Overview

File _patchinfo of Package patchinfo.7123

<patchinfo incident="7123">
  <issue id="1019151" tracker="bnc">Partner-L3: [SLES-12-SP2] OPA Fabric Manager crashes when the opafm service is started</issue>
  <issue id="1023175" tracker="bnc">libnvdimm and dax fixes for SLES 12 SP2</issue>
  <issue id="1037404" tracker="bnc">Missing LUNs on boot - only 8 LUNs were detected</issue>
  <issue id="1037994" tracker="bnc">VUL-0: CVE-2017-8831: kernel-source: Double fetch problem in Linux-4.10.1 (saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c)</issue>
  <issue id="1038078" tracker="bnc">SLES12SP2 bcache writeback disabled after cache was full</issue>
  <issue id="1038792" tracker="bnc">L3: scsi alua "disable for non-disk devices" patch causes alua: Attach failed on 3PAR</issue>
  <issue id="1043652" tracker="bnc">bCache returns zero-filled data blocks when reading from already gone caching device</issue>
  <issue id="1047027" tracker="bnc">kernel BUG at /usr/src/packages/BUILD/kernel-default-3.0.101/linux-3.0/fs/sysfs/file.c:531!"</issue>
  <issue id="1051399" tracker="bnc">mmap fails with conflicting memory types</issue>
  <issue id="1051556" tracker="bnc">SLES 15 - IBM vNIC driver does not support Suspend/Resume</issue>
  <issue id="1052049" tracker="bnc">name=(null) for type=PATH in audit.log on SLES12SP2 with kernel 4.4</issue>
  <issue id="1052223" tracker="bnc">SLES 12 SP3 RC2:lpar entered to xmon after lpm @ibmvnic_login+0xb8/0x180</issue>
  <issue id="1052311" tracker="bnc">VUL-0: CVE-2017-1000112: kernel: udp: consistently apply ufo or fragmentation</issue>
  <issue id="1052365" tracker="bnc">VUL-0: CVE-2017-1000111: kernel: heap out-of-bounds in AF_PACKET sockets</issue>
  <issue id="1052533" tracker="bnc">Backport IOMMU fixes reported by git-fixes</issue>
  <issue id="1052709" tracker="bnc">SLES 12 SP3 RC2 with kotd:vnic network is going down after resuming the lpar</issue>
  <issue id="1052773" tracker="bnc">L3: SLES 12 SP2 - IBM LTC System z maintenance kernel patches (#11)</issue>
  <issue id="1052794" tracker="bnc">SLES 12 SP3 - see ibmvnic 30000003 eth0: rx error 600 when we run ifconfig up/down (also occurring on P9/zz system in P9 default mode)</issue>
  <issue id="2017-8831" tracker="cve" />
  <issue id="2017-1000111" tracker="cve" />
  <issue id="2017-1000112" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>tiwai</packager>
  <reboot_needed/>
  <description>
The openSUSE Leap 42.2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

- CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access (bsc#1052365).
- CVE-2017-1000112: Fixed a race condition in net-packet code that could have been exploited by unprivileged users to gain root access. (bsc#1052311).
- CVE-2017-8831: The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability (bnc#1037994).

The following non-security bugs were fixed:

- IB/hfi1: Wait for QSFP modules to initialize (bsc#1019151).
- bcache: force trigger gc (bsc#1038078).
- bcache: only recovery I/O error for writethrough mode (bsc#1043652).
- block: do not allow updates through sysfs until registration completes (bsc#1047027).
- ibmvnic: Check for transport event on driver resume (bsc#1051556, bsc#1052709).
- ibmvnic: Initialize SCRQ's during login renegotiation (bsc#1052223).
- ibmvnic: Report rx buffer return codes as netdev_dbg (bsc#1052794).
- iommu/amd: Fix schedule-while-atomic BUG in initialization code (bsc1052533).
- libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify (bsc#1023175).
- libnvdimm: fix badblock range handling of ARS range (bsc#1023175).
- qeth: fix L3 next-hop im xmit qeth hdr (bnc#1052773, LTC#157374).
- scsi_devinfo: fixup string compare (bsc#1037404).
- scsi_dh_alua: suppress errors from unsupported devices (bsc#1038792).
- vfs: fix missing inode_get_dev sites (bsc#1052049).
- x86/dmi: Switch dmi_remap() from ioremap() to ioremap_cache() (bsc#1051399).
</description>
<summary>Security update for the Linux Kernel</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places