File _patchinfo of Package patchinfo.1780
<patchinfo incident="1780"> <issue id="913996" tracker="bnc">Applying Critical Updates Causes System to no longer boot (ucode-intel / ucode-amd problem?)</issue> <issue id="958951" tracker="bnc">VUL-0: CVE-2015-7550: kernel: User triggerable crash from race between key read and rey revoke</issue> <issue id="954876" tracker="bnc">Sound burst when initiating Plasma 5 Desktop</issue> <issue id="959399" tracker="bnc">VUL-1: CVE-2015-8575: kernel-source: information leak from getsockname in bluetooth/sco</issue> <issue id="952666" tracker="bnc">Persistent Reservation checks for non-holders incorrectly return RESERVATION CONFLICT</issue> <issue id="945825" tracker="bnc">VUL-1: CVE-2015-6937: kernel-source: NULL pointer dereference in net/rds/connection.c</issue> <issue id="952976" tracker="bnc">sles 12 guest PV using tap:aio will crash the host (dom0)</issue> <issue id="958510" tracker="bnc">Spurious 'modversion changed' messages in drivers/edac</issue> <issue id="958439" tracker="bnc">Noise in headphones when shutting down or rebooting</issue> <issue id="954647" tracker="bnc">Fixes for Dell headset are missing from Leap 4.1.x kernel</issue> <issue id="950998" tracker="bnc">VUL-1: CVE-2015-7833: kernel: usbvision: crash on invalid USB device descriptors</issue> <issue id="957990" tracker="bnc">VUL-0: CVE-2015-8551,CVE-2015-8552,CVE-2015-8553: kernel: xen: Linux pciback missing sanity checks leading to crash (XSA-157)</issue> <issue id="960021" tracker="bnc">Incomplete Skylake graphics support in 4.1.x kernel</issue> <issue id="956708" tracker="bnc">VUL-0: CVE-2015-7515: kernel: aiptek: crash on invalid USB device descriptors</issue> <issue id="948831" tracker="bnc">kmemleak detects leaks in LIO/RBD COMPARE AND WRITE and persistent reservation code paths</issue> <issue id="958886" tracker="bnc">VUL-1: CVE-2015-8543: kernel-source: connect IPv6/SOCK_RAW connect causes a denial of service</issue> <issue id="954324" tracker="bnc">nousb boot option has no effect (42.1 and Tumbleweed)</issue> <issue id="959190" tracker="bnc">VUL-1: CVE-2015-8569: kernel: information leak using getsockname</issue> <issue id="958504" tracker="bnc">Constant background noise on T440s and loud cracking noise after audio powersave</issue> <issue id="950178" tracker="bnc">Can't rename files (on btrfs)</issue> <issue id="957152" tracker="bnc">thinkpad_acpi: Unsupported brightness interface</issue> <issue id="956856" tracker="bnc">kABI breakage with 4.1.13 update kernel</issue> <issue id="958463" tracker="bnc">VUL-0: CVE-2015-8539: kernel: Fix handling of stored error in a negatively instantiated user key</issue> <issue id="957988" tracker="bnc">VUL-0: CVE-2015-8550: xen: paravirtualized drivers incautious about shared memory contents (XSA-155)</issue> <issue id="953527" tracker="bnc">VUL-0: CVE-2015-5307: kernel: kvm: x86: avoid guest->host DOS by intercepting #AC</issue> <issue id="955422" tracker="bnc">fragmented IPv6 multicast frames sometimes missing with bridged macvlan</issue> <issue id="952621" tracker="bnc">alx ethernet driver crashes with fatal interrupt 0x4019607, resetting</issue> <issue id="CVE-2015-8551" tracker="cve" /> <issue id="CVE-2015-8550" tracker="cve" /> <issue id="CVE-2015-8539" tracker="cve" /> <issue id="CVE-2015-8552" tracker="cve" /> <issue id="CVE-2015-8543" tracker="cve" /> <issue id="CVE-2015-7550" tracker="cve" /> <issue id="CVE-2015-8569" tracker="cve" /> <issue id="CVE-2015-8575" tracker="cve" /> <issue id="CVE-2015-5307" tracker="cve" /> <issue id="CVE-2015-6937" tracker="cve" /> <issue id="319973" tracker="fate" /> <issue id="319484" tracker="fate" /> <issue id="318444" tracker="fate" /> <issue id="318836" tracker="fate" /> <category>security</category> <rating>important</rating> <packager>dirkmueller</packager> <description> The SUSE Linux Enterprise 12 SP1 kernel for the ARM 64 architecture was updated to version 4.1.15 to receive various security and bug fixes. - Add Cavium Thunderx network enhancements. - Add seattle ccp cryto engine to the supported modules list. - Add phy-xgene to the supported modules list. - Backport amd xgbe fixes and features. - Backport arm64 patches from SLE12-SP1-ARM. - Backport PCI-EA patches. - Documentation: nousb is a module parameter (bsc#954324). - Driver for IBM System i/p VNIC protocol. - Enabled DRM_AST in the vanilla kernel since it is now enabled in the default kernel. - Enable DRM_AST driver. - Enable RTC_HCTOSYS to set and unset the system time on startup and resume. - Fix kABI breakage in drivers/pci/msi.c (bsc#956856). - Update config files: CONFIG_IBMVNIC=m. - alsa/hda: Add a fixup for Thinkpad X1 Carbon 2nd (bsc#958439). - alsa/hda: Apply click noise workaround for Thinkpads generically (bsc#958439). - alsa/hda: Fix headphone noise after Dell XPS 13 resume back from S3 (bsc#954876). - alsa/hda: Fix noise problems on Thinkpad T440s (bsc#958504). - alsa/hda: Set codec to D3 at reboot/shutdown on Thinkpads (bsc#958439). - amd-xgbe: Add ethtool error and debug messages (fate#318444). - amd-xgbe: Add ethtool support for setting the msglevel (fate#318444). - amd-xgbe: Add receive buffer unavailable statistic (fate#318444). - amd-xgbe: Use device workqueue instead of system workqueue (fate#318444). - amd-xgbe: Use system workqueue for device restart (fate#318444). - blktap: Also call blkif_disconnect() when frontend switched to closed (bsc#952976). - blktap: Refine mm tracking (bsc#952976). - bluetooth: Validate socket address length in sco_sock_bind() (bsc#959399, CVE-2015-8575). - btrfs: Fix the number of transaction units needed to remove a block group (bsc#950178). - btrfs: Use global reserve when deleting unused block group after ENOSPC (bsc#950178). - ceph/osd_client: Add support for CEPH_OSD_OP_GETXATTR (fate#318836). - ceph/rbd: Add support for header version 2 and 3 (fate#318836). - ceph/rbd: Add support for watch notify payloads (fate#318836). - ceph/rbd: Update watch-notify ceph_osd_op (fate#318836). - config/aarch64: Enable the LIO clustered RBD backend (fate#318836). - drm/i915: Clear crtc atomic flags at beginning of transaction (bsc#960021). - drm/i915: Fix CSR MMIO address check (bsc#960021). - drm/i915: Set CDCLK if DPLL0 enabled during resuming from S3 (bsc#960021). - drm/i915/skl: Add DC5 Trigger Sequence (bsc#960021). - drm/i915/skl: Add DC6 Trigger sequence (bsc#960021). - drm/i915/skl: Add F0 stepping ID (bsc#960021). - drm/i915/skl: Add support to load SKL CSR firmware (bsc#960021). - drm/i915/skl: Add the INIT power domain to the MISC I/O power well (bsc#960021). - drm/i915/skl: Deinit/init the display at suspend/resume (bsc#960021). - drm/i915/skl: Enable WaForceContextSaveRestoreNonCoherent (bsc#960021). - drm/i915/skl: Fix DMC API version in firmware file name (bsc#960021). - drm/i915/skl: Fix stepping check for a couple of W/As (bsc#960021). - drm/i915/skl: Fix the CTRL typo in the DPLL_CRTL1 defines (bsc#960021). - drm/i915/skl: Fix WaDisableChickenBitTSGBarrierAckForFFSliceCS (bsc#960021). - drm/i915/skl: Implement enable/disable for Display C5 state (bsc#960021). - drm/i915/skl: Implement WaDisableVFUnitClockGating (bsc#960021). - drm/i915/skl: Make the Misc I/O power well part of the PLLS domain (bsc#960021). - drm/i915: Switch to full atomic helpers for plane updates/disable, take two (bsc#960021). - ethernet/atheros/alx: Sanitize buffer sizing and padding (bsc#952621). - genksyms: Handle string literals with spaces in reference files (bsc#958510). - input/aiptek: Fix crash on detecting device without endpoints (bsc#956708). - ipv6: Distinguish frag queues by device for multicast and link-local packets (bsc#955422). - iscsi-target: Add tpg_enabled_sendtargets for disabled discovery (fate#318836). - keys: Fix handling of stored error in a negatively instantiated user key (bsc#958463, CVE-2015-8539OD). - keys: Fix race between read and revoke (bsc#958951, CVE-2015-7550). - libceph: Add scatterlist messenger data type (fate#318836). - libceph: Add support for CMPEXT compare extent requests (fate#318836). - libceph: Add support for write same requests (fate#318836). - libceph: Fix pr_fmt compile issues (fate#318836). - libceph: Support bidirectional requests (fate#318836). - net: Add validation for the socket syscall protocol argument (bsc#958886, CVE-2015-8543). - net/cavium: Fix MAC address setting in shutdown state. - net/mdio-octeon: thunderx: Force to load octeon-mdio before bgx driver. - net/thunder/bgx: Add support to get MAC address from ACPI. - net/thunder: Check for driver data in nicvf_remove(). - net/thunder: Fix crash upon shutdown after failed probe. - net/thunderx: Add missing of_node_put. - net/thunderx: Add PCI driver shutdown routine. - net/thunderx: Add TX timeout, RX buff allocation fail to driver stats. - net/thunderx: Enable BGX LMAC's RX/TX only after VF is up. - net/thunderx: Enable CQ count threshold for pass2 chip. - net/thunderx: Fix crash during shutdown when probe fails. - net/thunderx: Fix crash when changing rss with mutliple traffic flows. - net/thunderx: Fix for crash while BGX teardown. - net/thunderx: Fix for duplicate CQEs by HW for TSO packets. - net/thunderx: Fix incorrect subsystem devid of VF on pass2 silicon. - net/thunderx: Fix memory leak while unload modules. - net/thunderx: HW errata workaround for non-tunneled TSO pkts. - net/thunderx: HW TSO support for pass2 chips. - net/thunderx: Incorporate pass2 silicon CPI index configuration changes. - net/thunderx: Increase transmit queue length. - net/thunderx: mailboxes: remove code duplication. - net/thunderx: nicvf_queues: nivc_*_intr: remove duplication. - net/thunderx: Remove PF soft reset. - net/thunderx: Remove unnecessary rcv buffer start address management. - net/thunderx: Rework interrupt handling. - net/thunderx: Rewrite silicon revision tests. - net/thunderx: Set CQ timer threshold properly. - net/thunderx: Support for HW VLAN stripping. - net/thunderx: Support for internal loopback mode. - net/thunderx: Support for upto 96 queues for a VF. - net/thunderx: Switchon carrier only upon interface link up. - net/thunderx: Use bool in stucts there possible. - net/thunderx: While teardown cancel a delayed work, wait for it to finish. - of/pci: Fix pci_get_host_bridge_device leak (fate#318444). - osd_client: Add support for notify payloads via notify event (fate#318836). - osd_client/rbd: Update event interface for watch/notify2 (fate#318836). - osd_client: Send watch ping messages (fate#318836). - pci/generic: Add arm64 support. - pci/generic: Allow multiple hosts with different map_bus() methods (fate#319484). - pci/generic: Remove dependency on hw_pci. - pptp: Verify sockaddr_len in pptp_bind() and pptp_connect() (bsc#959190, CVE-2015-8569). - rbd: Add cmpsetattr device attribute for debugging (fate#318836). - rbd: Add getxattr device attribute for debugging (fate#318836). - rbd: Add lio specific data area (fate#318836). - rbd: Add num ops calculator helper (fate#318836). - rbd: Add rbd_dev_cmpsetxattr helper (fate#318836). - rbd: Add rbd_dev_getxattr() helper (fate#318836). - rbd: Add rbd_dev_setxattr() helper (fate#318836). - rbd: Add setxattr device attribute for debugging (fate#318836). - rbd: Add support for COMPARE_AND_WRITE/CMPEXT (fate#318836). - rbd: Add support for scatterlist obj_request_type (fate#318836). - rbd: Add support for writesame requests (fate#318836). - rbd: Add write test helper (fate#318836). - rbd: Export some functions used by lio rbd backend (fate#318836). - rbd: Move structs used by lio rbd to new header (fate#318836). - skylake: Implement enable/disable for Display C6 state (bsc#960021). - target: Add compare and write callback (fate#318836). - target: Add COMPARE_AND_WRITE sg creation helper (fate#318836). - target: Add lio rbd to makefile/Kconfig (fate#318836). - target: Add rbd backend (fate#318836). - target: Compare and write backend driver sense handling (fate#318836). - target/configfs: Add device vendor_id attribute (fate#318836). - target/configfs: Handle match_int() errors (fate#318836). - target/pr: Add backend API for reservation handling (fate#318836). - target/pr: Fix core_scsi3_pr_seq_non_holder() caller (bsc#952666). - target/pr: Split out and export core_scsi3_pr_seq_non_holder() (fate#318836). - target/rbd: Add pr_clear support (fate#318836). - target/rbd: Add pr_preempt support (fate#318836). - target/rbd: Add pr_read_reservation support (fate#318836). - target/rbd: Add pr_release support (fate#318836). - target/rbd: Add pr_report_capabilities support (fate#318836). - target/rbd: Add pr_reserve support (fate#318836). - target/rbd: Add SCSI2 reservation entry to PR info (fate#318836). - target/rbd: Add stubbed out pr_read_full_status (fate#318836). - target/rbd: Add stubbed out pr_register_and_move (fate#318836). - target/rbd: Add support for PR register & read keys (fate#318836). - target/rbd: Fix COMPARE AND WRITE page vector leak (bsc#948831). - target/rbd: Fix PR info memory leaks (bsc#948831). - target/rbd: Handle SCSI2 reservation release on reset (fate#318836). - target/rbd: Implement SCSI2 reservation handling (fate#318836). - target/rbd: SCSI3 check conflict support (fate#318836). - target: Remove hardcoded T10 Vendor ID in INQUIRY response (fate#318836). - target: Remove set-but-not-used-variables (fate#318836). - target/stat: Print full t10_wwn.model buffer (fate#318836). - thinkpad_acpi: Don't yell on unsupported brightness interfaces (bsc#957152). - usb: Make "nousb" a clear module parameter (bsc#954324). - usbvision: Fix overflow of interfaces array (bsc#950998). - x86/evtchn: Make use of PHYSDEVOP_map_pirq. - x86/microcode/amd: Do not overwrite final patch levels (bsc#913996). - x86/microcode/amd: Extract current patch level read to a function (bsc#913996). - xen: Guarantee one time reads of shared ring contents (bsc#957988 CVE-2015-8550 XSA-155). - xen/pciback: Don't allow MSI-X ops if PCI_COMMAND_MEMORY is not set (bsc#957990 XSA-157). - xen/pciback: For XEN_PCI_OP_disable_msi[|x] only disable if device has MSI(X) enabled (bsc#957990 CVE-2015-8551 CVE-2015-8552 XSA-157). - xen/pciback: Return error on XEN_PCI_OP_enable_msi when device has MSI or MSI-X enabled (bsc#957990 CVE-2015-8551 CVE-2015-8552 XSA-157). - xen/pciback: Return error on XEN_PCI_OP_enable_msix when device has MSI or MSI-X enabled (bsc#957990 CVE-2015-8551 CVE-2015-8552 XSA-157). - xhci: Refuse loading if nousb is used (bsc#954324). </description> <summary>Security update for the Linux Kernel</summary> </patchinfo>
