi}_connector_mode_valid() (git-fixes).
- drm/fsl-dcu: Fix return type of
fsl_dcu_drm_connector_mode_valid() (git-fixes).
- wifi: mt76: do not run mt76u_status_worker if the device is
not running (git-fixes).
- wifi: brcmfmac: Fix potential shift-out-of-bounds in
brcmf_fw_alloc_request() (git-fixes).
- wifi: ar5523: Fix use-after-free on ar5523_cmd() timed out
(git-fixes).
- wifi: ath9k: verify the expected usb_endpoints are present
(git-fixes).
- hamradio: baycom_epp: Fix return type of baycom_send_packet()
(git-fixes).
- mmc: renesas_sdhi: better reset from HS400 mode (git-fixes).
- mmc: f-sdh30: Add quirks for broken timeout clock capability
(git-fixes).
- ipmi: fix memleak when unload ipmi driver (git-fixes).
- HID: hid-sensor-custom: set fixed size for custom attributes
(git-fixes).
- hwmon: (jc42) Fix missing unlock on error in jc42_write()
(git-fixes).
- hwmon: (jc42) Restore the min/max/critical temperatures on
resume (git-fixes).
- hwmon: (jc42) Convert register access and caching to
regmap/regcache (git-fixes).
- regulator: core: fix use_count leakage when handling boot-on
(git-fixes).
- media: si470x: Fix use-after-free in si470x_int_in_callback()
(git-fixes).
- media: dvb-usb: fix memory leak in dvb_usb_adapter_init()
(git-fixes).
- media: dvb-frontends: fix leak of memory fw (git-fixes).
- nilfs2: fix shift-out-of-bounds due to too large exponent of
block size (git-fixes).
- nilfs2: fix shift-out-of-bounds/overflow in
nilfs_sb2_bad_offset() (git-fixes).
- soc: ti: knav_qmss_queue: Fix PM disable depth imbalance in
knav_queue_probe (git-fixes).
- rtc: cmos: fix build on non-ACPI platforms (git-fixes).
- extcon: usbc-tusb320: Factor out extcon into dedicated functions
(git-fixes).
- tty: serial: altera_uart_{r,t}x_chars() need only uart_port
(git-fixes).
- tty: serial: clean up stop-tx part in altera_uart_tx_chars()
(git-fixes).
- rtc: rtc-cmos: Do not check ACPI_FADT_LOW_POWER_S0 (git-fixes).
- mfd: pm8008: Remove driver data structure pm8008_data
(git-fixes).
- platform/chrome: cros_ec_typec: Cleanup switch handle return
paths (git-fixes).
- gpiolib: Get rid of redundant 'else' (git-fixes).
- soc: ti: knav_qmss_queue: Use pm_runtime_resume_and_get instead
of pm_runtime_get_sync (git-fixes).
- usb: typec: Factor out non-PD fwnode properties (git-fixes).
- gpiolib: make struct comments into real kernel docs (git-fixes).
- mt76: stop the radar detector after leaving dfs channel
(git-fixes).
- extcon: usbc-tusb320: Add support for TUSB320L (git-fixes).
- extcon: usbc-tusb320: Add support for mode setting and reset
(git-fixes).
- commit cfb92f2
- clk: st: Fix memory leak in st_of_quadfs_setup() (git-fixes).
- drm/amd/display: Use the largest vready_offset in pipe group
(git-fixes).
- drm/mediatek: Fix return type of mtk_hdmi_bridge_mode_valid()
(git-fixes).
- drm/amd/display: fix array index out of bound error in bios
parser (git-fixes).
- drm/etnaviv: add missing quirks for GC300 (git-fixes).
- drm/fourcc: Fix vsub/hsub for Q410 and Q401 (git-fixes).
- drm/sti: Use drm_mode_copy() (git-fixes).
- drm/rockchip: Use drm_mode_copy() (git-fixes).
- drm/msm: Use drm_mode_copy() (git-fixes).
- drm/amdgpu: Fix type of second parameter in odn_edit_dpm_table()
callback (git-fixes).
- drm/amdgpu: Fix type of second parameter in trans_msg() callback
(git-fixes).
- drm/amd/display: prevent memory leak (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix missing
clk_disable_unprepare in dmtimer_systimer_init_clock()
(git-fixes).
- clocksource/drivers/sh_cmt: Access registers according to spec
(git-fixes).
- crypto: hisilicon/qm - fix missing destroy qp_idr (git-fixes).
- drm/fourcc: Add packed 10bit YUV 4:2:0 format (git-fixes).
- drm/amd/display: Manually adjust strobe for DCN303 (git-fixes).
- commit f4d3289
- ata: ahci: Fix PCS quirk application for suspend (git-fixes).
- ALSA: hda/realtek: Add quirk for Lenovo TianYi510Pro-14IOB
(git-fixes).
- ALSA: usb-audio: add the quirk for KT0206 device (git-fixes).
- ALSA: hda/hdmi: Add HP Device 0x8711 to force connect list
(git-fixes).
- apparmor: Fix memleak in alloc_ns() (git-fixes).
- apparmor: Use pointer to struct aa_label for lbs_cred
(git-fixes).
- apparmor: Fix abi check to include v8 abi (git-fixes).
- apparmor: fix lockdep warning when removing a namespace
(git-fixes).
- apparmor: fix a memleak in multi_transaction_new() (git-fixes).
- brcmfmac: return error when getting invalid max_flowrings from
dongle (git-fixes).
- ASoC: codecs: rt298: Add quirk for KBL-R RVP platform
(git-fixes).
- acct: fix potential integer overflow in encode_comp_t()
(git-fixes).
- ACPICA: Fix error code path in acpi_ds_call_control_method()
(git-fixes).
- binfmt_misc: fix shift-out-of-bounds in check_special_flags
(git-fixes).
- can: kvaser_usb: do not increase tx statistics when sending
error message frames (git-fixes).
- commit 86527dd
- mfd: qcom_rpm: Use devm_of_platform_populate() to simplify code
(git-fixes).
- commit 0741514
- Revert an ASoC patch that cuased a regression (bsc#1206703)
Delete:
patches.suse/ASoC-soc-pcm-Don-t-zero-TDM-masks-in-__soc_pcm_open.patch
- commit f822682
- Refresh patches.suse/drm-i915-ttm-never-purge-busy-objects.patch
Fix the compilation warning/error for SLE15-SP4 code;
should be reverted for SLE15-SP5
- commit 01b9ce4
- cifs: update internal module number (bsc#1193629).
- commit 2c23471
- cifs: don't leak -ENOMEM in smb2_open_file() (bsc#1193629).
- cifs: use origin fullpath for automounts (bsc#1193629).
- commit d701916
- cifs: set correct status of tcon ipc when reconnecting
(bsc#1193629).
- commit 57f84f1
- cifs: optimize reconnect of nested links (bsc#1193629).
- cifs: fix source pathname comparison of dfs supers
(bsc#1193629).
- commit 2490abe
- cifs: fix confusing debug message (bsc#1193629).
- cifs: don't block in dfs_cache_noreq_update_tgthint()
(bsc#1193629).
- commit 2d792b4
- cifs: refresh root referrals (bsc#1193629).
- cifs: fix refresh of cached referrals (bsc#1193629).
- commit 5f89779
- cifs: don't refresh cached referrals from unactive mounts
(bsc#1193629).
- cifs: share dfs connections and supers (bsc#1193629).
- commit d487cdb
- cifs: split out ses and tcon retrieval from mount_get_conns()
(bsc#1193629).
- cifs: set resolved ip in sockaddr (bsc#1193629).
- commit 6b4ca3c
- cifs: remove unused smb3_fs_context::mount_options
(bsc#1193629).
- commit 45748b3
- cifs: get rid of mount options string parsing (bsc#1193629).
- cifs: use fs_context for automounts (bsc#1193629).
- commit 3459851
- cifs: reduce roundtrips on create/qinfo requests (bsc#1193629).
- commit 5298349
- cifs: set correct ipc status after initial tree connect
(bsc#1193629).
- cifs: set correct tcon status after initial tree connect
(bsc#1193629).
- commit c4c2e58
- cifs: Remove duplicated include in cifsglob.h (bsc#1193629).
- commit e5a8551
- cifs: fix oops during encryption (bsc#1199294).
- commit ddcc642
- cifs: print warning when conflicting soft vs. hard mount
options specified (bsc#1193629).
- commit d3798b8
- cifs: fix missing display of three mount options (bsc#1193629).
- commit de33d28
- cifs: fix various whitespace errors in headers (bsc#1193629).
- commit 8d59280
- cifs: minor cleanup of some headers (bsc#1193629).
- commit 86a2d1f
- cifs: skip alloc when request has no pages (bsc#1193629).
- commit 992bc71
- cifs: Parse owner/group for stat in smb311 posix extensions
(bsc#1193629).
- commit fa4a327
- cifs: Add "/extbuf"/ and "/extbuflen"/ args to smb2_compound_op()
(bsc#1193629).
- commit 9c7ee24
- pstore: Make sure CONFIG_PSTORE_PMSG selects CONFIG_RT_MUTEXES
(git-fixes).
- crypto: ccree - Make cc_debugfs_global_fini() available for
module init function (git-fixes).
- ASoC: ops: Correct bounds check for second channel on SX
controls (git-fixes).
- clk: Fix pointer casting to prevent oops in devm_clk_release()
(git-fixes).
- commit b22634c
- usb: gadget: uvc: Rename bmInterfaceFlags -> bmInterlaceFlags
(git-fixes).
- usb: dwc3: core: defer probe on ulpi_read_id timeout
(git-fixes).
- usb: ulpi: defer ulpi_register on ulpi_read_id timeout
(git-fixes).
- usb: gadget: uvc: Prevent buffer overflow in setup handler
(git-fixes).
- usb: storage: Add check for kcalloc (git-fixes).
- USB: serial: cp210x: add Kamstrup RF sniffer PIDs (git-fixes).
- USB: serial: option: add Quectel EM05-G modem (git-fixes).
- USB: serial: f81534: fix division by zero on line-speed change
(git-fixes).
- USB: serial: f81232: fix division by zero on line-speed change
(git-fixes).
- xhci: Apply XHCI_RESET_TO_DEFAULT quirk to ADL-N (git-fixes).
- usb: dwc3: Fix race between dwc3_set_mode and __dwc3_set_mode
(git-fixes).
- usb: cdnsp: fix lack of ZLP for ep0 (git-fixes).
- usb: xhci-mtk: fix leakage of shared hcd when fail to set
wakeup irq (git-fixes).
- usb: dwc3: pci: Update PCIe device ID for USB3 controller on
CPU sub-system for Raptor Lake (git-fixes).
- wifi: brcmfmac: Fix error return code in
brcmf_sdio_download_firmware() (git-fixes).
- wifi: rtl8xxxu: Fix the channel width reporting (git-fixes).
- wifi: rtl8xxxu: Add __packed to struct rtl8723bu_c2h
(git-fixes).
- wifi: iwlwifi: mvm: fix double free on tx path (git-fixes).
- wifi: mt76: fix coverity overrun-call in mt76_get_txpower()
(git-fixes).
- wifi: cfg80211: Fix not unregister reg_pdev when
load_builtin_regdb_keys() fails (git-fixes).
- wifi: mac80211: fix memory leak in ieee80211_if_add()
(git-fixes).
- wifi: ath10k: Fix return value in ath10k_pci_init() (git-fixes).
- wifi: rtw89: fix physts IE page check (git-fixes).
- wifi: rtw89: Fix some error handling path in
rtw89_core_sta_assoc() (git-fixes).
- wifi: rtw89: use u32_encode_bits() to fill MAC quota value
(git-fixes).
- wifi: rsi: Fix handling of 802.3 EAPOL frames sent via control
port (git-fixes).
- wifi: ath9k: hif_usb: Fix use-after-free in
ath9k_hif_usb_reg_in_cb() (git-fixes).
- wifi: ath9k: hif_usb: fix memory leak of urbs in
ath9k_hif_usb_dealloc_tx_urbs() (git-fixes).
- wifi: rtl8xxxu: gen2: Turn on the rate control (git-fixes).
- commit 4d78293
- uio: uio_dmem_genirq: Fix deadlock between irq config and
handling (git-fixes).
- uio: uio_dmem_genirq: Fix missing unlock in irq configuration
(git-fixes).
- usb: roles: fix of node refcount leak in
usb_role_switch_is_parent() (git-fixes).
- usb: typec: tipd: Fix spurious fwnode_handle_put in error path
(git-fixes).
- usb: typec: tipd: Cleanup resources if devm_tps6598_psy_register
fails (git-fixes).
- usb: typec: tcpci: fix of node refcount leak in
tcpci_register_port() (git-fixes).
- usb: typec: Check for ops->exit instead of ops->enter in
altmode_exit (git-fixes).
- tpm/tpm_crb: Fix error message in __crb_relinquish_locality()
(git-fixes).
- usb: dwc3: gadget: Disable GUSB2PHYCFG.SUSPHY for End Transfer
(git-fixes).
- commit 00e7f07
- test_firmware: fix memory leak in test_firmware_init()
(git-fixes).
- thermal/drivers/qcom/temp-alarm: Fix inaccurate warning for gen2
(git-fixes).
- thermal/drivers/imx8mm_thermal: Validate temperature range
(git-fixes).
- spi: spi-gpio: Don't set MOSI as an input if not 3WIRE mode
(git-fixes).
- spi: spidev: mask SPI_CS_HIGH in SPI_IOC_RD_MODE (git-fixes).
- thermal: core: fix some possible name leaks in error paths
(git-fixes).
- tpm/tpm_ftpm_tee: Fix error handling in ftpm_mod_init()
(git-fixes).
- tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak
(git-fixes).
- tpm: tpm_crb: Add the missed acpi_put_table() to fix memory leak
(git-fixes).
- tpm: acpi: Call acpi_put_table() to fix memory leak (git-fixes).
- commit 3ea2187
- soc: mediatek: pm-domains: Fix the power glitch issue
(git-fixes).
- serial: sunsab: Fix error handling in sunsab_init() (git-fixes).
- serial: pch: Fix PCI device refcount leak in pch_request_dma()
(git-fixes).
- serial: stm32: move dma_request_chan() before
clk_prepare_enable() (git-fixes).
- spi: Update reference to struct spi_controller (git-fixes).
- soc: qcom: Select REMAP_MMIO for LLCC driver (git-fixes).
- soc: ti: smartreflex: Fix PM disable depth imbalance in
omap_sr_probe (git-fixes).
- drivers: soc: ti: knav_qmss_queue: Mark knav_acc_firmwares as
static (git-fixes).
- soc: qcom: llcc: make irq truly optional (git-fixes).
- commit 41d3c92
- regulator: core: fix deadlock on regulator enable (git-fixes).
- pstore: Properly assign mem_type property (git-fixes).
- pstore: Switch pmsg_lock to an rt_mutex to avoid priority
inversion (git-fixes).
- pwm: mediatek: always use bus clock for PWM on MT7622
(git-fixes).
- pwm: lpc18xx-sct: Fix a comment to match code (git-fixes).
- pwm: sifive: Call pwm_sifive_update_clock() while mutex is held
(git-fixes).
- pwm: tegra: Improve required rate calculation (git-fixes).
- selftests: devlink: fix the fd redirect in dummy_reporter_test
(git-fixes).
- r6040: Fix kmemleak in probe and remove (git-fixes).
- selftests/powerpc: Fix resource leaks (git-fixes).
- serial: pl011: Do not clear RX FIFO & RX interrupt in unthrottle
(git-fixes).
- serial: amba-pl011: avoid SBSA UART accessing DMACR register
(git-fixes).
- serial: 8250_bcm7271: Fix error handling in brcmuart_init()
(git-fixes).
- serial: tegra: Read DMA status before terminating (git-fixes).
- staging: rtl8192e: Fix potential use-after-free in
rtllib_rx_Monitor() (git-fixes).
- staging: rtl8192u: Fix use after free in ieee80211_rx()
(git-fixes).
- regulator: qcom-labibb: Fix missing of_node_put() in
qcom_labibb_regulator_probe() (git-fixes).
- regulator: core: fix resource leak in regulator_register()
(git-fixes).
- regulator: core: fix module refcount leak in set_supply()
(git-fixes).
- regulator: bd718x7: Drop unnecessary info print (git-fixes).
- regulator: core: use kfree_const() to free space conditionally
(git-fixes).
- regulator: qcom-rpmh: Fix PMR735a S3 regulator spec (git-fixes).
- regulator: core: fix unbalanced of node refcount in
regulator_dev_lookup() (git-fixes).
- selftests/efivarfs: Add checking of the test return value
(git-fixes).
- selftests/ftrace: event_triggers: wait longer for
test_event_enable (git-fixes).
- pstore: Avoid kcore oops by vmap()ing with VM_IOREMAP
(git-fixes).
- pstore/ram: Fix error return code in ramoops_probe()
(git-fixes).
- pstore/zone: Use GFP_ATOMIC to allocate zone buffer (git-fixes).
- regulator: twl6030: fix get status of twl6032 regulators
(git-fixes).
- regulator: slg51000: Wait after asserting CS pin (git-fixes).
- commit b3e3245
- nfc: pn533: Clear nfc_target before being used (git-fixes).
- phy: usb: s2 WoL wakeup_count not incremented for USB->Eth
devices (git-fixes).
- power: supply: fix null pointer dereferencing in
power_supply_get_battery_info (git-fixes).
- power: supply: ab8500: Fix error handling in
ab8500_charger_init() (git-fixes).
- power: supply: z2_battery: Fix possible memleak in
z2_batt_probe() (git-fixes).
- power: supply: fix residue sysfs file in error handle route
of __power_supply_register() (git-fixes).
- PCI: pci-epf-test: Register notifier if only core_init_notifier
is enabled (git-fixes).
- PCI: vmd: Disable MSI remapping after suspend (git-fixes).
- PCI: dwc: Fix n_fts[] array overrun (git-fixes).
- PCI/sysfs: Fix double free in error path (git-fixes).
- PCI: Check for alloc failure in pci_request_irq() (git-fixes).
- pinctrl: pinconf-generic: add missing of_node_put() (git-fixes).
- pinctrl: k210: call of_node_put() (git-fixes).
- mtd: spi-nor: Fix the number of bytes for the dummy cycles
(git-fixes).
- mtd: spi-nor: hide jedec_id sysfs attribute if not present
(git-fixes).
- mtd: spi-nor: Check for zero erase size in
spi_nor_find_best_erase_type() (git-fixes).
- mtd: maps: pxa2xx-flash: fix memory leak in probe (git-fixes).
- mtd: lpddr2_nvm: Fix possible null-ptr-deref (git-fixes).
- proc: fixup uptime selftest (git-fixes).
- PNP: fix name memory leak in pnp_alloc_dev() (git-fixes).
- PM: hibernate: Fix mistake in kerneldoc comment (git-fixes).
- PM: runtime: Do not call __rpm_callback() from rpm_idle()
(git-fixes).
- platform/chrome: cros_usbpd_notify: Fix error handling in
cros_usbpd_notify_init() (git-fixes).
- platform/mellanox: mlxbf-pmc: Fix event typo (git-fixes).
- platform/x86: intel_scu_ipc: fix possible name leak in
__intel_scu_ipc_register() (git-fixes).
- platform/x86: mxm-wmi: fix memleak in mxm_wmi_call_mx[ds|mx]()
(git-fixes).
- platform/x86: huawei-wmi: fix return value calculation
(git-fixes).
- pinctrl: meditatek: Startup with the IRQs disabled (git-fixes).
- commit 9546018
- mmc: sdhci-sprd: Disable CLK_AUTO when the clock is less than
400K (git-fixes).
- mmc: vub300: fix warning - do not call blocking ops when
!TASK_RUNNING (git-fixes).
- mmc: core: Normalize the error handling branch in
sd_read_ext_regs() (git-fixes).
- mmc: renesas_sdhi: alway populate SCC pointer (git-fixes).
- mmc: mmci: fix return value check of mmc_add_host() (git-fixes).
- mmc: wbsd: fix return value check of mmc_add_host() (git-fixes).
- mmc: via-sdmmc: fix return value check of mmc_add_host()
(git-fixes).
- mmc: meson-gx: fix return value check of mmc_add_host()
(git-fixes).
- mmc: omap_hsmmc: fix return value check of mmc_add_host()
(git-fixes).
- mmc: atmel-mci: fix return value check of mmc_add_host()
(git-fixes).
- mmc: wmt-sdmmc: fix return value check of mmc_add_host()
(git-fixes).
- mmc: vub300: fix return value check of mmc_add_host()
(git-fixes).
- mmc: toshsd: fix return value check of mmc_add_host()
(git-fixes).
- mmc: rtsx_usb_sdmmc: fix return value check of mmc_add_host()
(git-fixes).
- mmc: rtsx_pci: fix return value check of mmc_add_host()
(git-fixes).
- mmc: pxamci: fix return value check of mmc_add_host()
(git-fixes).
- mmc: mxcmmc: fix return value check of mmc_add_host()
(git-fixes).
- mmc: moxart: fix return value check of mmc_add_host()
(git-fixes).
- mtd: Fix device name leak when register device failed in
add_mtd_device() (git-fixes).
- commit 5e3071e
- mailbox: zynq-ipi: fix error handling while device_register()
fails (git-fixes).
- mailbox: arm_mhuv2: Fix return value check in mhuv2_probe()
(git-fixes).
- mailbox: mpfs: read the system controller's status (git-fixes).
- mfd: qcom_rpm: Fix an error handling path in qcom_rpm_probe()
(git-fixes).
- mfd: bd957x: Fix Kconfig dependency on REGMAP_IRQ (git-fixes).
- mfd: mt6360: Add bounds checking in Regmap read/write call-backs
(git-fixes).
- mISDN: hfcmulti: don't call dev_kfree_skb/kfree_skb() under
spin_lock_irqsave() (git-fixes).
- mISDN: hfcpci: don't call dev_kfree_skb/kfree_skb() under
spin_lock_irqsave() (git-fixes).
- mISDN: hfcsusb: don't call dev_kfree_skb/kfree_skb() under
spin_lock_irqsave() (git-fixes).
- HSI: omap_ssi_core: Fix error handling in ssi_init()
(git-fixes).
- HSI: omap_ssi_core: fix possible memory leak in ssi_probe()
(git-fixes).
- iio: fix memory leak in iio_device_register_eventset()
(git-fixes).
- iio: adc128s052: add proper .data members in adc128_of_match
table (git-fixes).
- iio: temperature: ltc2983: make bulk write buffer DMA-safe
(git-fixes).
- iio: adc: ad_sigma_delta: do not use internal iio_dev lock
(git-fixes).
- i2c: ismt: Fix an out-of-bounds bug in ismt_access()
(git-fixes).
- i2c: mux: reg: check return value after calling
platform_get_resource() (git-fixes).
- i2c: pxa-pci: fix missing pci_disable_device() on error in
ce4100_i2c_probe (git-fixes).
- hwrng: amd - Fix PCI device refcount leak (git-fixes).
- integrity: Fix memory leakage in keyring allocation error path
(git-fixes).
- mmc: alcor: fix return value check of mmc_add_host()
(git-fixes).
- ipmi: fix use after free in _ipmi_destroy_user() (git-fixes).
- ipmi: kcs: Poll OBF briefly to reduce OBE latency (git-fixes).
- Input: wistron_btns - disable on UML (git-fixes).
- Input: elants_i2c - properly handle the reset GPIO when power
is off (git-fixes).
- Input: joystick - fix Kconfig warning for JOYSTICK_ADC
(git-fixes).
- media: saa7164: fix missing pci_disable_device() (git-fixes).
- media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
(git-fixes).
- media: dvb-core: Fix ignored return value in
dvb_register_frontend() (git-fixes).
- media: dvb-core: Fix double free in dvb_register_device()
(git-fixes).
- media: imon: fix a race condition in send_packet() (git-fixes).
- media: solo6x10: fix possible memory leak in solo_sysfs_init()
(git-fixes).
- media: vidtv: Fix use-after-free in vidtv_bridge_dvb_init()
(git-fixes).
- media: vimc: Fix wrong function called when vimc_init() fails
(git-fixes).
- media: adv748x: afe: Select input port when initializing AFE
(git-fixes).
- media: v4l2-ctrls: Fix off-by-one error in integer menu control
check (git-fixes).
- media: vivid: fix compose size exceed boundary (git-fixes).
- staging: media: tegra-video: fix device_node use after free
(git-fixes).
- staging: media: tegra-video: fix chan->mipi value on error
(git-fixes).
- media: i2c: ad5820: Fix error path (git-fixes).
- ipu3-imgu: Fix NULL pointer dereference in
imgu_subdev_set_selection() (git-fixes).
- media: camss: Clean up received buffers on failed start of
streaming (git-fixes).
- media: videobuf-dma-contig: use dma_mmap_coherent (git-fixes).
- lib/fonts: fix undefined behavior in bit shift for
get_default_font (git-fixes).
- lib/debugobjects: fix stat count and optimize
debug_objects_mem_init (git-fixes).
- media: v4l2-dv-timings.c: fix too strict blanking sanity checks
(git-fixes).
- mmc: mtk-sd: Fix missing clk_disable_unprepare in
msdc_of_clock_parse() (git-fixes).
- commit 492bdad
- driver core: Fix bus_type.match() error handling in
__driver_attach() (git-fixes).
- Refresh
patches.suse/drivers-base-implement-dev_enable_async_probe.patch.
- commit 72f2b42
- drm/i915/display: Don't disable DDI/Transcoder when setting
phy test pattern (git-fixes).
- drm/i915: Fix documentation for
intel_uncore_forcewake_put__locked (git-fixes).
- dmaengine: idxd: Fix crc_val field for completion record
(git-fixes).
- Documentation: devres: add missing
devm_acpi_dma_controller_free() helper (git-fixes).
- HSI: omap_ssi_core: fix unbalanced pm_runtime_disable()
(git-fixes).
- device property: Fix documentation for fwnode_get_next_parent()
(git-fixes).
- Documentation: devres: add missing MEM helper (git-fixes).
- firmware: raspberrypi: fix possible memory leak in
rpi_firmware_probe() (git-fixes).
- drivers: dio: fix possible memory leak in dio_init()
(git-fixes).
- Documentation: devres: add missing PHY helpers (git-fixes).
- dt-bindings: gpio: gpio-davinci: Increase maxItems in
gpio-line-names (git-fixes).
- fbdev: fbcon: release buffer when fbcon_do_set_font() failed
(git-fixes).
- fbdev: uvesafb: Fixes an error handling path in uvesafb_probe()
(git-fixes).
- fbdev: uvesafb: don't build on UML (git-fixes).
- fbdev: geode: don't build on UML (git-fixes).
- fbdev: vermilion: decrease reference count in error path
(git-fixes).
- fbdev: via: Fix error in via_core_init() (git-fixes).
- fbdev: pm2fb: fix missing pci_disable_device() (git-fixes).
- fbdev: ssd1307fb: Drop optional dependency (git-fixes).
- crypto: img-hash - Fix variable dereferenced before check
'hdev->req' (git-fixes).
- crypto: omap-sham - Use pm_runtime_resume_and_get() in
omap_sham_probe() (git-fixes).
- crypto: tcrypt - Fix multibuffer skcipher speed test mem leak
(git-fixes).
- crypto: cryptd - Use request context instead of stack for
sub-request (git-fixes).
- crypto: ccree - Remove debugfs when platform_driver_register
failed (git-fixes).
- crypto: rockchip - rework by using crypto_engine (git-fixes).
- crypto: rockchip - remove non-aligned handling (git-fixes).
- crypto: rockchip - better handle cipher key (git-fixes).
- crypto: rockchip - add fallback for ahash (git-fixes).
- crypto: rockchip - add fallback for cipher (git-fixes).
- crypto: rockchip - do not store mode globally (git-fixes).
- crypto: rockchip - do not do custom power management
(git-fixes).
- crypto: n2 - add missing hash statesize (git-fixes).
- crypto: nitrox - avoid double free on error path in
nitrox_sriov_init() (git-fixes).
- crypto: sun8i-ss - use dma_addr instead u32 (git-fixes).
- hamradio: don't call dev_kfree_skb() under spin_lock_irqsave()
(git-fixes).
- Documentation: bonding: update miimon default to 100
(git-fixes).
- Revert "/dt-bindings: marvell,prestera: Add description for
device-tree bindings"/ (git-fixes).
- dt-bindings: clock: qcom,aoncc-sm8250: fix compatible
(git-fixes).
- drm/amdkfd: Fix memory leakage (git-fixes).
- drm/amdgpu: Fix PCI device refcount leak in
amdgpu_atrm_get_bios() (git-fixes).
- drm/radeon: Fix PCI device refcount leak in
radeon_atrm_get_bios() (git-fixes).
- drm/amd/pm/smu11: BACO is supported when it's in BACO state
(git-fixes).
- drm/i915/dsi: fix VBT send packet port selection for dual link
DSI (git-fixes).
- drm/amdgpu: fix pci device refcount leak (git-fixes).
- drm/tegra: Add missing clk_disable_unprepare() in
tegra_dc_probe() (git-fixes).
- drm/mediatek: Modify dpi power on/off sequence (git-fixes).
- drm/i915: remove circ_buf.h includes (git-fixes).
- drm/i915/ttm: never purge busy objects (git-fixes).
- drm/radeon: Add the missed acpi_put_table() to fix memory leak
(git-fixes).
- drm/etnaviv: don't truncate physical page address (git-fixes).
- dt-bindings: display: sun6i-dsi: Fix clock conditional
(git-fixes).
- drm/ingenic: Fix missing platform_driver_unregister() call in
ingenic_drm_init() (git-fixes).
- Revert "/drm/amd/display: Limit max DSC target bpp for specific
monitors"/ (git-fixes).
- drm/amdgpu/powerplay/psm: Fix memory leak in power state init
(git-fixes).
- drm/panel/panel-sitronix-st7701: Remove panel on DSI attach
failure (git-fixes).
- drm/vmwgfx: Validate the box size for the snooped cursor
(git-fixes).
- drm/rockchip: lvds: fix PM usage counter unbalance in poweron
(git-fixes).
- drm/vmwgfx: Fix a sparse warning in kernel docs (git-fixes).
- drm/bridge: adv7533: remove dynamic lane switching from adv7533
bridge (git-fixes).
- drm/edid: Fix minimum bpc supported with DSC1.2 for HDMI sink
(git-fixes).
- floppy: Fix memory leak in do_floppy_init() (git-fixes).
- Documentation/features-refresh.sh: Only sed the beginning
"/arch"/ of ARCH_DIR (git-fixes).
- docs/zh_CN: Fix '.. only::' directive's expression (git-fixes).
- Documentation: devres: add missing PWM helper (git-fixes).
- drm/vmwgfx: Don't use screen objects when SEV is active
(git-fixes).
- drm/shmem-helper: Avoid vm_open error paths (git-fixes).
- drm/shmem-helper: Remove errant put in error path (git-fixes).
- drm: bridge: dw_hdmi: fix preference of RGB modes over YUV420
(git-fixes).
- drm/bridge: ti-sn65dsi86: Fix output polarity setting bug
(git-fixes).
- drm/amdgpu/sdma_v4_0: turn off SDMA ring buffer in the s2idle
suspend (git-fixes).
- HID: uclogic: Add HID_QUIRK_HIDINPUT_FORCE quirk (git-fixes).
- HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire
Switch V 10 (git-fixes).
- gpiolib: fix memory leak in gpiochip_setup_dev() (git-fixes).
- fbcon: Use kzalloc() in fbcon_prepare_logo() (git-fixes).
- gpiolib: check the 'ngpios' property in core gpiolib code
(git-fixes).
- gpiolib: improve coding style for local variables (git-fixes).
- drm/bridge: anx7625: Fix edid_read break case in
sp_tx_edid_read() (git-fixes).
- commit 1ce780f
- Refresh patches.suse/dt-bindings-clocks-imx8mp-Add-ID-for-usb-suspend-clo.patch
Correct the doubly defined IMX8MP_CLK_END
- commit 880f395
- ASoC: rt5670: Remove unbalanced pm_runtime_put() (git-fixes).
- ASoC: rockchip: spdif: Add missing clk_disable_unprepare()
in rk_spdif_runtime_resume() (git-fixes).
- ASoC: wm8994: Fix potential deadlock (git-fixes).
- ASoC: mediatek: mt8183: fix refcount leak in
mt8183_mt6358_ts3a227_max98357_dev_probe() (git-fixes).
- ASoC: rockchip: pdm: Add missing clk_disable_unprepare()
in rockchip_pdm_runtime_resume() (git-fixes).
- ASoC: audio-graph-card: fix refcount leak of cpu_ep in
__graph_for_each_link() (git-fixes).
- ASoC: mediatek: mt8173-rt5650-rt5514: fix refcount leak in
mt8173_rt5650_rt5514_dev_probe() (git-fixes).
- class: fix possible memory leak in __class_register()
(git-fixes).
- chardev: fix error handling in cdev_device_add() (git-fixes).
- Bluetooth: RFCOMM: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: hci_core: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: hci_bcsp: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: hci_h5: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: hci_ll: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: hci_qca: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: btusb: don't call kfree_skb() under
spin_lock_irqsave() (git-fixes).
- Bluetooth: btintel: Fix missing free skb in
btintel_setup_combined() (git-fixes).
- Bluetooth: MGMT: Fix error report for ADD_EXT_ADV_PARAMS
(git-fixes).
- can: tcan4x5x: Remove invalid write in clear_interrupts
(git-fixes).
- can: kvaser_usb_leaf: Fix bogus restart events (git-fixes).
- can: kvaser_usb_leaf: Fix wrong CAN state after stopping
(git-fixes).
- can: kvaser_usb_leaf: Set Warning state even without bus errors
(git-fixes).
- clk: qcom: clk-krait: fix wrong div2 functions (git-fixes).
- clk: qcom: lpass-sc7180: Fix pm_runtime usage (git-fixes).
- clk: qcom: gcc-sm8250: Use retention mode for USB GDSCs
(git-fixes).
- clk: imx: replace osc_hdmi with dummy (git-fixes).
- clk: imx: imx8mp: add shared clk gate for usb suspend clk
(git-fixes).
- clk: rockchip: Fix memory leak in rockchip_clk_register_pll()
(git-fixes).
- clk: sunxi-ng: v3s: Correct the header guard of ccu-sun8i-v3s.h
(git-fixes).
- clk: renesas: r9a06g032: Repair grave increment error
(git-fixes).
- clk: nomadik: correct struct name kernel-doc warning
(git-fixes).
- clk: socfpga: Fix memory leak in socfpga_gate_init()
(git-fixes).
- clk: samsung: Fix memory leak in _samsung_clk_register_pll()
(git-fixes).
- ASoC: pcm512x: Fix PM disable depth imbalance in pcm512x_probe
(git-fixes).
- ASoC: mediatek: mt8173: Enable IRQ when pdata is ready
(git-fixes).
- ASoC: mediatek: mtk-btcvsd: Add checks for write and read of
mtk_btcvsd_snd (git-fixes).
- ASoC: dt-bindings: wcd9335: fix reset line polarity in example
(git-fixes).
- binfmt: Fix error return code in load_elf_fdpic_binary()
(git-fixes).
- binfmt_elf: fix documented return value for load_elf_phdrs()
(git-fixes).
- Bluetooth: btusb: Add debug message for CSR controllers
(git-fixes).
- can: mcba_usb: Fix termination command argument (git-fixes).
- can: sja1000: fix size of OCR_MODE_MASK define (git-fixes).
- clk: Provide new devm_clk helpers for prepared and enabled
clocks (git-fixes).
- clk: generalize devm_clk_get() a bit (git-fixes).
- can: kvaser_usb: kvaser_usb_leaf: fix bittiming limits
(git-fixes).
- commit 4b9e60b
- arm64: dts: mt8183: Fix Mali GPU clock (git-fixes).
- amdgpu/pm: prevent array underflow in
vega20_odn_edit_dpm_table() (git-fixes).
- ASoC: qcom: Add checks for devm_kcalloc (git-fixes).
- ASoC: pxa: fix null-pointer dereference in filter() (git-fixes).
- ASoC: jz4740-i2s: Handle independent FIFO flush bits
(git-fixes).
- ALSA: mts64: fix possible null-ptr-defer in snd_mts64_interrupt
(git-fixes).
- ALSA: pcm: Set missing stop_operating flag at undoing trigger
start (git-fixes).
- ALSA: asihpi: fix missing pci_disable_device() (git-fixes).
- ACPICA: Fix use-after-free in
acpi_ut_copy_ipackage_to_ipackage() (git-fixes).
- ARM: dts: qcom: apq8064: fix coresight compatible (git-fixes).
- arm64: dts: qcom: sm8250: fix USB-DP PHY registers (git-fixes).
- ARM: dts: armada-39x: Fix compatible string for gpios
(git-fixes).
- ARM: dts: armada-38x: Fix compatible string for gpios
(git-fixes).
- ARM: dts: turris-omnia: Add switch port 6 node (git-fixes).
- ARM: dts: turris-omnia: Add ethernet aliases (git-fixes).
- ARM: dts: armada-39x: Fix assigned-addresses for every PCIe
Root Port (git-fixes).
- ARM: dts: armada-38x: Fix assigned-addresses for every PCIe
Root Port (git-fixes).
- ARM: dts: armada-375: Fix assigned-addresses for every PCIe
Root Port (git-fixes).
- ARM: dts: armada-xp: Fix assigned-addresses for every PCIe
Root Port (git-fixes).
- ARM: dts: armada-370: Fix assigned-addresses for every PCIe
Root Port (git-fixes).
- ARM: dts: dove: Fix assigned-addresses for every PCIe Root Port
(git-fixes).
- arm64: dts: armada-3720-turris-mox: Add missing interrupt for
RTC (git-fixes).
- arm64: dts: qcom: sm8250: drop bogus DP PHY clock (git-fixes).
- arm64: dts: qcom: sm8250: correct LPASS pin pull down
(git-fixes).
- arm64: dts: qcom: msm8916: Drop MSS fallback compatible
(git-fixes).
- arm64: dts: qcom: sdm845-cheza: fix AP suspend pin bias
(git-fixes).
- arm64: dts: qcom: sdm845-db845c: correct SPI2 pins drive
strength (git-fixes).
- arm64: dts: qcom: sdm630: fix UART1 pin bias (git-fixes).
- arm64: dts: qcom: msm8996: fix GPU OPP table (git-fixes).
- arm64: dts: qcom: msm8996: fix supported-hw in cpufreq OPP
tables (git-fixes).
- arm64: dts: qcom: msm8996: Add MSM8996 Pro support (git-fixes).
- arm64: dts: qcom: sdm850-lenovo-yoga-c630: correct I2C12 pins
drive strength (git-fixes).
- arm64: dts: qcom: sm8250-sony-xperia-edo: fix touchscreen
bias-disable (git-fixes).
- arm64: dts: qcom: ipq6018-cp01-c1: use BLSPI1 pins (git-fixes).
- ARM: dts: nuvoton: Remove bogus unit addresses from
fixed-partition nodes (git-fixes).
- arm64: dts: ti: k3-j721e-main: Drop dma-coherent in crypto node
(git-fixes).
- arm64: dts: ti: k3-am65-main: Drop dma-coherent in crypto node
(git-fixes).
- arm64: dts: mediatek: mt6797: Fix 26M oscillator unit name
(git-fixes).
- arm64: dts: mediatek: pumpkin-common: Fix devicetree warnings
(git-fixes).
- arm64: dts: mt2712-evb: Fix usb vbus regulators unit names
(git-fixes).
- arm64: dts: mt2712-evb: Fix vproc fixed regulators unit names
(git-fixes).
- arm64: dts: mt2712e: Fix unit address for pinctrl node
(git-fixes).
- arm64: dts: mt2712e: Fix unit_address_vs_reg warning for
oscillators (git-fixes).
- arm64: dts: mt6779: Fix devicetree build warnings (git-fixes).
- arm64: dts: mt7622: drop r_smpl property from mmc node
(git-fixes).
- arm64: dts: mt8183: drop drv-type from mmc-node (git-fixes).
- ARM: dts: stm32: Fix AV96 WLAN regulator gpio property
(git-fixes).
- ARM: dts: stm32: Drop stm32mp15xc.dtsi from Avenger96
(git-fixes).
- arm: dts: spear600: Fix clcd interrupt (git-fixes).
- ARM: mmp: fix timer_read delay (git-fixes).
- ARM: ux500: do not directly dereference __iomem (git-fixes).
- Revert "/ARM: dts: imx7: Fix NAND controller size-cells"/
(git-fixes).
- ASoC: cs42l51: Correct PGA Volume minimum value (git-fixes).
- ASoC: ops: Check bounds for second channel in
snd_soc_put_volsw_sx() (git-fixes).
- ASoC: fsl_micfil: explicitly clear CHnF flags (git-fixes).
- ASoC: fsl_micfil: explicitly clear software reset bit
(git-fixes).
- ASoC: soc-pcm: Add NULL check in BE reparenting (git-fixes).
- ASoC: rt711-sdca: fix the latency time of clock stop prepare
state machine transitions (git-fixes).
- ASoC: wm8962: Wait for updated value of WM8962_CLOCKING1
register (git-fixes).
- ALSA: seq: Fix function prototype mismatch in
snd_seq_expand_var_event (git-fixes).
- ARM: dts: rockchip: disable arm_global_timer on rk3066 and
rk3188 (git-fixes).
- ARM: dts: rockchip: rk3188: fix lcdc1-rgb24 node name
(git-fixes).
- arm64: dts: rockchip: fix ir-receiver node names (git-fixes).
- ARM: dts: rockchip: fix ir-receiver node names (git-fixes).
- arm: dts: rockchip: remove clock-frequency from rtc (git-fixes).
- arm: dts: rockchip: fix node name for hym8563 rtc (git-fixes).
- arm64: dts: rockchip: keep I2S1 disabled for GPIO function on
ROCK Pi 4 series (git-fixes).
- ARM: 9251/1: perf: Fix stacktraces for tracepoint events in
THUMB2 kernels (git-fixes).
- commit 0882612
- Move upstreamed patches into sorted section
- commit 407fb87
- Update
patches.kabi/usb.h-struct-usb_device-hide-new-member.patch
(git-fixes bsc#1206664 CVE-2022-4662).
- Update
patches.suse/USB-core-Prevent-nested-device-reset-calls.patch
(git-fixes bsc#1206664 CVE-2022-4662).
- commit 3b17120
- Update patch reference for mali drm fix (CVE-2022-3115 bsc#1206393)
- commit 92552e2
- Update patch reference for wilc1000 fix (CVE-2022-47520 bsc#1206515)
- commit 9822092
- kabi/severities: ignore kABI change for meson driver fix (CVE-2022-3112 bsc#1206399)
- commit d487c3e
- media: meson: vdec: potential dereference of null pointer
(CVE-2022-3112 bsc#1206399).
- commit 9d391c5
- usb: dwc3: qcom: fix runtime PM wakeup (git-fixes).
- commit e80a310
- Update patch reference for BT fix (CVE-2022-3564 bsc#1206073)
- commit 6efc048
- usb: dwc3: fix PHY disable sequence (git-fixes).
- commit 7228f51
- blacklist.conf: cleanup that depends on the new feature of support for scatter/gather in uvc gadgets
- commit 0558392
- blacklist.conf: cleanup that depends on the new feature of support for
scatter/gather in uvc gadgets
- commit 788ee91
- blacklist.conf: cleanup breaking kABI
- commit e89eed6
- blacklist.conf: cleanup designed to break kABI
- commit 8110223
- net: usb: smsc95xx: fix external PHY reset (git-fixes).
- commit d0d567a
- scsi: iscsi: kabi: add iscsi_conn_queue_work back (git-fixes).
- commit ed33fcf
- sbitmap: fix lockup while swapping (bsc#1206602).
- commit dc64fbc
- vsock: Enable y2038 safe timeval for timeout (bsc#1206101).
- vsock: Refactor vsock_*_getsockopt to resemble sock_getsockopt
(bsc#1206101).
- commit e791efd
- net: usb: qmi_wwan: add u-blox 0x1342 composition (git-fixes).
- commit 4371191
- blacklist.conf: misattributed
- commit e5b755e
- rtc: pcf85063: Fix reading alarm (git-fixes).
- commit 424b0c4
- rtc: pcf85063: fix pcf85063_clkout_control (gut-fixes).
- commit 6c3ba9b
- rtc: ds1347: fix value written to century register (git-fixes).
- commit c64b579
- net/mlx5: Fix mlx5_get_next_dev() peer device matching
(bsc#1206536).
- net/mlx5: Lag, filter non compatible devices (bsc#1206536).
- commit 7f6b5b4
- blacklist.conf: duplicate
- commit 302a460
- blacklist.conf: misattributed in upstream, fixes a feature we lack
- commit fca7a76
- tracing/doc: Fix typos on the timerlat tracer documentation
(git-fixes).
- commit f1f58a1
- MAINTAINERS: update arm,vic.yaml reference (git-fixes).
- commit 60bf131
- MAINTAINERS: fix update references to stm32 audio bindings
(git-fixes).
- commit 5fab9fb
- blacklist.conf: breaks kABI, not important in our configurations
- commit 93e7ee0
- MAINTAINERS: update gpio-zynq.yaml reference (git-fixes).
- commit ced834d
- MAINTAINERS: update arm,pl353-smc.yaml reference (git-fixes).
- commit 62c9d5b
- efi: Add iMac Pro 2017 to uefi skip cert quirk (git-fixes).
- commit 3bcf3ad
- NFSD: fix use-after-free in __nfs42_ssc_open() (bsc#1206209
CVE-2022-4379).
- commit 42200b2
- Update
patches.suse/drm-amdkfd-Check-for-null-pointer-after-calling-kmem.patch
(CVE-2022-3108 bsc#1206389 git-fixes).
- commit cc09cbc
- lkdtm/bugs: Check for the NULL pointer after calling kmalloc
(CVE-2022-3104 bsc#1206396).
- commit 5144632
- Update
patches.suse/media-mtk-vcodec-potential-dereference-of-null-point.patch
(CVE-2022-3113 bsc#1206390 git-fixes).
- commit 3cbcfe5
- Update
patches.suse/msft-hv-2553-hv_netvsc-Add-check-for-kvmalloc_array.patch
(CVE-2022-3107 bsc#1206395 git-fixes).
- commit 74c81de
- Update
patches.suse/power-supply-wm8350-power-Add-missing-free-in-free_c.patch
(CVE-2022-3111 bsc#1206394 git-fixes).
- commit 3e68171
- Update
patches.suse/RDMA-uverbs-Check-for-null-return-of-kmalloc_array.patch
(jsc#SLE-19249 bsc#1206398 CVE-2022-3105).
- commit 1d5d55f
- Update
patches.suse/sfc_ef100-potential-dereference-of-null-pointer.patch
(git-fixes bsc#1206397 CVE-2022-3106).
Added CVE reference
- commit 7a802f9
- Update
patches.suse/msft-hv-2684-net-mana-Fix-race-on-per-CQ-variable-napi-work_done.patch
(git-fixes bsc#1206188).
Added bugzilla reference
- commit 495320f
- padata: Fix list iterator in padata_do_serial() (git-fixes).
- commit 7ce0fe3
- HID: usbhid: Add ALWAYS_POLL quirk for some mice (git-fixes).
- commit 43731f8
- restore m_can_lec_type (git-fixes).
- commit 785d940
- can: m_can: is_lec_err(): clean up LEC error handling
(git-fixes).
- commit c7997f5
- can: m_can: fix typo prescalar -> prescaler (git-fixes).
- commit b0ef074
- can: do not increase rx_bytes statistics for RTR frames
(git-fixes).
- commit 5858150
- can: do not increase rx statistics when generating a CAN rx
error message frame (git-fixes).
- Refresh
patches.suse/can-kvaser_usb_hydra-do-not-report-txerr-and-rxerr-d.patch.
- Refresh
patches.suse/can-kvaser_usb_leaf-do-not-report-txerr-and-rxerr-du.patch.
- Refresh
patches.suse/can-pch_can-do-not-report-txerr-and-rxerr-during-bus.patch.
- commit db678c8
- Update patches.suse/clk-imx-Add-check-for-kcalloc.patch
(CVE-2022-3114 bsc#1206391 git-fixes).
- commit 064b31b
- kABI: reintroduce a non-inline usleep_range (git-fixes).
- commit 21c3a5e
- units: add the HZ macros (git-fixes).
- commit 3f20d38
- units: Add SI metric prefix definitions (git-fixes).
- commit de9d9f3
- can: kvaser_usb: make use of units.h in assignment of frequency
(git-fixes).
- commit 595fe30
- dt-bindings: clocks: imx8mp: Add ID for usb suspend clock
(git-fixes).
- commit c4d1409
- module: change to print useful messages from
elf_validity_check() (git-fixes).
- commit cc1513a
- module: fix [e_shstrndx].sh_size=0 OOB access (git-fixes).
- commit f0db1f3
- blacklist.conf: module loader cleanup, not a bug fix
- commit 143fbeb
- tracing: Free buffers when a used dynamic event is removed
(git-fixes).
- commit f5bb197
- tracing: Add tracing_reset_all_online_cpus_unlocked() function
(git-fixes).
- commit 1bf2379
- tracing/osnoise: Fix duration type (git-fixes).
- commit e223ebb
- timers: implement usleep_idle_range() (git-fixes).
- commit 8d5d397
- ext4: avoid BUG_ON when creating xattrs (bsc#1205496).
- commit 99b40af
- rtmutex: Add acquire semantics for rtmutex lock acquisition
slow path (bnc#1203829).
- commit f0851ea
- memcg: Fix possible use-after-free in
memcg_write_event_control() (bsc#1206344).
- commit bb70275
- net: mana: Fix race on per-CQ variable napi work_done
(git-fixes).
- commit 82dd88a
- s390/boot: add secure boot trailer (bsc#1205257 LTC#200451).
- commit 9fd2fd0
- blacklist.conf: Append 'drm/vc4: hvs: Reset muxes at probe time'
- commit 7d65cb6
- random: convert to using fops->write_iter() (bsc#1204911).
- commit a7bff26
- random: zero buffer after reading entropy from userspace
(bsc#1204911).
- commit 3217a87
- random: allow partial reads if later user copies fail
(bsc#1204911).
- commit 9005c8f
- random: check for signals every PAGE_SIZE chunk of /dev/random
(bsc#1204911).
- commit 19aa9ae
- random: convert to using fops->read_iter() (bsc#1204911).
- commit 10d2455
- random: remove outdated INT_MAX >> 6 check in urandom_read()
(bsc#1204911).
- commit 485f330
- Drop FIPS mode DRBG->getrandom(2) wire-up (bsc#1191259)
- Delete
patches.suse/0001-char-random-wire-up-userspace-interface-to-SP800-90B.patch.
- Delete
patches.suse/0002-char-random-reinstantiate-DRBGs-once-optimized-sha51.patch.
- commit 84d63aa
- SCSI: iscsi: kabi: fix libiscsi new field (git-fixes).
- scsi: iscsi: Fix possible memory leak when device_register()
failed (git-fixes).
- scsi: scsi_debug: Fix possible UAF in sdebug_add_host_helper()
(git-fixes).
- scsi: scsi_debug: Make the READ CAPACITY response compliant
with ZBC (git-fixes).
- scsi: core: Restrict legal sdev_state transitions via sysfs
(git-fixes).
- scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling
getpeername() (git-fixes).
- scsi: 3w-9xxx: Avoid disabling device if failing to enable it
(git-fixes).
- scsi: qedf: Fix a UAF bug in __qedf_probe() (git-fixes).
- scsi: megaraid_sas: Fix double kfree() (git-fixes).
- scsi: iscsi: Run recv path from workqueue (git-fixes).
- scsi: iscsi: Add recv workqueue helpers (git-fixes).
- scsi: iscsi: Rename iscsi_conn_queue_work() (git-fixes).
- scsi: hisi_sas: Limit max hw sectors for v3 HW (git-fixes).
- scsi: pmcraid: Fix missing resource cleanup in error case
(git-fixes).
- scsi: ipr: Fix missing/incorrect resource cleanup in error case
(git-fixes).
- scsi: mpt3sas: Fix out-of-bounds compiler warning (git-fixes).
- scsi: vmw_pvscsi: Expand vcpuHint to 16 bits (git-fixes).
- scsi: myrb: Fix up null pointer access on myrb_cleanup()
(git-fixes).
- scsi: ufs: Use pm_runtime_resume_and_get() instead of
pm_runtime_get_sync() (git-fixes).
- scsi: megaraid: Fix error check return value of
register_chrdev() (git-fixes).
- scsi: iscsi: Fix harmless double shift bug (git-fixes).
- scsi: scsi_dh_alua: Properly handle the ALUA transitioning state
(git-fixes).
- commit 49caf69
- fuse: lock inode unconditionally in fuse_fallocate()
(bsc#1206273).
- commit f576f6c
- blacklist.conf: added 80019f113832 ("/fuse: always initialize sb->s_fs_info"/)
- commit dda205a
- fbdev: smscufx: Fix several use-after-free bugs (git-fixes).
- commit a097aee
- Refresh
patches.suse/fbdev-smscufx-Fix-use-after-free-in-ufx_ops_open.patch.
Update metadata (Git-commit and Patch-mainline).
- commit 8f64db0
- Update patch reference for proc fixes (CVE-2022-4378 bsc#1206207)
- commit cab6fa7
- Revert "/drm/vc4: hvs: Reset muxes at probe time (git-fixes)."/ (bsc#1202341)
This reverts commit 303122d0f2160411fa1068220bc59849d848550d.
The reverted change clears hardware state on the RPi4, which leaves the
screen blank. Without it, the display works correctly.
- commit 957f968
- selftests: rtnetlink: correct xfrm policy rule in
kci_test_ipsec_offload (git-fixes).
- vmxnet3: use correct intrConf reference when using extended
queues (git-fixes).
- vmxnet3: correctly report encapsulated LRO packet (git-fixes).
- proc: proc_skip_spaces() shouldn't think it is working on C
strings (git-fixes).
- proc: avoid integer type confusion in get_proc_long (git-fixes).
- commit 3a866aa
- macsec: add missing attribute validation for offload
(git-fixes).
- net: thunderbolt: fix memory leak in tbnet_open() (git-fixes).
- mac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add()
(git-fixes).
- ca8210: Fix crash by zero initializing data (git-fixes).
- ieee802154: cc2520: Fix error return code in cc2520_hw_init()
(git-fixes).
- net: mdio: fix unbalanced fwnode reference count in
mdio_device_release() (git-fixes).
- NFC: nci: Bounds check struct nfc_target arrays (git-fixes).
- Bluetooth: Fix not cleanup led when bt_init fails (git-fixes).
- Bluetooth: 6LoWPAN: add missing hci_dev_put() in
get_l2cap_conn() (git-fixes).
- e1000e: Fix TX dispatch condition (git-fixes).
- HID: core: fix shift-out-of-bounds in hid_report_raw_event
(git-fixes).
- HID: hid-lg4ff: Add check for empty lbuf (git-fixes).
- gpio: amd8111: Fix PCI device reference count leak (git-fixes).
- ACPI: HMAT: Fix initiator registration for single-initiator
systems (git-fixes).
- ACPI: HMAT: remove unnecessary variable initialization
(git-fixes).
- pinctrl: intel: Save and restore pins in "/direct IRQ"/ mode
(git-fixes).
- nilfs2: fix NULL pointer dereference in
nilfs_palloc_commit_free_entry() (git-fixes).
- commit a0e4929
- scsi: iscsi: Merge suspend fields (git-fixes).
- Refresh
patches.suse/scsi-iscsi-Fix-NOP-handling-during-conn-recovery.patch.
- commit 0f7d01e
- scsi: megaraid_sas: Target with invalid LUN ID is deleted
during scan (git-fixes).
- scsi: mvsas: Add PCI ID of RocketRaid 2640 (git-fixes).
- scsi: mpt3sas: Fail reset operation if config request timed out
(git-fixes).
- scsi: core: Fix sbitmap depth in scsi_realloc_sdev_budget_map()
(git-fixes).
- scsi: libfc: Fix use after free in fc_exch_abts_resp()
(git-fixes).
- scsi: hisi_sas: Free irq vectors in order for v3 HW (git-fixes).
- scsi: aha152x: Fix aha152x_setup() __setup handler return value
(git-fixes).
- scsi: pm8001: Fix memory leak in
pm8001_chip_fw_flash_update_req() (git-fixes).
- scsi: pm8001: Fix tag leaks on error (git-fixes).
- scsi: pm8001: Fix task leak in pm8001_send_abort_all()
(git-fixes).
- scsi: pm8001: Fix pm8001_mpi_task_abort_resp() (git-fixes).
- scsi: pm8001: Fix pm80xx_pci_mem_copy() interface (git-fixes).
- scsi: mpi3mr: Fix memory leaks (git-fixes).
- scsi: mpi3mr: Fix reporting of actual data transfer size
(git-fixes).
- scsi: smartpqi: Fix kdump issue when controller is locked up
(git-fixes).
- scsi: bfa: Replace snprintf() with sysfs_emit() (git-fixes).
- scsi: mvsas: Replace snprintf() with sysfs_emit() (git-fixes).
- scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task
(git-fixes).
- scsi: pm8001: Fix use-after-free for aborted TMF sas_task
(git-fixes).
- scsi: core: Reallocate device's budget map on queue depth change
(git-fixes).
- scsi: pm80xx: Fix double completion for SATA devices
(git-fixes).
- scsi: myrs: Fix crash in error case (git-fixes).
- scsi: ufs: Treat link loss as fatal error (git-fixes).
- scsi: ufs: Use generic error code in ufshcd_set_dev_pwr_mode()
(git-fixes).
- scsi: pm8001: Fix bogus FW crash for maxcpus=1 (git-fixes).
- scsi: qedf: Change context reset messages to ratelimited
(git-fixes).
- scsi: qedf: Fix refcount issue when LOGO is received during TMF
(git-fixes).
- scsi: qedf: Add stag_work to all the vports (git-fixes).
- scsi: ufs: ufshcd-pltfrm: Check the return value of
devm_kstrdup() (git-fixes).
- scsi: mpi3mr: Fixes around reply request queues (git-fixes).
- scsi: sr: Don't use GFP_DMA (git-fixes).
- scsi: ufs: Fix a kernel crash during shutdown (git-fixes).
- commit b966a92
- scsi: libiscsi: Fix UAF in
iscsi_conn_get_param()/iscsi_conn_teardown() (git-fixes).
- Refresh
patches.suse/scsi-libiscsi-Teardown-iscsi_cls_conn-gracefully.patch.
- commit c3c0393
- scsi: iscsi: Unblock session then wake up error handler
(git-fixes).
- scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs()
(git-fixes).
- scsi: scsi_debug: Fix out-of-bound read in resp_readcap16()
(git-fixes).
- scsi: advansys: Fix kernel pointer leak (git-fixes).
- commit 82fa2c6
- scsi: ufs: core: Fix ufshcd_probe_hba() prototype to match
the definition (git-fixes).
- Refresh
patches.suse/scsi-ufs-core-Stop-clearing-UNIT-ATTENTIONS.
- commit 0c849f9
- kbuild: Unify options for BTF generation for vmlinux and modules
(bsc#1204693).
- Refresh patches.suse/kbuild-Add-skip_encoding_btf_enum64-option-to-pahole.patch
- commit 5addeac
- scsi: core: Fix scsi_mode_sense() buffer length handling
(git-fixes).
- scsi: pm80xx: Fix memory leak during rmmod (git-fixes).
- scsi: hisi_sas: Use managed PCI functions (git-fixes).
- scsi: ncr53c8xx: Remove unused retrieve_from_waiting_list()
function (git-fixes).
- commit 5431fc1
- blacklist.conf: add git-fixes to be blacklisted
- commit cbba3af
- btrfs: check if root is readonly while setting security xattr
(bsc#1206147).
- commit 50a73ba
- btrfs: do not allow compression on nodatacow files
(bsc#1206149).
- commit 5167f62
- btrfs: export a helper for compression hard check (bsc#1206149).
- commit f5cf2dc
- x86/bugs: Make sure MSR_SPEC_CTRL is updated properly upon
resume from S3 (bsc#1206037).
- commit 6215cd5
- xen/netback: don't call kfree_skb() with interrupts disabled
(bsc#1206114, XSA-424, CVE-2022-42328, CVE-2022-42329).
- commit 90098d3
- xen/netback: Ensure protocol headers don't fall in the
non-linear area (bsc#1206113, XSA-423, CVE-2022-3643).
- commit 6c8da66
- btrfs: fix processing of delayed tree block refs during backref
walking (bsc#1206057).
- commit 83a8ed2
- btrfs: fix processing of delayed data refs during backref
walking (bsc#1206056).
- commit 2ec426f
- btrfs: send: fix send failure of a subcase of orphan inodes
(bsc#1206036).
- commit 90cbaac
- btrfs: send: fix failures when processing inodes with no links
(bsc#1206036).
- commit f017ade
- btrfs: send: use boolean types for current inode status
(bsc#1206036).
- commit 36f86c0
- btrfs: send: refactor arguments of get_inode_info()
(bsc#1206036).
- commit a80bf85
- ceph: avoid putting the realm twice when decoding snaps fails
(bsc#1206051).
- ceph: allow ceph.dir.rctime xattr to be updatable (bsc#1206050).
- ceph: fix memory leak in ceph_readdir when note_last_dentry
returns error (bsc#1206049).
- ceph: fix inode reference leakage in ceph_get_snapdir()
(bsc#1206048).
- ceph: do not update snapshot context when there is no new
snapshot (bsc#1206047).
- ceph: switch netfs read ops to use rreq->inode instead of
rreq->mapping->host (bsc#1206046).
- ceph: properly handle statfs on multifs setups (bsc#1206045).
- commit 777e847
- btrfs: send: remove unused type parameter to iterate_inode_ref_t
(bsc#1206036).
- commit 0e9e4f2
- btrfs: send: remove unused found_type parameter to
lookup_dir_item_inode() (bsc#1206036).
- commit 7f2d376
- blacklist.conf: added 1b2ba3c5616e ("/ceph: flush the mdlog for filesystem sync"/)
- commit a1975bc
- btrfs: send: always use the rbtree based inode ref management
infrastructure (bsc#1206036).
- commit e503e70
- blacklist.conf: added 5bd76b8de5b7 ("/ceph: fix NULL pointer dereference for req->r_session"/)
- commit 33375e7
- btrfs: send: fix sending link commands for existing file paths
(bsc#1206036).
- commit 382a30f
- blacklist.conf: added aa1d627207ca ("/ceph: Use kcalloc for allocating multiple elements"/)
- commit 169da79
- blacklist.conf: added 89d43d0551a8 ("/ceph: put the requests/sessions when it fails to alloc memory"/)
- commit e095309
- blacklist.conf: added 0e24421ac431 ("/ceph: fix mdsmap decode when there are MDS's beyond max_mds"/)
- commit 0e95811
- btrfs: send: introduce recorded_ref_alloc and recorded_ref_free
(bsc#1206036).
- commit f582043
- btrfs: prevent subvol with swapfile from being deleted
(bsc#1206035).
- commit 17d1de0
- sched: Disable sched domain debugfs creation on ppc64 unless
sched_verbose is specified (bnc#1205653).
- commit 039564b
- char: tpm: Protect tpm_pm_suspend with locks (git-fixes).
- Input: raydium_ts_i2c - fix memory leak in raydium_i2c_send()
(git-fixes).
- commit 0216ffd
- usb: dwc3: gadget: Return -ESHUTDOWN on ep disable (git-fixes).
- Refresh
patches.suse/usb-dwc3-gadget-Clear-ep-descriptor-last.patch.
- commit eede34a
- usb: dwc3: gadget: conditionally remove requests (git-fixes).
- Refresh
patches.suse/usb-dwc3-gadget-Clear-ep-descriptor-last.patch.
- commit baddb4e
- i2c: imx: Only DMA messages with I2C_M_DMA_SAFE flag set
(git-fixes).
- i2c: npcm7xx: Fix error handling in npcm_i2c_init() (git-fixes).
- pinctrl: single: Fix potential division by zero (git-fixes).
- mmc: sdhci-sprd: Fix no reset data and command after voltage
switch (git-fixes).
- mmc: mmc_test: Fix removal of debugfs file (git-fixes).
- mmc: sdhci-esdhc-imx: correct CQHCI exit halt state check
(git-fixes).
- mmc: core: Fix ambiguous TRIM and DISCARD arg (git-fixes).
- ASoC: ops: Fix bounds check for _sx controls (git-fixes).
- ALSA: dice: fix regression for Lexicon I-ONIX FW810S
(git-fixes).
- wifi: wilc1000: validate number of channels (git-fixes).
- wifi: wilc1000: validate length of
IEEE80211_P2P_ATTR_CHANNEL_LIST attribute (git-fixes).
- wifi: wilc1000: validate length of
IEEE80211_P2P_ATTR_OPER_CHANNEL attribute (git-fixes).
- wifi: wilc1000: validate pairwise and authentication suite
offsets (git-fixes).
- ASoC: sgtl5000: Reset the CHIP_CLK_CTRL reg on remove
(git-fixes).
- dma-buf: fix racing conflict of dma_heap_add() (git-fixes).
- selftests: mptcp: fix mibit vs mbit mix up (git-fixes).
- Input: soc_button_array - add Acer Switch V 10 to
dmi_use_low_level_irq[] (git-fixes).
- Input: soc_button_array - add use_low_level_irq module parameter
(git-fixes).
- Input: goodix - try resetting the controller when no config
is set (git-fixes).
- Input: synaptics - switch touchpad on HP Laptop 15-da3001TU
to RMI mode (git-fixes).
- serial: 8250: 8250_omap: Avoid RS485 RTS glitch on
- >set_termios() (git-fixes).
- tools: iio: iio_generic_buffer: Fix read size (git-fixes).
- iio: pressure: ms5611: fixed value compensation bug (git-fixes).
- ASoC: stm32: dfsdm: manage cb buffers cleanup (git-fixes).
- ASoC: fsl_asrc fsl_esai fsl_sai: allow CONFIG_PM=N (git-fixes).
- ASoC: Intel: bytcht_es8316: Add quirk for the Nanote UMPC-01
(git-fixes).
- net: usb: qmi_wwan: add Telit 0x103a composition (git-fixes).
- platform/x86: hp-wmi: Ignore Smart Experience App event
(git-fixes).
- platform/x86: acer-wmi: Enable SW_TABLET_MODE on Switch V 10
(SW5-017) (git-fixes).
- platform/x86: asus-wmi: add missing pci_dev_put() in
asus_wmi_set_xusb2pr() (git-fixes).
- ata: libata-core: do not issue non-internal commands once EH
is pending (git-fixes).
- arm64/syscall: Include asm/ptrace.h in syscall_wrapper header
(git-fixes).
- spi: stm32: fix stm32_spi_prepare_mbr() that halves spi clk
for every run (git-fixes).
- mmc: sdhci-brcmstb: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
- ALSA: usb-audio: add quirk to fix Hamedal C20 disconnect issue
(git-fixes).
- wifi: ath11k: Fix QCN9074 firmware boot on x86 (git-fixes).
- wifi: mac80211: Fix ack frame idr leak when mesh has no route
(git-fixes).
- wifi: airo: do not assign -1 to unsigned char (git-fixes).
- wifi: mac80211_hwsim: fix debugfs attribute ps with rc table
support (git-fixes).
- wifi: mac80211: fix memory free error when registering wiphy
fail (git-fixes).
- audit: fix undefined behavior in bit shift for AUDIT_BIT
(git-fixes).
- platform/x86: touchscreen_dmi: Add info for the RCA Cambio
W101 v2 2-in-1 (git-fixes).
- platform/x86: ideapad-laptop: Disable touchpad_switch
(git-fixes).
- selftests: mptcp: make sendfile selftest work (git-fixes).
- ASoC: fsl_sai: use local device pointer (git-fixes).
- mmc: sdhci-brcmstb: Enable Clock Gating to save power
(git-fixes).
- mmc: sdhci-brcmstb: Re-organize flags (git-fixes).
- ata: libata-scsi: simplify __ata_scsi_queuecmd() (git-fixes).
- iio: ms5611: Simplify IO callback parameters (git-fixes).
- selftests: mptcp: more stable simult_flows tests (git-fixes).
- commit 4ec7214
- Blacklist io-wq-max_worker-fixes on SP4
Commit bc369921d670 ("/io-wq: max_worker fixes"/) claims to fix
2e480058ddc2 ("/io-wq: provide a way to limit max number of workers"/) but
actually fixes 7a842fb589e3 ("/io-wq: code clean of
io_wqe_create_worker()"/) which we don't carry in SP4. Blacklist it to
silent git-fixes.
Nevertheless, it is required in SP5. This commit must be reverted there.
- commit 4da02f1
- io-wq: exclusively gate signal based exit on get_signal()
return (git-fixes).
- commit 0f61b91
- Do not enable CONFIG_ATARI_PARTITION (jsc#PED-1573)
- commit 51c7091
- Fix patches.suse/MM-reclaim-mustn-t-enter-FS-for-swap-over-NFS.patch
Fixed implicit-function-declaration warning when
swap is disabled (bsc#1205993).
- commit 2816166
- hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()
(git-fixes).
- hwmon: (coretemp) Check for null before removing sysfs attrs
(git-fixes).
- hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc()
fails (git-fixes).
- hwmon: (i5500_temp) fix missing pci_disable_device()
(git-fixes).
- hwmon: (ina3221) Fix shunt sum critical calculation (git-fixes).
- hwmon: (ltc2947) fix temperature scaling (git-fixes).
- ARM: at91: rm9200: fix usb device clock id (git-fixes).
- commit e077c40
- block: Do not reread partition table on exclusively open device
(bsc#1190969).
- commit e522e07
- Update patch reference for ATM fix (CVE-2022-3635 bsc#1204631)
- commit 7ef6216
- Move upstreamed i915 fix into sorted section
- commit 8ee5ebf
- x86/hyperv: Update 'struct hv_enlightened_vmcs' definition
(git-fixes).
- x86/hyperv: Fix 'struct hv_enlightened_vmcs' definition
(git-fixes).
- commit 86dd4ce
- net: ethernet: renesas: ravb: Fix promiscuous mode after system
resumed (git-fixes).
- net: mdiobus: fix unbalanced node reference count (git-fixes).
- wifi: mac8021: fix possible oob access in
ieee80211_get_rate_duration (git-fixes).
- wifi: cfg80211: don't allow multi-BSSID in S1G (git-fixes).
- wifi: cfg80211: fix buffer overflow in elem comparison
(git-fixes).
- net: wwan: iosm: fix dma_alloc_coherent incompatible pointer
type (git-fixes).
- net: wwan: iosm: fix kernel test robot reported error
(git-fixes).
- net: ethernet: nixge: fix NULL dereference (git-fixes).
- net: ethernet: ti: am65-cpsw: fix error handling in
am65_cpsw_nuss_probe() (git-fixes).
- e100: Fix possible use after free in e100_xmit_prepare
(git-fixes).
- fm10k: Fix error handling in fm10k_init_module() (git-fixes).
- net: phy: fix null-ptr-deref while probe() failed (git-fixes).
- can: m_can: Add check for devm_clk_get (git-fixes).
- can: m_can: pci: add missing m_can_class_free_dev() in
probe/remove methods (git-fixes).
- can: etas_es58x: es58x_init_netdev(): free netdev when
register_candev() (git-fixes).
- can: cc770: cc770_isa_probe(): add missing free_cc770dev()
(git-fixes).
- can: sja1000_isa: sja1000_isa_probe(): add missing
free_sja1000dev() (git-fixes).
- Revert "/net: phy: meson-gxl: improve link-up behavior"/
(git-fixes).
- commit 225e8fd
- net: stmmac: work around sporadic tx issue on link-up
(git-fixes).
- commit e5a3408
- KVM: x86/mmu: Fix race condition in direct_page_fault
(bsc#1205882, CVE-2022-45869).
- commit e2a86d6
- Add support for enabling livepatching related packages on -RT (jsc#PED-1706)
- commit 9d41244
- blacklist.conf: faeture, not fix
- commit 8c4e5cb
- blacklist.conf: kABI
- commit e518f66
- blacklist.conf: misattributed
- commit dd8dac1
- blacklist.conf: kABI
- commit 267578b
- blacklist.conf: kABI
- commit ca10017
- mac80211: radiotap: Use BIT() instead of shifts (git-fixes).
- commit fa4dbfe
- char: xillybus: Fix trivial bug with mutex (bsc#1205764
CVE-2022-45888).
- char: xillybus: Prevent use-after-free due to race condition
(bsc#1205764 CVE-2022-45888).
- commit 8d88aac
- platform/x86/intel/pmt: Sapphire Rapids PMT errata fix
(jsc#PED-2684 bsc#1205683).
- commit a6ac9d8
- Refresh patches.suse/ibmvnic-Properly-dispose-of-all-skbs-during-a-failov.patch.
Fix metadata
- commit f4fe6e0
- ibmvnic: Free rwi on reset success (bsc#1184350 ltc#191533
git-fixes).
- commit 9f37b44
- blacklist.conf: kABI
- commit 27ebcbb
- Move upstreamed input patch into sorted section (bsc#1190256)
- commit 32c618e
- usb: dwc3: gadget: Clear ep descriptor last (git-fixes).
- commit 17b7c9d
- blacklist.conf: kABI
- commit 3301053
- usb: xhci-mtk: check boundary before check tt (git-fixes).
- commit 401f88b
- usb: xhci-mtk: update fs bus bandwidth by bw_budget_table
(git-fixes).
- commit bfe9566
- xen/pcpu: fix possible memory leak in register_pcpu()
(git-fixes).
- commit dab6b8a
- x86/entry: Work around Clang __bdos() bug (git-fixes).
- commit e06d1d8
- xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
(git-fixes).
- commit ec4c7d4
- x86/Xen: streamline (and fix) PV CPU enumeration (git-fixes).
- commit eddf207
- init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash
(git-fixes).
- commit 9e93e06
- io_uring: fix possible poll event lost in multi shot mode
(git-fixes).
- commit 2b11ccf
- io-wq: ensure we exit if thread group is exiting (git-fixes).
- io_uring: fix missing sigmask restore in io_cqring_wait()
(git-fixes).
- io_uring: pin SQPOLL data before unlocking ring lock
(git-fixes).
- io_uring: drop ctx->uring_lock before acquiring sqd->lock
(git-fixes).
- io_uring: fix missing mb() before waitqueue_active (git-fixes).
- commit 83b832a
- cifs: fix missing unlock in cifs_file_copychunk_range()
(git-fixes).
- commit c1df133
- cifs: Use after free in debug code (git-fixes).
- commit 64acc9c
- cifs: add check for returning value of SMB2_set_info_init
(git-fixes).
- commit 98fbee7
- cifs: Fix wrong return value checking when GETFLAGS (git-fixes).
- commit 70eda18
- cifs: add check for returning value of SMB2_close_init
(git-fixes).
- commit f80dd26
- cifs: Fix connections leak when tlink setup failed (git-fixes).
- commit 173646f
- KVM: x86: Retry page fault if MMU reload is pending and root
has no sp (bsc#1205744).
- commit 2631fac
- drm/i915: fix TLB invalidation for Gen12 video and compute
engines (CVE-2022-4139 bsc#1205700).
- commit 80818ce
- Refresh patches.suse/misc-sgi-gru-fix-use-after-free-error-in-gru_set_con.patch (CVE-2022-3424 bsc#1204166)
Taken from v10 patch in char-misc subsystem tree
- commit 70dae18
- Update
patches.suse/HID-roccat-Fix-use-after-free-in-roccat_read.patch
(bsc#1203960 CVE-2022-41850).
- commit 94bd71f
- Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register() (git-fixes).
- Drivers: hv: vmbus: fix double free in the error path of vmbus_add_channel_work() (git-fixes).
- v3 of "/PCI: hv: Only reuse existing IRTE allocation for Multi-MSI"/
- scsi: storvsc: Fix handling of srb_status and capacity change events (git-fixes).
- commit a5fb15b
- Bluetooth: L2CAP: Fix u8 overflow (CVE-2022-45934 bsc#1205796).
- commit 966bbc0
- usb: cdnsp: fix issue with ZLP - added TD_SIZE = 1 (git-fixes).
- usb: dwc3: exynos: Fix remove() function (git-fixes).
- usb: cdnsp: Fix issue with Clear Feature Halt Endpoint
(git-fixes).
- iio: core: Fix entry not deleted when
iio_register_sw_trigger_type() fails (git-fixes).
- iio: light: rpr0521: add missing Kconfig dependencies
(git-fixes).
- iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw
(git-fixes).
- iio: health: afe4403: Fix oob read in afe4403_read_raw
(git-fixes).
- iio: light: apds9960: fix wrong register for gesture gain
(git-fixes).
- scripts/faddr2line: Fix regression in name resolution on ppc64le
(git-fixes).
- commit 45d3e4c
- x86/kexec: Fix double-free of elf header buffer (bsc#1205567).
- commit 0c767bc
- Move upstreamed sound and WiFi patches into sorted section
- commit 5e6ff3d
- drm/amd/display: Add HUBP surface flip interrupt handler
(git-fixes).
- USB: serial: option: add u-blox LARA-L6 modem (git-fixes).
- USB: serial: option: add u-blox LARA-R6 00B modem (git-fixes).
- USB: serial: option: remove old LARA-R6 PID (git-fixes).
- USB: serial: option: add Fibocom FM160 0x0111 composition
(git-fixes).
- USB: serial: option: add Sierra Wireless EM9191 (git-fixes).
- usb: add NO_LPM quirk for Realforce 87U Keyboard (git-fixes).
- usb: cdns3: host: fix endless superspeed hub port reset
(git-fixes).
- USB: bcma: Make GPIO explicitly optional (git-fixes).
- serial: 8250_lpss: Configure DMA also w/o DMA filter
(git-fixes).
- docs: update mediator contact information in CoC doc
(git-fixes).
- ALSA: usb-audio: Drop snd_BUG_ON() from
snd_usbmidi_output_open() (git-fixes).
- mmc: sdhci-pci-o2micro: fix card detect fail issue caused by
CD# debounce timeout (git-fixes).
- ACPI: x86: Add another system to quirk list for forcing
StorageD3Enable (git-fixes).
- i2c: i801: add lis3lv02d's I2C address for Vostro 5568
(git-fixes).
- i2c: tegra: Allocate DMA memory for DMA engine (git-fixes).
- drm/imx: imx-tve: Fix return type of
imx_tve_connector_mode_valid (git-fixes).
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (git-fixes).
- ACPI: scan: Add LATT2021 to acpi_ignore_dep_ids[] (git-fixes).
- ASoC: codecs: jz4725b: Fix spelling mistake "/Sourc"/ -> "/Source"/,
"/Routee"/ -> "/Route"/ (git-fixes).
- ASoC: codecs: jz4725b: fix capture selector naming (git-fixes).
- ASoC: codecs: jz4725b: use right control for Capture Volume
(git-fixes).
- ASoC: codecs: jz4725b: fix reported volume for Master ctl
(git-fixes).
- ASoC: codecs: jz4725b: add missed Line In power control bit
(git-fixes).
- ASoC: Intel: sof_sdw: add quirk variant for LAPBC710 NUC15
(git-fixes).
- ASoC: wm8962: Add an event handler for TEMP_HP and TEMP_SPK
(git-fixes).
- ASoC: rt1019: Fix the TDM settings (git-fixes).
- ASoC: mt6660: Keep the pm_runtime enables before component
stuff in mt6660_i2c_probe (git-fixes).
- selftests/intel_pstate: fix build for ARCH=x86_64 (git-fixes).
- wifi: wext: use flex array destination for memcpy() (git-fixes).
- docs, kprobes: Fix the wrong location of Kprobes (git-fixes).
- docs/core-api: expand Fedora instructions for GCC plugins
(git-fixes).
- mtd: spi-nor: intel-spi: Disable write protection only if asked
(git-fixes).
- commit 26e07a5
- io_uring: ensure IORING_REGISTER_IOWQ_MAX_WORKERS works with
SQPOLL (git-fixes).
- commit 8665d84
- Refresh
patches.suse/xfs-move-recovery-needed-state-updates-to-xfs_log_mo.patch.
- commit 4ec24fa
- regulator: twl6030: re-add TWL6032_SUBCLASS (git-fixes).
- regulator: core: fix UAF in destroy_regulator() (git-fixes).
- regulator: core: fix kobject release warning and memory leak
in regulator_register() (git-fixes).
- nilfs2: fix nilfs_sufile_mark_dirty() not set segment usage
as dirty (git-fixes).
- ASoC: max98373: Add checks for devm_kcalloc (git-fixes).
- ASoC: soc-pcm: Don't zero TDM masks in __soc_pcm_open()
(git-fixes).
- net: thunderx: Fix the ACPI memory leak (git-fixes).
- nfc: st-nci: fix incorrect sizing calculations in
EVT_TRANSACTION (git-fixes).
- nfc: st-nci: fix memory leaks in EVT_TRANSACTION (git-fixes).
- nfc: st-nci: fix incorrect validating logic in EVT_TRANSACTION
(git-fixes).
- arcnet: fix potential memory leak in com20020_probe()
(git-fixes).
- NFC: nci: fix memory leak in nci_rx_data_packet() (git-fixes).
- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
(git-fixes).
- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
(git-fixes).
- nfc: nfcmrvl: Fix potential memory leak in
nfcmrvl_i2c_nci_send() (git-fixes).
- macsec: Fix invalid error code set (git-fixes).
- nfc/nci: fix race with opening and closing (git-fixes).
- arm64: dts: rockchip: lower rk3399-puma-haikou SD controller
clock frequency (git-fixes).
- arm64: dts: rockchip: add enable-strobe-pulldown to emmc phy
on nanopi4 (git-fixes).
- ARM: dts: am335x-pcm-953: Define fixed regulators in root node
(git-fixes).
- ARM: dts: imx6q-prti6q: Fix ref/tcxo-clock-frequency properties
(git-fixes).
- ARM: mxs: fix memory leak in mxs_machine_init() (git-fixes).
- bus: sunxi-rsb: Support atomic transfers (git-fixes).
- bus: sunxi-rsb: Remove the shutdown callback (git-fixes).
- ARM: dts: at91: sam9g20ek: enable udc vbus gpio pinctrl
(git-fixes).
- commit 39ef4db
- l2tp: Serialize access to sk_user_data with sk_callback_lock
(bsc#1205711 CVE-2022-4129).
- commit ad37086
- Update metadata references
- commit a01d008
- RDMA/qedr: clean up work queue on failure in qedr_alloc_resources() (git-fixes)
- commit 396a739
- RDMA/core: Fix null-ptr-deref in ib_core_cleanup() (git-fixes)
- commit 981cb44
- RDMA/hns: Disable local invalidate operation (git-fixes)
- commit 90ecfab
- IB/hfi1: Correctly move list in sc_disable() (git-fixes)
- commit fa439f0
- RDMA/cma: Use output interface for net_dev check (git-fixes)
- commit 568074d
- IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers (git-fixes)
- commit 569a9cb
- RDMA/cm: Use SLID in the work completion as the DLID in responder side (git-fixes)
- commit e86643f
- RDMA/irdma: Use s/g array in post send only when its valid (git-fixes)
- commit 6692dc0
- RDMA/mlx5: Set local port to one when accessing counters (git-fixes)
- commit 9acd436
- RDMA/hns: Remove the num_qpc_timer variable (git-fixes)
- commit 89b5b80
- RDMA/hns: Fix wrong fixed value of qp->rq.wqe_shift (git-fixes)
- commit c586fc0
- RDMA/hns: Fix supported page size (git-fixes)
- commit 64653d9
- RDMA/rtrs-clt: Use the right sg_cnt after ib_dma_map_sg (git-fixes)
- commit 78022ca
- RDMA/rxe: Limit the number of calls to each tasklet (git-fixes)
- commit 37d447b
- RDMA/hfi1: fix potential memory leak in setup_base_ctxt() (git-fixes)
- commit ba2976b
- RDMA/hns: Fix incorrect clearing of interrupt status register (git-fixes)
- commit 97ffea6
- RDMA/rtrs-srv: Fix modinfo output for stringify (git-fixes)
- commit 46a2a2b
- RDMA/rxe: Remove useless pkt parameters (git-fixes)
- commit 06b2d37
- RDMA/cm: Fix memory leak in ib_cm_insert_listen (git-fixes)
- commit 7ec3772
- RDMA/hfi1: Prevent panic when SDMA is disabled (git-fixes)
- commit ba8caf3
- RDMA/hfi1: Prevent use of lock before it is initialized (git-fixes)
- commit b510b17
- RDMA/hns: Use hr_reg_xxx() instead of remaining roce_set_xxx() (git-fixes)
- commit 6c11e07
- RDMA/hns: Remove the num_cqc_timer variable (git-fixes)
- commit ed86cd6
- RDMA/hns: Correct the type of variables participating in the shift operation (git-fixes)
- commit cecc570
- RDMA/hns: Replace tab with space in the right-side comments (git-fixes)
- commit 4c89a77
- RDMA/irdma: Fix deadlock in irdma_cleanup_cm_core() (git-fixes)
- commit 40de52c
- RDMA/hns: Remove unnecessary check for the sgid_attr when modifying QP (git-fixes)
- commit 36c1898
- RDMA/hns: Remove magic number (git-fixes)
- commit 014def9
- KVM: s390: pv: don't allow userspace to set the clock under PV
(git-fixes).
- KVM: s390: Add a routine for setting userspace CPU state
(git-fixes jsc#PED-611).
- KVM: s390: Simplify SIGP Set Arch handling (git-fixes
jsc#PED-611).
- commit c226df2
- Update patch references for Bluetooth fixes (CVE-2022-42896 bsc#1205709 CVE-2022-42895 bsc#1205705)
- commit 30ec8de
- spi: tegra210-quad: Fix duplicate resource error (git-fixes).
- spi: dw-dma: decrease reference count in dw_spi_dma_init_mfld()
(git-fixes).
- spi: spi-imx: Fix spi_bus_clk if requested clock is higher
than input clock (git-fixes).
- commit 019145b
- blacklist.conf: duplicate
- commit 5eaee0f
- blacklist.conf: duplicate
- commit d84acf3
- blacklist.conf: duplicate
- commit 5ea51bc
- blacklist.conf: duplicate
- commit f3d467e
- scsi: zfcp: Fix double free of FSF request when qdio send fails
(git-fixes).
- s390: fix nospec table alignments (git-fixes).
- KVM: s390: pv: leak the topmost page table when destroy fails
(git-fixes).
- commit 378329e
- xfs: reserve quota for target dir expansion when renaming files
(bsc#1205679).
- commit d93b22e
- drivers: net: slip: fix NPD bug in sl_tx_timeout() (bsc#1205671
CVE-2022-41858).
- commit 99b5127
- dm: remove unnecessary assignment statement in alloc_dev()
(git-fixes).
- md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk()
(git-fixes).
- md/raid5: Ensure stripe_fill happens on non-read IO with journal
(git-fixes).
- commit 79ca470
- md: Replace snprintf with scnprintf (git-fixes, bsc#1164051).
- Replace the in-house patch by the above upstream version,
patches.suse/md-raid0-fix-buffer-overflow-at-debug-print.patch.
- commit e122ea5
- dm: return early from dm_pr_call() if DM device is suspended
(git-fixes).
- dm thin: fix use-after-free crash in
dm_sm_register_threshold_callback (git-fixes).
- dm raid: fix accesses beyond end of raid member array
(git-fixes).
- dm mirror log: clear log bits up to BITS_PER_LONG boundary
(git-fixes).
- dm era: commit metadata in postsuspend after worker stops
(git-fixes).
- dm crypt: make printing of the key constant-time (git-fixes).
- dm stats: add cond_resched when looping over entries
(git-fixes).
- dm integrity: fix memory corruption when tag_size is less than
digest size (git-fixes).
- dm: fix double accounting of flush with data (git-fixes).
- dm: interlock pending dm_io and dm_wait_for_bios_completion
(git-fixes).
- dm: properly fix redundant bio-based IO accounting (git-fixes).
- dm: revert partial fix for redundant bio-based IO accounting
(git-fixes).
- dm btree remove: fix use after free in rebalance_children()
(git-fixes).
- commit 6214ae1
- blacklist.conf: add non-backport git-fixes commit
- commit 054a1a9
- NFSD: Cap rsize_bop result based on send buffer size
(bsc#1205128 CVE-2022-43945).
- NFSD: Protect against send buffer overflow in NFSv3 READ
(bsc#1205128 CVE-2022-43945).
- NFSD: Protect against send buffer overflow in NFSv2 READ
(bsc#1205128 CVE-2022-43945).
- NFSD: Protect against send buffer overflow in NFSv3 READDIR
(bsc#1205128 CVE-2022-43945).
- NFSD: Protect against send buffer overflow in NFSv2 READDIR
(bsc#1205128 CVE-2022-43945).
- SUNRPC: Fix svcxdr_init_encode's buflen calculation (bsc#1205128
CVE-2022-43945).
- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation
(bsc#1205128 CVE-2022-43945).
- commit dd4f720
- xfs: reserve quota for dir expansion when linking/unlinking
files (bsc#1205616).
- commit 1330e05
- add another bug reference to some hyperv changes (bsc#1205617).
- commit 0b5e3d4
- net/smc: kABI workarounds for struct smc_sock (git-fixes).
- commit d9f52e8
- blacklist.conf: kABI
- commit f550bb4
- tracing: kprobe: Fix potential null-ptr-deref on trace_array
in kprobe_event_gen_test_exit() (git-fixes).
- commit dc34c13
- tracing: kprobe: Fix potential null-ptr-deref on
trace_event_file in kprobe_event_gen_test_exit() (git-fixes).
- commit 23caa81
- tracing: Fix wild-memory-access in register_synth_event()
(git-fixes).
- commit 9bbef30
- tracing: Fix memory leak in test_gen_synth_cmd() and
test_empty_synth_event() (git-fixes).
- commit 68dace2
- ftrace: Fix null pointer dereference in ftrace_add_mod()
(git-fixes).
- commit 2e9b117
- ring_buffer: Do not deactivate non-existant pages (git-fixes).
- commit 0458d7a
- ftrace: Optimize the allocation for mcount entries (git-fixes).
- commit 5b2b25a
- ftrace: Fix the possible incorrect kernel message (git-fixes).
- commit 7323c8c
- tracing: Fix memory leak in tracing_read_pipe() (git-fixes).
- commit 690c08a
- net/smc: kABI workarounds for struct smc_link (git-fixes).
- commit 0cbe94a
- ring-buffer: Include dropped pages in counting dirty patches
(git-fixes).
- commit 11920bc
- blacklist.conf: duplicate
- commit ddd82f9
- powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395).
- Refresh patches.suse/gup-Turn-fault_in_pages_-readable-writeable-into-fault_in_-readable-writeable.patch.
- commit aec526a
- blacklist.conf: duplicate
- commit dcdcbbd
- MIPS: Loongson: Use hwmon_device_register_with_groups() to
register hwmon (git-fixes).
- commit 16f21a3
- tracing/ring-buffer: Have polling block on watermark
(git-fixes).
- commit 5c3e4d5
- powerpc/pseries/vas: Declare pseries_vas_fault_thread_fn()
as static (bsc#1194869).
- commit 02a3582
- ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes).
- commit f98b221
- blacklist.conf: kABI
- commit 431bd9c
- blacklist.conf: duplicate
- commit 53c7bfc
- platform/x86/intel: hid: add quirk to support Surface Go 3
(git-fixes).
- commit 23ccaa2
- blacklist.conf: too intrusive
- commit 67ad270
- powerpc/boot: Explicitly disable usage of SPE instructions
(bsc#1156395).
- commit 7c94cdb
- blacklist.conf: Add fixes for unsupported platforms
- commit 10ca02b
- net: smsc95xx: add support for Microchip EVB-LAN8670-USB
(git-fixes).
- commit af40ba9
- Update patch reference for rtl8712 driver fix (CVE-2022-4095 bsc#1205514)
- commit 67f2ad4
- usbnet: smsc95xx: Don't reset PHY behind PHY driver's back
(git-fixes).
- commit b693ef6
- usb: smsc: use eth_hw_addr_set() (git-fixes).
- commit 67dd1e9
- powerpc/64: Fix build failure with allyesconfig in
book3s_64_entry.S (bsc#1194869).
- commit 6d56eff
- patches.suse/btrfs-fix-deadlock-between-quota-enable-and-other-qu.patch:
(bsc#1205521).
- commit a75b0e8
- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41
(git-fixes).
- commit c6c293f
- ASoC: soc-utils: Remove __exit for snd_soc_util_exit()
(git-fixes).
- commit 287b2ba
- Input: i8042 - fix leaking of platform device on module removal
(git-fixes).
- Input: iforce - invert valid length check when fetching device
IDs (git-fixes).
- drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()
(git-fixes).
- drm/drv: Fix potential memory leak in drm_dev_init()
(git-fixes).
- drm/panel: simple: set bpc field for logic technologies displays
(git-fixes).
- drm/vc4: kms: Fix IS_ERR() vs NULL check for vc4_kms
(git-fixes).
- usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes).
- usb: typec: mux: Enter safe mode only when pins need to be
reconfigured (git-fixes).
- Revert "/usb: dwc3: disable USB core PHY management"/ (git-fixes).
- serial: 8250: Flush DMA Rx on RLSI (git-fixes).
- serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs
(git-fixes).
- tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send
(git-fixes).
- Revert "/tty: n_gsm: replace kicktimer with delayed_work"/
(git-fixes).
- Revert "/tty: n_gsm: avoid call of sleeping functions from
atomic context"/ (git-fixes).
- serial: imx: Add missing .thaw_noirq hook (git-fixes).
- tty: serial: fsl_lpuart: don't break the on-going transfer
when global reset (git-fixes).
- serial: 8250: omap: Flush PM QOS work on remove (git-fixes).
- serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in
omap8250_remove() (git-fixes).
- serial: 8250_omap: remove wait loop from Errata i202 workaround
(git-fixes).
- firmware: coreboot: Register bus in module init (git-fixes).
- slimbus: stream: correct presence rate frequencies (git-fixes).
- parport_pc: Avoid FIFO port location truncation (git-fixes).
- siox: fix possible memory leak in siox_device_add() (git-fixes).
- misc/vmw_vmci: fix an infoleak in
vmci_host_do_receive_datagram() (git-fixes).
- speakup: fix a segfault caused by switching consoles
(git-fixes).
- iio: adc: at91_adc: fix possible memory leak in
at91_adc_allocate_trigger() (git-fixes).
- iio: adc: mp2629: fix potential array out of bound access
(git-fixes).
- iio: adc: mp2629: fix wrong comparison of channel (git-fixes).
- iio: pressure: ms5611: changed hardcoded SPI speed to value
limited (git-fixes).
- iio: trigger: sysfs: fix possible memory leak in
iio_sysfs_trig_init() (git-fixes).
- ASoC: tas2764: Fix set_tdm_slot in case of single slot
(git-fixes).
- ASoC: tas2770: Fix set_tdm_slot in case of single slot
(git-fixes).
- ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes).
- mmc: sdhci-pci: Fix possible memory leak caused by missing
pci_dev_put() (git-fixes).
- mmc: core: properly select voltage range without power cycle
(git-fixes).
- commit 5d6506d
- net/smc: Fix possible leaked pernet namespace in smc_init()
(git-fixes).
- net/smc: Fix an error code in smc_lgr_create() (git-fixes).
- net/smc: Fix possible access to freed memory in link clear
(git-fixes).
- net/smc: Fix slab-out-of-bounds issue in fallback (git-fixes).
- net/smc: Only save the original clcsock callback functions
(git-fixes).
- net/smc: Fix sock leak when release after smc_shutdown()
(git-fixes).
- net/smc: send directly on setting TCP_NODELAY (git-fixes).
- net/smc: Send directly when TCP_CORK is cleared (git-fixes).
- net/smc: Avoid overwriting the copies of clcsock callback
functions (git-fixes).
- net/smc: Forward wakeup to smc socket waitqueue after fallback
(git-fixes).
- commit a5aa4ad
- PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (git-fixes).
- x86/hyperv: fix invalid writes to MSRs during root partition kexec (git-fixes).
- clocksource/drivers/hyperv: add data structure for reference TSC MSR (git-fixes).
- Drivers: hv: fix repeated words in comments (git-fixes).
- HID: hyperv: fix possible memory leak in mousevsc_probe() (git-fixes).
- drm/hyperv: Add ratelimit on error message (git-fixes).
- scsi: storvsc: remove an extraneous "/to"/ in a comment (git-fixes).
- Drivers: hv: vmbus: Don't wait for the ACPI device upon initialization (git-fixes).
- Drivers: hv: vmbus: Use PCI_VENDOR_ID_MICROSOFT for better discoverability (git-fixes).
- Drivers: hv: vmbus: Fix kernel-doc (git-fixes).
- drm/hyperv: Don't overwrite dirt_needed value set by host (git-fixes).
- Drivers: hv: vmbus: Optimize vmbus_on_event (git-fixes).
- scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes).
- Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (git-fixes).
- Drivers: hv: Always reserve framebuffer region for Gen1 VMs (git-fixes).
- PCI: Move PCI_VENDOR_ID_MICROSOFT/PCI_DEVICE_ID_HYPERV_VIDEO definitions to pci_ids.h (git-fixes).
- tools: hv: kvp: remove unnecessary (void*) conversions (git-fixes).
- Drivers: hv: remove duplicate word in a comment (git-fixes).
- tools: hv: Remove an extraneous "/the"/ (git-fixes).
- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes).
- Drivers: hv: vmbus: Release cpu lock in error case (git-fixes).
- Drivers: hv: Fix syntax errors in comments (git-fixes).
- scsi: storvsc: Fix typo in comment (git-fixes).
- Drivers: hv: vmbus: fix typo in comment (git-fixes).
- PCI: hv: Add validation for untrusted Hyper-V values (git-fixes).
- x86/hyperv: Disable hardlockup detector by default in Hyper-V guests (git-fixes).
- Drivers: hv: vmbus: Accept hv_sock offers in isolated guests (git-fixes).
- hv_sock: Add validation for untrusted Hyper-V values (git-fixes).
- hv_sock: Copy packets sent by Hyper-V out of the ring buffer (git-fixes).
- hv_sock: Check hv_pkt_iter_first_raw()'s return value (git-fixes).
- Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes).
- hv_netvsc: Fix potential dereference of NULL pointer (git-fixes).
- hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes).
- net: hyperv: remove use of bpf_op_t (git-fixes).
- commit 5a5a746
- Update kabi files. Update using the released November MU kernel
5.14.21-150400.24.33.2
- commit b0daa6c
- sched: Clear ttwu_pending after enqueue_task() (git fixes
(sched/core)).
- commit 8216675
- soc: imx8m: Enable OCOTP clock before reading the register
(git-fixes).
- arm64: dts: imx8mn: Fix NAND controller size-cells (git-fixes).
- arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes).
- ARM: dts: imx7: Fix NAND controller size-cells (git-fixes).
- arm64: dts: qcom: sm8350-hdk: Specify which LDO modes are
allowed (git-fixes).
- arm64: dts: qcom: sm8250-xperia-edo: Specify which LDO modes
are allowed (git-fixes).
- arm64: dts: qcom: sm8150-xperia-kumano: Specify which LDO
modes are allowed (git-fixes).
- arm64: dts: qcom: sa8155p-adp: Specify which LDO modes are
allowed (git-fixes).
- net: thunderbolt: Fix error handling in tbnet_init()
(git-fixes).
- net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes).
- bridge: switchdev: Fix memory leaks when changing VLAN protocol
(git-fixes).
- net: phy: marvell: add sleep time after enabling the loopback
bit (git-fixes).
- mISDN: fix misuse of put_device() in mISDN_register_device()
(git-fixes).
- mISDN: fix possible memory leak in mISDN_dsp_element_register()
(git-fixes).
- commit f0f96f8
- soundwire: intel: Initialize clock stop timeout (bsc#1205507).
- commit ed7ad85
- io_uring: fix io_timeout_remove locking (git-fixes).
- io_uring: correct __must_hold annotation (git-fixes).
- commit afa1999
- Update metadata references
- commit 48537d5
- KVM: SVM: move guest vmsave/vmload back to assembly (git-fixes).
- commit 64aefe3
- KVM: SVM: retrieve VMCB from assembly (git-fixes).
- commit fdd0aa2
- blk-mq: Properly init requests from blk_mq_alloc_request_hctx()
(git-fixes).
- rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes).
- blk-wbt: call rq_qos_add() after wb_normal is initialized
(git-fixes).
- block: blk_queue_enter() / __bio_queue_enter() must return
- EAGAIN for nowait (git-fixes).
- blk-mq: fix io hung due to missing commit_rqs (git-fixes).
- block/rnbd-srv: Set keep_id to true after mutex_trylock
(git-fixes).
- blktrace: Trace remapped requests correctly (git-fixes).
- blk-mq: don't create hctx debugfs dir until q->debugfs_dir is
created (git-fixes).
- block: add bio_start_io_acct_time() to control start_time
(git-fixes).
- blk-cgroup: fix missing put device in error path from
blkg_conf_pref() (git-fixes).
- commit 58eed28
- nbd: Fix incorrect error handle when first_minor is illegal
in nbd_dev_add (git-fixes).
- Refresh for the above change,
patches.suse/0002-nbd-fix-possible-overflow-on-first_minor-in-nbd_dev_.patch.
- commit 8281951
- KVM: SVM: adjust register allocation for __svm_vcpu_run()
(git-fixes).
- commit 7b25718
- KVM: SVM: replace regs argument of __svm_vcpu_run() with
vcpu_svm (git-fixes).
- commit 7867341
- KVM: x86: use a separate asm-offsets.c file (git-fixes).
- commit 0602ab1
- KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest
(git-fixes).
- commit 499c3ca
- drm/amdkfd: Migrate in CPU page fault use current mm
(git-fixes).
- commit f476661
- pinctrl: devicetree: fix null pointer dereferencing in
pinctrl_dt_to_map (git-fixes).
- pinctrl: rockchip: list all pins in a possible mux route for
PX30 (git-fixes).
- platform/surface: aggregator: Do not check for repeated
unsequenced packets (git-fixes).
- platform/x86/intel: pmc: Don't unconditionally attach Intel
PMC when virtualized (git-fixes).
- arm64: efi: Fix handling of misaligned runtime regions and
drop warning (git-fixes).
- ata: libata-scsi: fix SYNCHRONIZE CACHE (16) command failure
(git-fixes).
- nilfs2: fix use-after-free bug of ns_writer on remount
(git-fixes).
- mmc: sdhci_am654: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
- mmc: sdhci-tegra: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
- mms: sdhci-esdhc-imx: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
- mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes).
- mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI
(git-fixes).
- ALSA: hda: fix potential memleak in 'add_widget_node'
(git-fixes).
- ALSA: hda/realtek: Add Positivo C6300 model quirk (git-fixes).
- ALSA: usb-audio: Add DSD support for Accuphase DAC-60
(git-fixes).
- ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes).
- ALSA: hda/hdmi - enable runtime pm for more AMD display audio
(git-fixes).
- ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes).
- drm/amdgpu: disable BACO on special BEIGE_GOBY card (git-fixes).
- wifi: ath11k: avoid deadlock during regulatory update in
ath11k_regd_update() (git-fixes).
- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
(git-fixes).
- drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram()
(git-fixes).
- thunderbolt: Add DP OUT resource when DP tunnel is discovered
(git-fixes).
- drm/amdkfd: handle CPU fault on COW mapping (git-fixes).
- drm/amdkfd: avoid recursive lock in migrations back to RAM
(git-fixes).
- commit 438c140
- KVM: x86: Treat #DBs from the emulator as fault-like (code
and DR7.GD=1) (git-fixes).
- commit 89491ed
- KVM: x86: Report error when setting CPUID if Hyper-V allocation
fails (git-fixes).
- commit 335e5aa
- virtio-blk: Use blk_validate_block_size() to validate block size
(git-fixes).
- block: drop unused includes in <linux/genhd.h> (git-fixes).
- commit a549255
- blacklist.conf: add commits suggested by git-fixes which won't be backported
- commit d1fe12d
- KVM: SVM: Disable SEV-ES support if MMIO caching is disable
(git-fixes).
- commit d6a15a7
- KVM: x86/mmu: fix memoryleak in kvm_mmu_vendor_module_init()
(git-fixes).
- commit ce66979
- KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff
it exists (git-fixes).
- commit 3387324
- KVM: VMX: Add helper to check if the guest PMU has
PERF_GLOBAL_CTRL (git-fixes).
- commit 1b36b28
- KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if
there's no vPMU (git-fixes).
- commit 3ada3ae
- tcp: Fix data races around icsk->icsk_af_ops (CVE-2022-3566
bsc#1204405).
- commit f7cc985
- ipv6: Fix data races around sk->sk_prot (CVE-2022-3567
bsc#1204414).
- ipv6: annotate some data-races around sk->sk_prot (CVE-2022-3567
bsc#1204414).
- commit 654a4f7
- KVM: nVMX: Rename handle_vm{on,off}() to handle_vmx{on,off}()
(git-fixes).
- commit 7218ba7
- KVM: nVMX: Always enable TSC scaling for L2 when it was enabled
for L1 (git-fixes).
- commit b0f3ab9
- KVM: x86: Fully initialize 'struct kvm_lapic_irq' in
kvm_pv_kick_cpu_op() (git-fixes).
- commit 81fd9e6
- KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS)
(git-fixes).
- commit 1a1eab3
- KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS
is supported (git-fixes).
- commit e7e1382
- KVM: SEV: Mark nested locking of vcpu->lock (git-fixes).
- commit 5f6bf6f
- KVM: x86/svm: Account for family 17h event renumberings in
amd_pmc_perf_hw_id (git-fixes).
- commit e3ae104
- KVM: x86: avoid loading a vCPU after .vm_destroy was called
(git-fixes).
- commit 29af845
- KVM: Move wiping of the kvm->vcpus array to common code
(git-fixes).
- commit 9720dc5
- s390/pci: add missing EX_TABLE entries to
__pcistg_mio_inuser()/__pcilg_mio_inuser() (bsc#1205427
LTC#200502).
- s390/futex: add missing EX_TABLE entry to __futex_atomic_op()
(bsc#1205427 LTC#200502).
- s390/uaccess: add missing EX_TABLE entries to __clear_user(),
copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc()
and __strnlen_user() (bsc#1205428 LTC#200501).
- commit ad7cfae
- nilfs2: fix deadlock in nilfs_count_free_blocks() (git-fixes).
- dmaengine: at_hdmac: Check return code of
dma_async_device_register (git-fixes).
- dmaengine: at_hdmac: Fix impossible condition (git-fixes).
- dmaengine: at_hdmac: Don't allow CPU to reorder channel enable
(git-fixes).
- dmaengine: at_hdmac: Fix completion of unissued descriptor in
case of errors (git-fixes).
- dmaengine: at_hdmac: Fix descriptor handling when issuing it
to hardware (git-fixes).
- spi: stm32: Print summary 'callbacks suppressed' message
(git-fixes).
- mmc: sdhci-esdhc-imx: use the correct host caps for
MMC_CAP_8_BIT_DATA (git-fixes).
- drm/i915/dmabuf: fix sg_table handling in map_dma_buf
(git-fixes).
- drm/vc4: Fix missing platform_unregister_drivers() call in
vc4_drm_register() (git-fixes).
- nilfs2: replace WARN_ONs by nilfs_error for checkpoint
acquisition failure (git-fixes).
- commit f7fc242
- dmaengine: at_hdmac: Fix concurrency over the active list
(git-fixes).
- dmaengine: at_hdmac: Free the memset buf without holding the
chan lock (git-fixes).
- dmaengine: at_hdmac: Fix concurrency over descriptor
(git-fixes).
- dmaengine: at_hdmac: Fix concurrency problems by removing
atc_complete_all() (git-fixes).
- dmaengine: at_hdmac: Protect atchan->status with the channel
lock (git-fixes).
- dmaengine: at_hdmac: Do not call the complete callback on
device_terminate_all (git-fixes).
- dmaengine: at_hdmac: Fix premature completion of desc in
issue_pending (git-fixes).
- dmaengine: at_hdmac: Start transfer for cyclic channels in
issue_pending (git-fixes).
- dmaengine: at_hdmac: Don't start transactions at tx_submit level
(git-fixes).
- dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes).
- commit 718fc6d
- KVM: x86/pmu: Update AMD PMC sample period to fix guest
NMI-watchdog (git-fixes).
- commit d582f6e
- ata: libata-transport: fix error handling in ata_tdev_add()
(git-fixes).
- ata: libata-transport: fix error handling in ata_tlink_add()
(git-fixes).
- ata: libata-transport: fix error handling in ata_tport_add()
(git-fixes).
- ata: libata-transport: fix double ata_host_put() in
ata_tport_add() (git-fixes).
- dmaengine: ti: k3-udma-glue: fix memory leak when register
device fail (git-fixes).
- dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove()
(git-fixes).
- dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes).
- commit 3e58402
- x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473).
- commit d022167
- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses
(git-fixes).
- commit af8969b
- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits
(git-fixes).
- commit 4c10c2f
- x86/futex: Remove .fixup usage (git-fixes).
- commit 687839d
- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy
Book Pro 360 (bsc#1205100).
- ALSA: hda/realtek: fix speakers for Samsung Galaxy Book Pro
(bsc#1205100).
- commit ca2ce49
- x86/extable: Extend extable functionality (git-fixes).
- commit 28f726d
- x86/microcode/AMD: Apply the patch early on every logical thread
(bsc#1205264).
- commit 6805cb3
- x86/uaccess: Implement macros for CMPXCHG on user addresses
(git-fixes).
- commit 680ab7c
- Kconfig: Add option for asm goto w/ tied outputs to workaround
clang-13 bug (git-fixes).
- Refresh config.
- commit 7888244
- KVM: x86/pmu: Fix and isolate TSX-specific performance event
logic (git-fixes).
- commit e13feb1
- kABI: Fix kABI after "/KVM: x86/pmu: Use different raw event
masks for AMD and Intel"/ (git-fixes).
- commit d086901
- KVM: x86/pmu: Use different raw event masks for AMD and Intel
(git-fixes).
- commit fd5bd7c
- xen/gntdev: Accommodate VMA splitting (git-fixes).
- commit 0745691
- KVM: x86/mmu: WARN if old _or_ new SPTE is REMOVED in non-atomic
path (git-fixes).
- commit bc980a8
- KVM: x86/mmu: Fix wrong/misleading comments in TDP MMU fast zap
(git-fixes).
- commit d3e6160
- blacklist.conf: add fcb732d8f8cf ("/KVM: x86/xen: Fix runstate
updates to be atomic when preempting vCPU"/)
- commit d42ecb5
- blacklist.conf: add 55749769fe60 ("/KVM: x86: Fix wall clock writes
in Xen shared_info not to mark page dirty"/)
- commit 08e6ef4
- KVM: x86: Mask off reserved bits in CPUID.80000001H (git-fixes).
- commit a7fc31c
- KVM: x86: emulator: update the emulation mode after CR0 write
(git-fixes).
- commit f0c4a2c
- KVM: x86: emulator: update the emulation mode after rsm
(git-fixes).
- commit debb42a
- KVM: x86: emulator: introduce emulator_recalc_and_set_mode
(git-fixes).
- commit a9da797
- KVM: x86: emulator: em_sysexit should update ctxt->mode
(git-fixes).
- commit e252f98
- KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING
unavailable (git-fixes).
- commit f452678
- KVM: x86: Mask off reserved bits in CPUID.8000001AH (git-fixes).
- commit c7494f8
- KVM: x86: Mask off reserved bits in CPUID.80000008H (git-fixes).
- commit b042017
- KVM: x86: Mask off reserved bits in CPUID.80000006H (git-fixes).
- commit ce5ff67
- KVM: VMX: Drop bits 31:16 when shoving exception error code
into VMCS (git-fixes).
- commit e0caade
- Update patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch
Patch (44b3834b2eed5 "/arm64: errata: Remove AES hwcap for COMPAT tasks"/) added
new workaround identifier. Remove one placeholder to keep kABI intact.
- commit e23b992
- arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes)
Enable CONFIG_ARM64_ERRATUM_1742098 in arm64/default
- commit fbe1536
- arm64: Fix bit-shifting UB in the MIDR_CPU_MODEL() macro (git-fixes)
- commit c70ddd5
- arm64: fix rodata=full again (git-fixes)
- commit 62260a8
- kabi: sk_buff.scm_io_uring (bsc#1204228 CVE-2022-2602).
- commit 9a9bd27
- scsi: scsi_transport_sas: Fix error handling in sas_phy_add()
(git-fixes).
- scsi: megaraid_sas: Correct value passed to scsi_device_lookup()
(git-fixes).
- scsi: qedf: Populate sysfs attributes for vport (git-fixes).
- scsi: mpt3sas: Fix return value check of dma_get_required_mask()
(git-fixes).
- commit 71fe2f3
- intel_idle: make SPR C1 and C1E be independent (jsc#PED-1936).
- commit 6f9a5d3
- cpuidle: intel_idle: Drop redundant backslash at line end (jsc#PED-1936).
- commit 593da52
- cpufreq: intel_pstate: Support Sapphire Rapids OOB mode (jsc#PED-849).
- commit 4bf905f
- cpufreq: intel_pstate: Handle no_turbo in frequency invariance (jsc#PED-849).
- commit 41e314e
- intel_idle: Fix SPR C6 optimization (jsc#PED-824 jsc#PED-1936).
- commit 29ea7f2
- intel_idle: Fix the 'preferred_cstates' module parameter (jsc#PED-824 jsc#PED-1936).
- commit 07146fb
- intel_idle: Add AlderLake support (jsc#PED-824).
- commit 6094f58
- panic, kexec: make __crash_kexec() NMI safe (git-fixes).
- kexec: turn all kexec_mutex acquisitions into trylocks
(git-fixes).
- commit 1a14cb1
- KVM: VMX: clear vmx_x86_ops.sync_pir_to_irr if APICv is disabled
(bsc#1205007).
- commit a0ddd6a
- io_uring/af_unix: defer registered files gc to io_uring release
(bsc#1204228 CVE-2022-2602).
- commit 52299ff
- fuse: add file_modified() to fallocate (bsc#1205332).
- fuse: fix readdir cache race (bsc#1205331).
- commit 75f741e
- netfilter: nfnetlink_osf: fix possible bogus match in
nf_osf_find() (bsc#1204614).
- commit aa8c5d3
- net: phy: mscc: macsec: clear encryption keys when freeing a
flow (git-fixes).
- macsec: clear encryption keys from the stack after setting up
offload (git-fixes).
- macsec: fix detection of RXSCs when toggling offloading
(git-fixes).
- macsec: fix secy->n_rx_sc accounting (git-fixes).
- macsec: delete new rxsc when offload fails (git-fixes).
- wifi: cfg80211: fix memory leak in query_regdb_file()
(git-fixes).
- wifi: cfg80211: silence a sparse RCU warning (git-fixes).
- soundwire: qcom: check for outanding writes before doing a read
(git-fixes).
- soundwire: qcom: reinit broadcast completion (git-fixes).
- phy: ralink: mt7621-pci: add sentinel to quirks table
(git-fixes).
- phy: stm32: fix an error code in probe (git-fixes).
- mtd: parsers: bcm47xxpart: Fix halfblock reads (git-fixes).
- media: v4l: subdev: Fail graciously when getting try data for
NULL state (git-fixes).
- media: meson: vdec: fix possible refcount leak in vdec_probe()
(git-fixes).
- media: dvb-frontends/drxk: initialize err to 0 (git-fixes).
- media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE
(git-fixes).
- media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (git-fixes).
- media: rkisp1: Zero v4l2_subdev_format fields in when validating
links (git-fixes).
- media: rkisp1: Use correct macro for gradient registers
(git-fixes).
- media: rkisp1: Initialize color space on resizer sink and
source pads (git-fixes).
- media: rkisp1: Don't pass the quantization to
rkisp1_csm_config() (git-fixes).
- mtd: parsers: bcm47xxpart: print correct offset on read error
(git-fixes).
- video/fbdev/stifb: Implement the stifb_fillrect() function
(git-fixes).
- commit 5883e57
- can: j1939: j1939_send_one(): fix missing CAN header
initialization (git-fixes).
- can: af_can: fix NULL pointer dereference in can_rx_register()
(git-fixes).
- hamradio: fix issue of dev reference count leakage in
bpq_device_event() (git-fixes).
- efi: random: Use 'ACPI reclaim' memory for random seed
(git-fixes).
- efi: random: reduce seed size to 32 bytes (git-fixes).
- drm/i915/sdvo: Setup DDC fully before output init (git-fixes).
- drm/i915/sdvo: Filter out invalid outputs more sensibly
(git-fixes).
- drm/rockchip: dsi: Force synchronous probe (git-fixes).
- Bluetooth: L2CAP: Fix attempting to access uninitialized memory
(git-fixes).
- Bluetooth: L2CAP: Fix accepting connection request for invalid
SPSM (git-fixes).
- drm/msm/hdmi: fix IRQ lifetime (git-fixes).
- i2c: xiic: Add platform module alias (git-fixes).
- ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init()
(git-fixes).
- HID: saitek: add madcatz variant of MMO7 mouse device ID
(git-fixes).
- HID: playstation: add initial DualSense Edge controller support
(git-fixes).
- drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid
in SRIOV case (git-fixes).
- drm/msm/hdmi: Remove spurious IRQF_ONESHOT flag (git-fixes).
- commit 5a3b429
- x86/fpu: Drop fpregs lock before inheriting FPU permissions
(bnc#1205282).
- commit bbde2ef
- blacklist.conf: cleanup designed to break kABI
- commit e1ca2ce
- blacklist.conf: cleanup designed to break kABI
- commit 3471afe
- ipv6: ping: fix wrong checksum for large frames (bsc#1203183).
- commit f29a164
- io_uring: disable polling signalfd pollfree files (CVE-2022-3176
bsc#1203391).
- commit ff11e05
- blacklist.conf: kABI
- commit 52ff77d
- blacklist.conf: prerequisites would break kABI
- commit 3f3b1f5
- blacklist.conf: this patch would need an inordinary number of
prerequisites for a race in a corner case
- commit 4987ef8
- blacklist.conf: kABI
- commit 29e4b4e
- Update patch metadata for media fix (CVE-2022-3903 bsc#1205220)
- commit 899a453
- capabilities: fix undefined behavior in bit shift for
CAP_TO_MASK (git-fixes).
- capabilities: fix potential memleak on error path from
vfs_getxattr_alloc() (git-fixes).
- commit 9091aa0
- Update patches.suse/scsi-ibmvfc-Avoid-path-failures-during-live-migratio.patch
(bsc#1065729 bsc#1204810 ltc#200162).
- commit ba4e679
- drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (bsc#1204780, CVE-2022-3707)
- commit 3d29636
- scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
(bsc#1156395).
- commit 32de176
- Refresh patches.suse/scsi-ibmvfc-Do-not-wait-for-initial-device-scan.patch.
Refresh to upstream version of patch.
- commit aba4ad9
- Refresh sorted patches.
- commit 3d3be93
- scsi: ibmvfc: Avoid path failures during live migration
(bsc#1065729).
- commit 2f0fa7f
- Update patches.suse/arm64-Add-AMPERE1-to-the-Spectre-BHB-affected-list.patch (git-fixes, bsc#1205153).
Add reference to bsc#1205153.
- commit 08070be
- arm64: Add AMPERE1 to the Spectre-BHB affected list (git-fixes).
- arm64: errata: Add Cortex-A55 to the repeat tlbi list (git-fixes).
Enable CONFIG_ARM64_ERRATUM_2441007, too
- commit 57ef351
- ALSA: usb-audio: Remove redundant workaround for Roland quirk
(bsc#1205111).
- ALSA: usb-audio: Yet more regression for for the delayed card
registration (bsc#1205111).
- commit fdb6d05
- rpm/check-for-config-changes: add TOOLCHAIN_HAS_* to IGNORED_CONFIGS_RE
This new form was added in commit b8c86872d1dc (riscv: fix detection of
toolchain Zicbom support).
- commit e9f2ba6
- tracing: kprobe: Fix memory leak in
test_gen_kprobe/kretprobe_cmd() (git-fixes).
- commit 4b18e0d
- io-wq: don't retry task_work creation failure on fatal
conditions (bnc#1205113).
- io-wq: Remove duplicate code in io_workqueue_create()
(bnc#1205113).
- io-wq: fix silly logic error in io_task_work_match()
(bnc#1205113).
- io-wq: fix cancellation on create-worker failure (bnc#1205113).
- commit f9f6f38
- Add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149)
- commit 888e01e
- cifs: fix use-after-free on the link name (bsc#1193629).
- commit c8e18d6
- cifs: avoid unnecessary iteration of tcp sessions (bsc#1193629).
- commit 3b19f83
- cifs: always iterate smb sessions using primary channel
(bsc#1193629).
- commit 5cac47b
- cifs: fix use-after-free caused by invalid pointer `hostname`
(bsc#1193629).
- commit 6bd980d
- cifs: Fix pages leak when writedata alloc failed in
cifs_write_from_iter() (bsc#1193629).
- commit 4170ae6
- cifs: Fix pages array leak when writedata alloc failed in
cifs_writedata_alloc() (bsc#1193629).
- commit b7ff361
- Move upstreamed tracing patch into sorted section
- commit c9209ac
- hv_netvsc: Fix race between VF offering and VF association
message from host (bsc#1204850).
- commit e9c6d7c
- arm64: entry: avoid kprobe recursion (git-fixes).
- Documentation: devres: add missing I2C helper (git-fixes).
- i2c: piix4: Fix adapter not be removed in piix4_remove()
(git-fixes).
- efi/tpm: Pass correct address to memblock_reserve (git-fixes).
- arm64: dts: juno: Add thermal critical trip points (git-fixes).
- firmware: arm_scmi: Make Rx chan_setup fail on memory errors
(git-fixes).
- firmware: arm_scmi: Suppress the driver's bind attributes
(git-fixes).
- arm64: dts: ls208xa: specify clock frequencies for the MDIO
controllers (git-fixes).
- arm64: dts: ls1088a: specify clock frequencies for the MDIO
controllers (git-fixes).
- arm64: dts: lx2160a: specify clock frequencies for the MDIO
controllers (git-fixes).
- dt-bindings: power: gpcv2: add power-domains property
(git-fixes).
- arm64: dts: imx8: correct clock order (git-fixes).
- ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset
(git-fixes).
- commit 9fbcbe8
- Move upstreamed patches into sorted section
- commit 490afd7
- x86/sev: Don't use cc_platform_has() for early SEV-SNP calls
(bsc#1204970).
- x86/boot: Don't propagate uninitialized
boot_params->cc_blob_address (bsc#1204970).
- x86/boot: Fix the setup data types max limit (bsc#1204970).
- x86/compressed/64: Add identity mappings for setup_data entries
(bsc#1204970).
- x86/sev: Annotate stack change in the #VC handler (bsc#1204970).
- x86/sev: Remove duplicated assignment to variable info
(bsc#1204970).
- commit 1ad6c0c
- selftests/pidfd_test: Remove the erroneous ',' (git-fixes).
- vsock: fix possible infinite sleep in
vsock_connectible_wait_data() (git-fixes).
- vsock: remove the unused 'wait' in vsock_connectible_recvmsg()
(git-fixes).
- mISDN: fix possible memory leak in mISDN_register_device()
(git-fixes).
- rose: Fix NULL pointer dereference in rose_send_frame()
(git-fixes).
- nfc: nfcmrvl: Fix potential memory leak in
nfcmrvl_i2c_nci_send() (git-fixes).
- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
(git-fixes).
- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
(git-fixes).
- nfc: fdp: Fix potential memory leak in fdp_nci_send()
(git-fixes).
- xhci: Remove device endpoints from bandwidth list when freeing
the device (git-fixes).
- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or
later devices (git-fixes).
- xhci: Add quirk to reset host back to default state at shutdown
(git-fixes).
- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being
a V0.96 controller (git-fixes).
- kernfs: fix use-after-free in __kernfs_remove (git-fixes).
- serial: core: move RS485 configuration tasks from drivers into
core (git-fixes).
- commit 356bf7e
- ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes).
- Bluetooth: virtio_bt: Use skb_put to set length (git-fixes).
- Bluetooth: L2CAP: Fix use-after-free caused by
l2cap_reassemble_sdu (git-fixes).
- isdn: mISDN: netjet: fix wrong check of device registration
(git-fixes).
- fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes).
- commit 9e67c0b
- Move upstreamed BT fixes into sorted section
- commit 9cff1e2
- blacklist.conf: add 8250_mtk entry that was reverted
- commit c43b30f
- IB/core: Fix a nested dead lock as part of ODP flow (git-fixes)
- commit 6f2ee60
- Update kabi files. Refresh from Nov 2022 MU - 5.14.21-150400.24.28.1
- commit a5edbce
- ALSA: hiface: fix repeated words in comments (git-fixes).
- commit 1897e56
- ALSA: scarlett2: Add Focusrite Clarett+ 8Pre support
(git-fixes).
- ALSA: scarlett2: Add support for the internal "/standalone"/
switch (git-fixes).
- ALSA: scarlett2: Split scarlett2_config_items[] into 3 sections
(git-fixes).
- ALSA: usb-audio: scarlett2: Use struct_size() helper in
scarlett2_usb() (git-fixes).
- commit 51a746f
- ALSA: usb-audio: Add mixer mapping for Gigabyte B450/550 Mobos
(git-fixes).
- Refresh
patches.suse/ALSA-usb-audio-More-comprehensive-mixer-map-for-ASUS.patch.
- commit aad3dbe
- ALSA: line6: remove line6_set_raw declaration (git-fixes).
- ALSA: usb-audio: Add quirk to enable Avid Mbox 3 support
(git-fixes).
- ALSA: usb-audio: make read-only array marker static const
(git-fixes).
- ALSA: line6: Replace sprintf() with sysfs_emit() (git-fixes).
- ALSA: usb/6fire: fix repeated words in comments (git-fixes).
- ALSA: usb-audio: remove redundant assignment to variable c
(git-fixes).
- commit 7b36d72
- ring-buffer: Check for NULL cpu_buffer in
ring_buffer_wake_waiters() (bsc#1204705).
- commit 2e712ad
- Refresh patches.suse/ppc64-kdump-Limit-kdump-base-to-512MB.patch
to upstream version.
- commit 0f63234
- Update patch references to
patches.suse/0001-floppy-disable-FDRAWCMD-by-default.patch
(bsc#1200692 CVE-2022-33981).
- commit 913147c
- scsi: scsi_transport_fc: Use %u for dev_loss_tmo (bsc#1202914).
- commit 0d14223
- iommu/vt-d: Do not falsely log intel_iommu is unsupported
kernel option (bsc#1204947).
- commit 440c18c
- wifi: brcmfmac: Fix potential buffer overflow in
brcmf_fweh_event_worker() (CVE-2022-3628 bsc#1204868).
- commit 968feec
- Drop Dell Dock regression fix patch again (bsc#1204719)
It tunred out to be bogus, a different fix is needed
- commit 2c62bb9
- scsi: lpfc: Update the obsolete adapter list (bsc#1204142).
- commit dc8f2da
- scsi: qla2xxx: Use transport-defined speed mask for
supported_speeds (bsc#1204963).
- scsi: qla2xxx: Fix serialization of DCBX TLV data request
(bsc#1204963).
- commit d6d1732
- Move upstreamed sound patches into sorted section
- commit a5b0f8c
- ALSA: usb-audio: Fix regression with Dell Dock jack detection
(bsc#1204719).
- commit ec69ec6
- scsi: lpfc: Update lpfc version to 14.2.0.8 (bsc#1204957).
- scsi: lpfc: Create a sysfs entry called lpfc_xcvr_data for
transceiver info (bsc#1204957).
- scsi: lpfc: Log when congestion management limits are in effect
(bsc#1204957).
- scsi: lpfc: Fix hard lockup when reading the rx_monitor from
debugfs (bsc#1204957).
- scsi: lpfc: Set sli4_param's cmf option to zero when CMF is
turned off (bsc#1204957).
- scsi: lpfc: Fix spelling mistake "/unsolicted"/ -> "/unsolicited"/
(bsc#1204957).
- scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1204957).
- commit f06c1f8
- RDMA/irdma: Remove the unnecessary variable saddr (git-fixes)
[#] Conflicts:
[#] series.conf
- commit cc60033
- RDMA/irdma: Use net_type to check network type (git-fixes)
[#] Conflicts:
[#] series.conf
- commit cc0ac5a
- Drop verbose nvme logging feature (bsc#1200567)
This feature caused regressions by logging all failed NVMe
commands. Though not all of them are actually a real
error. E.g. libnvme is probing for features and handling fails
correctly. Upstream fixed this by disabling this feature and looking
into making this an opt-in option.
- Delete patches.suse/nvme-add-verbose-error-logging.patch.
- Delete
patches.suse/nvme-don-t-print-verbose-errors-for-internal-passthr.patch.
- commit a82baa8
- RDMA/irdma: Validate udata inlen and outlen (git-fixes)
- commit c66230c
- RDMA/irdma: Add support for address handle re-use (git-fixes)
- commit 456aa9c
- RDMA/irdma: Move union irdma_sockaddr to header file (git-fixes)
- commit 01da806
- selftests/livepatch: better synchronize test_klp_callbacks_busy
(bsc#1071995).
- commit 82010dd
- livepatch: Add a missing newline character in
klp_module_coming() (bsc#1071995).
- commit 82368b9
- RDMA/srp: Support more than 255 rdma ports (git-fixes)
- commit 6da7233
- RDMA/srp: Handle dev_set_name() failure (git-fixes)
- commit 2aa5768
- RDMA/srp: Use the attribute group mechanism for sysfs attributes (git-fixes)
- commit ee393a3
- RDMA/srp: Rework the srp_add_port() error path (git-fixes)
- commit cf4fa33
- livepatch: fix race between fork and KLP transition
(bsc#1071995).
- commit bc0a77a
- RDMA/srpt: Introduce a reference count in struct srpt_device (git-fixes)
- commit fecc405
- RDMA/srpt: Fix a use-after-free (git-fixes)
- commit e0cd3e8
- RDMA/srpt: Duplicate port name members (git-fixes)
- commit accb2fe
- Update patches.suse/kbuild-Add-skip_encoding_btf_enum64-option-to-pahole.patch
(bsc#1204693).
- commit 9cde40b
- blacklist.conf: scripts/gdb: Allow to read printk log buffer on
32-bit systems; hardly needed by anyone
- commit c5107b2
- printk: wake waiters for safe and NMI contexts (bsc#1204934).
- commit ccf6fd7
- printk: use atomic updates for klogd work (bsc#1204934).
- commit 42aa5d7
- printk: add missing memory barrier to wake_up_klogd()
(bsc#1204934).
- commit 91ae0ab
- Revert "/workqueue: remove unused cancel_work()"/ (bsc#1204933).
- commit a8f292e
- signal: break out of wait loops on kthread_stop() (bsc#1204926).
- commit 1f81ec4
- net/mlx5e: Properly disable vlan strip on non-UL reps
(git-fixes).
- commit ea8a4bd
- net: ipvtap - add __init/__exit annotations to module init/exit
funcs (git-fixes).
- commit bcfb537
- bonding: 802.3ad: fix no transmission of LACPDUs (git-fixes).
- commit 0446df6
- net: moxa: get rid of asymmetry in DMA mapping/unmapping
(git-fixes).
- commit 6609905
- net: ipa: don't assume SMEM is page-aligned (git-fixes).
- commit 41f9dec
- stmmac: intel: Add a missing clk_disable_unprepare() call in
intel_eth_pci_remove() (git-fixes).
- commit bb8b4d3
- Update metadata references
- commit bdfc8f9
- Refresh
patches.suse/drm-bridge-lt8912b-fix-corrupted-image-output.patch.
Alt-commit
- commit f154e04
- Refresh
patches.suse/drm-bridge-lt8912b-set-hdmi-or-dvi-mode.patch.
Alt-commit
- commit 54a25a3
- Refresh patches.suse/drm-bridge-lt8912b-add-vsync-hsync.patch.
Alt-commit
- commit 6755cca
- Refresh
patches.suse/drm-amdgpu-don-t-register-a-dirty-callback-for-non-a.patch.
Alt-commit
- commit 5548e46
- Refresh
patches.suse/drm-msm-dsi-Fix-number-of-regulators-for-SDM660.patch.
Alt-commit
- commit c51fb10
- Refresh
patches.suse/drm-msm-dsi-Fix-number-of-regulators-for-msm8996_dsi.patch.
Alt-commit
- commit e910e60
- Refresh
patches.suse/drm-msm-dp-delete-DP_RECOVERED_CLOCK_OUT_EN-to-fix-t.patch.
Alt-commit
- commit 8f4fbd6
- Refresh
patches.suse/drm-amdgpu-make-sure-to-init-common-IP-before-gmc.patch.
Alt-commit
- commit d839738
- Refresh
patches.suse/drm-amdgpu-move-nbio-sdma_doorbell_range-into-sdma-c.patch.
Alt-commit
- commit 4202af7
- Refresh
patches.suse/drm-amdgpu-move-nbio-ih_doorbell_range-into-ih-code-.patch.
Alt-commit
- commit 6a84f94
- Refresh
patches.suse/drm-simpledrm-Fix-return-type-of-simpledrm_simple_di.patch.
Alt-commit
- commit c6e149e
- Refresh
patches.suse/drm-nouveau-fix-another-off-by-one-in-nvbios_addr.patch.
Alt-commit
- commit 7c051d6
- Refresh
patches.suse/drm-amd-display-Only-use-depth-36-bpp-linebuffers-on.patch.
Alt-commit
- commit e1c296d
- Refresh
patches.suse/Revert-drm-amdgpu-display-set-vblank_disable_immedia.patch.
Alt-commit
- commit 1bf4062
- Refresh
patches.suse/drm-fourcc-fix-integer-type-usage-in-uapi-header.patch.
Alt-commit
- commit 174b777
- Refresh
patches.suse/drm-bridge-ti-sn65dsi83-Handle-dsi_lanes-0-as-invali.patch.
Alt-commit
- commit d529823
- Refresh
patches.suse/Revert-drm-amd-pm-keep-the-BACO-feature-enabled-for-.patch.
Alt-commit
- commit b27902a
- RDMA/usnic: fix set-but-not-unused variable 'flags' warning (git-fixes)
- commit a0cf107
- IB/rdmavt: Add __init/__exit annotations to module init/exit funcs (git-fixes)
- commit e49e34a
- RDMA/rxe: Fix resize_finish() in rxe_queue.c (git-fixes)
- commit 6b44016
- RDMA/siw: Fix QP destroy to wait for all references dropped. (git-fixes)
- commit 61cef3e
- RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall. (git-fixes)
- commit 296a57b
- RDMA/srp: Fix srp_abort() (git-fixes)
- commit 7984b35
- RDMA/irdma: Align AE id codes to correct flush code and event (git-fixes)
- commit c55a705
- RDMA/rxe: Fix the error caused by qp->sk (git-fixes)
- commit 85ed907
- RDMA/rxe: Fix "/kernel NULL pointer dereference"/ error (git-fixes)
- commit 94f5187
- RDMA/mlx5: Don't compare mkey tags in DEVX indirect mkey (git-fixes)
- commit cbf3855
- RDMA/irdma: Report RNR NAK generation in device caps (git-fixes)
- commit 7306409
- RDMA/irdma: Return correct WC error for bind operation failure (git-fixes)
- commit bb7b5cd
- RDMA/irdma: Return error on MR deregister CQP failure (git-fixes)
- commit e8ec2a2
- RDMA/irdma: Report the correct max cqes from query device (git-fixes)
- commit 2b8a0ed
- RDMA/siw: Pass a pointer to virt_to_page() (git-fixes)
- commit c54f89a
- usb: gadget: bdc: fix typo in comment (git-fixes).
- commit 0b9f194
- usb: typec: tcpm: fix typo in comment (git-fixes).
- commit a66c855
- RDMA/srp: Set scmnd->result only when scmnd is not NULL (git-fixes)
- commit 458db53
- RDMA/cma: Fix arguments order in net device validation (git-fixes)
- commit 81952c8
- RDMA/rxe: Fix error unwind in rxe_create_qp() (git-fixes)
- commit f572d06
- kbuild: Add skip_encoding_btf_enum64 option to pahole
(git-fixes).
- commit 934e48d
- RDMA/mlx5: Add missing check for return value in get namespace flow (git-fixes)
- commit 6e82f19
- RDMA/rxe: Fix rnr retry behavior (git-fixes)
- commit 7a75da5
- RDMA/rxe: For invalidate compare according to set keys in mr (git-fixes)
- commit 66293aa
- RDMA/rxe: Fix mw bind to allow any consumer key portion (git-fixes)
- commit c8934f1
- RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event (git-fixes)
- commit 79b1a39
- RDMA/qedr: Fix potential memory leak in __qedr_alloc_mr() (git-fixes)
- commit 706d0f6
- RDMA: remove useless condition in siw_create_cq() (git-fixes)
- commit 6f61f5a
- RDMA/irdma: Fix setting of QP context err_rq_idx_valid field (git-fixes)
- commit 026149f
- RDMA/irdma: Fix VLAN connection with wildcard address (git-fixes)
- commit f75f6bd
- RDMA/irdma: Fix a window for use-after-free (git-fixes)
- commit 5ca4a5f
- RDMA/rxe: Fix deadlock in rxe_do_local_ops() (git-fixes)
- commit afef467
- RDMA/irdma: Fix sleep from invalid context BUG (git-fixes)
- commit 735c971
- RDMA/irdma: Do not advertise 1GB page size for x722 (git-fixes)
- commit ccc988f
- RDMA/qedr: Fix reporting QP timeout attribute (git-fixes)
- commit c6a81d4
- RDMA/hfi1: Fix potential integer multiplication overflow errors (git-fixes)
- commit 2b22d3a
- RDMA/hns: Add the detection for CMDQ status in the device initialization process (git-fixes)
- commit 7090c13
- RDMA/rxe: Generate a completion for unsupported/invalid opcode (git-fixes)
- commit 2a9e949
- blacklist.conf: Clarify status of 6f5c672d17f583b081e283927f5040f726c54598.
- commit cfc21b5
- s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing
pavgroup (git-fixes).
- commit 3602f60
- fbdev: cyber2000fb: fix missing pci_disable_device()
(git-fixes).
- fbdev: da8xx-fb: Fix error handling in .remove() (git-fixes).
- iio: bmc150-accel-core: Fix unsafe buffer attributes
(git-fixes).
- iio: adxl372: Fix unsafe buffer attributes (git-fixes).
- iio: temperature: ltc2983: allocate iio channels once
(git-fixes).
- iio: adc: mcp3911: use correct id bits (git-fixes).
- iio: light: tsl2583: Fix module unloading (git-fixes).
- usb: dwc3: gadget: Don't set IMI for no_interrupt (git-fixes).
- usb: dwc3: gadget: Stop processing more requests on IMI
(git-fixes).
- usb: bdc: change state when port disconnected (git-fixes).
- hwmon/coretemp: Handle large core ID value (git-fixes).
- ACPI: video: Make backlight class device registration a separate
step (v2) (git-fixes).
- r8152: add PID for the Lenovo OneLink+ Dock (git-fixes).
- net: usb: r8152: Add in new Devices that are supported for
Mac-Passthru (git-fixes).
- arm64/mm: Consolidate TCR_EL1 fields (git-fixes).
- commit 510527f
- tracing: Disable interrupt or preemption before acquiring
arch_spinlock_t (git-fixes).
- commit 2afc9ce
- tracing: Wake up ring buffer waiters on closing of the file
(git-fixes).
- kABI: Fix after adding trace_iterator.wait_index (git-fixes).
- commit c6de351
- tracing: Fix reading strings from synthetic events (git-fixes).
- commit b3d60fe
- tracing: Add "/(fault)"/ name injection to kernel probes
(git-fixes).
- commit e8dfbfa
- tracing: Move duplicate code of trace_kprobe/eprobe.c into header
(git-fixes).
- commit 4676a84
- ftrace: Fix char print issue in print_ip_ins() (git-fixes).
- commit 40cb188
- tracing: Do not free snapshot if tracer is on cmdline
(git-fixes).
- commit 9e07624
- tracing: Simplify conditional compilation code in
tracing_set_tracer() (git-fixes).
- commit 35b9e24
- ring-buffer: Fix race between reset page and reading page
(git-fixes).
- commit e172e8c
- tracing: Wake up waiters when tracing is disabled (git-fixes).
- commit e65663f
- tracing: Add ioctl() to force ring buffer waiters to wake up
(git-fixes).
- commit d726bd0
- ring-buffer: Add ring_buffer_wake_waiters() (git-fixes).
- commit 3f155a7
- ALSA: rme9652: use explicitly signed char (git-fixes).
- ALSA: au88x0: use explicitly signed char (git-fixes).
- ALSA: usb-audio: Add quirks for M-Audio Fast Track C400/600
(git-fixes).
- commit 1285ea5
- device property: Fix documentation for *_match_string() APIs
(git-fixes).
- PM: domains: Fix handling of unavailable/disabled idle states
(git-fixes).
- PM: hibernate: Allow hybrid sleep to work with s2idle
(git-fixes).
- mmc: sdhci_am654: 'select', not 'depends' REGMAP_MMIO
(git-fixes).
- mmc: core: Fix kernel panic when remove non-standard SDIO card
(git-fixes).
- mmc: sdhci-pci-core: Disable ES for ASUS BIOS on Jasper Lake
(git-fixes).
- mmc: sdhci-esdhc-imx: Propagate ESDHC_FLAG_HS400* only on 8bit
bus (git-fixes).
- mtd: rawnand: marvell: Use correct logic for nand-keep-config
(git-fixes).
- ALSA: aoa: Fix I2S device accounting (git-fixes).
- ALSA: Use del_timer_sync() before freeing timer (git-fixes).
- ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev()
(git-fixes).
- ASoC: qcom: lpass-cpu: Mark HDMI TX parity register as volatile
(git-fixes).
- ASoC: qcom: lpass-cpu: mark HDMI TX registers as volatile
(git-fixes).
- ALSA: ac97: fix possible memory leak in snd_ac97_dev_register()
(git-fixes).
- drm/i915/dp: Reset frl trained flag before restarting FRL
training (git-fixes).
- drm/amdkfd: Fix memory leak in kfd_mem_dmamap_userptr()
(git-fixes).
- drm/msm/dp: fix IRQ lifetime (git-fixes).
- drm/msm/hdmi: fix memory corruption with too many bridges
(git-fixes).
- drm/msm/dsi: fix memory corruption with too many bridges
(git-fixes).
- drm/msm: fix use-after-free on probe deferral (git-fixes).
- drm/msm: Fix return type of mdp4_lvds_connector_mode_valid
(git-fixes).
- commit a89c8ce
- blacklist.conf: add reverted ASoC patches
- commit 67ca727
- net: mscc: ocelot: fix address of SYS_COUNT_TX_AGING counter
(git-fixes).
- commit a23c712
- net: dsa: sja1105: fix buffer overflow in
sja1105_setup_devlink_regions() (git-fixes).
- commit 9684564
- net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
(git-fixes).
- commit bcb13eb
- Update patch reference for USB fix (bsc#1196018 CVE-2022-28748 bsc#1202686 CVE-2022-2964)
- commit 0ee154e
- i40e: Fix to stop tx_timeout recovery if GLOBR fails
(git-fixes).
- commit 9ae1da4
- iavf: Fix reset error handling (git-fixes).
- commit d4babdd
- iavf: Fix adminq error handling (git-fixes).
- commit 403a1a3
- net: moxa: pass pdev instead of ndev to DMA functions
(git-fixes).
- commit e117a5b
- mlxsw: spectrum: Clear PTP configuration after unregistering
the netdevice (git-fixes).
- commit 6677912
- net: dsa: mv88e6060: prevent crash on an unused port
(git-fixes).
- commit 00d6b8c
- fec: Fix timer capture timing in `fec_ptp_enable_pps()`
(git-fixes).
- commit 1a47f16
- dpaa2-eth: trace the allocated address instead of page struct
(git-fixes).
- commit 1020d1e
- net: atlantic: fix aq_vec index out of range error (git-fixes).
- commit 46d90a2
- plip: avoid rcu debug splat (git-fixes).
- commit eb203b2
- net: bgmac: Fix a BUG triggered by wrong bytes_compl
(git-fixes).
- commit cb50cd4
- net: bcmgenet: Indicate MAC is in charge of PHY PM (git-fixes).
- commit 1147d60
- xfs: convert XLOG_FORCED_SHUTDOWN() to xlog_is_shutdown()
(git-fixes).
- commit ab97572
- xfs: fix xfs_ifree() error handling to not leak perag ref
(git-fixes).
- commit 2b17a84
- can: j1939: transport: j1939_session_skb_drop_old():
spin_unlock_irqrestore() before kfree_skb() (git-fixes).
- can: kvaser_usb: Fix possible completions during init_completion
(git-fixes).
- openvswitch: switch from WARN to pr_warn (git-fixes).
- can: mcp251x: mcp251x_can_probe(): add missing
unregister_candev() in error path (git-fixes).
- can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing
put_clock() in error path (git-fixes).
- mac802154: Fix LQI recording (git-fixes).
- media: vivid: set num_in/outputs to 0 if not supported
(git-fixes).
- media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check
'interlaced' (git-fixes).
- media: v4l2-dv-timings: add sanity checks for blanking values
(git-fixes).
- media: vivid: dev->bitmap_cap wasn't freed in all cases
(git-fixes).
- media: vivid: s_fbuf: add more sanity checks (git-fixes).
- can: kvaser_usb: kvaser_usb_leaf: fix CAN clock frequency
regression (git-fixes).
- commit 78420ce
- Add CVE reference to
patches.suse/net-usb-ax88179_178a-Fix-out-of-bounds-accesses-in-R.patch
(bsc#1196018 CVE-2022-28748 CVE-2022-2964).
- commit 1298a2a
- HID: hidraw: fix memory leak in hidraw_release() (git-fixes).
- commit 0e980ee
- octeontx2-pf: Fix NIX_AF_TL3_TL2X_LINKX_CFG register
configuration (git-fixes).
- commit cc822b8
- octeontx2-af: Fix key checking for source mac (git-fixes).
- commit 2b15002
- octeontx2-af: Fix mcam entry resource leak (git-fixes).
- commit 1934a04
- octeontx2-af: suppress external profile loading warning
(git-fixes).
- commit f03aa66
- octeontx2-af: Apply tx nibble fixup always (git-fixes).
- commit 127ded0
- net: tap: NULL pointer derefence in dev_parse_header_protocol
when skb->dev is null (git-fixes).
- commit fd012c5
- nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
(git-fixes).
- commit 145a612
- net/ice: fix initializing the bitmap in the switch code
(git-fixes).
- commit 1864c2e
- net/mlx5e: xsk: Account for XSK RQ UMRs when calculating ICOSQ
size (git-fixes).
- commit 0f9b4b8
- net/mlx5e: Remove WARN_ON when trying to offload an unsupported
TLS cipher/version (git-fixes).
- commit 26fe2e5
- netdevsim: fib: Fix reference count leak on route deletion
failure (git-fixes).
- commit ef84aaa
- ice: do not setup vlan for loopback VSI (git-fixes).
- commit 2f72810
- ice: check (DD | EOF) bits on Rx descriptor rather than (EOP |
RS) (git-fixes).
- commit c63938e
- can: kvaser_usb: replace run-time checks with struct
kvaser_usb_driver_info (git-fixes).
- commit 435b54b
- sfc: disable softirqs for ptp TX (git-fixes).
- commit def7cc9
- octeontx2-pf: Fix UDP/TCP src and dst port tc filters
(git-fixes).
- commit a2053ff
- net: fix IFF_TX_SKB_NO_LINEAR definition (git-fixes).
- commit 36a8155
- thermal: intel_powerclamp: Use first online CPU as control_cpu
(git-fixes).
- thermal/drivers/qcom/tsens-v0_1: Fix MSM8939 fourth sensor hw_id
(git-fixes).
- staging: rtl8723bs: fix a potential memory leak in
rtw_init_cmd_priv() (git-fixes).
- staging: vt6655: fix potential memory leak (git-fixes).
- usb: add quirks for Lenovo OneLink+ Dock (git-fixes).
- thunderbolt: Explicitly enable lane adapter hotplug events at
startup (git-fixes).
- usb: idmouse: fix an uninit-value in idmouse_open (git-fixes).
- usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination
error after resume bug (git-fixes).
- usb: musb: Fix musb_gadget.c rxstate overflow bug (git-fixes).
- usb: host: xhci: Fix potential memory leak in
xhci_alloc_stream_info() (git-fixes).
- usb: host: xhci-plat: suspend/resume clks for brcm (git-fixes).
- usb: host: xhci-plat: suspend and resume clocks (git-fixes).
- soundwire: intel: fix error handling on dai registration issues
(git-fixes).
- soundwire: cadence: Don't overwrite msg->buf during write
commands (git-fixes).
- kselftest/arm64: Fix validatation termination record after
EXTRA_CONTEXT (git-fixes).
- soc/tegra: fuse: Drop Kconfig dependency on TEGRA20_APB_DMA
(git-fixes).
- udmabuf: Set ubuf->sg = NULL if the creation of sg table fails
(git-fixes).
- spi: Ensure that sg_table won't be used after being freed
(git-fixes).
- wifi: rt2x00: correctly set BBP register 86 for MT7620
(git-fixes).
- wifi: rt2x00: set SoC wmac clock register (git-fixes).
- wifi: rt2x00: set VGC gain for both chains of MT7620
(git-fixes).
- wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620
(git-fixes).
- wifi: rt2x00: don't run Rt5592 IQ calibration on MT7620
(git-fixes).
- wifi: mt76: mt7921: reset msta->airtime_ac while clearing up
hw value (git-fixes).
- wifi: brcmfmac: fix use-after-free bug in
brcmf_netdev_start_xmit() (git-fixes).
- wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg()
(git-fixes).
- thunderbolt: Add back Intel Falcon Ridge end-to-end flow
control workaround (git-fixes).
- wifi: brcmfmac: fix invalid address access when enabling SCAN
log level (git-fixes).
- selinux: use "/grep -E"/ instead of "/egrep"/ (git-fixes).
- thermal: cpufreq_cooling: Check the policy first in
cpufreq_cooling_register() (git-fixes).
- thermal: intel_powerclamp: Use get_cpu() instead of
smp_processor_id() to avoid crash (git-fixes).
- selinux: allow FIOCLEX and FIONCLEX with policy capability
(git-fixes).
- commit 2b3f1b5
- gcov: support GCC 12.1 and newer compilers (git-fixes).
- drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n
(git-fixes).
- drm/amd/display: Fix vblank refcount in vrr transition
(git-fixes).
- kbuild: rpm-pkg: fix breakage when V=1 is used (git-fixes).
- kbuild: remove the target in signal traps when interrupted
(git-fixes).
- clk: bcm2835: Make peripheral PLLC critical (git-fixes).
- clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate
(git-fixes).
- clk: zynqmp: Fix stack-out-of-bounds in strncpy` (git-fixes).
- staging: rtl8723bs: fix potential memory leak in
rtw_init_drv_sw() (git-fixes).
- iio: pressure: dps310: Reset chip after timeout (git-fixes).
- iio: pressure: dps310: Refactor startup procedure (git-fixes).
- dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to
prevent overflow (git-fixes).
- power: supply: adp5061: fix out-of-bounds read in
adp5061_get_chg_type() (git-fixes).
- HID: roccat: Fix use-after-free in roccat_read() (git-fixes).
- media: cx88: Fix a null-ptr-deref bug in buffer_prepare()
(git-fixes).
- drm/amd/display: Remove interface for periodic interrupt 1
(git-fixes).
- drm/meson: explicitly remove aggregate driver at module unload
time (git-fixes).
- drm/amdgpu: fix initial connector audio value (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Anbernic Win600
(git-fixes).
- drm: bridge: dw_hdmi: only trigger hotplug event on link change
(git-fixes).
- drm/nouveau/kms/nv140-: Disable interlacing (git-fixes).
- gpu: lontium-lt9611: Fix NULL pointer dereference in
lt9611_connector_init() (git-fixes).
- drm/komeda: Fix handling of atomic commits in the
atomic_commit_tail hook (git-fixes).
- drm/virtio: Check whether transferred 2D BO is shmem
(git-fixes).
- drm: Prevent drm_copy_field() to attempt copying a NULL pointer
(git-fixes).
- drm: Use size_t type for len variable in drm_copy_field()
(git-fixes).
- drm/nouveau/nouveau_bo: fix potential memory leak in
nouveau_bo_alloc() (git-fixes).
- platform/x86: msi-laptop: Change DMI match / alias strings to
fix module autoloading (git-fixes).
- platform/chrome: cros_ec: Notify the PM of wake events during
resume (git-fixes).
- mmc: sdhci-msm: add compatible string check for sdm670
(git-fixes).
- regulator: core: Prevent integer underflow (git-fixes).
- hwmon: (sht4x) do not overflow clamping operation on 32-bit
platforms (git-fixes).
- net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses
(git-fixes).
- openvswitch: Fix overreporting of drops in dropwatch
(git-fixes).
- openvswitch: Fix double reporting of drops in dropwatch
(git-fixes).
- net: ethernet: ti: davinci_mdio: Add workaround for errata i2329
(git-fixes).
- ima: fix blocking of security.ima xattrs of unsupported
algorithms (git-fixes).
- commit 73e3036
- arm64: topology: move store_cpu_topology() to shared code
(git-fixes).
- arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to
USB nodes (git-fixes).
- ata: libahci_platform: Sanity check the DT child nodes number
(git-fixes).
- arm64: dts: imx8mq-librem5: Add bq25895 as max17055's power
supply (git-fixes).
- ARM: dts: imx6sx: add missing properties for sram (git-fixes).
- ARM: dts: imx6sll: add missing properties for sram (git-fixes).
- ARM: dts: imx6sl: add missing properties for sram (git-fixes).
- ARM: dts: imx6qp: add missing properties for sram (git-fixes).
- ARM: dts: imx6dl: add missing properties for sram (git-fixes).
- ARM: dts: imx6q: add missing properties for sram (git-fixes).
- ARM: dts: imx7d-sdb: config the max pressure for tsc2046
(git-fixes).
- ARM: 9242/1: kasan: Only map modules if CONFIG_KASAN_VMALLOC=n
(git-fixes).
- ASoC: SOF: pci: Change DMI match info to support all Chrome
platforms (git-fixes).
- ALSA: usb-audio: Fix last interface check for registration
(git-fixes).
- ALSA: usb-audio: Register card at the last interface
(git-fixes).
- Bluetooth: L2CAP: Fix user-after-free (git-fixes).
- Bluetooth: hci_sysfs: Fix attempting to call device_add multiple
times (git-fixes).
- Bluetooth: L2CAP: initialize delayed works at
l2cap_chan_create() (git-fixes).
- Bluetooth: RFCOMM: Fix possible deadlock on socket
shutdown/release (git-fixes).
- Bluetooth: btintel: Mark Intel controller to support LE_STATES
quirk (git-fixes).
- can: bcm: check the result of can_send() in bcm_can_tx()
(git-fixes).
- ARM: decompressor: Include .data.rel.ro.local (git-fixes).
- ACPI: video: Add Toshiba Satellite/Portege Z830 quirk
(git-fixes).
- ACPI: x86: Add a quirk for Dell Inspiron 14 2-in-1 for
StorageD3Enable (git-fixes).
- ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid
phys address (git-fixes).
- ARM: 9247/1: mm: set readonly for MT_MEMORY_RO with ARM_LPAE
(git-fixes).
- ARM: 9244/1: dump: Fix wrong pg_level in walk_pmd() (git-fixes).
- commit de318d1
- blacklist.conf: update blacklist
- commit 78ca650
- kABI: Fix kABI after backport Forcibly leave nested virt when SMM state
is toggled (git-fixes).
- commit 8343da0
- kABI: Fix kABI after backport Refactoring find_arch_event() to
pmc_perf_hw_id() (git-fixes).
- commit 44b42bd
- mm/hugetlb: fix races when looking up a CONT-PTE/PMD size
hugetlb page (bsc#1204575).
- commit e6fc5be
- kABI: Fix kABI after backport Update vPMCs when retiring branch
instructions (git-fixes).
- commit 4209455
- kABI: Fix kABI after backport Add pmc->intr to refactor
kvm_perf_overflow{_intr}() (git-fixes).
- commit 9fc8292
- KVM: SVM: Exit to userspace on ENOMEM/EFAULT GHCB errors
(git-fixes).
- commit 22e05f5
- overflow.h: restore __ab_c_size (git-fixes).
- commit 9dbc158
- KVM: x86: Add KVM_CAP_ENABLE_CAP to x86 (git-fixes).
- commit 3acb74c
- KVM: x86/pmu: Don't truncate the PerfEvtSeln MSR when creating
a perf event (git-fixes).
- commit 9a723c2
- overflow: Implement size_t saturating arithmetic helpers
(jsc#PED-1211).
- commit fecede0
- cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset
(bsc#1204753).
- commit d072831
- blacklist.conf: Add cgroup: cgroup: Honor caller's cgroup NS when resolving cgroup id
- commit 382b2e7
- blacklist.conf: Add c530a3c716b9 sched/psi: Fix periodic aggregation shut off
- commit 56b9a2a
- KVM: x86: nSVM/nVMX: set nested_run_pending on VM entry which
is a result of RSM (git-fixes).
- commit 274c60f
- powerpc/fadump: align destination address to pagesize
(bsc#1204728 ltc#200074).
- commit 5377513
- KVM: x86: nSVM: mark vmcb01 as dirty when restoring SMM saved
state (git-fixes).
- commit cd056ba
- KVM: x86: nSVM: fix potential NULL derefernce on nested
migration (git-fixes).
- commit 272884f
- KVM: x86: Sync the states size with the XCR0/IA32_XSS at,
any time (git-fixes).
- commit c927187
- KVM: x86: Keep MSR_IA32_XSS unchanged for INIT (git-fixes).
- commit c61458a
- KVM: x86: Forcibly leave nested virt when SMM state is toggled
(git-fixes).
- commit f22036a
- Update patches.suse/usb-mon-make-mmapped-memory-read-only.patch
(bsc#1204653 CVE-2022-43750).
Added CVE and bsc
- commit 93b1d48
- KVM: x86/pmu: Fix available_event_types check for REF_CPU_CYCLES
event (git-fixes).
- commit 436d9eb
- KVM: x86: Update vPMCs when retiring branch instructions
(git-fixes).
- Refresh
patches.suse/kvm-emulate-do-not-adjust-size-of-fastop-and-setcc-subroutines.patch.
- commit 1f8391b
- KVM: x86: Update vPMCs when retiring instructions (git-fixes).
- commit c4d4a64
- KVM: x86/pmu: Add pmc->intr to refactor
kvm_perf_overflow{_intr}() (git-fixes).
- commit 91025b1
- KVM: x86/pmu: Refactoring find_arch_event() to pmc_perf_hw_id()
(git-fixes).
- commit 8080b0e
- kABI: Fix kABI after backport Always set kvm_run->if_flag
(git-fixes).
- KVM: x86: Always set kvm_run->if_flag (git-fixes).
- commit daa5fd4
- KVM: x86/mmu: Don't advance iterator after restart due to
yielding (git-fixes).
- commit 86c02c7
- KVM: x86/mmu: Retry page fault if root is invalidated by
memslot update (git-fixes).
- commit c96dbdc
- KVM: fix avic_set_running for preemptable kernels (git-fixes).
- commit 457ae39
- KVM: x86: Add compat handler for KVM_X86_SET_MSR_FILTER
(git-fixes).
- commit 58e3def
- xen/gntdev: Prevent leaking grants (git-fixes).
- commit 73a7df7
- KVM: nVMX: Ignore SIPI that arrives in L2 when vCPU is not in
WFS (git-fixes).
- commit 8c88ccd
- KVM: nVMX: Unconditionally purge queued/injected events on
nested "/exit"/ (git-fixes).
- commit f7976c7
- KVM: x86/emulator: Fix handing of POP SS to correctly set
interruptibility (git-fixes).
- commit 938654e
- usb: gadget: f_fs: stricter integer overflow checks (git-fixes).
- commit 07d2846
- blacklist.conf: prerequisites too risky
- commit 93c5479
- scsi: mpi3mr: Schedule IRQ kthreads only on non-RT kernels
(bnc#1204498).
- commit e73c4d3
- usb: cdc-wdm: Use skb_put_data() instead of skb_put/memcpy pair
(git-fixes).
- commit a0de208
- Update patch reference for
patches.suse/devlink-Fix-use-after-free-after-a-failed-reload.patch
(git-fixes bsc#1204637 CVE-2022-3625).
- commit fd50fbc
- pinctrl: Ingenic: JZ4755 bug fixes (git-fixes).
- dyndbg: let query-modname override actual module name
(git-fixes).
- dyndbg: fix module.dyndbg handling (git-fixes).
- dyndbg: fix static_branch manipulation (git-fixes).
- commit afe6697
- io_uring: use original request task for inflight tracking
(CVE-2022-40476 bsc#1203435).
- commit 941d6b4
- Update
patches.suse/powerpc-pseries-vas-Pass-hw_cpu_id-to-node-associati.patch
(bsc#1194869 bsc#1204428 ltc#200180).
- commit fe8b379
- ring-buffer: Check pending waiters when doing wake ups as well
(git-fixes).
- commit d934ca7
- ring-buffer: Have the shortest_full queue be the shortest not
longest (git-fixes).
- commit ed18dc7
- ring-buffer: Allow splice to read previous partially read pages
(git-fixes).
- commit 4649dee
- ftrace: Properly unset FTRACE_HASH_FL_MOD (git-fixes).
- commit 554a8e9
- net: mvpp2: fix mvpp2 debugfs leak (bsc#1204417 CVE-2022-3535).
- bnx2x: fix potential memory leak in bnx2x_tpa_stop()
(bsc#1204402 CVE-2022-3542).
- nfp: fix use-after-free in area_cache_get() (bsc#1204415
CVE-2022-3545).
- commit 8e53774
- tracing/osnoise: Fix possible recursive locking in
stop_per_cpu_kthreads (git-fixes).
- commit f81f58f
- tracing: Replace deprecated CPU-hotplug functions (git-fixes).
- Refresh
patches.suse/tracing-osnoise-Fix-missed-cpus_read_unlock-in-start_per_cpu_kthreads.patch.
- commit b1bca55
- tracing: kprobe: Make gen test module work in arm and riscv
(git-fixes).
- commit 57b2377
- tracing: kprobe: Fix kprobe event gen test module on exit
(git-fixes).
- commit 81447e5
- cifs: update internal module number (bsc#1193629).
- commit 4202154
- cifs: fix memory leaks in session setup (bsc#1193629).
- commit 5c729d0
- cifs: drop the lease for cached directories on rmdir or rename
(bsc#1193629).
- commit 46e0f22
- smb3: interface count displayed incorrectly (bsc#1193629).
- commit e073a89
- cifs: Fix memory leak when build ntlmssp negotiate blob failed
(bsc#1193629).
- commit 7afbdb6
- cifs: set rc to -ENOENT if we can not get a dentry for the
cached dir (bsc#1193629).
- commit 328e60a
- cifs: use LIST_HEAD() and list_move() to simplify code
(bsc#1193629).
- commit e5c0c94
- cifs: Fix xid leak in cifs_get_file_info_unix() (bsc#1193629).
- commit a50e886
- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1193629).
- commit 45683eb
- cifs: Fix xid leak in cifs_flock() (bsc#1193629).
- commit d234b14
- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1193629).
- commit f56cd1f
- cifs: Fix xid leak in cifs_create() (bsc#1193629).
- commit a1d5012
- smb3: improve SMB3 change notification support (bsc#1193629).
- commit 8a4313f
- nilfs2: fix leak of nilfs_root in case of writer thread creation
failure (CVE-2022-3646 bsc#1204646).
- nilfs2: fix use-after-free bug of struct nilfs_root
(CVE-2022-3649 bsc#1204647).
- commit af91749
- Update patch reference for vsock fix (CVE-2022-3629 bsc#1204635)
- commit 6c49703
- Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del()
(CVE-2022-3640 bsc#1204619).
- commit 5d68cf0
- can: j1939: j1939_session_destroy(): fix memory leak of skbs
(CVE-2022-3633 bsc#1204650).
- commit da3122e
- KVM: s390x: fix SCK locking (git-fixes).
- KVM: s390: Clarify SIGP orders versus STOP/RESTART (git-fixes).
- commit aa7345b
- i2c: qcom-cci: Fix ordering of pm_runtime_xx and i2c_add_adapter
(git-fixes).
- media: venus: dec: Handle the case where find_format fails
(git-fixes).
- media: atomisp: prevent integer overflow in
sh_css_set_black_frame() (git-fixes).
- media: ipu3-imgu: Fix NULL pointer dereference in active
selection access (git-fixes).
- media: v4l2: Fix v4l2_i2c_subdev_set_name function documentation
(git-fixes).
- media: mceusb: set timeout to at least timeout provided
(git-fixes).
- commit fbd2a07
- cpufreq: qcom: fix writes in read-only memory region
(git-fixes).
- cpufreq: qcom: fix memory leak in error path (git-fixes).
- ACPI: extlog: Handle multiple records (git-fixes).
- HID: magicmouse: Do not set BTN_MOUSE on double report
(git-fixes).
- selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in
convert_context() (git-fixes).
- commit a940189
- ALSA: hda/realtek: Add another HP ZBook G9 model quirks
(bsc#1203699).
- commit 9b4cf06
- cifs: lease key is uninitialized in two additional functions
when smb1 (bsc#1193629).
- commit 181d702
- cifs: lease key is uninitialized in smb1 paths (bsc#1193629).
- commit 395fb1f
- smb3: must initialize two ACL struct fields to zero
(bsc#1193629).
- commit 2dfd980
- cifs: fix double-fault crash during ntlmssp (bsc#1193629).
- commit 958d087
- cifs: fix static checker warning (bsc#1193629).
- commit 6695ea2
- cifs: use ALIGN() and round_up() macros (bsc#1193629).
- commit b4d4efd
- cifs: find and use the dentry for cached non-root directories
also (bsc#1193629).
- commit 14482fe
- cifs: enable caching of directories for which a lease is held
(bsc#1193629).
- commit cc4f4c4
- cifs: prevent copying past input buffer boundaries
(bsc#1193629).
- commit 9130844
- cifs: fix uninitialised var in smb2_compound_op() (bsc#1193629).
- commit bdc0943
- cifs: improve symlink handling for smb2+ (bsc#1193629).
- commit 0b6be9d
- smb3: clarify multichannel warning (bsc#1193629).
- commit 96b1224
- cifs: fix skipping to incorrect offset in emit_cached_dirents
(bsc#1193629).
- commit 6750b0a
- smb3: fix oops in calculating shash_setkey (bsc#1193629).
- commit fdb4064
- cifs: secmech: use shash_desc directly, remove sdesc
(bsc#1193629).
- commit d652300
- smb3: rename encryption/decryption TFMs (bsc#1193629).
- commit 074ff14
- cifs: replace kfree() with kfree_sensitive() for sensitive data
(bsc#1193629).
- commit a9c83e0
- cifs: remove initialization value (bsc#1193629).
- commit 650b157
- cifs: Replace a couple of one-element arrays with flexible-array
members (bsc#1193629).
- commit 2e6a4d1
- smb3: do not log confusing message when server returns no
network interfaces (bsc#1193629).
- commit fe343ed
- cifs: store a pointer to a fid in the cfid structure instead
of the struct (bsc#1193629).
- commit 4bc719f
- cifs: improve handlecaching (bsc#1193629).
- commit 460040b
- cifs: Make tcon contain a wrapper structure cached_fids instead
of cached_fid (bsc#1193629).
- commit 999f1a7
- smb3: add dynamic trace points for tree disconnect
(bsc#1193629).
- commit c71b282
- Fix formatting of client smbdirect RDMA logging (bsc#1193629).
- commit bc2ae55
- Handle variable number of SGEs in client smbdirect send
(bsc#1193629).
- commit af0f632
- Reduce client smbdirect max receive segment size (bsc#1193629).
- commit e36b32c
- Decrease the number of SMB3 smbdirect client SGEs (bsc#1193629).
- commit 1c625b9
- cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
(bsc#1193629).
- commit 174687c
- cifs: destage dirty pages before re-reading them for cache=none
(bsc#1193629).
- commit 9eab309
- cifs: return correct error in ->calc_signature() (bsc#1193629).
- commit 0ace108
- cifs: misc: fix spelling typo in comment (bsc#1193629).
- commit 0177a68
- cifs: update internal module number (bsc#1193629).
- commit a83e618
- cifs: add missing spinlock around tcon refcount (bsc#1193629).
- commit a915086
- cifs: always initialize struct msghdr smb_msg completely
(bsc#1193629).
- commit 7ba2dbe
- cifs: don't send down the destination address to sendmsg for
a SOCK_STREAM (bsc#1193629).
- commit cc67d16
- cifs: revalidate mapping when doing direct writes (bsc#1193629).
- commit 3e6da03
- cifs: fix small mempool leak in SMB2_negotiate() (bsc#1193629).
- commit 9ad1214
- smb3: use filemap_write_and_wait_range instead of
filemap_write_and_wait (bsc#1193629).
- commit 569211d
- smb3: fix temporary data corruption in insert range
(bsc#1193629).
- commit 4153b9f
- smb3: fix temporary data corruption in collapse range
(bsc#1193629).
- commit e11095d
- smb3: Move the flush out of smb2_copychunk_range() into its
callers (bsc#1193629).
- commit 7cc3491
- cifs: Add helper function to check smb1+ server (bsc#1193629).
- commit 8d3cf57
- cifs: Use help macro to get the mid header size (bsc#1193629).
- commit 56cfb79
- cifs: Use help macro to get the header preamble size
(bsc#1193629).
- commit a32d0c7
- cifs: skip extra NULL byte in filenames (bsc#1193629).
- commit 3c2966f
- smb3: missing inode locks in punch hole (bsc#1193629).
- commit d5ef2ce
- smb3: missing inode locks in zero range (bsc#1193629).
- commit 67739d5
- cifs: move from strlcpy with unused retval to strscpy
(bsc#1193629).
- commit 1545859
- cifs: Fix memory leak on the deferred close (bsc#1193629).
- commit 0e66dd6
- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl()
(bsc#1193629).
- commit e09b402
- cifs: remove unused server parameter from calc_smb_size()
(bsc#1193629).
- commit 3f30130
- cifs: Do not access tcon->cfids->cfid directly from
is_path_accessible (bsc#1193629).
- commit 7188f4f
- cifs: Add constructor/destructors for tcon->cfid (bsc#1193629).
- commit 7eb31f4
- SMB3: fix lease break timeout when multiple deferred close
handles for the same file (bsc#1193629).
- commit 7267460
- smb3: allow deferred close timeout to be configurable
(bsc#1193629).
- commit 19f7caa
- cifs: Do not use tcon->cfid directly, use the cfid we get from
open_cached_dir (bsc#1193629).
- commit 25de0c1
- cifs: Move cached-dir functions into a separate file
(bsc#1193629).
- commit fc0e55e
- cifs: fix lock length calculation (bsc#1193629).
- commit 2661e11
- cifs: update internal module number (bsc#1193629).
- commit 53f5daf
- cifs: alloc_mid function should be marked as static
(bsc#1193629).
- commit f066ea5
- cifs: remove "/cifs_"/ prefix from init/destroy mids functions
(bsc#1193629).
- commit 21e261c
- cifs: remove useless DeleteMidQEntry() (bsc#1193629).
- commit b684635
- cifs: when insecure legacy is disabled shrink amount of SMB1
code (bsc#1193629).
- commit 96f98e3
- blacklist.conf: add an entry for IDXD that has been already fixed
- commit 7531ae1
- dmaengine: idxd: force wq context cleanup on device disable path
(git-fixes).
- commit e06ba18
- nilfs2: fix NULL pointer dereference at
nilfs_bmap_lookup_at_level() (CVE-2022-3621 bsc#1204574).
- commit f8016b1
- ALSA: hda/realtek: Add quirk for ASUS Zenbook using CS35L41
(bsc#1203922).
- commit 1d187cf
- Move upstreamed sound patches into sorted section
- commit 4c058b6
- Bluetooth: L2CAP: Fix memory leak in vhci_write (CVE-2022-3619
bsc#1204569).
- commit b649754
- drm/amdgpu: fix sdma doorbell init ordering on APUs (git-fixes).
- net: phy: dp83822: disable MDI crossover status change interrupt
(git-fixes).
- wwan_hwsim: fix possible memory leak in wwan_hwsim_dev_new()
(git-fixes).
- net: phy: dp83867: Extend RX strap quirk for SGMII mode
(git-fixes).
- ata: ahci-imx: Fix MODULE_ALIAS (git-fixes).
- commit 273eb71
- powerpc/64s: Fix build failure when CONFIG_PPC_64S_HASH_MMU
is not set (bsc#1204413 ltc#200176).
- commit 0850b12
- powerpc/pseries: Stop selecting PPC_HASH_MMU_NATIVE (bsc#1204413 ltc#200176).
- Refresh patches.suse/powerpc-Rename-PPC_NATIVE-to-PPC_HASH_MMU_NATIVE.patch.
- commit abb9ade
- powerpc/64s: Make hash MMU support configurable (bsc#1204413 ltc#200176).
- Refresh patches.suse/lkdtm-disable-return-thunks-in-rodata-c.patch.
Update config files.
- commit 5b2abcf
- fuse: fix deadlock between atomic O_TRUNC and page invalidation
(bsc#1204533).
- commit a0e6630
- Correct JIRA reference to Impl entries (jsc#PED-833 jsc#PED-850 jsc#PED-825 jsc#PED-822 jsc#PED-846 jsc#PED-817 jsc#PED-851 jsc#PED-857 jsc#PED-842 jsc#PED-813 jsc#PED-1084 jsc#PED-1096 jsc#PED-1085 jsc#PED-1649 jsc#PED-1082 jsc#PED-856)
- commit c7d3570
- powerpc/pseries/vas: Add VAS IRQ primary handler (bsc#1204413
ltc#200176).
- powerpc: Ignore DSI error caused by the copy/paste instruction
(bsc#1204413 ltc#200176).
- powerpc/64s: Move hash MMU support code under
CONFIG_PPC_64S_HASH_MMU (bsc#1204413 ltc#200176).
- Refresh patches.suse/Revert-powerpc-rtas-Implement-reentrant-rtas-call.patch
- Refresh patches.suse/powerpc-Add-kABI-placeholder-to-struct-pci_controlle.patch
- Refresh patches.suse/powerpc-pseries-wire-up-rng-during-setup_arch.patch
- powerpc: make memremap_compat_align 64s-only (bsc#1204413
ltc#200176).
- powerpc/64: pcpu setup avoid reading mmu_linear_psize on 64e
or radix (bsc#1204413 ltc#200176).
- powerpc/64s: Rename hash_hugetlbpage.c to hugetlbpage.c
(bsc#1204413 ltc#200176).
- powerpc/64s: Make flush_and_reload_slb a no-op when radix is
enabled (bsc#1204413 ltc#200176).
- powerpc/pseries: lparcfg don't include slb_size line in radix
mode (bsc#1204413 ltc#200176).
- powerpc/64s: Move and rename do_bad_slb_fault as it is not
hash specific (bsc#1204413 ltc#200176).
- Refresh patches.suse/powerpc-64s-hash-Make-hash-faults-work-in-NMI-contex.patch
- powerpc: Rename PPC_NATIVE to PPC_HASH_MMU_NATIVE (bsc#1204413
ltc#200176).
Update config files.
- commit da125ff
- r8152: Rate limit overflow messages (CVE-2022-3594 bsc#1204479).
- commit a745ef5
- Update patch reference for HID fix (CVE-2022-3577 bsc#1204470)
- commit 3ac3b39
- kcm: avoid potential race in kcm_tx_work (bsc#1204355
CVE-2022-3521).
- commit 2d76ec0
- tcp/udp: Fix memory leak in ipv6_renew_options() (bsc#1204354
CVE-2022-3524).
- commit f8049de
- Update metadata references
- commit d0bf0fb
- PCI: hv: Fix synchronization between channel callback and
hv_pci_bus_exit() (bsc#1204017).
- commit ea6713d
- PCI: hv: Fix synchronization between channel callback and
hv_compose_msi_msg() (bsc#1204017).
- commit 230768b
- PCI: hv: Use vmbus_requestor to generate transaction IDs for
VMbus hardening (bsc#1204017).
- commit a19c478
- Drivers: hv: vmbus: Introduce {lock,unlock}_requestor()
(bsc#1204017).
- commit bc36cf4
- Drivers: hv: vmbus: Introduce vmbus_request_addr_match()
(bsc#1204017).
- commit 40cb8e4
- Drivers: hv: vmbus: Fix handling of messages with transaction
ID of zero (bsc#1204017).
- commit a5b4ebf
- Drivers: hv: vmbus: Introduce vmbus_sendpacket_getid()
(bsc#1204017).
- commit 2e0386a
- sch_sfb: Also store skb len before calling child enqueue
(CVE-2022-3586 bsc#1204439).
- sch_sfb: Don't assume the skb is still around after enqueueing
to child (CVE-2022-3586 bsc#1204439).
- commit 6788943
- Update patch reference for mISDN fix (CVE-2022-3565 bsc#1204431)
- commit 5d0836e
- cifs: fix wrong unlock before return from cifs_tree_connect()
(bsc#1193629).
- commit ca24a6e
- cifs: avoid use of global locks for high contention data
(bsc#1193629).
- commit 003b496
- cifs: remove remaining build warnings (bsc#1193629).
- commit 2a6d64f
- cifs: list_for_each() -> list_for_each_entry() (bsc#1193629).
- commit 98f1884
- smb2: small refactor in smb2_check_message() (bsc#1193629).
- commit 2913774
- cifs: remove minor build warning (bsc#1193629).
- commit 9dd2f9e
- cifs: remove some camelCase and also some static build warnings
(bsc#1193629).
- commit 7a903b5
- cifs: remove unnecessary (void*) conversions (bsc#1193629).
- commit 352182a
- cifs: remove unnecessary type castings (bsc#1193629).
- commit e2ea7fd
- cifs: remove redundant initialization to variable
mnt_sign_enabled (bsc#1193629).
- commit 8c39800
- smb3: check xattr value length earlier (bsc#1193629).
- commit 87cd516
- smb3: workaround negprot bug in some Samba servers
(bsc#1193629).
- commit 031af61
- cifs: remove unnecessary locking of chan_lock while freeing
session (bsc#1193629).
- commit 0303046
- cifs: fix race condition with delayed threads (bsc#1193629).
- commit 491d550
- cifs: update cifs_ses::ip_addr after failover (bsc#1193629).
- commit 9ed4aa9
- cifs: avoid deadlocks while updating iface (bsc#1193629).
- commit 3a5c612
- cifs: periodically query network interfaces from server
(bsc#1193629).
- commit dd3e063
- cifs: during reconnect, update interface if necessary
(bsc#1193629).
- commit 8dea5e1
- cifs: change iface_list from array to sorted linked list
(bsc#1193629).
- commit 1b05ccf
- smb3: use netname when available on secondary channels
(bsc#1193629).
- commit 6d17daa
- smb3: fix empty netname context on secondary channels
(bsc#1193629).
- commit 51fad96
- cifs: when a channel is not found for server, log its connection
id (bsc#1193629).
- commit 1b306b2
- smb3: add trace point for SMB2_set_eof (bsc#1193629).
- commit c6da1d3
- cifs: populate empty hostnames for extra channels (bsc#1193629).
- commit f2f92b2
- cifs: return errors during session setup during reconnects
(bsc#1193629).
- commit d557671
- smb3: remove unneeded null check in cifs_readdir (bsc#1193629).
- commit 7eaa3dc
- cifs: cache the dirents for entries in a cached directory
(bsc#1193629).
- commit 0ddb648
- cifs: truncate the inode and mapping when we simulate fcollapse
(bsc#1193629).
- commit 3b07034
- scsi: libsas: Fix use-after-free bug in smp_execute_task_sg()
(git-fixes).
- commit 1ad6725
- dmaengine: idxd: deprecate token sysfs attributes for read
buffers (jsc#PED-679).
- commit c137213
- dmaengine: idxd: change bandwidth token to read buffers
(jsc#PED-679).
- Refresh
patches.suse/dmaengine-idxd-restore-traffic-class-defaults-after-.patch.
- commit d0c1256
- i2c: i801: Add support for Intel Meteor Lake-P (jsc#PED-732).
- spi: pxa2xx: Add support for Intel Meteor Lake-P (jsc#PED-732).
- scsi: ufs: ufs-pci: Add support for Intel MTL (jsc#PED-732).
- commit 11c983f
- Update patch reference for Intel MTL-P USB patch (jsc#PED-732)
- commit 4ca8c18
- pinctrl: alderlake: Fix register offsets for ADL-N variant
(jsc#PED-676).
- pinctrl: alderlake: Add Intel Alder Lake-N pin controller
support (jsc#PED-676).
- commit 5492389
- Update patch reference for Intel ADL-N eMMC patch (jsc#PED-676)
- commit 4c38b45
- thunderbolt: Add support for Intel Raptor Lake (jsc#PED-634).
- commit 0ec42f9
- pinctrl: alderlake: Add Raptor Lake-S ACPI ID (jsc#PED-634).
- mfd: intel-lpss: Add Intel Raptor Lake PCH-S PCI IDs
(jsc#PED-634).
- spi: pxa2xx: Add support for Intel Raptor Lake PCH-S
(jsc#PED-634).
- commit 06d5787
- Update patch references for intel_th RPL-S support (jsc#PED-634)
- commit 900e952
- i2c: i801: Add support for Intel Raptor Lake PCH-S
(jsc#PED-634).
- i2c: i801: Improve handling of chip-specific feature definitions
(jsc#PED-634).
- i2c: i801: Add support for Intel Ice Lake PCH-N (jsc#PED-634).
- commit 46a17cc
- scsi: ufs: ufs-pci: Add support for Intel ADL (jsc#PED-707).
- commit 356d2a6
- thermal: int340x: Mode setting with new OS handshake
(jsc#PED-678).
- commit c03fef0
- thermal: int340x: Update OS policy capability handshake
(jsc#PED-678).
- commit 2487fcb
- Update patch reference for macvlan fix (CVE-2022-3526 bsc#1204353)
- commit 740e86c
- rpm/check-for-config-changes: loosen pattern for AS_HAS_*
This is needed to handle CONFIG_AS_HAS_NON_CONST_LEB128.
- commit bdc0bf7
- powerpc/mm/64s: Drop pgd_huge() (bsc#1065729).
- powerpc/powernv: add missing of_node_put() in
opal_export_attrs() (bsc#1065729).
- powerpc/pci_dn: Add missing of_node_put() (bsc#1065729).
- commit 7c692ec
- powerpc/kprobes: Fix null pointer reference in
arch_prepare_kprobe() (jsc#SLE-13847 git-fixes).
- powerpc/64: Remove unused SYS_CALL_TABLE symbol (jsc#SLE-9246
git-fixes).
- commit 5521322
- arm64/bti: Disable in kernel BTI when cross section thunks are broken (git-fixes)
- commit 2f51dd9
- blacklist.conf: ("/arm64/mm: drop HAVE_ARCH_PFN_VALID"/)
- commit f836660
- clk: at91: fix the build with binutils 2.27 (git-fixes).
- commit a34e36d
- Input: xpad - add supported devices as contributed on github
(git-fixes).
- efi: libstub: drop pointless get_memory_map() call (git-fixes).
- misc: pci_endpoint_test: Fix
pci_endpoint_test_{copy,write,read}() panic (git-fixes).
- misc: pci_endpoint_test: Aggregate params checking for xfer
(git-fixes).
- USB: serial: qcserial: add new usb-id for Dell branded EM7455
(git-fixes).
- efi: Correct Macmini DMI match in uefi cert quirk (git-fixes).
- commit 4dee064
- ALSA: oss: Fix potential deadlock at unregistration (git-fixes).
- ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free()
(git-fixes).
- ALSA: hda/realtek: Add Intel Reference SSID to support headset
keys (git-fixes).
- ALSA: hda/realtek: Add quirk for ASUS GV601R laptop (git-fixes).
- commit c900b4a
- ACPI: HMAT: Release platform device in case of
platform_device_add_data() fails (git-fixes).
- rtc: stmp3xxx: Add failure handling for stmp3xxx_wdt_register()
(git-fixes).
- ALSA: hda/realtek: Correct pin configs for ASUS G533Z
(git-fixes).
- ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530
(git-fixes).
- arm64: mte: Avoid setting PG_mte_tagged if no tags cleared or
restored (git-fixes).
- drm/amd/pm: smu7_hwmgr: fix potential off-by-one overflow in
'performance_levels' (git-fixes).
- Revert "/drm/amdgpu: use dirty framebuffer helper"/ (git-fixes).
- drm/i915/ehl: Update MOCS table for EHL (git-fixes).
- commit 3ca51e4
- mmc: sdhci-sprd: Fix minimum clock limit (git-fixes).
- openvswitch: add nf_ct_is_confirmed check before assigning
the helper (git-fixes).
- selftests: netfilter: Fix nft_fib.sh for all.rp_filter=1
(git-fixes).
- wifi: iwlwifi: mvm: fix double list_add at
iwl_mvm_mac_wake_tx_queue (other cases) (git-fixes).
- wifi: cfg80211: fix ieee80211_data_to_8023_exthdr handling of
small packets (git-fixes).
- wifi: mac80211: fix decap offload for stations on AP_VLAN
interfaces (git-fixes).
- wifi: mac80211: fix probe req HE capabilities access
(git-fixes).
- wifi: mac80211: do not drop packets smaller than the LLC-SNAP
header on fast-rx (git-fixes).
- can: kvaser_usb_leaf: Fix CAN state after restart (git-fixes).
- can: kvaser_usb_leaf: Fix TX queue out of sync after restart
(git-fixes).
- can: kvaser_usb: Fix use of uninitialized completion
(git-fixes).
- macvlan: enforce a consistent minimal mtu (git-fixes).
- mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq
(git-fixes).
- net: ieee802154: return -EINVAL for unknown addr type
(git-fixes).
- watchdog: armada_37xx_wdt: Fix .set_timeout callback
(git-fixes).
- watchdog: ftwdt010_wdt: fix test for platform_get_irq() failure
(git-fixes).
- watchdog/hpwdt: Include nmi.h only if CONFIG_HPWDT_NMI_DECODING
(git-fixes).
- commit cb006e7
- Drop a incorrectly doubly applied WiFi fix patch
- commit 9d35b83
- wifi: cfg80211: update hidden BSSes to avoid WARN_ON
(git-fixes).
- wifi: mac80211_hwsim: avoid mac80211 warning on bad rate
(git-fixes).
- wifi: cfg80211/mac80211: reject bad MBSSID elements (git-fixes).
- commit b28d368
- Move upstramed WiFi fix patches into sorted section
- commit bef1692
- clk: bcm: rpi: Add support for VEC clock (bsc#1196632)
- commit 188fe72
- nvmem: core: Check input parameter for NULL in
nvmem_unregister() (bsc#1204241).
- commit 66b047b
- clk: bcm2835: Round UART input clock up (bsc#1188238)
- commit f465b19
- ALSA: hda/hdmi: Fix the converter allocation for the silent
stream (git-fixes).
- ALSA: hda/hdmi: change type for the 'assigned' variable
(git-fixes).
- commit 6c73200
- drm/i915/gvt: fix a memory leak in intel_gvt_init_vgpu_types
(git-fixes).
- irqchip/ls-extirq: Fix invalid wait context by avoiding to
use regmap (git-fixes).
- USB: serial: ftdi_sio: fix 300 bps rate for SIO (git-fixes).
- docs: update mediator information in CoC docs (git-fixes).
- mmc: core: Terminate infinite loop in SD-UHS voltage switch
(git-fixes).
- drm/amd/display: skip audio setup when audio stream is enabled
(git-fixes).
- drm/amd/display: update gamut remap if plane has changed
(git-fixes).
- drm/amd/display: Assume an LTTPR is always present on fixed_vs
links (git-fixes).
- drm/amd/display: Fix double cursor on non-video RGB MPO
(git-fixes).
- ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer
(git-fixes).
- firmware: arm_scmi: Add SCMI PM driver remove routine
(git-fixes).
- firmware: arm_scmi: Harden accesses to the sensor domains
(git-fixes).
- firmware: arm_scmi: Improve checks in the info_get operations
(git-fixes).
- net/ieee802154: fix uninit value bug in dgram_sendmsg
(git-fixes).
- dmaengine: xilinx_dma: Report error in case of
dma_set_mask_and_coherent API failure (git-fixes).
- dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores
property (git-fixes).
- dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource
error handling (git-fixes).
- ALSA: hda/hdmi: Fix the converter reuse for the silent stream
(git-fixes).
- rpmsg: qcom: glink: replace strncpy() with strscpy_pad()
(git-fixes).
- mmc: core: Replace with already defined values for readability
(git-fixes).
- commit 07f5789
- Drop TI clk patch that has been reverted in 5.15.y stable
- commit bfab74f
- Updated metadata references for bsc#1200788 CVE-2022-2153:
Updated patches (from Juergen Gross)
- patches.suse/KVM-x86-Avoid-theoretical-NULL-pointer-dereference-i.patch
- patches.suse/KVM-x86-Check-lapic_in_kernel-before-attempting-to-s.patch
- patches.suse/KVM-x86-Forbid-VMM-to-set-SYNIC-STIMER-MSRs-when-Syn.patch
- commit e9364fc
- thunderbolt: Fix buffer allocation of devices with no
DisplayPort adapters (git-fixes).
- commit 2534904
- fs: fix UAF/GPF bug in nilfs_mdt_destroy (CVE-2022-2978
bsc#1202700).
- commit e1802d7
- thunderbolt: Add missing device ID to
tb_switch_is_alpine_ridge() (git-fixes).
- commit 9447425
- thunderbolt: Disable LTTPR on Intel Titan Ridge (git-fixes).
- commit 9dce26f
- usb/hcd: Fix dma_map_sg error check (git-fixes).
- commit 82f7672
- kabi/severities: ignore CS35L41-specific exports (bsc#1203699)
- commit 9f486fe
- ALSA: hda: cs35l41: Support System Suspend (bsc#1203699).
- ALSA: hda: cs35l41: Remove suspend/resume hda hooks
(bsc#1203699).
- ALSA: hda/cs_dsp_ctl: Fix mutex inversion when creating controls
(bsc#1203699).
- ALSA: hda: hda_cs_dsp_ctl: Ensure pwr_lock is held before
reading/writing controls (bsc#1203699).
- ALSA: hda: hda_cs_dsp_ctl: Minor clean and redundant code
removal (bsc#1203699).
- commit 54175bd
- PCI: mediatek-gen3: Change driver name to mtk-pcie-gen3
(git-fixes).
- dt-bindings: PCI: microchip,pcie-host: fix missing dma-ranges
(git-fixes).
- dt-bindings: PCI: microchip,pcie-host: fix missing clocks
properties (git-fixes).
- PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge
(git-fixes).
- PCI: Fix used_buses calculation in pci_scan_child_bus_extend()
(git-fixes).
- PCI/ASPM: Correct LTR_L1.2_THRESHOLD computation (git-fixes).
- PCI/ASPM: Ignore L1 PM Substates if device lacks capability
(git-fixes).
- i2c: designware: Fix handling of real but unexpected device
interrupts (git-fixes).
- pinctrl: microchip-sgpio: Correct the fwnode_irq_get() return
value check (git-fixes).
- pinctrl: armada-37xx: Checks for errors in gpio_request_enable
callback (git-fixes).
- pinctrl: armada-37xx: Fix definitions for MPP pins 20-22
(git-fixes).
- pinctrl: armada-37xx: Add missing GPIO-only pins (git-fixes).
- Input: i8042 - fix refount leak on sparc (git-fixes).
- Input: synaptics-rmi4 - fix firmware update operations with
bootloader v8 (git-fixes).
- Input: xpad - fix wireless 360 controller breaking after suspend
(git-fixes).
- commit 6628947
- Add cherry-picked ID for AMDGPU patch
- commit 005b431
- octeontx2-pf: cn10k: Fix egress ratelimit configuration
(git-fixes).
- commit dfc0a0a
- net: sungem_phy: Add of_node_put() for reference returned by
of_get_parent() (git-fixes).
- commit cc0874b
- net: pcs: xpcs: propagate xpcs_read error to
xpcs_get_state_c37_sgmii (git-fixes).
- commit 6750e0f
- mlxsw: spectrum_router: Fix IPv4 nexthop gateway indication
(git-fixes).
- commit 6f3b54a
- ipv4: Fix data-races around sysctl_fib_multipath_hash_policy
(git-fixes).
- commit afc53c0
- iavf: Fix handling of dummy receive descriptors (git-fixes).
- commit e9bd3c0
- net: dsa: vitesse-vsc73xx: silent spi_device_id warnings
(git-fixes).
- commit 155ccd4
- net: dsa: sja1105: silent spi_device_id warnings (git-fixes).
- commit ee0b547
- net: stmmac: remove redunctant disable xPCS EEE call
(git-fixes).
- commit 9493b1a
- ixgbe: Add locking to prevent panic when setting sriov_numvfs
to zero (git-fixes).
- commit 53fbc66
- net: stmmac: fix dma queue left shift overflow issue
(git-fixes).
- commit 1deb58f
- net: dsa: microchip: ksz_common: Fix refcount leak bug
(git-fixes).
- commit c46e25b
- net: stmmac: fix unbalanced ptp clock issue in suspend/resume
flow (git-fixes).
- commit dff326f
- net: stmmac: fix pm runtime issue in stmmac_dvr_remove()
(git-fixes).
- commit e347cfb
- ip: Fix data-races around sysctl_ip_fwd_update_priority
(git-fixes).
- commit 4ea8f18
- sfc: fix kernel panic when creating VF (git-fixes).
- commit 33eba8c
- sfc: fix use after free when disabling sriov (git-fixes).
- commit 2fa14d7
- net: stmmac: fix leaks in probe (git-fixes).
- commit 97831ef
- KVM: x86: Register perf callbacks after calling vendor's
hardware_setup() (git-fixes).
- Refresh
patches.suse/KVM-x86-Register-Processor-Trace-interrupt-hook-iff-.patch.
- commit 871c62a
- USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM
(git-fixes).
- commit 31ce443
- KVM: VMX: Inject #PF on ENCLS as "/emulated"/ #PF (git-fixes).
- commit cc0ea0c
- usb: ehci: Fix a function name in comments (git-fixes).
- commit 610087d
- KVM: x86: Inject #UD on emulated XSETBV if XSAVES isn't enabled
(git-fixes).
- commit 93cdb54
- net: ftgmac100: Hold reference returned by
of_get_child_by_name() (git-fixes).
- commit 0961942
- bnxt_en: Fix bnxt_refclk_read() (git-fixes).
- commit 4187bc1
- bnxt_en: fix livepatch query (git-fixes).
- commit cc62415
- bnxt_en: Fix bnxt_reinit_after_abort() code path (git-fixes).
- commit e387d75
- bnxt_en: reclaim max resources if sriov enable fails
(git-fixes).
- commit 9161aa5
- net/mlx5e: Ring the TX doorbell on DMA errors (git-fixes).
- commit 7fdc3a9
- net/mlx5e: Fix enabling sriov while tc nic rules are offloaded
(git-fixes).
- commit 5e19505
- KVM: x86: do not report preemption if the steal time cache is
stale (git-fixes).
- commit c293d6b
- net: ethernet: ti: am65-cpsw: Fix devlink port register sequence
(git-fixes).
- commit 385f6b7
- can: mcp251xfd: mcp251xfd_register_get_dev_id(): fix endianness
conversion (git-fixes).
- commit 368984e
- can: mcp251xfd: mcp251xfd_register_get_dev_id(): use correct
length to read dev_id (git-fixes).
- commit 809cb98
- ACPI: APEI: do not add task_work to kernel thread to avoid
memory leak (git-fixes).
- lib/sg_pool: change module_init(sg_pool_init) to subsys_initcall
(git-fixes).
- dt-bindings: crypto: ti,sa2ul: drop dma-coherent property
(git-fixes).
- selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle
(git-fixes).
- crypto: cavium - prevent integer overflow loading firmware
(git-fixes).
- crypto: marvell/octeontx - prevent integer overflows
(git-fixes).
- crypto: inside-secure - Replace generic aes with libaes
(git-fixes).
- Revert "/crypto: qat - reduce size of mapped region"/ (git-fixes).
- crypto: inside-secure - Change swab to swab32 (git-fixes).
- crypto: ccp - Release dma channels before dmaengine unrgister
(git-fixes).
- crypto: akcipher - default implementation for setting a private
key (git-fixes).
- crypto: qat - fix default value of WDT timer (git-fixes).
- crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr
(git-fixes).
- crypto: sahara - don't sleep when in softirq (git-fixes).
- drm/amdgpu/display: change pipe policy for DCN 2.1 (git-fixes).
- drm/i915: Reject unsupported TMDS rates on ICL+ (git-fixes).
- drm/amdgpu/display: change pipe policy for DCN 2.0 (git-fixes).
- drm/amd/display: Correct MPC split policy for DCN301
(git-fixes).
- commit 353fbde
- Update
patches.suse/mm-rmap-Fix-anon_vma-degree-ambiguity-leading-to-double-reuse.patch
(CVE-2022-42703, bsc#1204168, git-fixes, bsc#1203098).
- commit fef8e31
- blacklist.conf: 30ea703a38ef x86/cpu: Include the header of init_ia32_feat_ctl()'s prototype
- commit fdb1f20
- misc: sgi-gru: fix use-after-free error in
gru_set_context_option, gru_fault and gru_handle_user_call_os
(CVE-2022-3424 bsc#1204166).
- commit bbc730f
- ipv4: Handle attempt to delete multipath route when fib_info
contains an nh reference (bsc#1204171 CVE-2022-3435).
- commit 1b0c1c8
- selftests: net: fix nexthop warning cleanup double ip typo
(bsc#1204171 CVE-2022-3435).
- commit e3962a5
- selftests: net: add delete nexthop route warning test
(bsc#1204171 CVE-2022-3435).
- commit 85deab0
- net: ipv4: fix route with nexthop object delete warning
(bsc#1204171 CVE-2022-3435).
- commit a94edc1
- Update metadata references
- commit 61773f9
- selftests/powerpc: Skip energy_scale_info test on older firmware
(git-fixes).
- commit 1eff3d6
- Revert "/SUNRPC: Remove unreachable error condition"/ (git-fixes).
- NFS: Fix another fsync() issue after a server reboot
(git-fixes).
- NFSv4: Fixes for nfs4_inode_return_delegation() (git-fixes).
- commit 80742b5
- blacklist.conf: and unwanted md patches
- commit 96bda12
- scsi: stex: Properly zero out the passthrough command structure
(bsc#1203514 CVE-2022-40768).
- commit f2b2e4a
- ALSA: hda: Fix position reporting on Poulsbo (git-fixes).
- ALSA: usb-audio: Fix potential memory leaks (git-fixes).
- ALSA: usb-audio: Fix NULL dererence at error path (git-fixes).
- commit 6c7f2c9
- sbitmap: Avoid leaving waitqueue in invalid state in
__sbq_wake_up() (git-fixes).
- commit 3c6ffc4
- staging: vt6655: fix some erroneous memory clean-up loops
(git-fixes).
- virt: vbox: convert to use dev_groups (git-fixes).
- usb: mtu3: fix failed runtime suspend in host only mode
(git-fixes).
- Revert "/usb: storage: Add quirk for Samsung Fit flash"/
(git-fixes).
- usb: mon: make mmapped memory read only (git-fixes).
- xhci: Don't show warning for reinit on known broken suspend
(git-fixes).
- xhci: dbc: Fix memory leak in xhci_alloc_dbc() (git-fixes).
- commit 4feb234
- usb: gadget: function: fix dangling pnp_string in f_printer.c
(git-fixes).
- USB: serial: console: move mutex_unlock() before
usb_serial_put() (git-fixes).
- usb: common: debug: Check non-standard control requests
(git-fixes).
- tty: serial: fsl_lpuart: disable dma rx/tx use flags in
lpuart_dma_shutdown (git-fixes).
- tty: xilinx_uartps: Fix the ignore_status (git-fixes).
- uas: ignore UAS for Thinkplus chips (git-fixes).
- usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (git-fixes).
- uas: add no-uas quirk for Hiksemi usb_disk (git-fixes).
- thunderbolt: Explicitly reset plug events delay back to USB4
spec value (git-fixes).
- commit d8ee195
- soc: sunxi_sram: Make use of the helper function
devm_platform_ioremap_resource() (git-fixes).
- Refresh
patches.suse/soc-sunxi-sram-Prevent-the-driver-from-being-unbound.patch.
- commit a85e811
- spmi: pmic-arb: correct duplicate APID to PPID mapping logic
(git-fixes).
- spmi: pmic-arb: do not ack and clear peripheral interrupts in
cleanup_irq (git-fixes).
- slimbus: qcom-ngd: cleanup in probe error path (git-fixes).
- slimbus: qcom-ngd: use correct error in message of
pdr_add_lookup() failure (git-fixes).
- soc: qcom: smem_state: Add refcounting for the 'state->of_node'
(git-fixes).
- soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe()
(git-fixes).
- soc: sunxi: sram: Fix probe function ordering issues
(git-fixes).
- commit 3e1f43f
- serial: 8250: Fix restoring termios speed after suspend
(git-fixes).
- drivers: serial: jsm: fix some leaks in probe (git-fixes).
- remoteproc: imx_rproc: Simplify some error message (git-fixes).
- sbitmap: fix possible io hung due to lost wakeup (git-fixes).
- platform/x86: msi-laptop: Fix resource cleanup (git-fixes).
- platform/x86: msi-laptop: Fix old-ec check for backlight
registering (git-fixes).
- commit a448666
- misc: ocxl: fix possible refcount leak in afu_ioctl()
(git-fixes).
- phy: qualcomm: call clk_disable_unprepare in the error handling
(git-fixes).
- phy: amlogic: phy-meson-axg-mipi-pcie-analog: Hold reference
returned by of_get_parent() (git-fixes).
- mtd: rawnand: atmel: Unmap streaming DMA mappings (git-fixes).
- mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct()
(git-fixes).
- mtd: rawnand: fsl_elbc: Fix none ECC mode (git-fixes).
- mtd: rawnand: intel: Don't re-define NAND_DATA_IFACE_CHECK_ONLY
(git-fixes).
- mtd: rawnand: intel: Remove undocumented compatible string
(git-fixes).
- mtd: rawnand: intel: Read the chip-select line from the correct
OF node (git-fixes).
- mtd: devices: docg3: check the return value of devm_ioremap()
in the probe (git-fixes).
- platform/x86: asus-wmi: Document the panel_od sysfs attribute
(git-fixes).
- platform/x86: asus-wmi: Document the egpu_enable sysfs attribute
(git-fixes).
- platform/x86: asus-wmi: Document the dgpu_disable sysfs
attribute (git-fixes).
- platform/chrome: cros_ec_typec: Correct alt mode index
(git-fixes).
- platform/chrome: fix memory corruption in ioctl (git-fixes).
- platform/chrome: fix double-free in chromeos_laptop_prepare()
(git-fixes).
- platform/chrome: cros_ec_proto: Update version on GET_NEXT_EVENT
failure (git-fixes).
- mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe()
(git-fixes).
- mmc: au1xmmc: Fix an error handling path in au1xmmc_probe()
(git-fixes).
- net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455
(git-fixes).
- commit b26b1a7
- mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg
(git-fixes).
- mailbox: mpfs: account for mbox offsets while sending
(git-fixes).
- mailbox: mpfs: fix handling of the reg property (git-fixes).
- mfd: sm501: Add check for platform_driver_register()
(git-fixes).
- mfd: fsl-imx25: Fix check for platform_get_irq() errors
(git-fixes).
- mfd: lp8788: Fix an error handling path in lp8788_irq_init()
and lp8788_irq_init() (git-fixes).
- mfd: lp8788: Fix an error handling path in lp8788_probe()
(git-fixes).
- mfd: fsl-imx25: Fix an error handling path in
mx25_tsadc_setup_irq() (git-fixes).
- mfd: intel_soc_pmic: Fix an error handling path in
intel_soc_pmic_i2c_probe() (git-fixes).
- media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init
(git-fixes).
- media: uvcvideo: Use entity get_cur in uvc_ctrl_set (git-fixes).
- media: uvcvideo: Fix memory leak in uvc_gpio_parse (git-fixes).
- media: meson: vdec: add missing clk_disable_unprepare on error
in vdec_hevc_start() (git-fixes).
- media: cedrus: Fix endless loop in cedrus_h265_skip_bits()
(git-fixes).
- media: cedrus: Set the platform driver data earlier (git-fixes).
- memory: of: Fix refcount leak bug in of_lpddr3_get_ddr_timings()
(git-fixes).
- memory: of: Fix refcount leak bug in of_get_ddr_timings()
(git-fixes).
- memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe()
(git-fixes).
- media: v4l2-compat-ioctl32.c: zero buffer passed to
v4l2_compat_get_array_args() (git-fixes).
- commit f4e8a30
- iio: adc: ad7923: fix channel readings for some variants
(git-fixes).
- iio: ltc2497: Fix reading conversion results (git-fixes).
- iio: dac: ad5593r: Fix i2c read protocol requirements
(git-fixes).
- iio: magnetometer: yas530: Change data type of hard_offsets
to signed (git-fixes).
- iio: ABI: Fix wrong format of differential capacitance channel
ABI (git-fixes).
- iio: inkern: fix return value in
devm_of_iio_channel_get_by_name() (git-fixes).
- iio: inkern: only release the device node when done with it
(git-fixes).
- iio: adc: at91-sama5d2_adc: disable/prepare buffer on
suspend/resume (git-fixes).
- iio: adc: at91-sama5d2_adc: lock around oversampling and sample
freq (git-fixes).
- iio: adc: at91-sama5d2_adc: check return status for pressure
and touch (git-fixes).
- commit b02859c
- firmware: google: Test spinlock on panic path to avoid lockups
(git-fixes).
- iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX
(git-fixes).
- fpga: prevent integer overflow in dfl_feature_ioctl_set_irq()
(git-fixes).
- dt-bindings: phy: qcom,qmp-usb3-dp: fix bogus clock-cells
property (git-fixes).
- dt-bindings: phy: qcom,qmp: fix bogus clock-cells property
(git-fixes).
- dt-bindings: mtd: intel: lgm-nand: Fix maximum chip select value
(git-fixes).
- dt-bindings: mtd: intel: lgm-nand: Fix compatible string
(git-fixes).
- HSI: omap_ssi_port: Fix dma_map_sg error check (git-fixes).
- HSI: omap_ssi: Fix refcount leak in ssi_probe (git-fixes).
- HID: multitouch: Add memory barriers (git-fixes).
- hid: hid-logitech-hidpp: avoid unnecessary assignments in
hidpp_connect_event (git-fixes).
- drm/omap: dss: Fix refcount leak bugs (git-fixes).
- drm/msm/dp: correct 1.62G link rate at
dp_catalog_ctrl_config_msa() (git-fixes).
- drm/msm/dp: Silence inconsistent indent warning (git-fixes).
- drm/msm/dpu: Fix comment typo (git-fixes).
- drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (git-fixes).
- dt-bindings: display/msm: dpu-sdm845: add missing DPU opp-table
(git-fixes).
- dt-bindings: display/msm: dpu-sc7180: add missing DPU opp-table
(git-fixes).
- commit 71c6639
- drm/scheduler: quieten kernel-doc warnings (git-fixes).
- commit 95b96ec
- drm/amdgpu: add missing pci_disable_device() in
amdgpu_pmops_runtime_resume() (git-fixes).
- drm/bridge: megachips: Fix a null pointer dereference bug
(git-fixes).
- drm: fix drm_mipi_dbi build errors (git-fixes).
- drm/msm: Make .remove and .shutdown HW shutdown consistent
(git-fixes).
- drm:pl111: Add of_node_put() when breaking out of
for_each_available_child_of_node() (git-fixes).
- drm/bridge: parade-ps8640: Fix regulator supply order
(git-fixes).
- drm/virtio: Unlock reservations on
virtio_gpu_object_shmem_init() error (git-fixes).
- drm/mipi-dsi: Detach devices when removing the host (git-fixes).
- commit f6c9019
- clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration
(git-fixes).
- clk: baikal-t1: Add SATA internal ref clock buffer (git-fixes).
- dmaengine: ioat: stop mod_timer from resurrecting deleted
timer in __cleanup() (git-fixes).
- dmaengine: mxs: use platform_driver_register (git-fixes).
- dmaengine: hisilicon: Add multi-thread support for a DMA channel
(git-fixes).
- dmaengine: hisilicon: Fix CQ head update (git-fixes).
- dmaengine: hisilicon: Disable channels when unregister hisi_dma
(git-fixes).
- drm/bridge: Avoid uninitialized variable warning (git-fixes).
- drm/nouveau: fix a use-after-free in
nouveau_gem_prime_import_sg_table() (git-fixes).
- drm: bridge: adv7511: fix CEC power down control register offset
(git-fixes).
- commit 89292ab
- clk: baikal-t1: Add shared xGMAC ref/ptp clocks internal parent
(git-fixes).
- clk: baikal-t1: Fix invalid xGMAC PTP clock divider (git-fixes).
- clk: vc5: Fix 5P49V6901 outputs disabling when enabling FOD
(git-fixes).
- clk: imx: scu: fix memleak on platform_device_add() fails
(git-fixes).
- clk: qcom: apss-ipq6018: mark apcs_alias0_core_clk as critical
(git-fixes).
- clk: qcom: gcc-msm8916: use ARRAY_SIZE instead of specifying
num_parents (git-fixes).
- clk: ast2600: BCLK comes from EPLL (git-fixes).
- clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent
(git-fixes).
- clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe
(git-fixes).
- commit c248e05
- clk: tegra20: Fix refcount leak in tegra20_clock_init
(git-fixes).
- clk: tegra: Fix refcount leak in tegra114_clock_init
(git-fixes).
- clk: tegra: Fix refcount leak in tegra210_clock_init
(git-fixes).
- clk: sprd: Hold reference returned by of_get_parent()
(git-fixes).
- clk: berlin: Add of_node_put() for of_get_parent() (git-fixes).
- clk: qoriq: Hold reference returned by of_get_parent()
(git-fixes).
- clk: oxnas: Hold reference returned by of_get_parent()
(git-fixes).
- clk: meson: Hold reference returned by of_get_parent()
(git-fixes).
- ata: fix ata_id_has_dipm() (git-fixes).
- ata: fix ata_id_has_ncq_autosense() (git-fixes).
- ata: fix ata_id_has_devslp() (git-fixes).
- ata: fix ata_id_sense_reporting_enabled() and
ata_id_has_sense_reporting() (git-fixes).
- ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe
(git-fixes).
- ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe
(git-fixes).
- ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe
(git-fixes).
- ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe
(git-fixes).
- ASoC: codecs: tx-macro: fix kcontrol put (git-fixes).
- ASoC: da7219: Fix an error handling path in
da7219_register_dai_clks() (git-fixes).
- ASoC: eureka-tlv320: Hold reference returned from of_find_xxx
API (git-fixes).
- ASoC: wm_adsp: Handle optional legacy support (git-fixes).
- commit 8f6277f
- Move upstreamed DRM, NVMe and sound patches into sorted section
- commit 48ff6f0
- arm64: ftrace: fix module PLTs with mcount (git-fixes).
- ARM: Drop CMDLINE_* dependency on ATAGS (git-fixes).
- ARM: dts: exynos: fix polarity of VBUS GPIO of Origen
(git-fixes).
- ARM: dts: exynos: correct s5k6a3 reset polarity on Midas family
(git-fixes).
- ARM: dts: turris-omnia: Add label for wan port (git-fixes).
- ARM: dts: armada-38x: Add gpio-ranges for pin muxing
(git-fixes).
- ARM: dts: kirkwood: lsxl: remove first ethernet port
(git-fixes).
- ARM: dts: kirkwood: lsxl: fix serial line (git-fixes).
- ARM: dts: turris-omnia: Fix mpp26 pin name and comment
(git-fixes).
- arm64: dts: qcom: sc7280: Cleanup the lpasscc node (git-fixes).
- arm64: dts: ti: k3-j7200: fix main pinmux range (git-fixes).
- ARM: dts: imx6qdl-kontron-samx6i: hook up DDC i2c bus
(git-fixes).
- ARM: defconfig: drop CONFIG_USB_FSL_USB2 (git-fixes).
- ARM: defconfig: drop CONFIG_PTP_1588_CLOCK=y (git-fixes).
- ARM: defconfig: drop CONFIG_SERIAL_OMAP references (git-fixes).
- ARM: defconfig: clean up multi_v4t and multi_v5 configs
(git-fixes).
- ASoC: rsnd: Add check for rsnd_mod_power_on (git-fixes).
- ASoC: tas2764: Fix mute/unmute (git-fixes).
- ASoC: tas2764: Drop conflicting set_bias_level power setting
(git-fixes).
- ASoC: tas2764: Allow mono streams (git-fixes).
- ASoC: fsl_sai: Remove unnecessary FIFO reset in ISR (git-fixes).
- ASoC: mt6359: fix tests for platform_get_irq() failure
(git-fixes).
- ALSA: hda/hdmi: Don't skip notification handling during PM
operation (git-fixes).
- ALSA: dmaengine: increment buffer pointer atomically
(git-fixes).
- ALSA: asihpi - Remove useless code in hpi_meter_get_peak()
(git-fixes).
- ASoC: wcd934x: fix order of Slimbus unprepare/disable
(git-fixes).
- ASoC: wcd9335: fix order of Slimbus unprepare/disable
(git-fixes).
- ARM: dts: integrator: Tag PCI host with device_type (git-fixes).
- commit 5a02ba2
- i40e: Fix dropped jumbo frames statistics (git-fixes).
- commit b407b7d
- net: bonding: fix use-after-free after 802.3ad slave unbind
(git-fixes).
- commit 05b9579
- net: bonding: fix possible NULL deref in rlb code (git-fixes).
- commit 8542934
- net: dp83822: disable rx error interrupt (git-fixes).
- commit f74888c
- net: dp83822: disable false carrier interrupt (git-fixes).
- commit ba1cc16
- net: dsa: bcm_sf2: force pause link settings (git-fixes).
- commit 5258d4a
- net/dsa/hirschmann: Add missing of_node_get() in
hellcreek_led_setup() (git-fixes).
- commit 29e4721
- ice: Fix switchdev rules book keeping (git-fixes).
- commit 5c21799
- igb: Make DMA faster when CPU is active on the PCIe link
(git-fixes).
- commit db90cd9
- bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
(git-fixes).
- commit da7ba2e
- igb: fix a use-after-free issue in igb_clean_tx_ring
(git-fixes).
- commit 12acd2f
- net: bgmac: Fix an erroneous kfree() in bgmac_remove()
(git-fixes).
- commit 547f6a9
- mlxsw: spectrum_cnt: Reorder counter pools (git-fixes).
- commit f2c7808
- net: hns3: don't push link state to VF if unalive (git-fixes).
- commit 7f6680c
- net: hns3: set port base vlan tbl_sta to false before removing
old vlan (git-fixes).
- commit 8c8d58b
- i40e: Fix call trace in setup_tx_descriptors (git-fixes).
- commit 7d70f11
- ixgbe: fix unexpected VLAN Rx in promisc mode on VF (git-fixes).
- commit 6a72a8e
- ixgbe: fix bcast packets Rx on VF after promisc removal
(git-fixes).
- commit ddb5b75
- net: dsa: mv88e6xxx: use BMSR_ANEGCOMPLETE bit for filling
an_complete (git-fixes).
- commit b8286fc
- net: altera: Fix refcount leak in altera_tse_mdio_create
(git-fixes).
- commit e80ff1b
- net/mlx4_en: Fix wrong return value on ioctl EEPROM query
failure (git-fixes).
- commit a76859c
- net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
(git-fixes).
- commit 04259d9
- stmmac: intel: Fix an error handling path in
intel_eth_pci_probe() (git-fixes).
- commit fed21d9
- net: ethernet: bgmac: Fix refcount leak in
bcma_mdio_mii_register (git-fixes).
- commit 2227ee5
- net: bgmac: support MDIO described in DT (git-fixes).
- commit bf1f5f9
- drm/nouveau: wait for the exclusive fence after the shared ones v2 (bsc#1152472)
Backporting notes:
* context changes
- commit 0261ec2
- drm/amd/display: Changed pipe split policy to allow for multi-display (bsc#1152472)
Backporting notes:
* remove changes to non-existing 201 and 31 directories
- commit e6a9bdd
- drm/amdgpu/gfx9: switch to golden tsc registers for renoir+ (bsc#1152472)
Backporting notes:
* replace IP_VERSION() with CHIP_ constants
- commit d27747b
- blacklist.conf: Append 'drm/bridge: Add stubs for devm_drm_of_get_bridge when OF is disabled'
- commit e1d0d55
- blacklist.conf: Append 'drm/amd/display: Fix wrong format specifier in amdgpu_dm.c'
- commit debed4c
- blacklist.conf: Append 'drm/amdgpu: Fix resource leak on probe error path'
- commit 116f3cc
- drm/amdgpu/gfx10: add wraparound gpu counter check for APUs as well (bsc#1152472)
Backporting notes:
* also fix default branch
- commit 0bf8eb3
- drm/i915/hdmi: convert intel_hdmi_to_dev to intel_hdmi_to_i915 (bsc#1152489)
Backporting notes:
* update additional patch on top
- commit 1550ef2
- Update
patches.suse/ACPI-processor-idle-Practically-limit-Dummy-wait-wor.patch
(bsc#1203767,bsc#1203802).
- commit c6ebacb
- nvme: ensure subsystem reset is single threaded (bsc#1203290
CVE-2022-3169).
- commit f73d666
- nvme: restrict management ioctls to admin (bsc#1203290
CVE-2022-3169).
- commit c28a770
- net/mlx5e: Update netdev features after changing XDP state
(git-fixes).
- commit 5d7478c
- net/mlx5e: Disable softirq in mlx5e_activate_rq to avoid race
condition (git-fixes).
- commit 92e1426
- hinic: Avoid some over memory allocation (git-fixes).
- commit 41f381d
- net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc()
(git-fixes).
- commit b92d6d0
- net: chelsio: cxgb4: Avoid potential negative array offset
(git-fixes).
- commit 4cc759d
- net/mlx5e: TC, fix decap fallback to uplink when int port not
supported (git-fixes).
- commit 35c9b8d
- net: dsa: ksz9477: port mirror sniffing limited to one port
(git-fixes).
- commit 9996ff6
- nvme: don't print verbose errors for internal passthrough
requests (bsc#1202187).
- commit eaa4989
- blacklist.conf: update the list
- commit 78eff9b
- s390/smp: enforce lowcore protection on CPU restart (git-fixes).
- KVM: s390: pv: don't present the ecall interrupt twice
(bsc#1203229 LTC#199905).
- commit aed7a32
- blacklist.conf: Add reverted patch
d11219ad53dc amdgpu: disable powerpc support for the newer display engine
c653c591789b drm/amdgpu: Re-enable DCN for 64-bit powerpc
- commit 15ec992
- xfs: fix perag reference leak on iteration race with growfs
(git-fixes).
- commit fc22ca3
- SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297).
- commit 623bb84
- krb5
-
- Fix integer overflows in PAC parsing; (CVE-2022-42898);
(bso#15203), (bsc#1205126).
- Added patches:
* 0010-Fix-integer-overflows-in-PAC-parsing.patch
- libX11
-
- U_fix-a-memory-leak-in-XRegisterIMInstantiateCallback.patch
* security update for CVE-2022-3554 (bsc#1204422)
- U_Fix-two-memory-leaks-in-_XFreeX11XCBStructure.patch
* security update for CVE-2022-3555 (bsc#1204425)
- libXpm
-
- U_regression2-bug1207029_1207030_1207031.patch
* second regression fix: Use gzip -d instead of gunzip
- U_regression-bug1207029_1207030_1207031.patch
* regression fix for above patches
- U_0000-Update-README-for-gitlab-migration.patch
* needed by U_0001-configure-add-disable-open-zfile-instead-of-requirin.patch
- U_0001-configure-add-disable-open-zfile-instead-of-requirin.patch
* needed by U_0005-Fix-CVE-2022-4883-compression-commands-depend-on-PAT.patch
- U_0002-Fix-CVE-2022-46285-Infinite-loop-on-unclosed-comment.patch
* libXpm: Infinite loop on unclosed comments (CVE-2022-46285,
bsc#1207029)
- U_0004-Fix-CVE-2022-44617-Runaway-loop-with-width-of-0-and-.patch
* libXpm: Runaway loop on width of 0 and enormous height
(CVE-2022-44617, bsc#1207030)
- U_0005-Fix-CVE-2022-4883-compression-commands-depend-on-PAT.patch
* libXpm: compression commands depend on $PATH (CVE-2022-4883,
bsc#1207031)
- libapparmor
-
- add profiles-permit-php-fpm-pid-files-directly-under-run.patch
https://gitlab.com/apparmor/apparmor/-/merge_requests/914 (bsc#1202344)
- libeconf
-
- Update to version 0.4.6+git20220427.3016f4e:
* econftool:
* * Parsing error: Reporting file and line nr.
* * --delimeters=spaces Taking all kind of spaces for delimiter
* libeconf:
Fixed bsc#1198165: Parsing files correctly which have space characters
AND none space characters as delimiters.
- Update to version 0.4.5+git20220406.c9658f2:
* econftool:
* * New call "/syntax"/ for checking the configuration files only.
Returns an error string with line number if an error occurs.
* * New options "/--comment"/ and "/--delimeters"/
* * Parsing one file only if needed.
- libksba
-
- Security fix: [bsc#1206579, CVE-2022-47629]
* Integer overflow in the CRL signature parser.
* Add libksba-CVE-2022-47629.patch
- libsodium
-
- Update in SLE-15 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629)
- Revert previous change about cpuid as previous change rejected
in https://build.opensuse.org/request/show/724809
- Disable LTO as bypass boo#1148184
- Add libsodium_configure_cpuid_chg.patch and call autoconf
to regenerate configure script with proper CPUID checking.
Required at least for PowerPC and ARM now that LTO enabled.
- Update to 1.0.18
- Enterprise versions of Visual Studio are now supported.
- Visual Studio 2019 is now supported.
- 32-bit binaries for Visual Studio 2010 are now provided.
- A test designed to trigger an OOM condition didn't work on
Linux systems with memory overcommit turned on. It has been
removed in order to fix Ansible builds.
- Emscripten: print and printErr functions are overridden to send
errors to the console, if there is one.
- Emscripten: UTF8ToString() is now exported since
Pointer_stringify() has been deprecated.
- Libsodium version detection has been fixed in the CMake recipe.
- Generic hashing got a 10% speedup on AVX2.
- New target: WebAssembly/WASI
(compile with dist-builds/wasm32-wasi.sh).
- New functions to map a hash to an edwards25519 point
or get a random point:
core_ed25519_from_hash() and core_ed25519_random().
- crypto_core_ed25519_scalar_mul() has been implemented for
scalar*scalar (mod L) multiplication.
- Support for the Ristretto group has been implemented for
interoperability with wasm-crypto.
- Improvements have been made to the test suite.
- Portability improvements have been made.
- getentropy() is now used on systems providing this system call.
- randombytes_salsa20 has been renamed to randombytes_internal.
- Support for NativeClient has been removed.
- Most ((nonnull)) attributes have been relaxed to allow 0-length
inputs to be NULL.
- The -ftree-vectorize and -ftree-slp-vectorize compiler switches
are now used, if available, for optimized builds.
- Update to 1.0.17
- Bug fix: sodium_pad() didn't properly support block sizes
>= 256 bytes.
- JS/WebAssembly: some old iOS versions can't instantiate the
WebAssembly module; fall back to Javascript on these.
- JS/WebAssembly: compatibility with newer Emscripten versions.
- Bug fix: crypto_pwhash_scryptsalsa208sha256_str_verify() and
crypto_pwhash_scryptsalsa208sha256_str_needs_rehash()didn't
returnEINVAL` on input strings with a short length, unlike
their high-level counterpart.
- Added a workaround for Visual Studio 2010 bug causing CPU
features not to be detected.
- Portability improvements.
- Test vectors from Project Wycheproof have been added.
- New low-level APIs for arithmetic mod the order of the prime
order group:
- crypto_core_ed25519_scalar_random(),
crypto_core_ed25519_scalar_reduce(),
- crypto_core_ed25519_scalar_invert(),
crypto_core_ed25519_scalar_negate(),
- crypto_core_ed25519_scalar_complement(),
crypto_core_ed25519_scalar_add() and
crypto_core_ed25519_scalar_sub().
- New low-level APIs for scalar multiplication without clamping:
crypto_scalarmult_ed25519_base_noclamp() and
crypto_scalarmult_ed25519_noclamp().
These new APIs are especially useful for blinding.
- sodium_sub() has been implemented.
- Support for WatchOS has been added.
- getrandom(2) is now used on FreeBSD 12+.
- The nonnull attribute has been added to all relevant
prototypes.
- More reliable AVX512 detection.
- Javascript/Webassembly builds now use dynamic memory growth.
- libtirpc
-
- consider /proc/sys/net/ipv4/ip_local_reserved_ports, before binding
to a random port (bsc#1199467)
- add binddynport-honor-ip_local_reserved_ports.patch
- libusb-1_0
-
- Added 0002-gracefully-handle-buggy-config0-devices.patch
* Fix regression where some buggy devices no longer work
if they have a configuration value of 0.
* [bsc#1201590]
- libuv
-
- Remove epoll syscall wrappers; (bsc#1199062); Add
* 0001-linux-remove-epoll-syscall-wrappers.patch
* 0002-linux-drop-code-path-for-epoll_pwait-less-kernels.patch
- libvirt
-
- apparmor: Fix QEMU access for UEFI variable files
7aec69b7-apparmor-Fix-QEMU-access-for-UEFI.patch
boo#1203976
- vmx: Require networkName for bridged and custom NICs
db0564b4-vmx-Require-networkName.patch
bsc#1202630
- spec: Include aarch64 in the list of architectures that 'Require'
dmidecode
bsc#1202608
- spec: Suppress error messages about nonexistent or unreadable
files from grep
- Fix downstream patches to adhere to upstream coding standards
and pass 'make syntax-check'
- qemu: Don't assume that /usr/libexec/qemu-kvm exists
c890c496-qemu-cleanup-virQEMUCapsFindBinaryForArch.patch,
0a301b19-qemu-dont-assume-qemukvm.patch,
fb7016a7-qemu-dissolve-virQEMUCapsFindBinaryForArch.patch
bsc#1158430, boo#1196087
- qemu: Support memory allocation threads
ba7f9812-conf-intro-mem-alloc-threads.patch,
a30dac15-qemu-detect-prealloc-threads.patch,
75a4e016-qemu-validate-prealloc-threads.patch,
b8d6ecc7-qemu-generate-prealloc-threads.patch
bsc#1197084
- libxml2
-
- Add W3C conformance tests to the testsuite (bsc#1204585):
* Added file xmlts20080827.tar.gz
- lvm2
-
- killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216)
- bug-1203216_lvmlockd-purge-the-lock-resources-left-in-previous-l.patch
- dracut-initqueue timeouts with 5.3.18-150300.59.63 kernel on ppc64le (bsc#1199074)
- in lvm2.spec, change device_mapper_version from 1.02.163 to %{lvm2_version}_1.02.163
- lvmlockd is not supporting sanlock (bsc#1203482)
- set 1 for _supportsanlock in lvm2.spec for enabling sanlock.
- mlocate
-
- Pass "/--shell=/bin/sh"/ to "/su"/ when running the "/updatedb"/
command so that we don't depend on the "/${RUN_UPDATEDB_AS}"/
user's login shell. Since that user is "/nobody"/ by default, the
login shell will oftentimes be "//bin/false"/. [jsc#PED-1717]
- mozilla-nspr
-
- update to version 4.34.1
* add file descriptor sanity checks in the NSPR poll function.
- mozilla-nss
-
- Add upstream patch nss-fix-bmo1774654.patch to fix CVE-2022-3479
(bsc#1204272)
- update to NSS 3.79.3 (bsc#1207038)
* Bug 1803453 - Set CKA_NSS_SERVER_DISTRUST_AFTER and
CKA_NSS_EMAIL_DISTRUST_AFTER for 3 TrustCor Root Certificates
(CVE-2022-23491)
- Update nss-fips-approved-crypto-non-ec.patch to disapprove the
creation of DSA keys, i.e. mark them as not-fips (bsc#1201298)
- Update nss-fips-approved-crypto-non-ec.patch to allow the use SHA
keygen mechs (bsc#1191546).
- Update nss-fips-constructor-self-tests.patch to ensure abort() is
called when the repeat integrity check fails (bsc#1198980).
- Require libjitter only for SLE15-SP4 and greater
- update to NSS 3.79.2 (bsc#1204729)
* bmo#1785846 - Bump minimum NSPR version to 4.34.1.
* bmo#1777672 - Gracefully handle null nickname in CERT_GetCertNicknameWithValidity.
- Add nss-allow-slow-tests.patch, which allows a timed test to run
longer than 1s. This avoids turning slow builds into broken
builds.
- Update nss-fips-approved-crypto-non-ec.patch to allow the use of
DSA keys (verification only) (bsc#1201298).
- Update nss-fips-constructor-self-tests.patch to add
sftk_FIPSRepeatIntegrityCheck() to softoken's .def file
(bsc#1198980).
- Update nss-fips-approved-crypto-non-ec.patch to allow the use of
longer symmetric keys via the service level indicator
(bsc#1191546).
- Update nss-fips-constructor-self-tests.patch to hopefully export
sftk_FIPSRepeatIntegrityCheck() correctly (bsc#1198980).
- Update nss-fips-approved-crypto-non-ec.patch to prevent sessions
from getting flagged as non-FIPS (bsc#1191546).
- Mark DSA keygen unapproved (bsc#1191546, bsc#1201298).
- Enable nss-fips-drbg-libjitter.patch now that we have a patched
libjitter to build with (bsc#1202870).
- Update nss-fips-approved-crypto-non-ec.patch to prevent keys
from getting flagged as non-FIPS and add remaining TLS mechanisms.
- Add nss-fips-drbg-libjitter.patch to use libjitterentropy for
entropy. This is disabled until we can avoid the inline assembler
in the latter's header file that relies on GNU extensions.
- Update nss-fips-constructor-self-tests.patch to fix an abort()
when both NSS_FIPS and /proc FIPS mode are enabled.
- net-snmp
-
- Hardening systemd services setting "/ProtectHome=true"/ caused home directory
size and allocation to be listed incorrectly (bsc#1206044).
add:
* net-snmp-5.9.3-harden_snmpd.service.patch
* net-snmp-5.9.3-harden_snmptrapd.service.patch
delete:
* net-snmp-5.9.1-harden_snmpd.service.patch
* net-snmp-5.9.1-harden_snmptrapd.service.patch
- Fixed NULL pointer exception issue when handling ipDefaultTTL or
pv6IpForwarding (bsc#1205148, CVE-2022-44793, bsc#1205150, CVE-2022-44792).
add:
* net-snmp-5.9.3-disallow_SET_requests_with_NULL_varbind.patch
- Enable AES-192 and AES-256 privacy protocol (bsc#1206828).
- update to 5.9.3 (bsc#1201103, jsc#SLE-11203):
- security:
- These two CVEs can be exploited by a user with read-only credentials:
- CVE-2022-24805 A buffer overflow in the handling of the INDEX of
NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.
- CVE-2022-24809 A malformed OID in a GET-NEXT to the nsVacmAccessTable
can cause a NULL pointer dereference.
- These CVEs can be exploited by a user with read-write credentials:
- CVE-2022-24806 Improper Input Validation when SETing malformed
OIDs in master agent and subagent simultaneously
- CVE-2022-24807 A malformed OID in a SET request to
SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an
out-of-bounds memory access.
- CVE-2022-24808 A malformed OID in a SET request to
NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference
- CVE-2022-24810 A malformed OID in a SET to the nsVacmAccessTable
can cause a NULL pointer dereference.
- Fixed library versioning bug found in 5.9.2.
- Library version change to libsnmp40.
- Moved logrotate files from user specific directory /etc/logrotate.d
to vendor specific directory /usr/etc/logrotate.d.
- Fixed python2 backward compability.
add:
* net-snmp-5.9.3-fixed-python2-bindings.patch
- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.
- Change to use systemd service files directly from net-snmp package.
add:
* net-snmp-5.9.1-suse-systemd-service-files.patch
* net-snmp-5.9.1-harden_snmpd.service.patch
* net-snmp-5.9.1-harden_snmptrapd.service.patch
remove:
* snmpd.service
* snmptrapd.service
* harden_snmpd.service.patch
* harden_snmptrapd.service.patch
- Refactor and remove obsolete patches to work with version number 5.9.3:
add:
* net-snmp-5.9.3-pie.patch
* net-snmp-5.9.3-fix-create-v3-user-outfile.patch
* net-snmp-5.9.1-add-lustre-fs-support.patch
* net-snmp-5.9.1-fix-Makefile.PL.patch
* net-snmp-5.9.1-modern-rpm-api.patch
* net-snmp-5.9.1-net-snmp-config-headercheck.patch
* net-snmp-5.9.1-perl-tk-warning.patch
* net-snmp-5.9.1-snmpstatus-suppress-output.patch
* net-snmp-5.9.1-socket-path.patch
* net-snmp-5.9.1-subagent-set-response.patch
* net-snmp-5.9.1-testing-empty-arptable.patch
* net-snmp-5.9.1-velocity-mib.patch
remove:
* net-snmp-5.9.1-pie.patch
* net-snmp-5.9.1-fix-create-v3-user-outfile.patch
* net-snmp-5.7.3-add-lustre-fs-support.patch
* net-snmp-5.7.3-Fix-Makefile.PL.patch
* net-snmp-5.7.3-modern-rpm-api.patch
* net-snmp-5.7.3-net-snmp-config-headercheck.patch
* net-snmp-5.7.3-perl-tk-warning.patch
* net-snmp-5.7.3-snmpstatus-suppress-output.patch
* net-snmp-5.7.3-socket-path.patch
* net-snmp-5.7.3-subagent-set-response.patch
* net-snmp-5.7.3-testing-empty-arptable.patch
* net-snmp-5.7.3-velocity-mib.patch
* net-snmp-5.7.3-fix-create-v3-user-outfile.patch
* net-snmp-5.7.3-pie.patch
* net-snmp-4.7.2-systemd.patch
* net-snmp-5.7.3-build-with-openssl-1.1.patch
* net-snmp-5.7.3-fix-agentx-freezing-on-timeout.patch
* net-snmp-5.7.3-fix-missing-mib-hrStorage-indexes.patch
* net-snmp-5.7.3-fix-snmpd-crashing-when-an-agentx-disconnects.patch
* net-snmp-5.7.3-fix-snmp_pdu_parse-incomplete.patch
* net-snmp-5.7.3-fix-subagent-data-corruption.patch
* net-snmp-5.7.3-helpers-table-skip-if-next-handler-called.patch
* net-snmp-5.7.3-host-mib-skip-autofs-entries.patch
* net-snmp-5.7.3-make-extended-mib-read-only.patch
* net-snmp-5.7.3-netgroups.patch
* net-snmp-5.7.3-Remove-U64-typedef.patch
* net-snmp-5.7.3-snmptrapd-add-forwarder-info.patch
* net-snmp-5.7.3-swintst_rpm-Protect-against-unspecified-Group-name.patch
* net-snmp-5.7.3-ucd-snmp-mib-add-64-bit-mem-obj.patch
* net-snmp-python3.patch
- nfs-utils
-
- add 0025-nfsdcltrack-getopt_long-fails-on-a-non-x86_64-archs.patch
Fix nfsdcltrack bug that affected non-x86 archs.
(bsc#1202627)
- 0024-systemd-Apply-all-sysctl-settings-when-NFS-related-m.patch
Ensure sysctl setting work (bsc#1199856)
- nfsidmap
-
- 0001-Removed-some-unused-and-set-but-not-used-warnings.patch
0002-Handle-NULL-names-better.patch
0003-Strip-newlines-out-of-IDMAP_LOG-messages.patch
0004-onf_parse_line-Ignore-whitespace-at-the-beginning-of.patch
0005-nss.c-wrong-check-of-return-value.patch
0006-Fixed-a-memory-leak-nss_name_to_gid.patch
Various bugfixes and improvemes from upstream
In particular, 0001 fixes a crash that can happen when
a 'static' mapping is configured.
(bnc#1200901)
- ocfs2-tools
-
- ocfs2-tools: finish UsrMerge, install to /usr (bsc#1191084)
+ modify ocfs2_tools.spec to use %suse_version to replace %UsrMerge
- ocfs2-tools: finish UsrMerge, install to /usr (bsc#1191084)
+ modify ocfs2_tools.spec to following UsrMerge rule
- openssh
-
- Add openssh-dbus.sh, openssh-dbus.csh, openssh-dbus.fish: Make ssh
connections update their dbus environment (bsc#1179465).
- Add openssh-do-not-send-empty-message.patch: Prevent empty
messages from being sent. This avoids a superfluous new line
(bsc#1192439).
- openssl-1_1
-
- FIPS: Add Pair-wise Consistency Test when generating DH key [bsc#1207182]
* Add openssl-fips-DH-Pair-wise-Consistency.patch
- FIPS: Service-level indicator [bsc#1190651]
* Mark PBKDF2 with key shorter than 112 bits as non-approved
* Add openssl-1_1-ossl-sli-007-pbkdf2-keylen.patch
- FIPS: Service-level indicator [bsc#1190651]
* Consider RSA siggen/sigver with PKCS1 padding also approved
* Add openssl-1_1-ossl-sli-006-rsa_pkcs1_padding.patch
- FIPS: Service-level indicator [bsc#1190651]
* Return the correct indicator for a given EC group order bits
* Add openssl-1_1-ossl-sli-005-EC_group_order_bits.patch
- FIPS: Add a missing dependency on jitterentropy-devel for
libopenssl-1_1-devel [bsc#1202148]
- FIPS: OpenSSL service-level indicator - Allow AES XTS 256 [bsc#1190651]
* Add patches: openssl-1_1-ossl-sli-004-allow-aes-xts-256.patch
- pacemaker
-
- tools: fix syntax on resetting options in crm_resource (bsc#1198409)
* bsc#1198409-0001-Fix-tools-fix-syntax-on-resetting-options-in-crm_res.patch
- tools: correct minimum execution status shown by crm_resource -O (bsc#1205279, bsc#1204581)
* bsc#1205279-0001-Fix-tools-correct-minimum-execution-status-shown-by-.patch
- controller: log an info instead of a warning for a stonith/shutdown that is unknown to the new DC (bsc#1198715)
* bsc#1198715-0001-Log-controller-log-an-info-instead-of-a-warning-for-.patch
- controller: record CRM feature set as a transient attribute (bsc#1196673, bsc#1203367, fate#320759)
* bsc#1196673-0001-Feature-controller-record-CRM-feature-set-as-a-trans.patch
- pam
-
- Update pam_motd to the most current version. This fixes various issues
and adds support for mot.d directories [jsc#PED-1712].
* Added: pam-ped1712-pam_motd-directory-feature.patch
- pixman
-
- Add pixman-CVE-2022-44638.patch: avoid an integer overflow
(boo#1205033 CVE-2022-44638).
- polkit-default-privs
-
- Update to version 13.2+20221216.a0c29e6:
* backport usbguard actions (bsc#1206414)
- procps
-
- Extend patch procps-3.3.17-library-bsc1181475.patch (bsc#1206412)
- Make sure that correct library version is installed (bsc#1206412)
- protobuf
-
- Fix a potential DoS issue in protobuf-cpp and protobuf-python,
CVE-2022-1941, bsc#1203681
* Add protobuf-CVE-2022-1941.patch
- Fix a potential DoS issue when parsing with binary data in
protobuf-java, CVE-2022-3171, bsc#1204256
* Add protobuf-CVE-2022-3171.patch
- Refresh protobuf-CVE-2021-22570.patch
- Backport changes from 3.16.x tree for apply recent CVE patches
* Add protobuf-51026d922970e06475f005b39287963594134b96.patch
* Add protobuf-6ee16a9c60e734104aeb738503fe3f411c97bd88.patch
* Add protobuf-73e0d748b9acdc40b693f2879ce82ecb1a849b81.patch
* Add protobuf-7bff8393cab939bfbb9b5c69b3fe76b4d83c41ee.patch
* Add protobuf-4f02f056b5cea99052bfdfb6698afe47a3cf2964.patch
* Add protobuf-763c3588740b97e8e80b1b1a1a2dc4f417647133.patch
* Add protobuf-6c92f9dff1807c142edf6780d775b58a3b078591.patch
* Add protobuf-4e93585e8bb234efeacb7737b8d080968c5ab91e.patch
* Add protobuf-58d4420e2dd8a3cd354fff9db0052881c25369ce.patch
- Reorganize patch set ordering
- Fix potential Denial of Service in protobuf-java in the parsing procedure
for binary data, CVE-2021-22569, bsc#1194530
* Add protobuf-improve-performance-of-parsing-unknown-fields-in-Java.patch
- python-PyNaCl
-
- Update in SLE-15 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629)
- six is needed by testsuite
- Update to 1.4.0
* Update ``libsodium`` to 1.0.18.
* **BACKWARDS INCOMPATIBLE:** We no longer distribute 32-bit ``manylinux1``
wheels. Continuing to produce them was a maintenance burden.
* Added support for Python 3.8, and removed support for Python 3.4.
* Add low level bindings for extracting the seed and the public key
from crypto_sign_ed25519 secret key
* Add low level bindings for deterministic random generation.
* Add ``wheel`` and ``setuptools`` setup_requirements in ``setup.py`` (#485)
* Fix checks on very slow builders (#481, #495)
* Add low-level bindings to ed25519 arithmetic functions
* Update low-level blake2b state implementation
* Fix wrong short-input behavior of SealedBox.decrypt() (#517)
* Raise CryptPrefixError exception instead of InvalidkeyError when trying
to check a password against a verifier stored in a unknown format (#519)
* Add support for minimal builds of libsodium. Trying to call functions
not available in a minimal build will raise an UnavailableError
exception. To compile a minimal build of the bundled libsodium, set
the SODIUM_INSTALL_MINIMAL environment variable to any non-empty
string (e.g. ``SODIUM_INSTALL_MINIMAL=1``) for setup.
- removed obsolete back-port patch:
* fix_tests.patch
* hypothesis-no-unilmited.patch
* python-PyNaCl-hypothesis-remove-average_size.patch
- Fix tests with latest hypothesis:
* hypothesis-no-unilmited.patch
- Add missing runtime dependency on cffi
- add fix_tests.patch for new pytest
- run the testsuite
- added patches
https://github.com/pyca/pynacl/commit/a8c08b18f3a2e8f2140c531afaf42715fcab68e7
+ python-PyNaCl-hypothesis-remove-average_size.patch
- Update to 1.3.0
* Added support for Python 3.7.
* Run and test all code examples in PyNaCl docs through sphinx's doctest
builder.
* Add low-level bindings for chacha20-poly1305 AEAD constructions.
* Add low-level bindings for the chacha20-poly1305 secretstream
constructions.
* Add low-level bindings for ed25519ph pre-hashed signing construction.
* Add low-level bindings for constant-time increment and addition on
fixed-precision big integers represented as little-endian byte sequences.
* Add low-level bindings for the ISO/IEC 7816-4 compatible padding API.
* Add low-level bindings for libsodium's crypto_kx... key exchange
construction.
* Set hypothesis deadline to None in tests/test_pwhash.py to avoid incorrect
test failures on slower processor architectures.
- python-azure-agent
-
- Add paa_12_sp5_rdma_no_ext_driver.patch (bsc#1203181)
- Update to version 2.8.0.11 (bsc#1203164)
+ Enabled support for Fast Track (faster processing of extensions)
+ Add telemetry for VM Size
+ Add telemetry for environment variables passed to extensions
+ Enforce CPU quota on the Agent on Red Hat and CentOS 7.4+
+ Restore all firewall rules needed for communication with the WireServer
+ Fix false positives reporting processes in the Agent's cgroup
+ Fix false errors when collecting debug logs
+ Don't report incorrect CPU usage data
+ Fetching a goal state with empty certificates property
+ Silence goal state fetch errors after 3 logs
+ Change fast track timestamp default from None to datetime.min
+ Retry HGAP's extensionsArtifact requests on BAD_REQUEST status
+ Support for Rocky Linux
+ RHEL 8
+ RHEL 9
+ Preliminary work to enforce CPU quota on extensions
+ Preliminary work for management of agent self-updates [GA Versioning]
+ Add CentOS 7.9 to end-to-end-tests
+ Add Mariner to end-to-end-tests
- 2.8.0.11 followed 2.7.3.0, no intermediate releases
- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.
- Update to 2.7.3.0 (jsc#PED-1298)
+ Remove proper_dhcp_config_set.patch included upstream
+ Remove sle_hpc-is-sles.patch included upstream
+ Forward port reset-dhcp-deprovision.patch
+ Retry HGAP's extensionsArtifact requests on BAD_REQUEST status #2622
+ Use 'ip' instead of 'ifdown/ifup' to restart network interface on
RHEL >= 8.6 #2612 #2624
- From 2.7.1.0
+ hotfix for OOM errors on the log collector
- From 2.7.0.6
+ Increase time of autoupdates after updates are available #2403
+ Send telemetry when upgrade available #2421
+ Enable collection of debugging information #2436, #2453, #2510
+ Add support for Python 2.6 to the debug info collection code #2452
+ Enable CPU/memory data collection on RedHat and CentOS #2450
+ Exclude end-to-end tests from Agent setup #2396, #2402
+ Fix log message in cgroups management #2427
+ Fix parsing of malformed error.json files #2433
+ Allow DNS queries over TCP #2429
+ Dont exit extension handler process if unable to fetch
first goal state #2440
+ Improvements for Mariner #2407, #2414
+ Add uos support #2420
+ Add support for VMware PhotonOS #2431
- From 2.6.0.2
+ added cloudlinux support (#2344)
+ Enable extensions cpu monitoring (#2357, #2384, #2391)
+ Support Flatcar Container Linux (#2365)
+ Retrieve VmSettings from HostGAPlugin
(#2378, #2382, #2386, #2394, #2397, #2404)
+ Set Agent's CpuQuota to 75% (#2383)
+ Use handler status if extension status is None when computing
the ExtensionsSummary (#2358) (#2361)
+ fix bug with dependent extensions with no settings (#2285) (#2362)
+ Create events dir for handlers if ETP enabled (#2366)
+ Report status even if goal state cannot be processed (#2370)
+ Define ExtensionsSummary.eq (#2371) (#2373)
+ Implement ExtensionsSummary.ne in terms of eq (#2375)
- From 2.5.0.2
+ Enable Extension Telemetry Pipeline (#2337, #2339)
+ Enable Periodic Log Collection in systemd distros (#2295,#2289)
+ Implement InitialGoalStatePeriod parameter + improvements in logging
goal state processing(#2332)
+ Fix operation name in InitializeHostPlugin event(#2338)
+ Mock systemctl stop cmd (#2335)
+ Report transitioning when status file not found (#2330)
+ Dont create default status file for Single-Config extensions (#2318)
+ Do not create placeholder status file for AKS extensions (#2298)
+ Save waagent_status to history folder and add additional details to
the status file (#2325,#2301,#2270)
+ Rename Debug.FetchVmSettings to Debug.EnableFastTrack (#2324)
+ Update HostGAplugin headers before fetching vmSettings (#2323)
+ Handle HTTP GONE in vmSettings request (#2321)
+ Added log statements to debug issues in vmSettings API(#2317)
+ Remove reference to re.IGNORECASE (#2316)
+ Add and remove extension slice (#2315)
+ FastTrack changes (#2314, #2313,#2306, #2304,#2294, #2293)
+ Helper to handle exception message(#2305)
+ Remove trailing spaces from command name (#2296)
+ Add debug info for systemd-run false positives (#2292)
+ Move Github Actions VMs to Ubuntu 18 (#2291)
+ Onboard redhat82, ubuntu20 (#2290, #2279)
+ Allow systemd-run in the Agent's cgroup (#2287)
+ Use handler status if extension status is None (#2358)
+ Bug Fix :Define ExtensionsSummary.ne (#2371)
- From 2.4.0.2
+ Support for Multi config (#2245, #2261)
+ Support sles 15 sp2 distro (#2272)
+ Cleanup history folder every 30 min (#2258)
+ Updated _read_status_file to include a fragment of status file in
the exception (#2257)
+ Fix telemetry unicode errors (Re-add #1937) (#2278)
+ Match IPoIB interface with any alphanumeric characters (#2239)
+ Fix bug with dependent extensions with no settings (#2285)
+ Do not create placeholder status file for AKS extensions (#2298)
+ Refactoring of Agent's main loop (#2275)
+ Exception for Linux Patch Extension for creating placeholder
status file (#2307)
+ Dont create default status file for Single-Config extensions (#2318)
+ Fix bad logging (#2241)
+ Fixed logging of PeriodicOperation (#2263)
+ Log collector broken pipe fix (#2267)
+ Improved logging for Multi config (#2246)
- From 2.3.1.1
+ revert for reducing the time window where we restart the network
interfaces of the VM
- From 2.3.0.2
+ Enforce CPUQuota on agent #2222, #2226
+ Add support for RequiredFeatures and GoalStateAggregateStatus APIs
[#2190], #2206, #2209, #2216
+ Added fallback locations for extension manifests #2188
+ Add missing call to str.format() when creating exception #2193
+ Remove helper network service on deprovision #2191
+ Use a helper script to start the network service #2225 #2253
+ Initialize published_hostname using /var/lib/cloud/data/set-hostname #2215
+ Fix utf logging for persist firewall rules #2237
+ Replace firewall-setup unit file if changed #2236
- From 2.2.54
+ PA changes to check cloud-init (#2061)
+ log collector (#2066)
+ cgroups CPU percentage py processor count (#2074)
+ Parse InVMGoalStateMetaData from Extension Config (#2081)
+ iscsi disk support for agent configs (#2073)
+ Add support for VMs with multiple IB devices (#2085)
+ Python 3.9 support (#2082)
+ Add support for CBL-Mariner distro (#2099)
+ Enable Provisioning.MonitorHostName for Ubuntu (#1934)
+ Added supportedFeatures flag in status reporting (#2089)
+ Parse ext runtime settings (#2087)
+ GHA merge validation (#2097)
+ Cgroups improvements
+ renamed the eventsFolder variable for preview and enabled ETP (#2140)
+ Agent slice and custom unit files telemetry (#2150)
+ Make IPoIB interface online (#2116)
+ Add option to disable NetworkConfigurationChanges (#2156)
+ Log network configuration on service start (#2157)
+ Setup persistent firewall rules on service restart (#2154)
+ switched to using run_command (#2060)
+ fixes for chained-comparison and dangerous-default-value pylint
warnings (#2072)
+ fixed depends on errors (#2059)
+ WireIp env variable added (#2078)
+ Unstick HGAP channel as default (#2046)
+ shellutil.run_command fixes (#2086, #2098)
+ unit test fixes (#2090, #2091, #2108, #2153)
+ fix distro resolution for RedHat (#2083)
+ Read KVP value in binary mode (#2084)
+ Redact protected settings in goal state debug files (#2130)
+ Modify retry logic for empty goal state (#2140)
+ GS no config fix (#2141)
+ CommandExecution.log logrototate config -> custom log management (#2143)
+ binary file for firewall rules (#2147)
+ Refresh host ga plugin periodically (#2155)
+ Disabled custom service (#2166)
+ update test zips (#2167)
- From 2.2.53.1
+ Extension Telemetry Pipeline as a private-preview feature
- From 2.2.53
+ Start exthandler with the same python interpreter (#2007)
+ Verify that the extension status is an array (#2010)
+ Remove enum _UpdateType and retry fetching goal state (#2018)
+ use dd for ext4 as well as xfs (#2042)
+ Fix path for error.json (#2044)
+ Switch to run command changes, + provisioning changes that need to be
reverted. (#2050)
+ Fix timestamp for goal state archive (#2051)
+ Case insensitive parsing or Plugins and PluginSettings (#2054)
+ Revert "/Fixed delays for HTTP retries rather than exponential
delays (#1967)"/ (#2065)
+ Fixed bug causing "/MAC verified OK"/ message (#2069)
+ Revert unicode fix manually (#1937) (#2070)
+ Recreate handler environment file on service startup (#1960)
+ Add log collection tool and thread (#1987)
+ Thread interface (#1990)
+ Verify that the CPU and Memory cgroups for the agent are properly
initialized; disabled cgroups if they are not active. (#2015)
+ SUSE config: use Btrfs LZO compression for ResourceDisk (#2055)
+ Extension telemetry pipeline (#1918)
+ Reformatted the heartbeat event (#2009)
+ Add LIS version to OSInfo.message (#2011)
+ One thread for telemetry (#2019)
+ Limit description character length sent for health report (#2020)
+ Remove Serial Console Logging (#2028)
+ Echo log to /dev/console during provisioning (#2043)
+ Adding telemetry for logrotate (#2045)
+ Report placeholder extension status as an array (#2068)
+ Fix broken link in readme (#2014)
+ Add log collector flags to README (#2029)
- From 2.2.52
+ Do not retrieve users in each goal state (#1935)
+ Fix check for systemd-run failure when invoking extensions (#1943)
+ Fix telemetry unicode errors (#1937)
+ Uninstall unregistered extensions (#1970)
+ Use run_command to execute iptables (#1944)
+ Use run_command for ip route (#1958)
+ Fix handling of gen2 disks with udev rules (#1954)
+ Add API for uploading logs via host plugin (#1902)
+ Fixed delays for HTTP retries rather than exponential delays (#1967)
+ Resolve undefined variable (#1950)
+ Convert owner uid to string (#1949)
+ Fix Travis special checks for distro and remove useless cgroup tests (#1959)
+ Use tmp_dir instead of data_dir (#1968)
- Removed %config flag for files in /usr directory.
- Cleanup spec file:
- - Removed %{_distconfdir}/logrotate.d from dirlist. It will be
handled by package filelist now.
- - %{_distconfdir}/logrotate.d/* can be changed by vendor only.
So it will be replaced by an RPM update.
- Moved logrotate files from user specific directory /etc/logrotate.d
to vendor specific directory /usr/etc/logrotate.d.
- require python-rpm-macros to fix build for TW
- do not require test dependencies for build, they are not needed
(no testsuite run in %check)
- python-certifi
-
- remove all TrustCor CAs, as TrustCor issued multiple man-in-the-middle
certs (bsc#1206212 CVE-2022-23491)
- TrustCor RootCert CA-1
- TrustCor RootCert CA-2
- TrustCor ECA-1
- Add removeTrustCor.patch
- python-gobject
-
- Update to version 3.42.2:
* Error out instead of crashing when marshaling unsupported
fundamental types in some cases :mr:`180`
* Add a workaround for a PyPy 3.9+ bug when threads are used
:mr:`200`
* Fix crashes when marshaling zero terminated arrays for certain
item types :mr:`191`
* Fix a crash/refcounting error in case marshaling a hash table
fails :mr:`191`
* Make the test suite pass again with PyPy :mr:`191`
* tests: support running tests with (MSVC) CPython 3.8+ on
Windows :mr:`206`
* interface: Fix leak when overriding GInterfaceInfo :mr:`204`
* setup.py: look up pycairo headers without importing the module
(helps with building on Windows and MSVC CPython 3.8+)
:mr:`205`
- Add dependency on python-cairo to python-gobject-cairo: The
introspection wrapper needs the actual pycairo underneath
(boo#1179584).
- Update to version 3.42.1:
+ Do not error out for unknown scopes.
+ gtk overrides: restore Gtk.ListStore.insert_with_valuesv with
newer GTK4.
+ gtk overrides: Do not override Treeview.enable_model_drag_xx
for GTK4.
+ Implement DynamicImporter.find_spec() to silence deprecation
warning.
+ Some test/CI fixes.
- python-msgpack
-
- Loose the filelist for the package info to avoid FTBFS on
SLE-15-SP5 (bsc#1203743).
- python-parallax
-
- Fix: manager: file descriptor leakage (bsc#1205116)
- Release 1.0.8
- Release 1.0.7
- Remove patches since already included:
Remove patch 0001-Add-ssh_key-option-used-by-i-option-of-ssh-scp.patch
Remove patch 0002-Change-format-of-scp-command-for-ipv6-compatible.patch
Remove patch 0003-Fix-task-Don-t-use-ssh-if-command-running-on-local-b.patch
Remove patch 0004-Fix-Error-inherit-from-Exception-instead-of-BaseExce.patch
Remove patch 0005-Dev-add-parallax.run-to-return-non-zero-rc-without-r.patch
- Dev: add parallax.run() to return non-zero rc without raising exceptions
Add patch 0005-Dev-add-parallax.run-to-return-non-zero-rc-without-r.patch
- Fix: Error: inherit from Exception instead of BaseExceptin
Add patch 0004-Fix-Error-inherit-from-Exception-instead-of-BaseExce.patch
- python-paramiko
-
- Add rsa-key-loading-fix.patch (bsc#1205132) fixing loading RSA
key.
- python-py
-
- Remove all traces of py._path.svn{url,wc}. (bsc#1204364, CVE-2022-42969)
- Add patch remove-svn-remants.patch to help with that goal.
- Refresh pr_222.patch as needed for above.
- python-setuptools
-
- Add CVE-2022-40897-ReDos.patch to fix Regular Expression Denial of Service
(ReDoS) in package_index.py.
bsc#1206667
- python-wheel
-
- Add wheel_cve_2022_40898.patch (bsc#1206670)
+ Fix parsing regex, CVE-2022-40898
- python3
-
- Add bsc1188607-pythreadstate_clear-decref.patch to fix crash in
the garbage collection (bsc#1188607).
- Add CVE-2022-37454-sha3-buffer-overflow.patch to fix
bsc#1204577 (CVE-2022-37454, gh#python/cpython#98517) buffer
overflow in hashlib.sha3_* implementations (originally from the
XKCP library).
- Add CVE-2020-10735-DoS-no-limit-int-size.patch to fix
CVE-2020-10735 (bsc#1203125) to limit amount of digits
converting text to int and vice vera (potential for DoS).
Originally by Victor Stinner of Red Hat.
- Remove merged patch CVE-2020-8492-urllib-ReDoS.patch,
CRLF_injection_via_host_part.patch, and
CVE-2019-18348-CRLF_injection_via_host_part.patch.
- release-notes-sles-for-sap
-
- 15.4.20221130 (tracked in bsc#933411)
- Added note about susChkSrv.py (bsc#1204008)
- 15.4.20220930 (tracked in bsc#933411)
- Added note about SUSEConnect tracking (jsc#SLE-23312)
- Added note about deprecating sapwmp (bsc#1201401)
- resource-agents
-
- Pacemaker should provide a dynamic option to specify a logfile
(jsc#PED-121)
Add upstream patch:
1739.patch
- rsyslog
-
- fix parsing of legacy config syntax (bsc#1205275)
* add:
0001-testbench-add-test-for-legacy-permittedPeer-statemen.patch
0002-imtcp-bugfix-legacy-config-directives-did-no-longer-.patch
- remove $klogConsoleLogLevel setting from rsyslog.conf (bsc#1191833)
* this legacy setting from pre-systemd times is obsolete and can
block important systemd messages
- rubygem-loofah
-
- Added patch CVE-2019-15587.patch to fix CVE-2019-15587 (bsc#1154751)
- rubygem-nokogiri
-
- add 003-CVE-2022-24836.patch (CVE-2022-24836, bsc#1198408)
fixes possibility to DoS because of inefficient RE in HTML encoding
- add 004_CVE-2022-29181.patch (CVE-2022-29181, bsc#1199782)
fixes Improper Handling of Unexpected Data Types
- rubygem-websocket-extensions
-
- security update
- added patches
fix CVE-2020-7663 [bsc#1172445], Denial of Service (DoS) via Regex Backtracking
+ rubygem-websocket-extensions-CVE-2020-7663.patch
- runc
-
- Update to runc v1.1.4. Upstream changelog is available from
https://github.com/opencontainers/runc/releases/tag/v1.1.4.
bsc#1202021
* Fix mounting via wrong proc fd. When the user and mount namespaces are
used, and the bind mount is followed by the cgroup mount in the spec,
the cgroup was mounted using the bind mount's mount fd.
* Switch kill() in libcontainer/nsenter to sane_kill().
* Fix "/permission denied"/ error from runc run on noexec fs.
* Fix failed exec after systemctl daemon-reload. Due to a regression
in v1.1.3, the DeviceAllow=char-pts rwm rule was no longer added and
was causing an error open /dev/pts/0: operation not permitted: unknown when systemd was reloaded.
(boo#1202821)
- salt
-
- Pass the context to pillar ext modules
- Align Amazon EC2 (Nitro) grains with upstream (bsc#1203685)
- Detect module run syntax version
- Implement automated patches alignment for the Salt Bundle
- Ignore extend declarations from excluded SLS files (bsc#1203886)
- Clarify pkg.installed pkg_verify documentation
- Enhance capture of error messages for Zypper calls in zypperpkg module
- Make pass renderer configurable and fix detected issues
- Workaround fopen line buffering for binary mode (bsc#1203834)
- Added:
* detect-module.run-syntax.patch
* fopen-workaround-bad-buffering-for-binary-mode-563.patch
* make-pass-renderer-configurable-other-fixes-532.patch
* clarify-pkg.installed-pkg_verify-documentation.patch
* align-amazon-ec2-nitro-grains-with-upstream-pr-bsc-1.patch
* pass-the-context-to-pillar-ext-modules.patch
* ignore-extend-declarations-from-excluded-sls-files.patch
* include-stdout-in-error-message-for-zypperpkg-559.patch
- samba
-
- CVE-2022-38023 Additional patches for the PDC role's netlogon
server; (bso#15240); (bsc#1206504);
- CVE-2021-20251: samba: Bad password count not incremented
atomically; (bso#14611); (bsc#1206546).
- Update to 4.15.13
* CVE-2022-37966 rc4-hmac Kerberos session keys issued to
modern servers; (bso#15237); (bsc#1205385);
* CVE-2022-37967 Kerberos constrained delegation ticket forgery
possible against Samba AD DC; (bso#15231); (bsc#1205386);
* CVE-2022-38023 RC4/HMAC-MD5 NetLogon Secure Channel is weak
and should be avoided; (bso#15240); (bsc#1206504);
* filter-subunit is inefficient with large numbers of
knownfails; (bso#15258);
* The KDC logic arround msDs-supportedEncryptionTypes differs
from Windows; (bso#13135);
* Windows 11 22H2 and Samba-AD 4.15 Kerberos login issue;
(bso#15197);
- Adjust the systemd drop-in file for named service; (bsc#1201689);
* Paths are additive so do not repeat paths from named.service
* Prefix the samba DLZ directory with "/-"/ to ignore this path
if it does not exists
- Install a systemd drop-in file for named service to allow
read/write access to the DLZ directory; (bsc#1201689);
- Update to 4.15.12
* CVE-2022-42898: samba: heimdal: Samba buffer overflow
vulnerabilities on 32-bit systems; (bso#15203); (bsc#1205126).
- Update to 4.15.11
* Allow rebuild of Centos 8 images after move to vault for
Samba 4.15; (bso#15193).
* CVE-2022-3437: samba: Buffer overflow in Heimdal unwrap_des3();
(bso#15134); (bsc#1204254)
- Update to 4.15.10
* Possible use after free of connection_struct when iterating
smbd_server_connection->connections; (bso#15128);
(bsc#1200102).
* smbXsrv_connection_shutdown_send result leaked; (bso#15174).
* Spotlight RPC service returns wrong response when Spotlight
is disabled on a share; (bso#15086).
* acl_xattr VFS module may unintentionally use filesystem
permissions instead of ACL from xattr; (bso#15126).
* Missing SMB2-GETINFO access checks from MS-SMB2 3.3.5.20.1;
(bso#15153).
* assert failed: !is_named_stream(smb_fname)"/) at
../../lib/util/fault.c:197; (bso#15161).
* Missing READ_LEASE break could cause data corruption;
(bso#15148).
* rpcclient can crash using setuserinfo(2); (bso#15124).
* Samba fails to build with glibc 2.36 caused by including
<sys/mount.h> in libreplace; (bso#15132).
* SMB1 negotiation can fail to handle connection errors;
(bso#15152).
* samba-tool domain join segfault when joining a samba ad
domain; (bso#15078).
- Update to 4.15.9
* CVE-2022-32742:SMB1 code does not correct verify SMB1write,
SMB1write_and_close, SMB1write_and_unlock lengths; (bso#15085);
(bsc#1201496).
* CVE-2022-32746: samba: Use-after-free occurring in database
audit logging; (bso#15009); (bso#15096); (bsc#1201490).
* CVE-2022-2031: samba, ldb: AD users can bypass certain
restrictions associated with changing passwords; (bso#15047);
(bsc#1201495);
* CVE-2022-32745: samba: ldb: AD users can crash the server
process with an LDAP add or modify request; (bso#15008);
(bso#15096); (bsc#1201492).
* CVE-2022-2031: samba, ldb: AD users can bypass certain
restrictions associated with changing passwords; (bso#15047);
(bsc#1201495);
* CVE-2022-32744: samba, ldb: AD users can forge password change
requests for any user; (bso#15074); (bso#15047); (bsc#1201493).
- sapconf
-
- version update from 5.0.4 to 5.0.5
- adapt check of an active saptune service during the initial
package installation to work in a chroot environment and fix the
missing enablement of sapconf.
(bsc#1190736, bsc#1190787)
- saphanabootstrap-formula
-
- Version bump 0.13.1
* revert changes to spec file to re-enable SLES RPM builds
* fixes CVE-2022-45153 bsc#1205990
- Version bump 0.13.0
* pass sid to sudoers in a SLES12 compatible way
* add location constraint to gcp_stonith
- Version bump 0.12.1
* moved templates dir into hana dir in repository to be gitfs compatible
- Version bump 0.12.0
* add SAPHanaSR takeover blocker
- Version bump 0.11.0
* use check_cmd instead of tmp sudoers file
* make sudoers rules more secure
* migrate sudoers to template file
- Version bump 0.10.1
* fix hook removal conditions
* fix majority_maker code on case grain is empty
- Version bump 0.10.0
* allow to disable shared HANA basepath and rework add_hosts code
(enables HANA scale-out on AWS)
* do not edit global.ini directly (if not needed)
- Version bump 0.9.1
* fix majority_maker code on case grain is empty
- Version bump 0.9.0
* define vip_mechanism for every provider and reorder resources
(same schema for all SAP related formulas)
- Version bump 0.8.1
* use multi-target Hook on HANA scale-out
- Version bump 0.8.0
* add HANA scale-out support
* add idempotence to not affect a running HANA and cluster
- Version bump 0.7.2
* add native fencing for microsoft-azure
- fixes a not working import of dbapi in SUSE/ha-sap-terraform-deployments#703
- removes the installation and extraction of all hdbcli files in the /hana/shared/srHook directory
- fixes execution order of srTakeover/srCostOptMemConfig hook
- renames and updates hook srTakeover to srCostOptMemConfig
- Changing exporter stickiness to => 0 and adjusting the colocation
score from +inf to -inf and changing the colocation from Master to Slave.
This change fix the impact of a failed exporter in regards to the HANA DB.
- Document extra_parameters in pillar.example (bsc#1185643)
- Change hanadb_exporter default timeout value to 30 seconds
- Set correct stickiness for the azure-lb resource
The azure-lb resource receives an stickiness=0 to not influence on
transitions calculations as the HANA resources have more priority
* Update anything socat resource by azure-lb as recommended in
* Retry pkg.install multiple times, in case a pkg installation fails
- sbd
-
- Update to version 1.5.1+20221128.8ec8e01:
- sbd-inquisitor: fail startup if pacemaker integration is disabled while SBD_SYNC_RESOURCE_STARTUP is conflicting (bsc#1204319)
- sbd-inquisitor: do not warn about startup syncing if pacemaker integration is even intentionally disabled (bsc#1204319)
- sbd-inquisitor: log a warning if SBD_PACEMAKER is overridden by -P or -PP option (bsc#1204319)
- sbd-inquisitor: ensure a log info only tells the fact about how SBD_PACEMAKER is set (bsc#1204319)
- Rebase:
* bsc#1180966-0001-Log-sbd-inquisitor-downgrade-the-warning-about-SBD_S.patch
- Update to version 1.5.1+20220716.c43276f:
- Be a bit more descriptive on issues opening watchdog-devices
- test: a few tweaks regarding setup of test-environment
- Update to version 1.5.1+20211210.92ff8d8:
- configure: have --with-runstatedir overrule --runstatedir (bsc#1185182)
- services: enable systemd sandboxing settings for releases >= 15.4
- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
* harden_sbd.service.patch
* harden_sbd_remote.service.patch
- shadow
-
- Added patch:
* shadow-4.8.1-AUDIT_NO_ID.patch
+ fix bsc#1205502: useradd audit event user id field cannot
be interpreted
- sqlite3
-
- bsc#1206337, CVE-2022-46908, sqlite-CVE-2022-46908.patch:
relying on --safe for execution of an untrusted CLI script
- sudo
-
- Added sudo-CVE-2023-22809.patch
* CVE-2023-22809
* bsc#1207082
* Prevent '--' in the EDITOR environment variable which can allow
users to edit sensitive files as root.
- Added sudo-utf8-ldap-schema.patch
* Change sudo-ldap schema from ASCII to UTF8.
* Fixes bsc#1197998
* Credit to William Brown <william.brown@suse.com>
* https://github.com/sudo-project/sudo/pull/163
- Added sudo-CVE-2022-43995.patch
* CVE-2022-43995
* bsc#1204986
* Fixed a potential heap-based buffer over-read when entering a password
of seven characters or fewer and using the crypt() password backend.
- supportutils
-
- Added lifecycle information (issue#140)
- Changes to version 3.1.21
+ Added type output with df command in fs-diskio.txt (issue#141)
+ Gather all files in /etc/security/limits.d/ (issue#142)
+ Fixed KVM virtualization detection on bare metal (bsc#1184689)
+ Added logging using journalctl (bsc#1200330)
+ Passwords correctly removed from email.txt, updates.txt and fs-iscsi.txt (bsc#1203818)
+ Added system logging configuration and checking in messages_config.txt (issue#103)
+ If rsyslog not installed collect more from journalctl (issue#120)
+ Added systemd-status.txt for the status of all service units (issue#125)
+ autofs includes files in (+dir:<path>) (issue#111)
+ Get current sar data before collecting files (bsc#1192648)
+ Collects everything in /etc/multipath/ (bsc#1192252)
+ Collects power management information in hardware.txt (bsc#1197428)
+ Checks for suseconnect-ng or SUSEConnect packages (bsc#1202337)
+ Fixed conf_files and conf_text_files so y2log is gathered (issue#134, bsc#1202269)
+ Update to nvme_info and block_info #133 (bsc#1202417)
+ Added IO scheduler (issue#136)
+ Added includedir directories from /etc/sudoers (bsc#1188086)
- Added a listing to /dev/mapper/. #129
- suse-build-key
-
- added /usr/share/pki/containers directory for container pem keys
(cosign/sigstore style), put our PEM key there too (bsc#1204706)
- suse-module-tools
-
- Update to version 15.4.15: Backport bug fixes from factory
* driver-check.sh, unblacklist: convert egrep to grep -E (bsc#1203092)
* kernel-scriptlets: don't pass flags to weak-modules2 (bsc#1195391)
* driver-check.sh: avoid false positive error messages (boo#1200107)
- Update to version 15.4.14:
* 80-hotplug-cpu-mem.rules: use CONST{arch} (bsc#1204423)
- Update to version 15.4.13:
* 80-hotplug-cpu-mem.rules: restrict cpu rule to x86_64 (bsc#1204423)
- suseconnect-ng
-
- Update to version 1.0.0~git0.faee7c196dc1:
* Revert "/packaging: 1.0.0 -> 1.0"/
- Update to version v1.0~git0.32cac3fb5047:
* packaging: 1.0.0 -> 1.0
- Update to version 1.0.0~git0.60e48564a714 (bsc#1204821):
* packaging: obsolete suseconnect < 1.0.0
* packaging: don't end the summary with a dot
- Update to version 0.0.10~git2.ee561b8:
* Drop .git from tar
- Update to version 0.0.10~git0.5f84106:
* Fix System-Token support in ruby binding (bsc#1203341)
* Added the PACKAGE.md file
- Update to version 0.0.9~git10.de887da7231f:
* Respect the PROXY_ENABLED environment variable
- Update to version 0.0.9~git8.f9adb71:
* Use standard buildconditionals
* Strip the binaries (saves ~ 30%)
- Update to version 0.0.9~git5.75890b6:
* Don't run keepalive on reboot
* Use system-wide proxy settings (bsc#1200994)
* Add customer information about keepalive calls
* Add timer for SUSEConnect --keepalive (bsc#1196076)
* Add --keepalive to manpage
* Added support for the System-Token header
* Add Keepalive command line option
* Print nested zypper errors (bsc#1200803)
* Fix migration json error with SMT (bsc#1198625)
* Add option to run local scc tests
* Switch to jenkins-hosted credentials
* Fix "/VCS stamping"/ problem
* Add missing import
* Remove redundant code + add comment
- Update to version 0.0.8~git2.368ea44:
* go1.18 compatibility: BuildRequires:git
- systemd
-
- Make sure that /lib/udev exists and is a symlink to /usr/lib/udev when the
testsuite is run.
- Import commit 1bfa716e7fb6d7169cece864e75dfe9e52914c99 (merge of v249.14)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/540e0bd5374f9f42f1e645eb15971431ebb4b8c8...1bfa716e7fb6d7169cece864e75dfe9e52914c99
- Rebase 1001-udev-use-lock-when-selecting-the-highest-priority-de.patch
- Don't overwrite /etc/pam.d/systemd-user on update (bsc#1207264)
Regression introduced when systemd was forked for 15.4.
- Ship systemd-pstore with udev (jsc#PED-2663)
- Import commit 540e0bd5374f9f42f1e645eb15971431ebb4b8c8
29fb8a2dd0 core/unit: try to submit stop_when_unneeded queue on removing dependencies
bd63eab381 core/device: start units specified in SYSTEMD_WANTS if it is not running
e0898fa873 coredump: do not allow user to access coredumps with changed uid/gid/capabilities (bsc#1205000 CVE-2022-4415)
119424f96e coredump: adjust whitespace
3833d5a408 coredump: drop an unused variable
36728edcfd coredump: Fix format string type mismatch
34f6867a8a analyze: use DumpUnitsMatchingPatternsByFileDescriptor
e67a7087ec manager: add DumpUnitsMatchingPatternsByFileDescriptor()
feb8f2a983 manager: rename dbus method
98fed27339 analyze: extend the dump command to accept patterns
a06d9470af man: document the Dump() calls of the PID 1 D-Bus interface, and what they are
79eb37a5e0 cryptsetup: retry TPM2 unseal operation if it fails with TPM2_RC_PCR_CHANGED (bsc#1204944)
- Drop 5000-coredump-Fix-format-string-type-mismatch.patch
5001-coredump-drop-an-unused-variable.patch
5002-coredump-adjust-whitespace.patch
5003-coredump-do-not-allow-user-to-access-coredumps-with-.patch
They have been merged into SUSE/v249 branch.
- Fix systemd-coredump to not allow user to access coredumps with changed
uid/gid/capabilities (bsc#1205000 CVE-2022-4415)
Add 5000-coredump-Fix-format-string-type-mismatch.patch
Add 5001-coredump-drop-an-unused-variable.patch
Add 5002-coredump-adjust-whitespace.patch
Add 5003-coredump-do-not-allow-user-to-access-coredumps-with-.patch
- Import commit bcf040075f682f67370ddf7ab93d7a0d8b9cd9cc
ab0f962e4c core/device: Log on every event received from udev
2dcb7c77fe udev/net_id: show the correct identifier in the debug output of dev_pci_onboard()
5b824103e0 udev/net_id: add debug logging for construction of device names
cb6925410b udev: add one more assertion
82e343153a udev: drop assertion which is always false
cef726986b udev: support by-path devlink for multipath nvme block devices (bsc#1200723)
00b34f08d9 tests: minor simplification in test-execute
e5b4571c20 tests: make test-execute pass on openSUSE
- Drop the following patches since they have been merged in 'SUSE/v249' branch:
6000-udev-net_id-add-debug-logging-for-construction-of-de.patch
6001-udev-net_id-show-the-correct-identifier-in-the-debug.patch
- Import commit 0cd50eedcc0692c1f907b24424215f8db7d3b428
ae2067b062 time-util: fix buffer-over-run (bsc#1204968 CVE-2022-3821)
0469b9f2bc pstore: do not try to load all known pstore modules
ad05f54439 pstore: Run after modules are loaded
ccad817445 core: Add trigger limit for path units
281d818fe3 core/mount: also add default before dependency for automount mount units
ffe5b4afa8 logind: fix crash in logind on user-specified message string
- Add 1012-man-describe-the-net-naming-schemes-specific-to-SLE.patch (bsc#1204179)
- Make "/sle15-sp3"/ net naming scheme still available for backward compatibility
reason
- tar
-
- Fix hang when unpacking test tarball, bsc#1202436
* bsc1202436.patch
- Fix unexpected inconsistency when making directory, bsc#1203600
* tar-avoid-overflow-in-symlinks-tests.patch
* tar-fix-extract-unlink.patch
- Update race condition fix, bsc#1200657
* tar-fix-race-condition.patch
- Refresh bsc1200657.patch
- tcl
-
- Fix a race condition in test socket-13.1
(tcl-test-socket-13.1.patch).
- Remove the SQLite extension and package it as a subpackage of
sqlite3 to have only a single copy and keep it more up to date
(bsc#1195773).
- Clean up the lib dependencies in tclConfig.sh and tcl.pc.
- tiff
-
* CVE-2022-3570 [bsc#1205422]
* CVE-2022-3598 [bsc#1204642]
+ tiff-CVE-2022-3598,3570.patch
- security update:
* CVE-2022-3597 [bsc#1204641]
* CVE-2022-3626 [bsc#1204644]
* CVE-2022-3627 [bsc#1204645]
+ tiff-CVE-2022-3597,CVE-2022-3626,CVE-2022-3627.patch
* CVE-2022-3599 [bsc#1204643]
+ tiff-CVE-2022-3599.patch
* CVE-2022-3970 [bsc#1205392]
+ tiff-CVE-2022-3970.patch
- security update:
- timezone
-
- timezone update 2022g (bsc#1177460):
* In the Mexican state of Chihuahua, the border strip near the US
will change to agree with nearby US locations on 2022-11-30.
The strip's western part, represented by Ciudad Juárez, switches
from -06 all year to -07/-06 with US DST rules, like El Paso, TX.
The eastern part, represented by Ojinaga, will observe US DST next
year, like Presidio, TX.
A new Zone America/Ciudad_Juarez splits from America/Ojinaga.
* Much of Greenland, represented by America/Nuuk, stops observing
winter time after March 2023, so its daylight saving time becomes
standard time.
* Changes for pre-1996 northern Canada
* Update to past DST transition in Colombia (1993), Singapore
(1981)
* timegm is now supported by default
- timezone update 2022f (bsc#1177460):
* Mexico will no longer observe DST except near the US border
* Chihuahua moves to year-round -06 on 2022-10-30
* Fiji no longer observes DST
* Move links to 'backward'
* In vanguard form, GMT is now a Zone and Etc/GMT a link
* zic now supports links to links, and vanguard form uses this
* Simplify four Ontario zones
* Fix a Y2438 bug when reading TZif data
* Enable 64-bit time_t on 32-bit glibc platforms
* Omit large-file support when no longer needed
* In C code, use some C23 features if available
* Remove no-longer-needed workaround for Qt bug 53071
- Refreshed patches:
* fat.patch
* tzdata-china.diff
- timezone update 2022e (bsc#1177460):
* Jordan and Syria switch from +02/+03 with DST to year-round +03
- timezone update 2022d:
* Palestine transitions are now Saturdays at 02:00
* Simplify three Ukraine zones into one
- timezone update 2022c:
* Work around awk bug
* Improve tzselect on intercontinental Zones
- timezone update 2022b:
* Chile's DST is delayed by a week in September 2022 boo#1202324
* Iran no longer observes DST after 2022
* Rename Europe/Kiev to Europe/Kyiv
* New zic -R option
* Vanguard form now uses %z
* Finish moving duplicate-since-1970 zones to 'backzone'
- Refresh tzdata-china.diff
- Remove upstreamed bsc1202310.patch
- util-linux
-
- Fix tests not passing when '@' character is in build path:
Fixes rpmbuild %checks fail when @ in the directory path (bsc#1194038).
- Add util-linux-fix-tests-when-at-symbol-in-path.patch
- libuuid continuous clock handling for time based UUIDs:
Prevent use of the new libuuid ABI by uuidd %post before update
of libuuid1 (bsc#1205646).
- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet
to prevent error message if /var/lib/libuuid/clock.txt does not
exist.
- Fix file conflict during upgrade (boo#1204211).
- libuuid improvements (bsc#1201959, PED-1150):
* libuuid: Fix range when parsing UUIDs
(util-linux-libuuid-uuid_parse-overrun.patch).
* Improve cache handling for short running applications-increment
the cache size over runtime
(util-linux-libuuid-improve-cache-handling.patch).
* Implement continuous clock handling for time based UUIDs
(util-linux-libuuid-continuous-clock-handling.patch).
* Check clock value from clock file to provide seamless libuuid
update (util-linux-libuuid-check-clock-value.patch).
- util-linux-systemd
-
- libuuid continuous clock handling for time based UUIDs:
Prevent use of the new libuuid ABI by uuidd %post before update
of libuuid1 (bsc#1205646).
- util-linux-uuidd-prevent-root-owning.patch: Use chown --quiet
to prevent error message if /var/lib/libuuid/clock.txt does not
exist.
- Fix file conflict during upgrade (boo#1204211).
- libuuid improvements (bsc#1201959, PED-1150):
* libuuid: Fix range when parsing UUIDs
(util-linux-libuuid-uuid_parse-overrun.patch).
* Improve cache handling for short running applications-increment
the cache size over runtime
(util-linux-libuuid-improve-cache-handling.patch).
* Implement continuous clock handling for time based UUIDs
(util-linux-libuuid-continuous-clock-handling.patch).
* Check clock value from clock file to provide seamless libuuid
update (util-linux-libuuid-check-clock-value.patch).
- vim
-
- Updated to version 9.0 with patch level 1234, fixes the following security problems
* Fixing bsc#1207396 VUL-0: CVE-2023-0433: vim: Heap-based Buffer Overflow in vim prior to 9.0.1225
* Fixing bsc#1207162 VUL-1: CVE-2023-0288: vim: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.
* Fixing bsc#1206868 VUL-1: CVE-2023-0054: vim: Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145.
* Fixing bsc#1206867 VUL-1: CVE-2023-0051: vim: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144.
* Fixing bsc#1206866 VUL-1: CVE-2023-0049: vim: Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143.
- refreshed vim-7.4-highlight_fstab.patch
- for the complete list of changes see
https://github.com/vim/vim/compare/v9.0.1040...v9.0.1234
- Updated to version 9.0 with patch level 1040, fixes the following security problems
* Fixing bsc#1206028 VUL-0: CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742
* Fixing bsc#1206071 VUL-0: CVE-2022-3520: vim: Heap-based Buffer Overflow
* Fixing bsc#1206072 VUL-0: CVE-2022-3591: vim: Use After Free
* Fixing bsc#1206075 VUL-0: CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882.
* Fixing bsc#1206077 VUL-0: CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.
* Fixing bsc#1205797 VUL-0: CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11
* Fixing bsc#1204779 VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c
- for the complete list of changes see
https://github.com/vim/vim/compare/v9.0.814...v9.0.1040
- Updated to version 9.0 with patch level 0814, fixes the following problems
* Fixing bsc#1192478 VUL-1: CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow
* Fixing bsc#1203508 VUL-0: CVE-2022-3234: vim: Heap-based Buffer Overflow prior to 9.0.0483.
* Fixing bsc#1203509 VUL-1: CVE-2022-3235: vim: Use After Free in GitHub prior to 9.0.0490.
* Fixing bsc#1203820 VUL-0: CVE-2022-3324: vim: Stack-based Buffer Overflow in prior to 9.0.0598.
* Fixing bsc#1204779 VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c
* Fixing bsc#1203152 VUL-1: CVE-2022-2982: vim: use after free in qf_fill_buffer()
* Fixing bsc#1203796 VUL-1: CVE-2022-3296: vim: stack out of bounds read in ex_finally() in ex_eval.c
* Fixing bsc#1203797 VUL-1: CVE-2022-3297: vim: use-after-free in process_next_cpt_value() at insexpand.c
* Fixing bsc#1203110 VUL-1: CVE-2022-3099: vim: Use After Free in ex_docmd.c
* Fixing bsc#1203194 VUL-1: CVE-2022-3134: vim: use after free in do_tag()
* Fixing bsc#1203272 VUL-1: CVE-2022-3153: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404.
* Fixing bsc#1203799 VUL-1: CVE-2022-3278: vim: NULL pointer dereference in eval_next_non_blank() in eval.c
* Fixing bsc#1203924 VUL-1: CVE-2022-3352: vim: vim: use after free
* Fixing bsc#1203155 VUL-1: CVE-2022-2980: vim: null pointer dereference in do_mouse()
* Fixing bsc#1202962 VUL-1: CVE-2022-3037: vim: Use After Free in vim prior to 9.0.0321
- ignore-flaky-test-failure.patch: Ignore failure of flaky tests
- disable-unreliable-tests-arch.patch: Removed
- for the complete list of changes see
https://github.com/vim/vim/compare/v9.0.0313...v9.0.0814
- wget
-
- Update 0001-possibly-truncate-pathname-components.patch
* Truncate file name even if no directory structure
* [bsc#1204720]
- wicked
-
- version 0.6.70
- build: Link as Position Independent Executable (bsc#1184124)
- dhcp4: Fix issues in reuse of last lease (bsc#1187655)
- dhcp6: Add option to refresh lease (jsc#SLE-9492,jsc#SLE-24307)
- dhcp6: Remove address before release (USGv6 DHCPv6_1_2_07b)
- dhcp6: Ignore lease release status (USGv6 DHCPv6_1_2_07e,1_3_03)
- dhcp6: Consider ppp interfaces supported (gh#openSUSE/wicked#924)
- team: Fix to configure port priority in teamd (bsc#1200505)
- firewall-ext: No config change on ifdown (bsc#1201053,bsc#118950)
- wireless: Fix SEGV on supplicant restart (gh#openSUSE/wicked#931)
- wireless: Add support for WPA3 and PMF (bsc#1198894)
- wireless: Remove libiw dependencies (gh#openSUSE/wicked#910)
- client: Fix SEGV on empty xpath results (gh#openSUSE/wicked#919)
- client: Add release options to ifdown/ifreload (jsc#SLE-10249)
- dbus: Clear string array before append (gh#openSUSE/wicked#913)
- socket: Fix SEGV on heavy socket restart errors (bsc#1192508)
- systemd: Remove systemd-udev-settle dependency (bsc#1186787)
- dbus: cleanup the dbus-service.h file and unused property macros
e.g. tso has been split into several features and the
- cleanup: add missing/explicit designated field initializers
- dhcp: support to define and request custom options (bsc#988954),
- utils: fixed last byte formatting in ni_format_hex
- ifconfig: re-add broadcast calculation (bcs#971629).
- version 0.6.27
- xen
-
- Upstream bug fixes (bsc#1027519)
63a03e28-x86-high-freq-TSC-overflow.patch
- Update to Xen 4.16.3 bug fix release (bsc#1027519)
xen-4.16.3-testing-src.tar.bz2
* No upstream changelog found in sources or webpage
- Drop patches contained in new tarball
62fde97e-tools-libxl-Replace-deprecated-soundhw-on-QEMU-command-line.patch
6306185f-x86-XSTATE-CPUID-subleaf-1-EBX.patch
631b5ba6-gnttab-acquire-resource-vaddrs.patch
63455f82-Arm-P2M-prevent-adding-mapping-when-dying.patch
63455fa8-Arm-P2M-preempt-when-freeing-intermediate.patch
63455fc3-x86-p2m_teardown-allow-skip-root-pt-removal.patch
63455fe4-x86-HAP-monitor-table-error-handling.patch
63456000-x86-tolerate-sh_set_toplevel_shadow-failure.patch
6345601d-x86-tolerate-shadow_prealloc-failure.patch
6345603a-x86-P2M-refuse-new-alloc-for-dying.patch
63456057-x86-P2M-truly-free-paging-pool-for-dying.patch
63456075-x86-P2M-free-paging-pool-preemptively.patch
63456090-x86-p2m_teardown-preemption.patch
63456175-libxl-per-arch-extra-default-paging-memory.patch
63456177-Arm-construct-P2M-pool-for-guests.patch
6345617a-Arm-XEN_DOMCTL_shadow_op.patch
6345617c-Arm-take-P2M-pages-P2M-pool.patch
634561aa-gnttab-locking-on-transitive-copy-error-path.patch
634561f1-x86emul-respect-NSCB.patch
6346e404-VMX-correct-error-handling-in-vmx_create_vmcs.patch
6351095c-Arm-rework-p2m_init.patch
6351096a-Arm-P2M-populate-pages-for-GICv2-mapping.patch
635274c0-EFI-dont-convert-runtime-mem-to-RAM.patch
635665fb-sched-fix-restore_vcpu_affinity.patch
63569723-x86-shadow-replace-bogus-assertions.patch
636a9130-x86-spec-ctrl-Enumeration-for-IBPB_RET.patch
636a9130-x86-spec-ctrl-Mitigate-IBPB-not-flushing-the-RSB-RAS.patch
xsa326-01.patch
xsa326-02.patch
xsa326-03.patch
xsa326-04.patch
xsa326-05.patch
xsa326-06.patch
xsa326-07.patch
xsa326-08.patch
xsa326-09.patch
xsa326-10.patch
xsa326-11.patch
xsa326-12.patch
xsa326-13.patch
xsa326-14.patch
xsa326-15.patch
xsa326-16.patch
xsa412.patch
xsa414.patch
xsa415.patch
xsa416.patch
xsa417.patch
xsa418-01.patch
xsa418-02.patch
xsa418-03.patch
xsa418-04.patch
xsa418-05.patch
xsa418-06.patch
xsa418-07.patch
xsa419-01.patch
xsa419-02.patch
xsa419-03.patch
xsa421-01.patch
xsa421-02.patch
- bsc#1205209 - VUL-0: CVE-2022-23824: xen: x86: Multiple
speculative security issues (XSA-422)
636a9130-x86-spec-ctrl-Enumeration-for-IBPB_RET.patch
636a9130-x86-spec-ctrl-Mitigate-IBPB-not-flushing-the-RSB-RAS.patch
- bsc#1193923 - VUL-1: xen: Frontends vulnerable to backends
(XSA-376)
61dd5f64-limit-support-statement-for-Linux-and-Windows-frontends.patch
- bsc#1203806 - VUL-0: CVE-2022-33746: xen: P2M pool freeing may
take excessively long (XSA-410)
63455f82-Arm-P2M-prevent-adding-mapping-when-dying.patch
63455fa8-Arm-P2M-preempt-when-freeing-intermediate.patch
63455fc3-x86-p2m_teardown-allow-skip-root-pt-removal.patch
63455fe4-x86-HAP-monitor-table-error-handling.patch
63456000-x86-tolerate-sh_set_toplevel_shadow-failure.patch
6345601d-x86-tolerate-shadow_prealloc-failure.patch
6345603a-x86-P2M-refuse-new-alloc-for-dying.patch
63456057-x86-P2M-truly-free-paging-pool-for-dying.patch
63456075-x86-P2M-free-paging-pool-preemptively.patch
63456090-x86-p2m_teardown-preemption.patch
- bcs#1203804 - VUL-0: CVE-2022-33747: xen: unbounded memory consumption
for 2nd-level page tables on ARM systems (XSA-409)
63456175-libxl-per-arch-extra-default-paging-memory.patch
63456177-Arm-construct-P2M-pool-for-guests.patch
6345617a-Arm-XEN_DOMCTL_shadow_op.patch
6345617c-Arm-take-P2M-pages-P2M-pool.patch
- bsc#1203807 - VUL-0: CVE-2022-33748: xen: lock order inversion in
transitive grant copy handling (XSA-411)
634561aa-gnttab-locking-on-transitive-copy-error-path.patch
- Upstream bug fixes (bsc#1027519)
6306185f-x86-XSTATE-CPUID-subleaf-1-EBX.patch
631b5ba6-gnttab-acquire-resource-vaddrs.patch
634561f1-x86emul-respect-NSCB.patch
6346e404-VMX-correct-error-handling-in-vmx_create_vmcs.patch
6351095c-Arm-rework-p2m_init.patch
6351096a-Arm-P2M-populate-pages-for-GICv2-mapping.patch
635274c0-EFI-dont-convert-runtime-mem-to-RAM.patch
635665fb-sched-fix-restore_vcpu_affinity.patch
63569723-x86-shadow-replace-bogus-assertions.patch
- Drop patches replaced by upstream versions:
xsa410-01.patch
xsa410-02.patch
xsa410-03.patch
xsa410-04.patch
xsa410-05.patch
xsa410-06.patch
xsa410-07.patch
xsa410-08.patch
xsa410-09.patch
xsa410-10.patch
xsa411.patch
- bsc#1204482 - VUL-0: CVE-2022-42311, CVE-2022-42312,
CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316,
CVE-2022-42317, CVE-2022-42318: xen: Xenstore: Guests can let
xenstored run out of memory (XSA-326)
xsa326-01.patch
xsa326-02.patch
xsa326-03.patch
xsa326-04.patch
xsa326-05.patch
xsa326-06.patch
xsa326-07.patch
xsa326-08.patch
xsa326-09.patch
xsa326-10.patch
xsa326-11.patch
xsa326-12.patch
xsa326-13.patch
xsa326-14.patch
xsa326-15.patch
xsa326-16.patch
- bsc#1204485 - VUL-0: CVE-2022-42309: xen: Xenstore: Guests can
crash xenstored (XSA-414)
xsa414.patch
- bsc#1204487 - VUL-0: CVE-2022-42310: xen: Xenstore: Guests can
create orphaned Xenstore nodes (XSA-415)
xsa415.patch
- bsc#1204488 - VUL-0: CVE-2022-42319: xen: Xenstore: Guests can
cause Xenstore to not free temporary memory (XSA-416)
xsa416.patch
- bsc#1204489 - VUL-0: CVE-2022-42320: xen: Xenstore: Guests can
get access to Xenstore nodes of deleted domains (XSA-417)
xsa417.patch
- bsc#1204490 - VUL-0: CVE-2022-42321: xen: Xenstore: Guests can
crash xenstored via exhausting the stack (XSA-418)
xsa418-01.patch
xsa418-02.patch
xsa418-03.patch
xsa418-04.patch
xsa418-05.patch
xsa418-06.patch
xsa418-07.patch
- bsc#1204494 - VUL-0: CVE-2022-42322,CVE-2022-42323: xen:
Xenstore: cooperating guests can create arbitrary numbers of
nodes (XSA-419)
xsa419-01.patch
xsa419-02.patch
xsa419-03.patch
- bsc#1204496 - VUL-0: CVE-2022-42325,CVE-2022-42326: xen:
Xenstore: Guests can create arbitray number of nodes via
transactions (XSA-421)
xsa421-01.patch
xsa421-02.patch
- bsc#1204483 - VUL-0: CVE-2022-42327: xen: x86: unintended memory
sharing between guests (XSA-412)
xsa412.patch
- xfsprogs
-
- mkfs: don't trample the gid set in the protofile (bsc#1205266)
- Add xfsprogs-mkfs-don-t-trample-the-gid-set-in-the-protofile.patch
- mkfs: prevent corruption of passed-in suboption string values
(bsc#1205377)
- Add xfsprogs-mkfs-prevent-corruption-of-passed-in-suboption-strin.patch
- mkfs: terminate getsubopt arrays properly (bsc#1205284)
- Add xfsprogs-mkfs-terminate-getsubopt-arrays-properly.patch
- xfs_repair: ignore empty xattr leaf blocks (bsc#1205272)
- Add xfsprogs-xfs_repair-ignore-empty-xattr-leaf-blocks.patch
- xterm
-
- xterm-CVE-2022-45063.patch: Fixed use-after-free in fontops when
a font is not present (bsc#1205305 CVE-2022-45063)
- xterm-CVE-2022-24130.patch: Fixed buffer overflow in set_sixel
when Sixel support is enabled (bsc#1195387)
- yast2-bootloader
-
- prevent leak of grub2 password to logs(bsc#1201962)
- 4.4.18
- yast2-cluster
-
- bsc#1204530, set crypto_hash as "/sha1"/ and set crypto_cipher as "/aes256"/,
- set transport as "/udpu"/ by default,
- set default values for mcastaddr/mcastport/bindnedaddr when cluster firstly configured
- Set focus on "/Generate Auth Key File"/ when secauth is true
- Implement ValidateSecurity method
- Set focus on memberaddr add when using udpu
- Version 4.4.3
- yast2-country
-
- Update language cache when selecting new language to ensure that
always the correct language translations are used in the license
translations selection combo box on the next wizard page
(bsc#1204845, bsc#1193009)
- 4.4.13
- yast2-http-server
-
- bsc#1200016
- find out php version dynamically to avoid hardcoded version
- 4.4.2
- yast2-installation
-
- Fixed the help in the installation summary to include the texts
from the corresponding proposals (related to jsc#SLE-24764).
- 4.4.58
- Write config for ssg-apply script according to the enabled
security policy (part of jsc#SLE-24764).
- Fix copy of entropy pool during installation (bsc#1204559).
- 4.4.57
- 4.4.54
- yast2-network
-
- Do not assume wicked will be installed by default anymore and
return the needed packages by the selected backend when them
are not installed (bsc#1201235, bsc#1201435)
- 4.4.53
- Fixed issue when writing the NetworkManager config without a
gateway (bsc#1203866)
- 4.4.52
- Activate s390 devices before importing and reading the network
configuration or otherwise the related linux devices will not be
present and could be ignored (bsc#1199746)
- 4.4.51
- At the end of the installation, force an enablement of the
selected network service even when the selected one has not been
modified and ensure other backends are disabled (bsc#1202479)
- 4.4.50
- yast2-online-update
-
- bsc#1204907
- Dropped old workaround from 2.13.15 with unconditional refresh
of all repositories.
- 4.4.4
- yast2-packager
-
- Do not add an empty repository to the system when upgrading
a registered system using the Full installation medium
(bsc#1204399)
- 4.4.33
- yast2-pkg-bindings
-
- Allow querying orphaned packages (related to bsc#1202007)
- 4.4.5
- yast2-schema
-
- Add 'extrapara' to routes in the networking section (bsc#1201129)
- 4.3.31
- Support for flatten and nested "/category_filter"/ element in the
"/online_update_configuration"/ section (bsc#1198848).
- 4.3.30
- yast2-security
-
- AutoYaST: export security policy settings (related to
jsc#SLE-24764).
- 4.4.18
- Fixed wrong steps count causing a crash during saving (bsc#1205918)
- 4.4.17
- Disable the ssg-apply service if the selected SCAP action is
"/do nothing"/ (related to jsc#SLE-24764).
- 4.4.16
- Add support for DISA STIG security policy validation
(jsc#SLE-24764).
- 4.4.15
- yast2-storage-ng
-
- Validate security policies in both guided proposal and
partitioner (part of jsc#SLE-24764).
- 4.4.41
- yast2-update
-
- Display a warning in the upgrade summary when removing orphaned
3rd party packages (bsc#1202007)
- 4.4.8
- yast2-users
-
- AutoYaST: Fix creation of home for system users (bsc#1202974).
- 4.4.12
- zlib
-
- Follow up fix for bsc#1203652 due to libxml2 breakage
* bsc1203652-2.patch
- Fix bsc#1203652, inflate() does not update strm.adler if DFLTCC is used
* bsc1203652.patch