Overview
kernel: security update to 3.11.10

The Linux Kernel was updated to version 3.11.10, fixing security issues and bugs:

- floppy: bail out in open() if drive is not responding to block0
read (bnc#773058).

- compat_sys_recvmmsg X32 fix (bnc#860993 CVE-2014-0038).

- HID: usbhid: fix sis quirk (bnc#859804).

- hwmon: (coretemp) Fix truncated name of alarm attributes

- HID: usbhid: quirk for Synaptics Quad HD touchscreen
(bnc#859804).
- HID: usbhid: quirk for Synaptics HD touchscreen (bnc#859804).
- HID: usbhid: merge the sis quirk (bnc#859804).
- HID: hid-multitouch: add support for SiS panels (bnc#859804).
- HID: usbhid: quirk for SiS Touchscreen (bnc#859804).
- HID: usbhid: quirk for Synaptics Large Touchccreen (bnc#859804).

- drivers: net: cpsw: fix dt probe for one port ethernet.
- drivers: net: cpsw: fix for cpsw crash when build as modules.
- dma: edma: Remove limits on number of slots.
- dma: edma: Leave linked to Null slot instead of DUMMY slot.
- dma: edma: Find missed events and issue them.
- dma: edma: Write out and handle MAX_NR_SG at a given time.
- dma: edma: Setup parameters to DMA MAX_NR_SG at a time.
- ARM: edma: Add function to manually trigger an EDMA channel.
- ARM: edma: Fix clearing of unused list for DT DMA resources.

- ACPI: Add Toshiba NB100 to Vista _OSI blacklist.
- ACPI: add missing win8 OSI comment to blacklist (bnc#856294).
- ACPI: update win8 OSI blacklist.
- ACPI: blacklist win8 OSI for buggy laptops.
- ACPI: blacklist win8 OSI for ASUS Zenbook Prime UX31A
(bnc#856294).

- ACPI: Blacklist Win8 OSI for some HP laptop 2013 models
(bnc#856294).

- floppy: bail out in open() if drive is not responding to
block0 read (bnc#773058).

- ping: prevent NULL pointer dereference on write to msg_name
(bnc#854175 CVE-2013-6432).

- x86/dumpstack: Fix printk_address for direct addresses
(bnc#845621).
- Refresh patches.suse/stack-unwind.
- Refresh patches.xen/xen-x86_64-dump-user-pgt.

- KVM: x86: Convert vapic synchronization to _cached functions
(CVE-2013-6368) (bnc#853052 CVE-2013-6368).

- KVM: x86: fix guest-initiated crash with x2apic (CVE-2013-6376)
(bnc#853053 CVE-2013-6376).

- Build the KOTD against openSUSE:13.1:Update

- xencons: generalize use of add_preferred_console() (bnc#733022,
bnc#852652).
- Update Xen patches to 3.11.10.
- Rename patches.xen/xen-pcpu-hotplug to patches.xen/xen-pcpu.

- KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367)
(bnc#853051 CVE-2013-6367).

- KVM: Improve create VCPU parameter (CVE-2013-4587) (bnc#853050
CVE-2013-4587).

- ipv6: fix headroom calculation in udp6_ufo_fragment (bnc#848042
CVE-2013-4563).

- net: rework recvmsg handler msg_name and msg_namelen logic
(bnc#854722).

- patches.drivers/gpio-ucb1400-add-module_alias.patch: Update upstream reference
- patches.drivers/gpio-ucb1400-can-be-built-as-a-module.patch: Update upstream reference

- Delete patches.suse/ida-remove-warning-dump-stack.patch.
Already included in kernel 3.11 (WARN calls dump_stack.)

- xhci: Limit the spurious wakeup fix only to HP machines
(bnc#852931).

- iscsi_target: race condition on shutdown (bnc#850072).

- Linux 3.11.10.
- Refresh patches.xen/xen3-patch-2.6.29.
- Delete
patches.suse/btrfs-relocate-csums-properly-with-prealloc-extents.patch.

- patches.drivers/xhci-Fix-spurious-wakeups-after-S5-on-Haswell.patch:
(bnc#852931).

- Build mei and mei_me as modules (bnc#852656)

- Linux 3.11.9.

- Linux 3.11.8 (CVE-2013-4511 bnc#846529 bnc#849021).
- Delete patches.drivers/ALSA-hda-Add-a-fixup-for-ASUS-N76VZ.
- Delete
patches.fixes/Fix-a-few-incorrectly-checked-io_-remap_pfn_range-ca.patch.

- Add USB PHY support (needed to get USB and Ethernet working on beagle and panda boards) Add CONFIG_PINCTRL_SINGLE=y to be able to use Device tree (at least for beagle and panda boards) Add ARM SoC sound support Add SPI bus support Add user-space access to I2C and SPI

- patches.arch/iommu-vt-d-remove-stack-trace-from-broken-irq-remapping-warning.patch:
Fix forward porting, sorry.

- iommu: Remove stack trace from broken irq remapping warning
(bnc#844513).

- gpio: ucb1400: Add MODULE_ALIAS.

- Allow NFSv4 username mapping to work properly (bnc#838024).

- nfs: check if gssd is running before attempting to use krb5i
auth in SETCLIENTID call.
- sunrpc: replace sunrpc_net->gssd_running flag with a more
reliable check.
- sunrpc: create a new dummy pipe for gssd to hold open.

- Set CONFIG_GPIO_TWL4030 as built-in (instead of module) as a requirement to boot on SD card on beagleboard xM

- armv6hl, armv7hl: Update config files.
Set CONFIG_BATMAN_ADV_BLA=y as all other kernel configuration files
have.

- Update config files:
* CONFIG_BATMAN_ADV_NC=y, because other BATMAN_ADV options are all
enabled so why not this one.
* CONFIG_GPIO_SCH=m, CONFIG_GPIO_PCH=m, because we support all other
features of these pieces of hardware.
* CONFIG_INTEL_POWERCLAMP=m, because this small driver might be
useful in specific cases, and there's no obvious reason not to
include it.

- Fix a few incorrectly checked [io_]remap_pfn_range() calls
(bnc#849021, CVE-2013-4511).
- Linux 3.11.7.

Fixed bugs
bnc#859804
dell xps 18 touch screen inoperative
bnc#852931
Immediate restart after shutdown (S5) on Haswell
bnc#733022
xen guest - login takes very long
bnc#773058
non-existent floppy drive enabled in BIOS causes hang while searching for partitions
bnc#854722
VUL-0: kernel: net: memory leak in recvmsg handler msg_name & msg_namelen logic
bnc#852656
mei_me 0000:00:03.0: unexpected reset
bnc#838024
NFS mount show id 4294967294 for some users.
bnc#856294
Backlight brightness is not changeable
bnc#849021
VUL-0: CVE-2013-4511: kernel: mapping of physical memory to user space without proper size check
bnc#854175
VUL-1: CVE-2013-6432: kernel: ping: NULL pointer dereference on write to msg_name
bnc#845621
RIP printout is broken
bnc#860993
VUL-0: EMBARGOED: CVE-2014-0038: kernel: 3.4+: arbitrary write with CONFIG_X86_X32
bnc#848042
VUL-1: CVE-2013-4563: kernel: net: Large UDP packet over IPv6 over UFO-enabled device with TBF qdisc (No corking needed)
bnc#853052
VUL-1: CVE-2013-6368: kernel: kvm: cross page vapic_addr access
bnc#853051
VUL-1: CVE-2013-6367: kernel: kvm: division by zero in apic_get_tmcct()
bnc#853050
VUL-1: CVE-2013-4587: kernel: kvm: rtc_status.dest_map out-of-bounds access
bnc#853053
VUL-1: CVE-2013-6376: kernel: kvm: BUG_ON() in apic_cluster_id()
bnc#852652
Xen DomU, upgraded from Opensuse 12.3 -> 13.1, takes ~ 3mins to boot, up from ~ 20 secs in 12.3
bnc#850072
Kernel oops when deleting target on iscsi-lio-server
bnc#846529
ASUS N76VZ: subwoofer doesn't work
bnc#844513
Broken MSI and MSI-X interrupt remapping on Intel 55XX chipsets
CVE-CVE-2013-4587
CVE-CVE-2013-6367
CVE-CVE-2013-6376
CVE-CVE-2014-0038
CVE-CVE-2013-6368
CVE-CVE-2013-4511
CVE-CVE-2013-4563
CVE-CVE-2013-6432
Selected Binaries
openSUSE Build Service is sponsored by
Places