Security update for the Linux Kernel

Announcement ID: SUSE-SU-2020:2631-1
Rating: important
References:
Cross-References:
CVSS scores:
  • CVE-2020-14314 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
  • CVE-2020-14314 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
  • CVE-2020-14331 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • CVE-2020-14331 ( NVD ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • CVE-2020-14356 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
  • CVE-2020-14356 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • CVE-2020-16166 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
  • CVE-2020-16166 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
  • CVE-2020-24394 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • CVE-2020-24394 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected Products:
  • SUSE Linux Enterprise Real Time 15 SP1
  • SUSE Real Time Module 15-SP1

An update that solves five vulnerabilities and has 124 security fixes can now be installed.

Description:

The SUSE Linux Enterprise 15 SP1 realtime kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-14314: Fixed a potential negative array index in do_split() (bsc#1173798).
  • CVE-2020-14356: Fixed a null pointer dereference in cgroupv2 subsystem which could have led to privilege escalation (bsc#1175213).
  • CVE-2020-14331: Fixed a missing check in vgacon scrollback handling (bsc#1174205).
  • CVE-2020-16166: Fixed a potential issue which could have allowed remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG (bsc#1174757).
  • CVE-2020-24394: Fixed an issue which could set incorrect permissions on new filesystem objects when the filesystem lacks ACL support (bsc#1175518).

The following non-security bugs were fixed:

  • af_key: pfkey_dump needs parameter validation (git-fixes).
  • agp/intel: Fix a memory leak on module initialisation failure (git-fixes).
  • ACPI: kABI fixes for subsys exports (bsc#1174968).
  • ACPI / LPSS: Resume BYT/CHT I2C controllers from resume_noirq (bsc#1174968).
  • ACPI / LPSS: Use acpi_lpss_ instead of acpi_subsys_ functions for hibernate (bsc#1174968).
  • ACPI: PM: Introduce "poweroff" callbacks for ACPI PM domain and LPSS (bsc#1174968).
  • ACPI: PM: Simplify and fix PM domain hibernation callbacks (bsc#1174968).
  • ALSA: core: pcm_iec958: fix kernel-doc (bsc#1111666).
  • ALSA: echoaduio: Drop superfluous volatile modifier (bsc#1111666).
  • ALSA: echoaudio: Fix potential Oops in snd_echo_resume() (bsc#1111666).
  • ALSA: hda: Add support for Loongson 7A1000 controller (bsc#1111666).
  • ALSA: hda/ca0132 - Add new quirk ID for Recon3D (bsc#1111666).
  • ALSA: hda/ca0132 - Fix AE-5 microphone selection commands (bsc#1111666).
  • ALSA: hda/ca0132 - Fix ZxR Headphone gain control get value (bsc#1111666).
  • ALSA: hda: fix NULL pointer dereference during suspend (git-fixes).
  • ALSA: hda: fix snd_hda_codec_cleanup() documentation (bsc#1111666).
  • ALSA: hda - fix the micmute led status for Lenovo ThinkCentre AIO (bsc#1111666).
  • ALSA: hda/realtek: Add alc269/alc662 pin-tables for Loongson-3 laptops (bsc#1111666).
  • ALSA: hda/realtek: Add model alc298-samsung-headphone (git-fixes).
  • ALSA: hda/realtek: Add mute LED and micmute LED support for HP systems (bsc#1111666).
  • ALSA: hda/realtek - Add quirk for Lenovo Carbon X1 8th gen (bsc#1111666).
  • ALSA: hda/realtek - Add quirk for MSI GE63 laptop (bsc#1111666).
  • ALSA: hda/realtek - Add quirk for MSI GL63 (bsc#1111666).
  • ALSA: hda/realtek: Add quirk for Samsung Galaxy Book Ion (git-fixes).
  • ALSA: hda/realtek: Add quirk for Samsung Galaxy Flex Book (git-fixes).
  • ALSA: hda/realtek - change to suitable link model for ASUS platform (bsc#1111666).
  • ALSA: hda/realtek - Check headset type by unplug and resume (bsc#1111666).
  • ALSA: hda/realtek - Enable audio jacks of Acer vCopperbox with ALC269VC (bsc#1111666).
  • ALSA: hda/realtek: Enable headset mic of Acer C20-820 with ALC269VC (bsc#1111666).
  • ALSA: hda/realtek: Enable headset mic of Acer TravelMate B311R-31 with ALC256 (bsc#1111666).
  • ALSA: hda/realtek: Enable headset mic of Acer Veriton N4660G with ALC269VC (bsc#1111666).
  • ALSA: hda/realtek: enable headset mic of ASUS ROG Zephyrus G14(G401) series with ALC289 (bsc#1111666).
  • ALSA: hda/realtek: enable headset mic of ASUS ROG Zephyrus G15(GA502) series with ALC289 (bsc#1111666).
  • ALSA: hda/realtek - Enable Speaker for ASUS UX563 (bsc#1111666).
  • ALSA: hda/realtek: Fix add a "ultra_low_power" function for intel reference board (alc256) (bsc#1111666).
  • ALSA: hda/realtek: Fixed ALC298 sound bug by adding quirk for Samsung Notebook Pen S (bsc#1111666).
  • ALSA: hda/realtek - Fixed HP right speaker no sound (bsc#1111666).
  • ALSA: hda/realtek - Fix Lenovo Thinkpad X1 Carbon 7th quirk subdevice id (bsc#1111666).
  • ALSA: hda/realtek: Fix pin default on Intel NUC 8 Rugged (bsc#1111666).
  • ALSA: hda/realtek - Fix unused variable warning (bsc#1111666).
  • ALSA: hda/realtek: typo_fix: enable headset mic of ASUS ROG Zephyrus G14(GA401) series with ALC289 (bsc#1111666).
  • ALSA: hda - reverse the setting value in the micmute_led_set (bsc#1111666).
  • ALSA: hda: Workaround for spurious wakeups on some Intel platforms (git-fixes).
  • ALSA: pci: delete repeated words in comments (bsc#1111666).
  • ALSA: seq: oss: Serialize ioctls (bsc#1111666).
  • ALSA: usb-audio: Add capture support for Saffire 6 (USB 1.1) (git-fixes).
  • ALSA: usb-audio: add quirk for Pioneer DDJ-RB (bsc#1111666).
  • ALSA: usb-audio: add startech usb audio dock name (bsc#1111666).
  • ALSA: usb-audio: Add support for Lenovo ThinkStation P620 (bsc#1111666).
  • ALSA: usb-audio: Creative USB X-Fi Pro SB1095 volume knob support (bsc#1111666).
  • ALSA: usb-audio: Disable Lenovo P620 Rear line-in volume control (bsc#1111666).
  • ALSA: usb-audio: endpoint : remove needless check before usb_free_coherent() (bsc#1111666).
  • ALSA: usb-audio: fix overeager device match for MacroSilicon MS2109 (bsc#1174625).
  • ALSA: usb-audio: fix spelling mistake "buss" -> "bus" (bsc#1111666).
  • ALSA: usb-audio: ignore broken processing/extension unit (git-fixes).
  • ALSA: usb-audio: Update documentation comment for MS2109 quirk (git-fixes).
  • ALSA: usb-audio: work around streaming quirk for MacroSilicon MS2109 (bsc#1111666).
  • ALSA: usb/line6: remove 'defined but not used' warning (bsc#1111666).
  • arm64: Add MIDR encoding for HiSilicon Taishan CPUs (bsc#1174547).
  • arm64: Add MIDR encoding for NVIDIA CPUs (bsc#1174547).
  • arm64: add sysfs vulnerability show for meltdown (bsc#1174547).
  • arm64: Add sysfs vulnerability show for spectre-v1 (bsc#1174547).
  • arm64: add sysfs vulnerability show for spectre-v2 (bsc#1174547).
  • arm64: add sysfs vulnerability show for speculative store bypass (bsc#1174547).
  • arm64: Advertise mitigation of Spectre-v2, or lack thereof (bsc#1174547).
  • arm64: Always enable spectre-v2 vulnerability detection (bsc#1174547).
  • arm64: Always enable ssb vulnerability detection (bsc#1174547).
  • arm64: backtrace: Do not bother trying to unwind the userspace stack (bsc#1175397).
  • arm64: capabilities: Add NVIDIA Denver CPU to bp_harden list (bsc#1174547).
  • arm64: capabilities: Merge duplicate Cavium erratum entries (bsc#1174547).
  • arm64: capabilities: Merge entries for ARM64_WORKAROUND_CLEAN_CACHE (bsc#1174547).
  • arm64: cpufeature: Enable Qualcomm Falkor/Kryo errata 1003 (bsc#1175398).
  • arm64: Do not mask out PTE_RDONLY in pte_same() (bsc#1175393).
  • arm64: enable generic CPU vulnerabilites support (bsc#1174547).
  • arm64: Ensure VM_WRITE|VM_SHARED ptes are clean by default (bsc#1175394).
  • arm64: errata: Do not define type field twice for arm64_errata entries (bsc#1174547).
  • arm64: errata: Update stale comment (bsc#1174547).
  • arm64: Get rid of __smccc_workaround_1_hvc_* (bsc#1174547).
  • arm64: kpti: Avoid rewriting early page tables when KASLR is enabled (bsc#1174547).
  • arm64: kpti: Update arm64_kernel_use_ng_mappings() when forced on (bsc#1174547).
  • arm64: kpti: Whitelist Cortex-A CPUs that do not implement the CSV3 field (bsc#1174547).
  • arm64: kpti: Whitelist HiSilicon Taishan v110 CPUs (bsc#1174547).
  • arm64: KVM: Avoid setting the upper 32 bits of VTCR_EL2 to 1 (bsc#1133021).
  • arm64: KVM: Guests can skip __install_bp_hardening_cb()s HYP work (bsc#1174547).
  • arm64: KVM: Use SMCCC_ARCH_WORKAROUND_1 for Falkor BP hardening (bsc#1174547).
  • arm64: mm: Fix pte_mkclean, pte_mkdirty semantics (bsc#1175526).
  • arm64: Provide a command line to disable spectre_v2 mitigation (bsc#1174547).
  • arm64: Silence clang warning on mismatched value/register sizes (bsc#1175396).
  • arm64/speculation: Support 'mitigations=' cmdline option (bsc#1174547).
  • arm64: ssbs: Do not treat CPUs with SSBS as unaffected by SSB (bsc#1174547).
  • arm64: ssbs: Fix context-switch when SSBS is present on all CPUs (bsc#1175669).
  • arm64/sve: Fix wrong free for task->thread.sve_state (bsc#1175400).
  • arm64: tlbflush: avoid writing RES0 bits (bsc#1175402).
  • arm64: Use firmware to detect CPUs that are not affected by Spectre-v2 (bsc#1174547).
  • ARM: KVM: invalidate BTB on guest exit for Cortex-A12/A17 (bsc#1133021).
  • ARM: KVM: invalidate icache on guest exit for Cortex-A15 (bsc#1133021).
  • ARM: spectre-v2: KVM: invalidate icache on guest exit for Brahma B15 (bsc#1133021).
  • ASoC: hda/tegra: Set buffer alignment to 128 bytes (bsc#1111666).
  • ASoC: intel: Fix memleak in sst_media_open (git-fixes).
  • ASoC: rt5670: Correct RT5670_LDO_SEL_MASK (git-fixes).
  • AX.25: Fix out-of-bounds read in ax25_connect() (git-fixes).
  • AX.25: Prevent integer overflows in connect and sendmsg (git-fixes).
  • AX.25: Prevent out-of-bounds read in ax25_sendmsg() (git-fixes).
  • ax88172a: fix ax88172a_unbind() failures (git-fixes).
  • b43: Remove uninitialized_var() usage (git-fixes).
  • block: Fix use-after-free in blkdev_get() (bsc#1174843).
  • Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() (bsc#1111666).
  • Bluetooth: Fix update of connection state in hci_encrypt_cfm (git-fixes).
  • Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt() (bsc#1111666).
  • Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt() (bsc#1111666).
  • bonding: fix active-backup failover for current ARP slave (bsc#1174771).
  • bonding: fix a potential double-unregister (git-fixes).
  • bonding: show saner speed for broadcast mode (git-fixes).
  • bpf: Fix map leak in HASH_OF_MAPS map (git-fixes).
  • brcmfmac: keep SDIO watchdog running when console_interval is non-zero (bsc#1111666).
  • brcmfmac: set state of hanger slot to FREE when flushing PSQ (bsc#1111666).
  • brcmfmac: To fix Bss Info flag definition Bug (bsc#1111666).
  • btrfs: change timing for qgroup reserved space for ordered extents to fix reserved space leak (bsc#1172247).
  • btrfs: file: reserve qgroup space after the hole punch range is locked (bsc#1172247).
  • btrfs: fix a block group ref counter leak after failure to remove block group (bsc#1175149).
  • btrfs: fix block group leak when removing fails (bsc#1175149).
  • btrfs: fix bytes_may_use underflow when running balance and scrub in parallel (bsc#1175149).
  • btrfs: fix corrupt log due to concurrent fsync of inodes with shared extents (bsc#1175149).
  • btrfs: fix data block group relocation failure due to concurrent scrub (bsc#1175149).
  • btrfs: fix double free on ulist after backref resolution failure (bsc#1175149).
  • btrfs: fix fatal extent_buffer readahead vs releasepage race (bsc#1175149).
  • btrfs: fix memory leaks after failure to lookup checksums during inode logging (bsc#1175550).
  • btrfs: fix page leaks after failure to lock page for delalloc (bsc#1175149).
  • btrfs: fix race between block group removal and block group creation (bsc#1175149).
  • btrfs: fix space_info bytes_may_use underflow after nocow buffered write (bsc#1175149).
  • btrfs: fix space_info bytes_may_use underflow during space cache writeout (bsc#1175149).
  • btrfs: fix wrong file range cleanup after an error filling dealloc range (bsc#1175149).
  • btrfs: inode: fix NULL pointer dereference if inode does not need compression (bsc#1174484).
  • btrfs: inode: move qgroup reserved space release to the callers of insert_reserved_file_extent() (bsc#1172247).
  • btrfs: inode: refactor the parameters of insert_reserved_file_extent() (bsc#1172247).
  • btrfs: make btrfs_ordered_extent naming consistent with btrfs_file_extent_item (bsc#1172247).
  • btrfs: Open code btrfs_write_and_wait_marked_extents (bsc#1175149).
  • btrfs: qgroup: allow to unreserve range without releasing other ranges (bsc#1120163).
  • btrfs: qgroup: fix data leak caused by race between writeback and truncate (bsc#1172247).
  • btrfs: qgroup: remove ASYNC_COMMIT mechanism in favor of reserve retry-after-EDQUOT (bsc#1120163).
  • btrfs: qgroup: try to flush qgroup space when we get -EDQUOT (bsc#1120163).
  • btrfs: Rename and export clear_btree_io_tree (bsc#1175149).
  • btrfs: treat RWF_{,D}SYNC writes as sync for CRCs (bsc#1175493).
  • bus: hisi_lpc: Add .remove method to avoid driver unbind crash (bsc#1174658).
  • bus: hisi_lpc: Do not fail probe for unrecognised child devices (bsc#1174658).
  • bus: hisi_lpc: Unregister logical PIO range to avoid potential use-after-free (bsc#1174658).
  • cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip (git-fixes).
  • cfg80211: check vendor command doit pointer before use (git-fixes).
  • cifs: document and cleanup dfs mount (bsc#1144333 bsc#1172428).
  • cifs: Fix an error pointer dereference in cifs_mount() (bsc#1144333 bsc#1172428).
  • cifs: fix double free error on share and prefix (bsc#1144333 bsc#1172428).
  • cifs: handle empty list of targets in cifs_reconnect() (bsc#1144333 bsc#1172428).
  • cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect (bsc#1144333 bsc#1172428).
  • cifs: merge __{cifs,smb2}_reconnect_tcon into cifs_tree_connect() (bsc#1144333 bsc#1172428).
  • cifs: only update prefix path of DFS links in cifs_tree_connect() (bsc#1144333 bsc#1172428).
  • cifs: reduce number of referral requests in DFS link lookups (bsc#1144333 bsc#1172428).
  • cifs: rename reconn_inval_dfs_target() (bsc#1144333 bsc#1172428).
  • clk: at91: clk-generated: check best_rate against ranges (bsc#1111666).
  • clk: clk-atlas6: fix return value check in atlas6_clk_init() (bsc#1111666).
  • clk: iproc: round clock rate to the closest (bsc#1111666).
  • clk: spear: Remove uninitialized_var() usage (git-fixes).
  • clk: st: Remove uninitialized_var() usage (git-fixes).
  • config: arm64: enable CONFIG_IOMMU_DEFAULT_PASSTHROUGH References: bsc#1174549
  • console: newport_con: fix an issue about leak related system resources (git-fixes).
  • crypto: ccp - Fix use of merged scatterlists (git-fixes).
  • crypto: cpt - do not sleep of CRYPTO_TFM_REQ_MAY_SLEEP was not specified (git-fixes).
  • crypto: qat - fix double free in qat_uclo_create_batch_init_list (git-fixes).
  • crypto: rockchip - fix scatterlist nents error (git-fixes).
  • crypto: stm32/crc32 - fix ext4 chksum BUG_ON() (git-fixes).
  • crypto: talitos - check AES key size (git-fixes).
  • crypto: talitos - fix ablkcipher for CONFIG_VMAP_STACK (git-fixes).
  • crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes).
  • dev: Defer free of skbs in flush_backlog (git-fixes).
  • devres: keep both device name and resource name in pretty name (git-fixes).
  • dlm: Fix kobject memleak (bsc#1175768).
  • dlm: remove BUG() before panic() (bsc#1174844).
  • dmaengine: fsl-edma: Fix NULL pointer exception in fsl_edma_tx_handler (git-fixes).
  • Documentation/networking: Add net DIM documentation (bsc#1174852).
  • dpaa2-eth: Fix passing zero to 'PTR_ERR' warning (bsc#1175403).
  • dpaa2-eth: free already allocated channels on probe defer (bsc#1175404).
  • dpaa2-eth: prevent array underflow in update_cls_rule() (bsc#1175405).
  • dpaa_eth: add dropped frames to percpu ethtool stats (bsc#1174550).
  • dpaa_eth: add newline in dev_err() msg (bsc#1174550).
  • dpaa_eth: avoid timestamp read on error paths (bsc#1175406).
  • dpaa_eth: change DMA device (bsc#1174550).
  • dpaa_eth: cleanup skb_to_contig_fd() (bsc#1174550).
  • dpaa_eth: defer probing after qbman (bsc#1174550).
  • dpaa_eth: extend delays in ndo_stop (bsc#1174550).
  • dpaa_eth: fix DMA mapping leak (bsc#1174550).
  • dpaa_eth: Fix one possible memleak in dpaa_eth_probe (bsc#1174550).
  • dpaa_eth: FMan erratum A050385 workaround (bsc#1174550).
  • dpaa_eth: perform DMA unmapping before read (bsc#1175407).
  • dpaa_eth: register a device link for the qman portal used (bsc#1174550).
  • dpaa_eth: remove netdev_err() for user errors (bsc#1174550).
  • dpaa_eth: remove redundant code (bsc#1174550).
  • dpaa_eth: simplify variables used in dpaa_cleanup_tx_fd() (bsc#1174550).
  • dpaa_eth: use a page to store the SGT (bsc#1174550).
  • dpaa_eth: use fd information in dpaa_cleanup_tx_fd() (bsc#1174550).
  • dpaa_eth: use only one buffer pool per interface (bsc#1174550).
  • dpaa_eth: use page backed rx buffers (bsc#1174550).
  • driver core: Avoid binding drivers to dead devices (git-fixes).
  • Drivers: hv: vmbus: Fix virt_to_hvpfn() for X86_PAE (git-fixes).
  • Drivers: hv: vmbus: Only notify Hyper-V for die events that are oops (bsc#1175127, bsc#1175128).
  • drivers/perf: hisi: Fix typo in events attribute array (bsc#1175408).
  • drivers/perf: hisi: Fixup one DDRC PMU register offset (bsc#1175410).
  • drivers/perf: hisi: Fix wrong value for all counters enable (bsc#1175409).
  • drm: Added orientation quirk for ASUS tablet model T103HAF (bsc#1111666).
  • drm/amd/display: fix pow() crashing when given base 0 (git-fixes).
  • drm/amdgpu: avoid dereferencing a NULL pointer (bsc#1111666).
  • drm/amdgpu: Fix bug where DPM is not enabled after hibernate and resume (bsc#1111666).
  • drm/amdgpu: Fix NULL dereference in dpm sysfs handlers (bsc#1113956)
  • drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl() (git-fixes).
  • drm/amdgpu: Replace invalid device ID with a valid device ID (bsc#1113956)
  • drm/arm: fix unintentional integer overflow on left shift (git-fixes).
  • drm/bridge: dw-hdmi: Do not cleanup i2c adapter and ddc ptr in (bsc#1113956)
  • drm/bridge: sil_sii8620: initialize return of sii8620_readb (git-fixes).
  • drm/dbi: Fix SPI Type 1 (9-bit) transfer (bsc#1113956)
  • drm/debugfs: fix plain echo to connector "force" attribute (bsc#1111666).
  • drm/etnaviv: Fix error path on failure to enable bus clk (git-fixes).
  • drm/etnaviv: fix ref count leak via pm_runtime_get_sync (bsc#1111666).
  • drm: fix drm_dp_mst_port refcount leaks in drm_dp_mst_allocate_vcpi (bsc#1112178)
  • drm: hold gem reference until object is no longer accessed (bsc#1113956)
  • drm/imx: fix use after free (git-fixes).
  • drm/imx: imx-ldb: Disable both channels for split mode in enc->disable() (git-fixes).
  • drm/imx: tve: fix regulator_disable error path (git-fixes).
  • drm/mipi: use dcs write for mipi_dsi_dcs_set_tear_scanline (git-fixes).
  • drm/msm: ratelimit crtc event overflow error (bsc#1111666).
  • drm/nouveau/fbcon: fix module unload when fbcon init has failed for some reason (git-fixes).
  • drm/nouveau/fbcon: zero-initialise the mode_cmd2 structure (git-fixes).
  • drm/nouveau: fix multiple instances of reference count leaks (bsc#1111666).
  • drm/panel: otm8009a: Drop unnessary backlight_device_unregister() (git-fixes).
  • drm: panel: simple: Fix bpc for LG LB070WV8 panel (git-fixes).
  • drm/radeon: disable AGP by default (bsc#1111666).
  • drm/radeon: fix array out-of-bounds read and write issues (git-fixes).
  • drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync (bsc#1111666).
  • drm/rockchip: fix VOP_WIN_GET macro (bsc#1175411).
  • drm/ttm/nouveau: do not call tt destroy callback on alloc failure (bsc#1175232).
  • drm/vmwgfx: Fix two list_for_each loop exit tests (bsc#1111666).
  • drm/vmwgfx: Use correct vmw_legacy_display_unit pointer (bsc#1111666).
  • efi/memreserve: deal with memreserve entries in unmapped memory (bsc#1174685).
  • ext4: check journal inode extents more carefully (bsc#1173485).
  • ext4: do not allow overlapping system zones (bsc#1173485).
  • ext4: fix checking of directory entry validity for inline directories (bsc#1175771).
  • ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max (bsc#1174840).
  • ext4: handle error of ext4_setup_system_zone() on remount (bsc#1173485).
  • fat: do not allow to mount if the FAT length == 0 (bsc#1174845).
  • fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins. (bsc#1112178)
  • firmware: google: check if size is valid when decoding VPD data (git-fixes).
  • firmware: google: increment VPD key_len properly (git-fixes).
  • fpga: dfl: fix bug in port reset handshake (git-fixes).
  • fsl/fman: add API to get the device behind a fman port (bsc#1174550).
  • fsl/fman: detect FMan erratum A050385 (bsc#1174550).
  • fsl/fman: do not touch liodn base regs reserved on non-PAMU SoCs (bsc#1174550).
  • fsl/fman: remove unused struct member (bsc#1174550).
  • fuse: fix memleak in cuse_channel_open (bsc#1174926).
  • fuse: fix missing unlock_page in fuse_writepage() (bsc#1174904).
  • fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS (bsc#1175062).
  • fuse: fix weird page warning (bsc#1175063).
  • fuse: flush dirty data/metadata before non-truncate setattr (bsc#1175064).
  • fuse: truncate pending writes on O_TRUNC (bsc#1175065).
  • fuse: verify attributes (bsc#1175066).
  • fuse: verify nlink (bsc#1175067).
  • genetlink: remove genl_bind (networking-stable-20_07_17).
  • go7007: add sanity checking for endpoints (git-fixes).
  • gpu: host1x: debug: Fix multiple channels emitting messages simultaneously (bsc#1111666).
  • HID: hiddev: fix mess in hiddev_open() (git-fixes).
  • HISI LPC: Re-Add ACPI child enumeration support (bsc#1174658).
  • HISI LPC: Stop using MFD APIs (bsc#1174658).
  • hv_netvsc: do not use VF device if link is down (git-fixes).
  • hv_netvsc: Fix error handling in netvsc_attach() (git-fixes).
  • hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback() (git-fixes).
  • hv_netvsc: Fix the queue_mapping in netvsc_vf_xmit() (git-fixes).
  • hv_netvsc: Fix unwanted wakeup in netvsc_attach() (git-fixes).
  • hv_netvsc: Remove "unlikely" from netvsc_select_queue (git-fixes).
  • i2c: rcar: slave: only send STOP event when we have been addressed (bsc#1111666).
  • i40e: Fix crash during removing i40e driver (git-fixes).
  • i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (git-fixes).
  • ibmveth: Fix use of ibmveth in a bridge (bsc#1174387 ltc#187506).
  • ibmvnic: Fix IRQ mapping disposal in error path (bsc#1175112 ltc#187459).
  • ibmvnic fix NULL tx_pools and rx_tools issue at do_reset (bsc#1175873 ltc#187922).
  • include/linux/poison.h: remove obsolete comment (git fixes (poison)).
  • Input: psmouse - add a newline when printing 'proto' by sysfs (git-fixes).
  • Input: sentelic - fix error return when fsp_reg_write fails (bsc#1111666).
  • integrity: remove redundant initialization of variable ret (git-fixes).
  • io-mapping: indicate mapping failure (git-fixes).
  • ip6_gre: fix null-ptr-deref in ip6gre_init_net() (git-fixes).
  • ip6_gre: fix use-after-free in ip6gre_tunnel_lookup() (networking-stable-20_06_28).
  • ip6_tunnel: allow not to count pkts on tstats by passing dev as NULL (bsc#1175515).
  • ip_tunnel: allow not to count pkts on tstats by setting skb's dev to NULL (bsc#1175515).
  • ip_tunnel: Emit events for post-register MTU changes (git-fixes).
  • ip_tunnel: fix use-after-free in ip_tunnel_lookup() (networking-stable-20_06_28).
  • ip_tunnel: restore binding to ifaces with a large mtu (git-fixes).
  • ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg (networking-stable-20_07_17).
  • ipv4: Silence suspicious RCU usage warning (git-fixes).
  • ipv6: fix memory leaks on IPV6_ADDRFORM path (git-fixes).
  • ipvlan: fix device features (git-fixes).
  • ipvs: allow connection reuse for unconfirmed conntrack (git-fixes).
  • ipvs: fix refcount usage for conns in ops mode (git-fixes).
  • ipvs: fix the connection sync failed in some cases (bsc#1174699).
  • irqchip/gic: Atomically update affinity (bsc#1111666).
  • iwlegacy: Check the return value of pcie_capability_read_*() (bsc#1111666).
  • jbd2: add the missing unlock_buffer() in the error path of jbd2_write_superblock() (bsc#1175772).
  • kABI: genetlink: remove genl_bind (kabi).
  • kernel/cpu_pm: Fix uninitted local in cpu_pm (git fixes (kernel/pm)).
  • kernel/relay.c: fix memleak on destroy relay channel (git-fixes).
  • kernfs: do not call fsnotify() with name without a parent (bsc#1175770).
  • KVM: arm64: Ensure 'params' is initialised when looking up sys register (bsc#1133021).
  • KVM: arm64: Stop clobbering x0 for HVC_SOFT_RESTART (bsc#1133021).
  • KVM: arm/arm64: Fix young bit from mmu notifier (bsc#1133021).
  • KVM: arm/arm64: vgic: Do not rely on the wrong pending table (bsc#1133021).
  • KVM: arm/arm64: vgic-its: Fix restoration of unmapped collections (bsc#1133021).
  • KVM: arm: Fix DFSR setting for non-LPAE aarch32 guests (bsc#1133021).
  • KVM: arm: Make inject_abt32() inject an external abort instead (bsc#1133021).
  • kvm: Change offset in kvm_write_guest_offset_cached to unsigned (bsc#1133021).
  • KVM: Check for a bad hva before dropping into the ghc slow path (bsc#1133021).
  • KVM: PPC: Book3S PR: Remove uninitialized_var() usage (bsc#1065729).
  • l2tp: remove skb_dst_set() from l2tp_xmit_skb() (networking-stable-20_07_17).
  • leds: 88pm860x: fix use-after-free on unbind (git-fixes).
  • leds: core: Flush scheduled work for system suspend (git-fixes).
  • leds: da903x: fix use-after-free on unbind (git-fixes).
  • leds: lm3533: fix use-after-free on unbind (git-fixes).
  • leds: lm355x: avoid enum conversion warning (git-fixes).
  • leds: wm831x-status: fix use-after-free on unbind (git-fixes).
  • lib/dim: Fix -Wunused-const-variable warnings (bsc#1174852).
  • lib: dimlib: fix help text typos (bsc#1174852).
  • lib: logic_pio: Add logic_pio_unregister_range() (bsc#1174658).
  • lib: logic_pio: Avoid possible overlap for unregistering regions (bsc#1174658).
  • lib: logic_pio: Fix RCU usage (bsc#1174658).
  • linux/dim: Add completions count to dim_sample (bsc#1174852).
  • linux/dim: Fix overflow in dim calculation (bsc#1174852).
  • linux/dim: Move implementation to .c files (bsc#1174852).
  • linux/dim: Move logic to dim.h (bsc#1174852).
  • linux/dim: Remove "net" prefix from internal DIM members (bsc#1174852).
  • linux/dim: Rename externally exposed macros (bsc#1174852).
  • linux/dim: Rename externally used net_dim members (bsc#1174852).
  • linux/dim: Rename net_dim_sample() to net_dim_update_sample() (bsc#1174852).
  • liquidio: Fix wrong return value in cn23xx_get_pf_num() (git-fixes).
  • llc: make sure applications use ARPHRD_ETHER (networking-stable-20_07_17).
  • mac80211: mesh: Free ie data when leaving mesh (git-fixes).
  • mac80211: mesh: Free pending skb when destroying a mpath (git-fixes).
  • MAINTAINERS: add entry for Dynamic Interrupt Moderation (bsc#1174852).
  • md-cluster: Fix potential error pointer dereference in resize_bitmaps() (git-fixes).
  • md/raid5: Fix Force reconstruct-write io stuck in degraded raid5 (git-fixes).
  • media: budget-core: Improve exception handling in budget_register() (git-fixes).
  • media: exynos4-is: Add missed check for pinctrl_lookup_state() (git-fixes).
  • media: firewire: Using uninitialized values in node_probe() (git-fixes).
  • media: omap3isp: Add missed v4l2_ctrl_handler_free() for preview_init_entities() (git-fixes).
  • media: vpss: clean up resources in init (git-fixes).
  • mfd: arizona: Ensure 32k clock is put on driver unbind and error (git-fixes).
  • mfd: dln2: Run event handler loop under spinlock (git-fixes).
  • mfd: rk808: Fix RK818 ID template (bsc#1175412).
  • mld: fix memory l