Security update for kernel-source-azure

Announcement ID:	SUSE-RU-2019:1828-1
Rating:	important
References:	bsc#1051510 bsc#1061840 bsc#1065600 bsc#1068032 bsc#1071995 bsc#1088047 bsc#1094555 bsc#1098633 bsc#1106383 bsc#1106751 bsc#1109137 bsc#1112824 bsc#1114279 bsc#1119532 bsc#1120423 bsc#1124167 bsc#1127155 bsc#1128432 bsc#1128902 bsc#1128910 bsc#1131645 bsc#1132154 bsc#1132390 bsc#1133401 bsc#1133738 bsc#1134303 bsc#1134395 bsc#1135296 bsc#1135556 bsc#1135642 bsc#1136157 bsc#1136598 bsc#1136811 bsc#1136922 bsc#1136935 bsc#1137103 bsc#1137194 bsc#1137221 bsc#1137366 bsc#1137429 bsc#1137586 bsc#1137625 bsc#1137728 bsc#1137884 bsc#1137995 bsc#1137996 bsc#1137998 bsc#1137999 bsc#1138000 bsc#1138002 bsc#1138003 bsc#1138005 bsc#1138006 bsc#1138007 bsc#1138008 bsc#1138009 bsc#1138010 bsc#1138011 bsc#1138012 bsc#1138013 bsc#1138014 bsc#1138015 bsc#1138016 bsc#1138017 bsc#1138018 bsc#1138019 bsc#1138291 bsc#1138293 bsc#1138374 bsc#1138375 bsc#1138589 bsc#1138719 bsc#1139751 bsc#1139771 bsc#1139782 bsc#1139865 bsc#1140133 bsc#1140328 bsc#1140405 bsc#1140424 bsc#1140428 bsc#1140575 bsc#1140577 bsc#1140637 bsc#1140658 bsc#1140715 bsc#1140719 bsc#1140726 bsc#1140727 bsc#1140728 bsc#1140814
Cross-References:	CVE-2017-5753 CVE-2018-16871 CVE-2018-20836 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11478 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819
CVSS scores:	CVE-2017-5753 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2017-5753 ( SUSE ): 7.1 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N CVE-2017-5753 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2017-5753 ( NVD ): 5.6 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2018-16871 ( SUSE ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-16871 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-16871 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-20836 ( SUSE ): 6.2 CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H CVE-2018-20836 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2018-20836 ( NVD ): 8.1 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-10126 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-10126 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-10126 ( NVD ): 5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-10638 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-10638 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2019-10639 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-10639 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-11478 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-11478 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-11599 ( SUSE ): 6.1 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H CVE-2019-11599 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-11599 ( NVD ): 7.0 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-12380 ( SUSE ): 4.0 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-12380 ( NVD ): 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2019-12456 ( SUSE ): 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-12456 ( NVD ): 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-12614 ( SUSE ): 6.2 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-12614 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-12818 ( SUSE ): 4.1 CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2019-12818 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-12819 ( SUSE ): 3.4 CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L CVE-2019-12819 ( NVD ): 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products:	SUSE Linux Enterprise High Performance Computing 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4

An update that solves 13 vulnerabilities and has 78 fixes can now be installed.

Description:

This update for kernel-source-azure fixes the following issues:

CVE-2019-10638: Attackers used to be able to track the Linux kernel by the IP ID values the kernel produces for connection-less protocols. When such traffic was sent to multiple destination IP addresses, it was possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack could have been conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses. [bnc#1140575]
CVE-2019-10639: The Linux kernel used to allow Information Exposure (partial kernel address disclosure), leading to a KASLR bypass. Specifically, it was possible to extract the KASLR kernel image offset using the IP ID values the kernel produces for connection-less protocols. When such traffic was sent to multiple destination IP addresses, it was possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). This key contains enough bits from a kernel address (of a static variable) so when the key was extracted (via enumeration), the offset of the kernel image was exposed. This attack could be carried out remotely by the attacker forcing the target device to send UDP or ICMP traffic to attacker-controlled IP addresses. Forcing a server to send UDP traffic is trivial if the server is a DNS server. ICMP traffic is trivial if the server answers ICMP Echo requests (ping). For client targets, if the target visits the attacker's web page, then WebRTC or gQUIC can be used to force UDP traffic to attacker-controlled IP addresses. [bnc#1140577]
CVE-2018-20836: A race condition used to exist in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free. [bnc#1134395]
CVE-2019-10126: A heap based buffer overflow in the wireless driver code was fixed. This issue might have lead to memory corruption and possibly other consequences. [bnc#1136935]
CVE-2019-11599: The coredump implementation did not use locking or other mechanisms to prevent vma layout or vma flags changes while it ran, which allowed local users to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a race condition with mmget_not_zero or get_task_mm calls. [bnc#1131645].
CVE-2019-12614: There was an unchecked kstrdup of prop->name on PowerPC platforms, which allowed an attacker to cause a denial of service (NULL pointer dereference and system crash). [bnc#1137194]
CVE-2018-16871: A flaw was found in the NFS implementation. An attacker who was able to mount an exported NFS filesystem was able to trigger a null pointer dereference by an invalid NFS sequence. This could panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will were lost. [bnc#1137103]
CVE-2019-12819: The function __mdiobus_register() used to call put_device(), which would trigger a fixed_mdio_bus_init use-after-free error. This would cause a denial of service. [bnc#1138291]
CVE-2019-12818: The nfc_llcp_build_tlv function in net/nfc/llcp_commands.c may return NULL. If the caller did not check for this, it could trigger a NULL pointer dereference. This would cause denial of service. [bnc#1138293]
CVE-2019-12456: An issue in the MPT3COMMAND case in _ctl_ioctl_main() allowed local users to cause a denial of service or possibly have unspecified other impact by changing the value of ioc_number between two kernel reads of that value, aka a "double fetch" vulnerability. [bsc#1136922]
CVE-2019-12380: An issue was in the EFI subsystem existed that mishandled memory allocation failures. Note, however, that all relevant code runs only at boot-time, before any user processes are started. Therefore, there was no possibility for an unprivileged user to exploit this issue. [bnc#1136598]
6lowpan: Off by one handling ->nexthdr (bsc#1051510).
acpi / property: fix handling of data_nodes in
acpi: Add Hygon Dhyana support (fate#327735).
af_key: unconditionally clone on broadcast (bsc#1051510).
alsa: firewire-lib/fireworks: fix miss detection of received
alsa: firewire-motu: fix destruction of data for isochronous
alsa: hda - Force polling mode on CNL for fixing codec
alsa: hda/realtek - Change front mic location for Lenovo M710q
alsa: hda/realtek - Set default power save node to 0
alsa: hda/realtek - Update headset mode for ALC256
alsa: hda/realtek: Add quirks for several Clevo notebook
alsa: line6: Fix write on zero-sized buffer (bsc#1051510).
alsa: oxfw: allow PCM capture for Stanton SCS.1m (bsc#1051510).
alsa: seq: fix incorrect order of dest_client/dest_ports
alsa: usb-audio: fix sign unintended sign extension on left
apparmor: enforce nullbyte at end of tag string (bsc#1051510).
asoc: cs42xx8: Add regcache mask dirty (bsc#1051510).
asoc: eukrea-tlv320: fix a leaked reference by adding missing
asoc: fsl_asrc: Fix the issue about unsupported rate
asoc: fsl_sai: Update is_slave_mode with correct value
asoc: fsl_utils: fix a leaked reference by adding missing
asoc: hdmi-codec: unlock the device on startup errors
audit: fix a memory leak bug (bsc#1051510).
ax25: fix inconsistent lock state in ax25_destroy_timer
batman-adv: allow updating DAT entry timeouts on incoming ARP
blk-mq: fix hang caused by freeze/unfreeze sequence
blk-mq: free hw queue's resource in hctx's release handler
block: Fix a NULL pointer dereference in generic_make_request()
bluetooth: Fix faulty expression for minimum encryption key
brcmfmac: convert dev_init_lock mutex to completion
brcmfmac: fix Oops when bringing up interface during USB
brcmfmac: fix WARNING during USB disconnect in case of unempty
brcmfmac: fix missing checks for kmemdup (bsc#1051510).
brcmfmac: fix race during disconnect when USB completion is
can: af_can: Fix error path of can_init() (bsc#1051510).
can: flexcan: fix timeout when set small bitrate (bsc#1051510).
can: purge socket error queue on sock destruct (bsc#1051510).
ceph: flush dirty inodes before proceeding with remount
cfg80211: fix memory leak of wiphy device name (bsc#1051510).
chardev: add additional check for minor range overlap
clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288
clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides
coredump: fix race condition between
coredump: fix race condition between collapse_huge_page()
coresight: etb10: Fix handling of perf mode (bsc#1051510).
coresight: etm4x: Add support to enable ETMv4.2 (bsc#1051510).
cpu/topology: Export die_id (jsc#SLE-5454).
cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ
cpufreq: Add Hygon Dhyana support (fate#327735).
crypto: algapi - guard against uninitialized spawn list in
crypto: cryptd - Fix skcipher instance memory leak
crypto: user - prevent operating on larval algorithms
device core: Consolidate locking and unlocking of parent and
dm, dax: Fix detection of DAX support (bsc#1139782).
dmaengine: imx-sdma: remove BD_INTR for channel0 (bsc#1051510).
doc: Cope with the deprecation of AutoReporter (bsc#1051510).
docs: Fix conf.py for Sphinx 2.0 (bsc#1135642).
documentation: Correct the possible MDS sysfs values
drbd: Avoid Clang warning about pointless switch statment
drbd: disconnect, if the wrong UUIDs are attached on a connected
drbd: narrow rcu_read_lock in drbd_sync_handshake (bsc#1051510).
drbd: skip spurious timeout (ping-timeo) when failing promote
driver core: Establish order of operations for device_add and
driver core: Probe devices asynchronously instead of the driver
drivers/base: Introduce kill_device() (bsc#1139865).
drivers/base: kABI fixes for struct device_private
drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak
drivers/rapidio/rio_cm.c: fix potential oops in
drivers: thermal: tsens: Don't print error message on
drm/amdgpu: fix old fence check in amdgpu_fence_emit
drm/arm/hdlcd: Allow a bit of clock tolerance (bsc#1051510).
drm/drv: Hold ref on parent device during drm_device lifetime
drm/gma500/cdv: Check vbt config bits when detecting lvds panels
drm/i915/gvt: ignore unexpected pvinfo write (bsc#1051510).
drm/i915/perf: fix whitelist on Gen10+ (bsc#1051510).
drm/i915/sdvo: Implement proper HDMI audio support for SDVO
drm/nouveau/disp/dp: respect sink limits when selecting failsafe
drm/radeon: prefer lower reference dividers (bsc#1051510).
drm: Wake up next in drm_read() chain if we are forced to
edac, amd64: Add Hygon Dhyana support (fate#327735).
edac/mc: Fix edac_mc_find() in case no device is found
efi/x86/Add missing error handling to old_memmap 1:1 mapping
extcon: arizona: Disable mic detect if running when driver is
ftrace/x86: Remove possible deadlock between register_kprobe()
fuse: fallocate: fix return with locked inode (bsc#1051510).
fuse: fix writepages on 32bit (bsc#1051510).
fuse: honor RLIMIT_FSIZE in fuse_file_fallocate (bsc#1051510).
genirq: Prevent use-after-free and work list corruption
genirq: Respect IRQCHIP_SKIP_SET_WAKE in
genwqe: Prevent an integer overflow in the ioctl (bsc#1051510).
gpio: Remove obsolete comment about gpiochip_free_hogs() usage
gpio: fix gpio-adp5588 build errors (bsc#1051510).
hid: Wacom: switch Dell canvas into highres mode (bsc#1051510).
hid: input: fix a4tech horizontal wheel custom usage
hid: logitech-hidpp: change low battery level threshold from
hid: logitech-hidpp: use RAP instead of FAP to get the protocol
hid: wacom: Add ability to provide explicit battery status info
hid: wacom: Add support for 3rd generation Intuos BT
hid: wacom: Add support for Pro Pen slim (bsc#1051510).
hid: wacom: Correct button numbering 2nd-gen Intuos Pro over
hid: wacom: Don't report anything prior to the tool entering
hid: wacom: Don't set tool type until we're in range
hid: wacom: Mark expected switch fall-through (bsc#1051510).
hid: wacom: Move HID fix for AES serial number into
hid: wacom: Move handling of HID quirks into a dedicated
hid: wacom: Properly handle AES serial number and tool type
hid: wacom: Queue events with missing type/serial data for
hid: wacom: Remove comparison of u8 mode with zero and simplify
hid: wacom: Replace touch_max fixup code with static touch_max
hid: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser
hid: wacom: Support "in range" for Intuos/Bamboo tablets where
hid: wacom: Sync INTUOSP2_BT touch state after each frame if
hid: wacom: Work around HID descriptor bug in DTK-2451 and
hid: wacom: convert Wacom custom usages to standard HID usages
hid: wacom: fix mistake in printk (bsc#1051510).
hid: wacom: generic: Ignore HID_DG_BATTERYSTRENTH == 0
hid: wacom: generic: Leave tool in prox until it completely
hid: wacom: generic: Refactor generic battery handling
hid: wacom: generic: Report AES battery information
hid: wacom: generic: Reset events back to zero when pen leaves
hid: wacom: generic: Scale battery capacity measurements to
hid: wacom: generic: Send BTN_STYLUS3 when both barrel switches
hid: wacom: generic: Send BTN_TOOL_PEN in prox once the pen
hid: wacom: generic: Support multiple tools per report
hid: wacom: generic: Use generic codepath terminology in
hid: wacom: generic: add the "Report Valid" usage (bsc#1051510).
hid: wacom: wacom_wac_collection() is local to wacom_wac.c
hwmon/coretemp: Cosmetic: Rename internal variables to zones
hwmon/coretemp: Support multi-die/package (jsc#SLE-5454).
hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs
hwmon: (core) add thermal sensors only if dev->of_node is
hwmon: (k10temp) 27C Offset needed for Threadripper2
hwmon: (k10temp) Add Hygon Dhyana support (FATE#327735).
hwmon: (k10temp) Add support for AMD Ryzen w/ Vega graphics
hwmon: (k10temp) Add support for Stoney Ridge and Bristol
hwmon: (k10temp) Add support for family 17h (FATE#327735).
hwmon: (k10temp) Add support for temperature offsets
hwmon: (k10temp) Add temperature offset for Ryzen 1900X
hwmon: (k10temp) Add temperature offset for Ryzen 2700X
hwmon: (k10temp) Correct model name for Ryzen 1600X
hwmon: (k10temp) Display both Tctl and Tdie (FATE#327735).
hwmon: (k10temp) Fix reading critical temperature register
hwmon: (k10temp) Make function get_raw_temp static
hwmon: (k10temp) Move chip specific code into probe function
hwmon: (k10temp) Only apply temperature offset if result is
hwmon: (k10temp) Support all Family 15h Model 6xh and Model
hwmon: (k10temp) Use API function to access System Management
hwmon: (pmbus/core) Treat parameters as paged if on multiple
hwmon: k10temp: Support Threadripper 2920X, 2970WX; simplify
hwrng: omap - Set default quality (bsc#1051510).
i2c-piix4: Add Hygon Dhyana SMBus support (FATE#327735).
i2c: acorn: fix i2c warning (bsc#1135642).
i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr
i2c: i801: Add support for Intel Comet Lake (jsc#SLE-5331).
ibmveth: Update ethtool settings to reflect virtual properties
iio: ad_sigma_delta: Properly handle SPI bus locking vs CS
iio: common: ssp_sensors: Initialize calculated_time in
iio: hmc5843: fix potential NULL pointer dereferences
inet: switch IP ID generator to siphash (CVE-2019-10638
input: synaptics - enable SMBus on ThinkPad E480 and E580
input: uinput - add compat ioctl number translation for
iwlwifi: mvm: check for length correctness in
iwlwifi: pcie: don't crash on invalid RX interrupt
kABI workaround for the new pci_dev.skip_bus_pm field addition
kabi: fixup blk_mq_register_dev() (bsc#1140637).
kabi: handle addition of net::hash_mix (CVE-2019-10639
kabi: handle addition of netns_ipv4::ip_id_key (CVE-2019-10638
kabi: x86/topology: Add CPUID.1F multi-die/package support
kabi: x86/topology: Define topology_logical_die_id()
kernel-binary: Use -c grep option in klp project detection.
kernel-binary: fix missing \
kernel-binary: rpm does not support multiline condition
kernel-subpackage-spec: Add dummy package to ensure subpackages are
kmps: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).
kmps: provide and conflict a kernel version specific KMP name
kvm: PPC: Book3S HV: Avoid lockdep debugging in TCE realmode
kvm: PPC: Book3S HV: XIVE: Do not clear IRQ data of passthrough
kvm: PPC: Book3S: Protect memslots while validating user address
kvm: PPC: Release all hardware TCE tables attached to a group
kvm: PPC: Remove redundand permission bits removal
kvm: PPC: Validate TCEs against preregistered memory page sizes
kvm: PPC: Validate all tces before updating tables
kvm: x86: Include CPUID leaf 0x8000001e in kvm's supported CPUID
kvm: x86: Include multiple indices with CPUID leaf 0x8000001d
leds: avoid flush_work in atomic context (bsc#1051510).
libata: Extend quirks for the ST1000LM024 drives with NOLPM
libnvdimm, pfn: Fix over-trim in trim_pfn_device()
libnvdimm/bus: Prevent duplicate device_unregister() calls
mISDN: make sure device name is NUL terminated (bsc#1051510).
mac80211/cfg80211: update bss channel on channel switch
mac80211: Do not use stack memory with scatterlist for GMAC
mac80211: Fix kernel panic due to use of txq after free
mac80211: drop robust management frames from unknown TA
mac80211: handle deauthentication/disassociation from TDLS peer
media: au0828: Fix NULL pointer dereference in
media: au0828: stop video streaming only when last user stops
media: coda: clear error return value before picture run
media: cpia2: Fix use-after-free in cpia2_exit (bsc#1051510).
media: go7007: avoid clang frame overflow warning with KASAN
media: m88ds3103: serialize reset messages in
media: ov2659: make S_FMT succeed even if requested format
media: saa7146: avoid high stack usage with clang (bsc#1051510).
media: smsusb: better handle optional alignment (bsc#1051510).
media: usb: siano: Fix false-positive "uninitialized variable"
media: usb: siano: Fix general protection fault in smsusb
media: v4l2-ioctl: clear fields in s_parm (bsc#1051510).
mfd: da9063: Fix OTP control register names to match datasheets
mfd: intel-lpss: Set the device in reset state when init
mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values
mfd: tps65912-spi: Add missing of table registration
mfd: twl6040: Fix device init errors for ACCCTL register
mm: pagechage-limit: Calculate pagecache-limit based
mmc: core: Prevent processing SDIO IRQs when the card is
mmc: core: Verify SD bus width (bsc#1051510).
mmc: core: make pwrseq_emmc (partially) support sleepy GPIO
mmc: mmci: Prevent polling for busy detection in IRQ context
mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time
mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data
mmc: sdhci-of-esdhc: add erratum A-009204 support (bsc#1051510).
mmc: sdhci-of-esdhc: add erratum eSDHC-A001 and A-008358 support
mmc: sdhci-of-esdhc: add erratum eSDHC5 support (bsc#1051510).
mmc_spi: add a status check for spi_sync_locked (bsc#1051510).
module: Fix livepatch/ftrace module text permissions race
net: mvpp2: Use strscpy to handle stat strings (bsc#1098633).
net: mvpp2: prs: Fix parser range for VID filtering
net: mvpp2: prs: Use the correct helpers when removing all
netns: get more entropy from net_hash_mix() (CVE-2019-10638
netns: provide pure entropy for net_hash_mix() (CVE-2019-10639
nfit/ars: Allow root to busy-poll the ARS state machine
nfit/ars: Avoid stale ARS results (jsc#SLE-5433).
nfit/ars: Introduce scrub_flags (jsc#SLE-5433).
nfs: Don't restrict NFSv4.2 on openSUSE (bsc#1138719).
ntp: Allow TAI-UTC offset to be set to zero (bsc#1135642).
nvme-rdma: fix double freeing of async event data (bsc#1120423).
nvme-rdma: fix possible double free of controller async event
nvme: copy MTFA field from identify controller (bsc#1140715).
nvme: skip nvme_update_disk_info() if the controller is not live
nvmem: Don't let a NULL cell_id for nvmem_cell_get() crash us
nvmem: allow to select i.MX nvmem driver for i.MX 7D
nvmem: core: fix read buffer in place (bsc#1051510).
nvmem: correct Broadcom OTP controller driver writes
nvmem: imx-ocotp: Add i.MX7D timing write clock setup support