openSUSE-2018-486 important openSUSE Leap 15.0 Update This update for Mozilla Thunderbird to version 52.8 fixes the following issues: Security issues fixed (MFSA 2018-13, boo#1092548): - CVE-2018-5183: Backport critical security fixes in Skia - CVE-2018-5154: Use-after-free with SVG animations and clip paths - CVE-2018-5155: Use-after-free with SVG animations and text paths - CVE-2018-5159: Integer overflow and out-of-bounds write in Skia - CVE-2018-5168: Lightweight themes can be installed without user interaction - CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension - CVE-2018-5150: Memory safety bugs fixed in Firefox 60, Firefox ESR 52.8, and Thunderbird 52.8 - CVE-2018-5161: Hang via malformed headers (bsc#1093970) - CVE-2018-5162: Encrypted mail leaks plaintext through src attribute (bsc#1093971) - CVE-2018-5170: Filename spoofing for external attachments (bsc#1093972) - CVE-2018-5184: Full plaintext recovery in S/MIME via chosen-ciphertext attack (bsc#1093969) - CVE-2018-5185: Leaking plaintext through HTML forms (bsc#1093973) MozillaThunderbird-52.8-lp150.3.3.2.src.rpm MozillaThunderbird-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-buildsymbols-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-debuginfo-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-debugsource-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-devel-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-translations-common-52.8-lp150.3.3.2.x86_64.rpm MozillaThunderbird-translations-other-52.8-lp150.3.3.2.x86_64.rpm openSUSE-2018-473 low openSUSE Leap 15.0 Update This update provides the latest timezone information (2018e) for your system, including following changes: - North Korea switches back from +0830 to +09 on 2018-05-05. - Ireland's standard time is in the summer, with negative DST offset to standard time used in Winter (bsc#1073299) timezone-java-2018e-lp150.2.3.3.noarch.rpm timezone-java-2018e-lp150.2.3.3.src.rpm timezone-2018e-lp150.2.3.3.src.rpm timezone-2018e-lp150.2.3.3.x86_64.rpm timezone-debuginfo-2018e-lp150.2.3.3.x86_64.rpm timezone-debugsource-2018e-lp150.2.3.3.x86_64.rpm timezone-2018e-lp150.2.3.3.i586.rpm timezone-debuginfo-2018e-lp150.2.3.3.i586.rpm timezone-debugsource-2018e-lp150.2.3.3.i586.rpm openSUSE-2018-474 moderate openSUSE Leap 15.0 Update This update for enigmail fixes multiple issues. Security issues fixed: - CVE-2017-17688: CFB gadget attacks allowed to exfiltrate plaintext out of encrypted emails. enigmail now fails on GnuPG integrity check warnings for old Algorithms (bsc#1093151) - CVE-2017-17689: CBC gadget attacks allows to exfiltrate plaintext out of encrypted emails (bsc#1093152) enigmail-2.0.4-lp150.2.3.1.src.rpm enigmail-2.0.4-lp150.2.3.1.x86_64.rpm openSUSE-2018-512 low openSUSE Leap 15.0 Update This update for MozillaFirefox to version 60.0.1 ESR fixes the following issues: - Avoid overly long cycle collector pauses with some add-ons installed - After unckecking the "Sponsored Stories" option, the New Tab page now immediately stops displaying "Sponsored content" cards - Use the right default background when opening tabs or windows in high contrast mode - Restored translations of the Preferences panels when using a language pack MozillaFirefox-60.0.1-lp150.3.3.2.src.rpm MozillaFirefox-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-branding-upstream-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-buildsymbols-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-debuginfo-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-debugsource-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-devel-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-translations-common-60.0.1-lp150.3.3.2.x86_64.rpm MozillaFirefox-translations-other-60.0.1-lp150.3.3.2.x86_64.rpm openSUSE-2018-510 moderate openSUSE Leap 15.0 Update This update for prosody to version 0.10.1 fixes the following issues (boo#1093671): - Ensure user archives are purged when a user account is deleted - Various other upstream bug fixes and improvements prosody-0.10.1-lp150.3.3.1.src.rpm prosody-0.10.1-lp150.3.3.1.x86_64.rpm prosody-debuginfo-0.10.1-lp150.3.3.1.x86_64.rpm prosody-debugsource-0.10.1-lp150.3.3.1.x86_64.rpm openSUSE-2018-485 low openSUSE Leap 15.0 Update This update for php7 fixes the following issues: - boo#1093025 main package requires wwwrun:www user - better workaround for [boo#1089487]: build mod_phpN.so instead of libphpN.so apache2-mod_php7-7.2.5-lp150.2.3.1.x86_64.rpm apache2-mod_php7-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-7.2.5-lp150.2.3.1.src.rpm php7-7.2.5-lp150.2.3.1.x86_64.rpm php7-bcmath-7.2.5-lp150.2.3.1.x86_64.rpm php7-bcmath-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-bz2-7.2.5-lp150.2.3.1.x86_64.rpm php7-bz2-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-calendar-7.2.5-lp150.2.3.1.x86_64.rpm php7-calendar-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-ctype-7.2.5-lp150.2.3.1.x86_64.rpm php7-ctype-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-curl-7.2.5-lp150.2.3.1.x86_64.rpm php7-curl-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-dba-7.2.5-lp150.2.3.1.x86_64.rpm php7-dba-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-debugsource-7.2.5-lp150.2.3.1.x86_64.rpm php7-devel-7.2.5-lp150.2.3.1.x86_64.rpm php7-dom-7.2.5-lp150.2.3.1.x86_64.rpm php7-dom-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-embed-7.2.5-lp150.2.3.1.x86_64.rpm php7-embed-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-enchant-7.2.5-lp150.2.3.1.x86_64.rpm php7-enchant-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-exif-7.2.5-lp150.2.3.1.x86_64.rpm php7-exif-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-fastcgi-7.2.5-lp150.2.3.1.x86_64.rpm php7-fastcgi-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-fileinfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-fileinfo-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-firebird-7.2.5-lp150.2.3.1.x86_64.rpm php7-firebird-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-fpm-7.2.5-lp150.2.3.1.x86_64.rpm php7-fpm-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-ftp-7.2.5-lp150.2.3.1.x86_64.rpm php7-ftp-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-gd-7.2.5-lp150.2.3.1.x86_64.rpm php7-gd-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-gettext-7.2.5-lp150.2.3.1.x86_64.rpm php7-gettext-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-gmp-7.2.5-lp150.2.3.1.x86_64.rpm php7-gmp-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-iconv-7.2.5-lp150.2.3.1.x86_64.rpm php7-iconv-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-intl-7.2.5-lp150.2.3.1.x86_64.rpm php7-intl-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-json-7.2.5-lp150.2.3.1.x86_64.rpm php7-json-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-ldap-7.2.5-lp150.2.3.1.x86_64.rpm php7-ldap-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-mbstring-7.2.5-lp150.2.3.1.x86_64.rpm php7-mbstring-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-mysql-7.2.5-lp150.2.3.1.x86_64.rpm php7-mysql-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-odbc-7.2.5-lp150.2.3.1.x86_64.rpm php7-odbc-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-opcache-7.2.5-lp150.2.3.1.x86_64.rpm php7-opcache-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-openssl-7.2.5-lp150.2.3.1.x86_64.rpm php7-openssl-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-pcntl-7.2.5-lp150.2.3.1.x86_64.rpm php7-pcntl-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-pdo-7.2.5-lp150.2.3.1.x86_64.rpm php7-pdo-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-pear-7.2.5-lp150.2.3.1.noarch.rpm php7-pear-Archive_Tar-7.2.5-lp150.2.3.1.noarch.rpm php7-pgsql-7.2.5-lp150.2.3.1.x86_64.rpm php7-pgsql-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-phar-7.2.5-lp150.2.3.1.x86_64.rpm php7-phar-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-posix-7.2.5-lp150.2.3.1.x86_64.rpm php7-posix-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-readline-7.2.5-lp150.2.3.1.x86_64.rpm php7-readline-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-shmop-7.2.5-lp150.2.3.1.x86_64.rpm php7-shmop-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-snmp-7.2.5-lp150.2.3.1.x86_64.rpm php7-snmp-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-soap-7.2.5-lp150.2.3.1.x86_64.rpm php7-soap-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sockets-7.2.5-lp150.2.3.1.x86_64.rpm php7-sockets-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sodium-7.2.5-lp150.2.3.1.x86_64.rpm php7-sodium-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sqlite-7.2.5-lp150.2.3.1.x86_64.rpm php7-sqlite-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvmsg-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvmsg-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvsem-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvsem-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvshm-7.2.5-lp150.2.3.1.x86_64.rpm php7-sysvshm-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-tidy-7.2.5-lp150.2.3.1.x86_64.rpm php7-tidy-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-tokenizer-7.2.5-lp150.2.3.1.x86_64.rpm php7-tokenizer-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-wddx-7.2.5-lp150.2.3.1.x86_64.rpm php7-wddx-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlreader-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlreader-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlrpc-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlrpc-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlwriter-7.2.5-lp150.2.3.1.x86_64.rpm php7-xmlwriter-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-xsl-7.2.5-lp150.2.3.1.x86_64.rpm php7-xsl-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-zip-7.2.5-lp150.2.3.1.x86_64.rpm php7-zip-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm php7-zlib-7.2.5-lp150.2.3.1.x86_64.rpm php7-zlib-debuginfo-7.2.5-lp150.2.3.1.x86_64.rpm apache2-mod_php7-7.2.5-lp150.2.3.1.i586.rpm apache2-mod_php7-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-7.2.5-lp150.2.3.1.i586.rpm php7-bcmath-7.2.5-lp150.2.3.1.i586.rpm php7-bcmath-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-bz2-7.2.5-lp150.2.3.1.i586.rpm php7-bz2-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-calendar-7.2.5-lp150.2.3.1.i586.rpm php7-calendar-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-ctype-7.2.5-lp150.2.3.1.i586.rpm php7-ctype-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-curl-7.2.5-lp150.2.3.1.i586.rpm php7-curl-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-dba-7.2.5-lp150.2.3.1.i586.rpm php7-dba-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-debugsource-7.2.5-lp150.2.3.1.i586.rpm php7-devel-7.2.5-lp150.2.3.1.i586.rpm php7-dom-7.2.5-lp150.2.3.1.i586.rpm php7-dom-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-embed-7.2.5-lp150.2.3.1.i586.rpm php7-embed-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-enchant-7.2.5-lp150.2.3.1.i586.rpm php7-enchant-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-exif-7.2.5-lp150.2.3.1.i586.rpm php7-exif-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-fastcgi-7.2.5-lp150.2.3.1.i586.rpm php7-fastcgi-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-fileinfo-7.2.5-lp150.2.3.1.i586.rpm php7-fileinfo-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-firebird-7.2.5-lp150.2.3.1.i586.rpm php7-firebird-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-fpm-7.2.5-lp150.2.3.1.i586.rpm php7-fpm-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-ftp-7.2.5-lp150.2.3.1.i586.rpm php7-ftp-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-gd-7.2.5-lp150.2.3.1.i586.rpm php7-gd-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-gettext-7.2.5-lp150.2.3.1.i586.rpm php7-gettext-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-gmp-7.2.5-lp150.2.3.1.i586.rpm php7-gmp-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-iconv-7.2.5-lp150.2.3.1.i586.rpm php7-iconv-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-intl-7.2.5-lp150.2.3.1.i586.rpm php7-intl-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-json-7.2.5-lp150.2.3.1.i586.rpm php7-json-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-ldap-7.2.5-lp150.2.3.1.i586.rpm php7-ldap-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-mbstring-7.2.5-lp150.2.3.1.i586.rpm php7-mbstring-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-mysql-7.2.5-lp150.2.3.1.i586.rpm php7-mysql-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-odbc-7.2.5-lp150.2.3.1.i586.rpm php7-odbc-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-opcache-7.2.5-lp150.2.3.1.i586.rpm php7-opcache-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-openssl-7.2.5-lp150.2.3.1.i586.rpm php7-openssl-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-pcntl-7.2.5-lp150.2.3.1.i586.rpm php7-pcntl-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-pdo-7.2.5-lp150.2.3.1.i586.rpm php7-pdo-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-pgsql-7.2.5-lp150.2.3.1.i586.rpm php7-pgsql-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-phar-7.2.5-lp150.2.3.1.i586.rpm php7-phar-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-posix-7.2.5-lp150.2.3.1.i586.rpm php7-posix-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-readline-7.2.5-lp150.2.3.1.i586.rpm php7-readline-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-shmop-7.2.5-lp150.2.3.1.i586.rpm php7-shmop-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-snmp-7.2.5-lp150.2.3.1.i586.rpm php7-snmp-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-soap-7.2.5-lp150.2.3.1.i586.rpm php7-soap-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sockets-7.2.5-lp150.2.3.1.i586.rpm php7-sockets-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sodium-7.2.5-lp150.2.3.1.i586.rpm php7-sodium-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sqlite-7.2.5-lp150.2.3.1.i586.rpm php7-sqlite-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sysvmsg-7.2.5-lp150.2.3.1.i586.rpm php7-sysvmsg-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sysvsem-7.2.5-lp150.2.3.1.i586.rpm php7-sysvsem-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-sysvshm-7.2.5-lp150.2.3.1.i586.rpm php7-sysvshm-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-tidy-7.2.5-lp150.2.3.1.i586.rpm php7-tidy-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-tokenizer-7.2.5-lp150.2.3.1.i586.rpm php7-tokenizer-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-wddx-7.2.5-lp150.2.3.1.i586.rpm php7-wddx-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-xmlreader-7.2.5-lp150.2.3.1.i586.rpm php7-xmlreader-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-xmlrpc-7.2.5-lp150.2.3.1.i586.rpm php7-xmlrpc-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-xmlwriter-7.2.5-lp150.2.3.1.i586.rpm php7-xmlwriter-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-xsl-7.2.5-lp150.2.3.1.i586.rpm php7-xsl-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-zip-7.2.5-lp150.2.3.1.i586.rpm php7-zip-debuginfo-7.2.5-lp150.2.3.1.i586.rpm php7-zlib-7.2.5-lp150.2.3.1.i586.rpm php7-zlib-debuginfo-7.2.5-lp150.2.3.1.i586.rpm openSUSE-2018-483 important openSUSE Leap 15.0 Update This update for vsftpd fixes the following issue: - boo#1089088: vsftpd did not work if seccomp was enabled vsftpd-3.0.3-lp150.5.3.1.src.rpm vsftpd-3.0.3-lp150.5.3.1.x86_64.rpm vsftpd-debuginfo-3.0.3-lp150.5.3.1.x86_64.rpm vsftpd-debugsource-3.0.3-lp150.5.3.1.x86_64.rpm vsftpd-3.0.3-lp150.5.3.1.i586.rpm vsftpd-debuginfo-3.0.3-lp150.5.3.1.i586.rpm vsftpd-debugsource-3.0.3-lp150.5.3.1.i586.rpm openSUSE-2018-484 moderate openSUSE Leap 15.0 Update This update for psmisc fixes the following issues: - boo#1093665: fuser -m did not work for private mounts psmisc-23.0-lp150.4.3.1.src.rpm psmisc-23.0-lp150.4.3.1.x86_64.rpm psmisc-debuginfo-23.0-lp150.4.3.1.x86_64.rpm psmisc-debugsource-23.0-lp150.4.3.1.x86_64.rpm psmisc-lang-23.0-lp150.4.3.1.noarch.rpm psmisc-23.0-lp150.4.3.1.i586.rpm psmisc-debuginfo-23.0-lp150.4.3.1.i586.rpm psmisc-debugsource-23.0-lp150.4.3.1.i586.rpm openSUSE-2018-482 moderate openSUSE Leap 15.0 Update This update for snapper fixes the following issues: - boo#1092103: snapper printed a warning related to non-UTF8 locales. The warning was moved to the documentation. libsnapper-devel-0.5.4-lp150.3.3.1.x86_64.rpm libsnapper4-0.5.4-lp150.3.3.1.x86_64.rpm libsnapper4-debuginfo-0.5.4-lp150.3.3.1.x86_64.rpm pam_snapper-0.5.4-lp150.3.3.1.x86_64.rpm pam_snapper-debuginfo-0.5.4-lp150.3.3.1.x86_64.rpm snapper-0.5.4-lp150.3.3.1.src.rpm snapper-0.5.4-lp150.3.3.1.x86_64.rpm snapper-debuginfo-0.5.4-lp150.3.3.1.x86_64.rpm snapper-debugsource-0.5.4-lp150.3.3.1.x86_64.rpm snapper-zypp-plugin-0.5.4-lp150.3.3.1.noarch.rpm libsnapper-devel-0.5.4-lp150.3.3.1.i586.rpm libsnapper4-0.5.4-lp150.3.3.1.i586.rpm libsnapper4-debuginfo-0.5.4-lp150.3.3.1.i586.rpm pam_snapper-0.5.4-lp150.3.3.1.i586.rpm pam_snapper-debuginfo-0.5.4-lp150.3.3.1.i586.rpm snapper-0.5.4-lp150.3.3.1.i586.rpm snapper-debuginfo-0.5.4-lp150.3.3.1.i586.rpm snapper-debugsource-0.5.4-lp150.3.3.1.i586.rpm openSUSE-2018-481 moderate openSUSE Leap 15.0 Update This update for issue-generator fixes the following issues: - boo#1085196: the /etc/issue file was replaced and agetty reloaded even if there were no changes issue-generator-1.5-lp150.3.3.1.noarch.rpm issue-generator-1.5-lp150.3.3.1.src.rpm openSUSE-2018-480 moderate openSUSE Leap 15.0 Update This update for SUSEConnect fixes the following issues: - boo#1093658: SUSEConnect did not specify all run-time dependencies of the rmt-client-setup script The following enhancement is included: - Do not automatically register ecommended products that are not mirrored by the registration proxy SUSEConnect-0.3.11-lp150.2.3.1.src.rpm SUSEConnect-0.3.11-lp150.2.3.1.x86_64.rpm openSUSE-2018-574 important openSUSE Leap 15.0 Update This update for yast2-bootloader fixes the following issues: - boo#1092417: MD RAID Disks were not listed in Guided Setup some complex setups that also contain physical partitions - boo#1043029: Propose fips boot parameter if it is used for installation on s390 - Avoid "Invalid partition table" on GPT disks by properly setting pmbr flag (boo#1093887) yast2-bootloader-4.0.35-lp150.2.5.1.src.rpm yast2-bootloader-4.0.35-lp150.2.5.1.x86_64.rpm yast2-bootloader-4.0.35-lp150.2.5.1.i586.rpm openSUSE-2018-497 low openSUSE Leap 15.0 Update This recommended update for gcompris-qt fixes the following issue (boo#1093988): - text corrections and translation updates - UI position and element interaction corrections - fixes to audio in several activities - corrections and improvements to multiple activities gcompris-qt-voices was updated to match. gcompris-qt-voices-0~20180517-lp150.2.4.1.noarch.rpm gcompris-qt-voices-0~20180517-lp150.2.4.1.src.rpm gcompris-qt-0.91-lp150.3.3.1.src.rpm gcompris-qt-0.91-lp150.3.3.1.x86_64.rpm gcompris-qt-activities-0.91-lp150.3.3.1.noarch.rpm gcompris-qt-debuginfo-0.91-lp150.3.3.1.x86_64.rpm gcompris-qt-debugsource-0.91-lp150.3.3.1.x86_64.rpm gcompris-qt-lang-0.91-lp150.3.3.1.noarch.rpm openSUSE-2018-502 moderate openSUSE Leap 15.0 Update This update for yast2-country fixes the following issues: - yast2 firstboot failed to run on a system with empty /etc/locale.conf (boo#1092979) yast2-country-4.0.22-lp150.2.3.1.src.rpm yast2-country-4.0.22-lp150.2.3.1.x86_64.rpm yast2-country-data-4.0.22-lp150.2.3.1.x86_64.rpm yast2-country-4.0.22-lp150.2.3.1.i586.rpm yast2-country-data-4.0.22-lp150.2.3.1.i586.rpm openSUSE-2018-501 moderate openSUSE Leap 15.0 Update This update for yast2-storage-ng fixes the following issues: - more detailed description about the origin of the partitioning layout (boo#1089274) - issues detecting of candidate disks for installation (boo#1091047) - On Power9, 'No Operating System found' may have been printed after first boot (boo#1090019) - several translation issues (boo#1081837, boo#1081601) The following work-arounds are included: - To consider MD RAIDs as BIOS RAIDs the environment variable LIBSTORAGE_MDPART can be used (boo#1092417) yast2-storage-ng-4.0.183-lp150.2.3.1.src.rpm yast2-storage-ng-4.0.183-lp150.2.3.1.x86_64.rpm yast2-storage-ng-4.0.183-lp150.2.3.1.i586.rpm openSUSE-2018-503 moderate openSUSE Leap 15.0 Update This update for updates sbd fixes the following issues: - SBD did not log some important messages (boo#1091839) - sbd-md failed to return an error if it failed to list any devices (boo#1086650) sbd-1.3.1+20180507.e102d9e-lp150.2.3.1.src.rpm sbd-1.3.1+20180507.e102d9e-lp150.2.3.1.x86_64.rpm sbd-debuginfo-1.3.1+20180507.e102d9e-lp150.2.3.1.x86_64.rpm sbd-debugsource-1.3.1+20180507.e102d9e-lp150.2.3.1.x86_64.rpm openSUSE-2018-504 moderate openSUSE Leap 15.0 Update This update for yast2-packager fixes the following issues: - The YaST2 Packager module could not be started from the programs menus (boo#1087352) yast2-packager-4.0.62-lp150.2.3.1.src.rpm yast2-packager-4.0.62-lp150.2.3.1.x86_64.rpm yast2-packager-4.0.62-lp150.2.3.1.i586.rpm openSUSE-2018-508 moderate openSUSE Leap 15.0 Update This update for cloud-init fixes the following issues: - issues in cloud-init locating datasources (boo#1089824, boo#1093501) cloud-init-18.2-lp150.2.3.1.src.rpm cloud-init-18.2-lp150.2.3.1.x86_64.rpm cloud-init-config-suse-18.2-lp150.2.3.1.x86_64.rpm cloud-init-doc-18.2-lp150.2.3.1.x86_64.rpm openSUSE-2018-524 moderate openSUSE Leap 15.0 Update This update for libu2f-host, pam_u2f fixes the following issues: - Various bug fixes in libu2f 1.1.6, including added udev rules for more devices (boo#1094622) - Various bug fixes in pam_u2f 1.0.7, including an issue when using syslog as a debug facility (boo#1094622) libu2f-host-1.1.6-lp150.2.3.1.src.rpm libu2f-host-debuginfo-1.1.6-lp150.2.3.1.x86_64.rpm libu2f-host-debugsource-1.1.6-lp150.2.3.1.x86_64.rpm libu2f-host-devel-1.1.6-lp150.2.3.1.x86_64.rpm libu2f-host-doc-1.1.6-lp150.2.3.1.x86_64.rpm libu2f-host0-1.1.6-lp150.2.3.1.x86_64.rpm libu2f-host0-debuginfo-1.1.6-lp150.2.3.1.x86_64.rpm u2f-host-1.1.6-lp150.2.3.1.x86_64.rpm u2f-host-debuginfo-1.1.6-lp150.2.3.1.x86_64.rpm pam_u2f-1.0.7-lp150.2.3.1.src.rpm pam_u2f-1.0.7-lp150.2.3.1.x86_64.rpm pam_u2f-debuginfo-1.0.7-lp150.2.3.1.x86_64.rpm pam_u2f-debugsource-1.0.7-lp150.2.3.1.x86_64.rpm openSUSE-2018-506 moderate openSUSE Leap 15.0 Update This update for yast2-installation fixes the following issues: - Attempts to set read-only property to default BTRFS subvolume failed if the filesystem already existed on disk (boo#1091047) - Unmounting a filesystem may after installation/upgrade, log a warning (boo#1090018) yast2-installation-4.0.60-lp150.2.3.1.noarch.rpm yast2-installation-4.0.60-lp150.2.3.1.src.rpm openSUSE-2018-525 moderate openSUSE Leap 15.0 Update This updates python-kiwi to version 9.15.1 fixing the following issues: * Fix zypper add lock operations * Make container compression a configuration option * Return file name after archive or compression call * Allow docker root import from uncompressed file * Add uninstall pacakges type * Some simple code cleaning dracut-kiwi-lib-9.15.2-lp150.2.3.1.x86_64.rpm dracut-kiwi-live-9.15.2-lp150.2.3.1.x86_64.rpm dracut-kiwi-oem-dump-9.15.2-lp150.2.3.1.x86_64.rpm dracut-kiwi-oem-repart-9.15.2-lp150.2.3.1.x86_64.rpm dracut-kiwi-overlay-9.15.2-lp150.2.3.1.x86_64.rpm kiwi-man-pages-9.15.2-lp150.2.3.1.x86_64.rpm kiwi-pxeboot-9.15.2-lp150.2.3.1.x86_64.rpm kiwi-tools-9.15.2-lp150.2.3.1.x86_64.rpm kiwi-tools-debuginfo-9.15.2-lp150.2.3.1.x86_64.rpm python-kiwi-9.15.2-lp150.2.3.1.src.rpm python-kiwi-debugsource-9.15.2-lp150.2.3.1.x86_64.rpm python2-kiwi-9.15.2-lp150.2.3.1.x86_64.rpm python3-kiwi-9.15.2-lp150.2.3.1.x86_64.rpm dracut-kiwi-lib-9.15.2-lp150.2.3.1.i586.rpm dracut-kiwi-live-9.15.2-lp150.2.3.1.i586.rpm dracut-kiwi-oem-dump-9.15.2-lp150.2.3.1.i586.rpm dracut-kiwi-oem-repart-9.15.2-lp150.2.3.1.i586.rpm dracut-kiwi-overlay-9.15.2-lp150.2.3.1.i586.rpm kiwi-man-pages-9.15.2-lp150.2.3.1.i586.rpm kiwi-pxeboot-9.15.2-lp150.2.3.1.i586.rpm kiwi-tools-9.15.2-lp150.2.3.1.i586.rpm kiwi-tools-debuginfo-9.15.2-lp150.2.3.1.i586.rpm python-kiwi-debugsource-9.15.2-lp150.2.3.1.i586.rpm python2-kiwi-9.15.2-lp150.2.3.1.i586.rpm python3-kiwi-9.15.2-lp150.2.3.1.i586.rpm openSUSE-2018-507 moderate openSUSE Leap 15.0 Update This update for yast2-pkg-bindings fixes the following issue: - Errors when refreshing the zypp-plugin-spacewalk service on a system not managed by spacewalk (boo#1086768) yast2-pkg-bindings-devel-doc-4.0.10-lp150.2.3.1.noarch.rpm yast2-pkg-bindings-devel-doc-4.0.10-lp150.2.3.1.src.rpm yast2-pkg-bindings-4.0.10-lp150.2.3.1.src.rpm yast2-pkg-bindings-4.0.10-lp150.2.3.1.x86_64.rpm yast2-pkg-bindings-debuginfo-4.0.10-lp150.2.3.1.x86_64.rpm yast2-pkg-bindings-debugsource-4.0.10-lp150.2.3.1.x86_64.rpm yast2-pkg-bindings-4.0.10-lp150.2.3.1.i586.rpm yast2-pkg-bindings-debuginfo-4.0.10-lp150.2.3.1.i586.rpm yast2-pkg-bindings-debugsource-4.0.10-lp150.2.3.1.i586.rpm openSUSE-2018-500 moderate openSUSE Leap 15.0 Update This update for fence-agents fixes the following issues: - Fence_sbd failed to start, an issue related to Python 3 encoding (boo#1082871) fence-agents-4.0.25+git.1524215631.8f9c770a-lp150.2.3.1.src.rpm fence-agents-4.0.25+git.1524215631.8f9c770a-lp150.2.3.1.x86_64.rpm fence-agents-debuginfo-4.0.25+git.1524215631.8f9c770a-lp150.2.3.1.x86_64.rpm fence-agents-debugsource-4.0.25+git.1524215631.8f9c770a-lp150.2.3.1.x86_64.rpm fence-agents-devel-4.0.25+git.1524215631.8f9c770a-lp150.2.3.1.x86_64.rpm openSUSE-2018-505 moderate openSUSE Leap 15.0 Update This update for patterns-base fixes the following issues: - x11 pattern corrections (boo#1086663) - terminfo was missing from the minimal_base pattern (boo#1081747) - bootloader variants were listed in patterns (boo#1064265) patterns-base-20171206-lp150.15.3.1.src.rpm patterns-base-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-apparmor-20171206-lp150.15.3.1.x86_64.rpm patterns-base-apparmor-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-apparmor_opt-20171206-lp150.15.3.1.x86_64.rpm patterns-base-base-20171206-lp150.15.3.1.x86_64.rpm patterns-base-base-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-basesystem-20171206-lp150.15.3.1.x86_64.rpm patterns-base-console-20171206-lp150.15.3.1.x86_64.rpm patterns-base-documentation-20171206-lp150.15.3.1.x86_64.rpm patterns-base-enhanced_base-20171206-lp150.15.3.1.x86_64.rpm patterns-base-enhanced_base-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-enhanced_base_opt-20171206-lp150.15.3.1.x86_64.rpm patterns-base-minimal_base-20171206-lp150.15.3.1.x86_64.rpm patterns-base-minimal_base-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-sw_management-20171206-lp150.15.3.1.x86_64.rpm patterns-base-sw_management-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-transactional_base-20171206-lp150.15.3.1.x86_64.rpm patterns-base-update_test-20171206-lp150.15.3.1.x86_64.rpm patterns-base-x11-20171206-lp150.15.3.1.x86_64.rpm patterns-base-x11-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-x11_enhanced-20171206-lp150.15.3.1.x86_64.rpm patterns-base-x11_enhanced-32bit-20171206-lp150.15.3.1.x86_64.rpm patterns-base-x11_opt-20171206-lp150.15.3.1.x86_64.rpm openSUSE-2018-526 moderate openSUSE Leap 15.0 Update This update brings google-compute-engine to version 20180510, fixing the following issues: * Prevent delay in configuring IP forwarding routes. * Include new google-network-daemon * Add google-network-daemon.suse init script for SysV * Stop shipping deprecated google-ip-forwarding-daemon service * Install google_oslogin_nss_cache binary into oslogin package * Include libnss cache as part of the OS Login package. * Fix conflict with other applications that use curl and SSL. google-compute-engine-20180510-lp150.2.3.1.src.rpm google-compute-engine-init-20180510-lp150.2.3.1.noarch.rpm google-compute-engine-oslogin-20180510-lp150.2.3.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20180510-lp150.2.3.1.x86_64.rpm google-compute-engine-oslogin-20180510-lp150.2.3.1.i586.rpm google-compute-engine-oslogin-32bit-20180510-lp150.2.3.1.x86_64.rpm google-compute-engine-oslogin-32bit-debuginfo-20180510-lp150.2.3.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20180510-lp150.2.3.1.i586.rpm openSUSE-2018-498 moderate openSUSE Leap 15.0 Update This update for bind fixes the following issues: - boo#1093338: bind-chrootenv contained some chroot related files in error - boo#1092283: bind created /etc/rndc.key during installation instead of during first boot bind-9.11.2-lp150.8.3.1.src.rpm bind-9.11.2-lp150.8.3.1.x86_64.rpm bind-chrootenv-9.11.2-lp150.8.3.1.x86_64.rpm bind-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm bind-debugsource-9.11.2-lp150.8.3.1.x86_64.rpm bind-devel-9.11.2-lp150.8.3.1.x86_64.rpm bind-doc-9.11.2-lp150.8.3.1.noarch.rpm bind-lwresd-9.11.2-lp150.8.3.1.x86_64.rpm bind-lwresd-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm bind-utils-9.11.2-lp150.8.3.1.x86_64.rpm bind-utils-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libbind9-160-9.11.2-lp150.8.3.1.x86_64.rpm libbind9-160-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libdns169-9.11.2-lp150.8.3.1.x86_64.rpm libdns169-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libirs-devel-9.11.2-lp150.8.3.1.x86_64.rpm libirs160-9.11.2-lp150.8.3.1.x86_64.rpm libirs160-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisc166-9.11.2-lp150.8.3.1.x86_64.rpm libisc166-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisccc160-9.11.2-lp150.8.3.1.x86_64.rpm libisccc160-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisccfg160-9.11.2-lp150.8.3.1.x86_64.rpm libisccfg160-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm liblwres160-9.11.2-lp150.8.3.1.x86_64.rpm liblwres160-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm python3-bind-9.11.2-lp150.8.3.1.noarch.rpm bind-9.11.2-lp150.8.3.1.i586.rpm bind-chrootenv-9.11.2-lp150.8.3.1.i586.rpm bind-debuginfo-9.11.2-lp150.8.3.1.i586.rpm bind-debugsource-9.11.2-lp150.8.3.1.i586.rpm bind-devel-32bit-9.11.2-lp150.8.3.1.x86_64.rpm bind-devel-9.11.2-lp150.8.3.1.i586.rpm bind-lwresd-9.11.2-lp150.8.3.1.i586.rpm bind-lwresd-debuginfo-9.11.2-lp150.8.3.1.i586.rpm bind-utils-9.11.2-lp150.8.3.1.i586.rpm bind-utils-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libbind9-160-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libbind9-160-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libbind9-160-9.11.2-lp150.8.3.1.i586.rpm libbind9-160-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libdns169-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libdns169-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libdns169-9.11.2-lp150.8.3.1.i586.rpm libdns169-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libirs-devel-9.11.2-lp150.8.3.1.i586.rpm libirs160-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libirs160-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libirs160-9.11.2-lp150.8.3.1.i586.rpm libirs160-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libisc166-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libisc166-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisc166-9.11.2-lp150.8.3.1.i586.rpm libisc166-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libisccc160-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libisccc160-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisccc160-9.11.2-lp150.8.3.1.i586.rpm libisccc160-debuginfo-9.11.2-lp150.8.3.1.i586.rpm libisccfg160-32bit-9.11.2-lp150.8.3.1.x86_64.rpm libisccfg160-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm libisccfg160-9.11.2-lp150.8.3.1.i586.rpm libisccfg160-debuginfo-9.11.2-lp150.8.3.1.i586.rpm liblwres160-32bit-9.11.2-lp150.8.3.1.x86_64.rpm liblwres160-32bit-debuginfo-9.11.2-lp150.8.3.1.x86_64.rpm liblwres160-9.11.2-lp150.8.3.1.i586.rpm liblwres160-debuginfo-9.11.2-lp150.8.3.1.i586.rpm openSUSE-2018-527 low openSUSE Leap 15.0 Update This update for openmpi2 fixes the following issues: - boo#1092257: Support for QLogic Corp. FastLinQ QL41000 was missing libopenmpi2-gnu-hpc-2.1.3-lp150.3.3.1.x86_64.rpm libopenmpi_2_1_3-gnu-hpc-2.1.3-lp150.3.3.1.x86_64.rpm libopenmpi_2_1_3-gnu-hpc-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-gnu-hpc-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-gnu-hpc-devel-2.1.3-lp150.3.3.1.noarch.rpm openmpi2-gnu-hpc-devel-static-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-gnu-hpc-docs-2.1.3-lp150.3.3.1.noarch.rpm openmpi2-gnu-hpc-macros-devel-2.1.3-lp150.3.3.1.noarch.rpm openmpi_2_1_3-gnu-hpc-2.1.3-lp150.3.3.1.src.rpm openmpi_2_1_3-gnu-hpc-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-debugsource-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-devel-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-devel-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-devel-static-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-docs-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-macros-devel-2.1.3-lp150.3.3.1.x86_64.rpm openmpi_2_1_3-gnu-hpc-testsuite-2.1.3-lp150.3.3.1.noarch.rpm openmpi_2_1_3-gnu-hpc-testsuite-2.1.3-lp150.3.3.1.src.rpm openmpi2-2.1.3-lp150.3.3.1.src.rpm openmpi2-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-config-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-debugsource-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-devel-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-devel-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-docs-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-libs-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-libs-debuginfo-2.1.3-lp150.3.3.1.x86_64.rpm openmpi2-testsuite-2.1.3-lp150.3.3.1.noarch.rpm openmpi2-testsuite-2.1.3-lp150.3.3.1.src.rpm openSUSE-2018-499 moderate openSUSE Leap 15.0 Update This update for patterns-lxqt fixes the following issues: - The LXQt pattern unnecessarily required some XFCE packages (boo#1094025) patterns-lxqt-20170319-lp150.2.3.1.src.rpm patterns-lxqt-lxqt-20170319-lp150.2.3.1.x86_64.rpm openSUSE-2018-528 moderate openSUSE Leap 15.0 Update This recommended to virtualbox to version 5.2.12 (boo#1094158) resolves the following issues: - Serial: fixed possible data corruption when sending data under certain circumstances - Video recording: fixed starting / stopping recording under certain circumstances - Linux guests: support Linux 4.16 and EL 7.5 kernels - Linux guests: 3D fixes for recent guests The following tracked build fix is included: - boo#1093731: Fix build errors with Qt 5.11 python2-virtualbox-5.2.12-lp150.4.3.1.x86_64.rpm python2-virtualbox-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-5.2.12-lp150.4.3.1.src.rpm virtualbox-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-debugsource-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-devel-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-guest-desktop-icons-5.2.12-lp150.4.3.1.noarch.rpm virtualbox-guest-kmp-default-5.2.12_k4.12.14_lp150.11-lp150.4.3.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.2.12_k4.12.14_lp150.11-lp150.4.3.1.x86_64.rpm virtualbox-guest-source-5.2.12-lp150.4.3.1.noarch.rpm virtualbox-guest-tools-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-guest-x11-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-host-kmp-default-5.2.12_k4.12.14_lp150.11-lp150.4.3.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.2.12_k4.12.14_lp150.11-lp150.4.3.1.x86_64.rpm virtualbox-host-source-5.2.12-lp150.4.3.1.noarch.rpm virtualbox-qt-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-qt-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-vnc-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-websrv-5.2.12-lp150.4.3.1.x86_64.rpm virtualbox-websrv-debuginfo-5.2.12-lp150.4.3.1.x86_64.rpm openSUSE-2018-495 moderate openSUSE Leap 15.0 Update This update for enigmail to version 2.0.5 fixes the following issues: Improvements on previous fixes on CVE-2017-17688, boo#1093151 and CVE-2017-17689, boo#1093152 (EFAIL): - do not decrypt MIME parts unnecessarily - improve Error Message for Missing Message Modification Code enigmail-2.0.5-lp150.2.6.1.src.rpm enigmail-2.0.5-lp150.2.6.1.x86_64.rpm openSUSE-2018-535 moderate openSUSE Leap 15.0 Update This update for enigmail to version 2.0.6 fixes the following issues: Security issues fixed: - Replies to a partially encrypted message may have revealed protected information: no longer display PGP/MIME message part followed by unencrypted data (boo#1094781) - Signature could be spoofed via Inline-PGP in HTML Mails The following bugs were fixed: - Filter actions could forget selected mail folder names enigmail-2.0.6-lp150.2.9.1.src.rpm enigmail-2.0.6-lp150.2.9.1.x86_64.rpm openSUSE-2018-518 moderate openSUSE Leap 15.0 Update GraphicsMagick was updated to 1.3.29: * Security Fixes: - GraphicsMagick is now participating in Google's oss-fuzz project - JNG: Require that the embedded JPEG image have the same dimensions as the JNG image as provided by JHDR. Avoids a heap write overflow. - MNG: Arbitrarily limit the number of loops which may be requested by the MNG LOOP chunk to 512 loops, and provide the '-define mng:maximum-loops=value' option in case the user wants to change the limit. This fixes a denial of service caused by large LOOP specifications. * Bug fixes: - DICOM: Pre/post rescale functions are temporarily disabled (until the implementation is fixed). - JPEG: Fix regression in last release in which reading some JPEG files produces the error "Improper call to JPEG library in state 201". - ICON: Some DIB-based Windows ICON files were reported as corrupt to an unexpectedly missing opacity mask image. - In-memory Blob I/O: Don't implicitly increase the allocation size due to seek offsets. - MNG: Detect and handle failure to allocate global PLTE. Fix divide by zero. - DrawGetStrokeDashArray(): Check for failure to allocate memory. - BlobToImage(): Now produces useful exception reports to cover the cases where 'magick' was not set and the file format could not be deduced from its header. * API Updates: - Wand API: Added MagickIsPaletteImage(), MagickIsOpaqueImage(), MagickIsMonochromeImage(), MagickIsGrayImage(), MagickHasColormap() based on contributions by Troy Patteson. - New structure ImageExtra added and Image 'clip_mask' member is replaced by 'extra' which points to private ImageExtra allocation. The ImageGetClipMask() function now provides access to the clip mask image. - New structure DrawInfoExtra and DrawInfo 'clip_path' is replaced by 'extra' which points to private DrawInfoExtra allocation. The DrawInfoGetClipPath() function now provides access to the clip path. - New core library functions: GetImageCompositeMask(), CompositeMaskImage(), CompositePathImage(), SetImageCompositeMask(), ImageGetClipMask(), ImageGetCompositeMask(), DrawInfoGetClipPath(), DrawInfoGetCompositePath() - Deprecated core library functions: RegisterStaticModules(), UnregisterStaticModules(). * Feature improvements: - Static modules (in static library or shared library without dynamically loadable modules) are now lazy-loaded using the same external interface as the lazy-loader for dynamic modules. This results in more similarity between the builds and reduces the fixed initialization overhead by only initializing the modules which are used. - SVG: The quality of SVG support has been significantly improved due to the efforts of Greg Wolfe. - FreeType/TTF rendering: Rendering fixes for opacity. GraphicsMagick-1.3.29-lp150.3.3.1.src.rpm GraphicsMagick-1.3.29-lp150.3.3.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.29-lp150.3.3.1.x86_64.rpm GraphicsMagick-debugsource-1.3.29-lp150.3.3.1.x86_64.rpm GraphicsMagick-devel-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.3.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.29-lp150.3.3.1.x86_64.rpm perl-GraphicsMagick-1.3.29-lp150.3.3.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.29-lp150.3.3.1.x86_64.rpm openSUSE-2018-515 important openSUSE Leap 15.0 Update The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-3639: Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4 (bsc#1087082). A new boot commandline option was introduced, "spec_store_bypass_disable", which can have following values: - auto: Kernel detects whether your CPU model contains an implementation of Speculative Store Bypass and picks the most appropriate mitigation. - on: disable Speculative Store Bypass - off: enable Speculative Store Bypass - prctl: Control Speculative Store Bypass per thread via prctl. Speculative Store Bypass is enabled for a process by default. The state of the control is inherited on fork. - seccomp: Same as "prctl" above, but all seccomp threads will disable SSB unless they explicitly opt out. The default is "seccomp", meaning programs need explicit opt-in into the mitigation. Status can be queried via the /sys/devices/system/cpu/vulnerabilities/spec_store_bypass file, containing: - "Vulnerable" - "Mitigation: Speculative Store Bypass disabled" - "Mitigation: Speculative Store Bypass disabled via prctl" - "Mitigation: Speculative Store Bypass disabled via prctl and seccomp" The following non-security bugs were fixed: - allow_unsupported: add module tainting on feature use (FATE#323394). - powerpc/64/kexec: fix race in kexec when XIVE is shutdown (bsc#1088273). - reiserfs: mark read-write mode unsupported (FATE#323394). - reiserfs: package in separate KMP (FATE#323394). kernel-debug-4.12.14-lp150.12.4.1.nosrc.rpm True kernel-debug-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-base-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-base-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-debugsource-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-devel-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-4.12.14-lp150.12.4.1.nosrc.rpm True kernel-default-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-base-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-base-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-debugsource-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-devel-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-default-devel-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-docs-4.12.14-lp150.12.4.1.noarch.rpm True kernel-docs-4.12.14-lp150.12.4.1.nosrc.rpm True kernel-docs-html-4.12.14-lp150.12.4.1.noarch.rpm True kernel-kvmsmall-4.12.14-lp150.12.4.1.nosrc.rpm True kernel-kvmsmall-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-base-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-debugsource-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-devel-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-obs-build-4.12.14-lp150.12.4.1.src.rpm True kernel-obs-build-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-obs-build-debugsource-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-obs-qa-4.12.14-lp150.12.4.1.src.rpm True kernel-obs-qa-4.12.14-lp150.12.4.1.x86_64.rpm True kernel-devel-4.12.14-lp150.12.4.1.noarch.rpm True kernel-macros-4.12.14-lp150.12.4.1.noarch.rpm True kernel-source-4.12.14-lp150.12.4.1.noarch.rpm True kernel-source-4.12.14-lp150.12.4.1.src.rpm True kernel-source-vanilla-4.12.14-lp150.12.4.1.noarch.rpm True kernel-syms-4.12.14-lp150.12.4.1.src.rpm True kernel-syms-4.12.14-lp150.12.4.1.x86_64.rpm True openSUSE-2018-520 moderate openSUSE Leap 15.0 Update This update for wireshark fixes the following issues: Minor vulnerabilities that could be used to trigger dissector crashes or cause excessive memory use by making Wireshark read specially crafted packages from the network or capture files (boo#1094301): - CVE-2018-11356: DNS dissector crash - CVE-2018-11357: Multiple dissectors could consume excessive memory - CVE-2018-11358: Q.931 dissector crash - CVE-2018-11359: The RRC dissector and other dissectors could crash - CVE-2018-11360: GSM A DTAP dissector crash - CVE-2018-11362: LDSS dissector crash This update to version 2.4.7 also contains bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.7.html libwireshark9-2.4.7-lp150.2.3.1.x86_64.rpm libwireshark9-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm libwiretap7-2.4.7-lp150.2.3.1.x86_64.rpm libwiretap7-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm libwscodecs1-2.4.7-lp150.2.3.1.x86_64.rpm libwscodecs1-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm libwsutil8-2.4.7-lp150.2.3.1.x86_64.rpm libwsutil8-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-2.4.7-lp150.2.3.1.src.rpm wireshark-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-debugsource-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-devel-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-ui-qt-2.4.7-lp150.2.3.1.x86_64.rpm wireshark-ui-qt-debuginfo-2.4.7-lp150.2.3.1.x86_64.rpm openSUSE-2018-521 low openSUSE Leap 15.0 Update This update for gajim and python-nbxmpp fixes the following issues: - gajim plugin installer did not work correctly due to being unable to locate required certificates (boo#1094343) - python-nbxmpp did not have the correct, dependent version, causes gajium crashes on start-up (boo#1093009) gajim-1.0.3-lp150.3.3.1.noarch.rpm gajim-1.0.3-lp150.3.3.1.src.rpm gajim-lang-1.0.3-lp150.3.3.1.noarch.rpm python-nbxmpp-0.6.6-lp150.2.3.1.src.rpm python2-nbxmpp-0.6.6-lp150.2.3.1.noarch.rpm python2-nbxmpp-doc-0.6.6-lp150.2.3.1.noarch.rpm python3-nbxmpp-0.6.6-lp150.2.3.1.noarch.rpm python3-nbxmpp-doc-0.6.6-lp150.2.3.1.noarch.rpm openSUSE-2018-545 low openSUSE Leap 15.0 Update This update for firewalld fixes the following issues: - minor translation updates and typo fixes (boo#1094051) firewall-applet-0.5.3-lp150.2.3.1.noarch.rpm firewall-config-0.5.3-lp150.2.3.1.noarch.rpm firewall-macros-0.5.3-lp150.2.3.1.noarch.rpm firewalld-0.5.3-lp150.2.3.1.noarch.rpm firewalld-0.5.3-lp150.2.3.1.src.rpm firewalld-lang-0.5.3-lp150.2.3.1.noarch.rpm python3-firewall-0.5.3-lp150.2.3.1.noarch.rpm openSUSE-2018-532 moderate openSUSE Leap 15.0 Update This update for pdns fixes the following issues: Security issues fixed: - CVE-2018-1046: Fix an issue with replaying a specially crafted PCAP file that can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution (bsc#1092540). pdns-4.1.2-lp150.3.3.1.src.rpm pdns-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-geoip-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-geoip-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-godbc-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-godbc-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-ldap-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-ldap-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-lua-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-lua-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-mydns-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-mydns-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-mysql-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-mysql-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-postgresql-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-postgresql-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-remote-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-remote-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-sqlite3-4.1.2-lp150.3.3.1.x86_64.rpm pdns-backend-sqlite3-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-debuginfo-4.1.2-lp150.3.3.1.x86_64.rpm pdns-debugsource-4.1.2-lp150.3.3.1.x86_64.rpm openSUSE-2018-536 moderate openSUSE Leap 15.0 Update This update for live-net-installer fixes the following issues: - Fixes installation from GNOME live media (boo#1094842) live-net-installer-1.0-lp150.3.3.1.noarch.rpm live-net-installer-1.0-lp150.3.3.1.src.rpm openSUSE-2018-537 moderate openSUSE Leap 15.0 Update This update for fate fixes the following issues: - New or imported features are sometimes not shown/editable (bsc#1094520) - explicitely select feature if it is the first one (bsc#1081921) - various ECO related improvements (bsc#1080586) - Prefs could have invalid Products (bsc#1088478) fate-1.6.0.5-lp150.2.3.1.src.rpm fate-1.6.0.5-lp150.2.3.1.x86_64.rpm fate-debuginfo-1.6.0.5-lp150.2.3.1.x86_64.rpm openSUSE-2018-554 moderate openSUSE Leap 15.0 Update This update for geotiff fixes the following issues: - Incorrect path for library in .pc file of devel subpackage (boo#1094802) geotiff-1.4.2-lp150.2.3.1.src.rpm geotiff-1.4.2-lp150.2.3.1.x86_64.rpm geotiff-debuginfo-1.4.2-lp150.2.3.1.x86_64.rpm geotiff-debugsource-1.4.2-lp150.2.3.1.x86_64.rpm geotiff-devel-1.4.2-lp150.2.3.1.x86_64.rpm libgeotiff2-1.4.2-lp150.2.3.1.x86_64.rpm libgeotiff2-debuginfo-1.4.2-lp150.2.3.1.x86_64.rpm openSUSE-2018-566 low openSUSE Leap 15.0 Update This update for shim fixes the following issues: - Show a countdown menu before reset. (bsc#1092000) shim-14-lp150.8.5.1.src.rpm shim-14-lp150.8.5.1.x86_64.rpm shim-debuginfo-14-lp150.8.5.1.x86_64.rpm shim-debugsource-14-lp150.8.5.1.x86_64.rpm openSUSE-2018-555 moderate openSUSE Leap 15.0 Update This update for syncthing fixes the following issue: - Syncthing attempted to update itself, which is not in line with distribution policy (boo#1095169) syncthing-0.14.46-lp150.3.3.1.src.rpm syncthing-0.14.46-lp150.3.3.1.x86_64.rpm openSUSE-2018-556 low openSUSE Leap 15.0 Update This update for xfce4-branding-openSUSE fixes the following issues: - XFCE branding was incorrect (boo#1095192) exo-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm libgarcon-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm libxfce4ui-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm midori-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm openSUSE-xfce-icon-theme-4.12.0-lp150.5.3.1.noarch.rpm thunar-volman-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfce4-branding-openSUSE-4.12.0-lp150.5.3.1.src.rpm xfce4-notifyd-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfce4-panel-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfce4-power-manager-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfce4-session-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfce4-settings-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfdesktop-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm xfwm4-branding-openSUSE-4.12.0-lp150.5.3.1.noarch.rpm openSUSE-2018-557 important openSUSE Leap 15.0 Update This update for fixes the following security issues: * path sanity-checks on NTFS can read arbitrary memory (CVE-2018-11233, boo#1095218) * arbitrary code execution when recursively cloning a malicious repository (CVE-2018-11235, boo#1095219) git-2.16.4-lp150.2.3.1.src.rpm git-2.16.4-lp150.2.3.1.x86_64.rpm git-arch-2.16.4-lp150.2.3.1.x86_64.rpm git-core-2.16.4-lp150.2.3.1.x86_64.rpm git-core-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-credential-gnome-keyring-2.16.4-lp150.2.3.1.x86_64.rpm git-credential-gnome-keyring-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-credential-libsecret-2.16.4-lp150.2.3.1.x86_64.rpm git-credential-libsecret-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-cvs-2.16.4-lp150.2.3.1.x86_64.rpm git-daemon-2.16.4-lp150.2.3.1.x86_64.rpm git-daemon-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-debugsource-2.16.4-lp150.2.3.1.x86_64.rpm git-doc-2.16.4-lp150.2.3.1.noarch.rpm git-email-2.16.4-lp150.2.3.1.x86_64.rpm git-gui-2.16.4-lp150.2.3.1.x86_64.rpm git-p4-2.16.4-lp150.2.3.1.x86_64.rpm git-svn-2.16.4-lp150.2.3.1.x86_64.rpm git-svn-debuginfo-2.16.4-lp150.2.3.1.x86_64.rpm git-web-2.16.4-lp150.2.3.1.x86_64.rpm gitk-2.16.4-lp150.2.3.1.x86_64.rpm git-2.16.4-lp150.2.3.1.i586.rpm git-arch-2.16.4-lp150.2.3.1.i586.rpm git-core-2.16.4-lp150.2.3.1.i586.rpm git-core-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-credential-gnome-keyring-2.16.4-lp150.2.3.1.i586.rpm git-credential-gnome-keyring-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-credential-libsecret-2.16.4-lp150.2.3.1.i586.rpm git-credential-libsecret-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-cvs-2.16.4-lp150.2.3.1.i586.rpm git-daemon-2.16.4-lp150.2.3.1.i586.rpm git-daemon-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-debugsource-2.16.4-lp150.2.3.1.i586.rpm git-email-2.16.4-lp150.2.3.1.i586.rpm git-gui-2.16.4-lp150.2.3.1.i586.rpm git-p4-2.16.4-lp150.2.3.1.i586.rpm git-svn-2.16.4-lp150.2.3.1.i586.rpm git-svn-debuginfo-2.16.4-lp150.2.3.1.i586.rpm git-web-2.16.4-lp150.2.3.1.i586.rpm gitk-2.16.4-lp150.2.3.1.i586.rpm openSUSE-2018-548 moderate openSUSE Leap 15.0 Update This update for kglobalaccel fixes the following issues: - Task switcher was randomly ignored, the user had to pres ALT-TAB several times to activate it (kde#394689, boo#1094931) kglobalaccel-5.45.0-lp150.2.3.1.src.rpm kglobalaccel-debugsource-5.45.0-lp150.2.3.1.x86_64.rpm kglobalaccel-devel-5.45.0-lp150.2.3.1.x86_64.rpm kglobalaccel5-5.45.0-lp150.2.3.1.x86_64.rpm kglobalaccel5-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccel5-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccel5-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccel5-lang-5.45.0-lp150.2.3.1.noarch.rpm libKF5GlobalAccelPrivate5-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm kglobalaccel-debugsource-5.45.0-lp150.2.3.1.i586.rpm kglobalaccel-devel-32bit-5.45.0-lp150.2.3.1.x86_64.rpm kglobalaccel-devel-5.45.0-lp150.2.3.1.i586.rpm kglobalaccel5-5.45.0-lp150.2.3.1.i586.rpm kglobalaccel5-debuginfo-5.45.0-lp150.2.3.1.i586.rpm libKF5GlobalAccel5-32bit-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccel5-32bit-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm libKF5GlobalAccel5-5.45.0-lp150.2.3.1.i586.rpm libKF5GlobalAccel5-debuginfo-5.45.0-lp150.2.3.1.i586.rpm libKF5GlobalAccelPrivate5-5.45.0-lp150.2.3.1.i586.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-lp150.2.3.1.i586.rpm openSUSE-2018-561 low openSUSE Leap 15.0 Update This update for plasma5-pk-updates fixes the following issues: - boo#1093743: Some Italian translations were missing plasma5-pk-updates-0.3.2-lp150.9.3.1.src.rpm plasma5-pk-updates-0.3.2-lp150.9.3.1.x86_64.rpm plasma5-pk-updates-debuginfo-0.3.2-lp150.9.3.1.x86_64.rpm plasma5-pk-updates-debugsource-0.3.2-lp150.9.3.1.x86_64.rpm plasma5-pk-updates-lang-0.3.2-lp150.9.3.1.noarch.rpm openSUSE-2018-596 moderate openSUSE Leap 15.0 Update This update for prosody to version 0.10.2 fixes the following issues: This security issue was fixed: - CVE-2018-10847: Prevent insufficient validation of client-provided parameters during XMPP stream restarts. Authenticated users may have overriden the realm associated with their session, potentially bypassing security policies and allowing impersonation (bsc#1094890). These non-security issues were fixed: - mod_websocket: Store the request object on the session for use by other modules - mod_c2s: Avoid concatenating potential nil value - core.certmanager: Allow all non-whitespace in service name - mod_disco: Skip code specific to disco on user accounts - mod_bosh: Store the normalized hostname on session - MUC: Fix error logged when no persistent rooms present prosody-0.10.2-lp150.3.6.2.src.rpm prosody-0.10.2-lp150.3.6.2.x86_64.rpm prosody-debuginfo-0.10.2-lp150.3.6.2.x86_64.rpm prosody-debugsource-0.10.2-lp150.3.6.2.x86_64.rpm openSUSE-2018-562 moderate openSUSE Leap 15.0 Update This update for syslog-ng fixes the following issue: - syslog-ng did not start when network was not yet running during boot (boo#1077975) libevtlog-3_14-0-3.14.1-lp150.2.3.1.x86_64.rpm libevtlog-3_14-0-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-3.14.1-lp150.2.3.1.src.rpm syslog-ng-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-curl-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-curl-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-debugsource-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-devel-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-geoip-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-geoip-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-python-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-python-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-redis-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-redis-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-smtp-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-smtp-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-sql-3.14.1-lp150.2.3.1.x86_64.rpm syslog-ng-sql-debuginfo-3.14.1-lp150.2.3.1.x86_64.rpm openSUSE-2018-563 low openSUSE Leap 15.0 Update This update for blender fixes the following issues: - Missing cycles headers causing broken GPU rendering with i.e CUDA (boo#1094777) blender-2.79b-lp150.2.3.1.src.rpm blender-2.79b-lp150.2.3.1.x86_64.rpm blender-debuginfo-2.79b-lp150.2.3.1.x86_64.rpm blender-debugsource-2.79b-lp150.2.3.1.x86_64.rpm blender-devel-2.79b-lp150.2.3.1.noarch.rpm blender-lang-2.79b-lp150.2.3.1.noarch.rpm openSUSE-2018-565 low openSUSE Leap 15.0 Update This update for fvwm2 fixes the following issues: Use update-alternatives for desktop selection (boo#1080494) fvwm2-2.6.7-lp150.2.3.1.src.rpm fvwm2-2.6.7-lp150.2.3.1.x86_64.rpm fvwm2-debuginfo-2.6.7-lp150.2.3.1.x86_64.rpm fvwm2-debugsource-2.6.7-lp150.2.3.1.x86_64.rpm openSUSE-2018-599 important openSUSE Leap 15.0 Update This update for xen to version 4.10.1 fixes several issues (bsc#1027519). These security issues were fixed: - CVE-2018-3639: Prevent attackers with local user access from extracting information via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4 (bsc#1092631). - CVE-2017-5753,CVE-2017-5715,CVE-2017-5754: Improved Spectre v2 mitigations (bsc#1074562). This non-security issue was fixed: - Always call qemus xen-save-devices-state in suspend/resume to fix migration with qcow2 images (bsc#1079730) xen-4.10.1_04-lp150.2.3.1.src.rpm xen-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-debugsource-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-devel-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-doc-html-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-libs-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-libs-debuginfo-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-tools-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-tools-debuginfo-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-tools-domU-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-tools-domU-debuginfo-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-debugsource-4.10.1_04-lp150.2.3.1.i586.rpm xen-devel-4.10.1_04-lp150.2.3.1.i586.rpm xen-libs-32bit-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-libs-32bit-debuginfo-4.10.1_04-lp150.2.3.1.x86_64.rpm xen-libs-4.10.1_04-lp150.2.3.1.i586.rpm xen-libs-debuginfo-4.10.1_04-lp150.2.3.1.i586.rpm xen-tools-domU-4.10.1_04-lp150.2.3.1.i586.rpm xen-tools-domU-debuginfo-4.10.1_04-lp150.2.3.1.i586.rpm openSUSE-2018-598 moderate openSUSE Leap 15.0 Update This update for ImageMagick to version 7.0.7-34 fixes the following issues: The following security issue was fixed: - Fixed numerous use of uninitialized values, integer overflow, memory exceeded, and timeouts. The following non-security issues were fixed: - Added support for reading eXIf chunks to the PNG coder. - Improved clip / composite mask handling. - Restore SetImageAlpha() behavior. - Fix -clip and -mask options. - Missing break when checking "compliance" element. ImageMagick-7.0.7.34-lp150.2.3.1.src.rpm ImageMagick-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-debugsource-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-devel-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-doc-7.0.7.34-lp150.2.3.1.noarch.rpm ImageMagick-extra-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-devel-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm perl-PerlMagick-7.0.7.34-lp150.2.3.1.x86_64.rpm perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-7.0.7.34-lp150.2.3.1.i586.rpm ImageMagick-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm ImageMagick-debugsource-7.0.7.34-lp150.2.3.1.i586.rpm ImageMagick-devel-32bit-7.0.7.34-lp150.2.3.1.x86_64.rpm ImageMagick-devel-7.0.7.34-lp150.2.3.1.i586.rpm ImageMagick-extra-7.0.7.34-lp150.2.3.1.i586.rpm ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.3.1.i586.rpm libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm libMagick++-devel-32bit-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagick++-devel-7.0.7.34-lp150.2.3.1.i586.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.3.1.i586.rpm libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.3.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.3.1.i586.rpm libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm perl-PerlMagick-7.0.7.34-lp150.2.3.1.i586.rpm perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.3.1.i586.rpm openSUSE-2018-573 important openSUSE Leap 15.0 Update This update for xdg-utils fixes this security issues: - CVE-2017-18266: The open_envvar function in xdg-open did not validate strings launching the program specified by the BROWSER environment variable, which might allowed remote attackers to conduct argument-injection attacks via a crafted URL (bsc#1093086). xdg-utils-20170508-lp150.3.3.2.noarch.rpm xdg-utils-20170508-lp150.3.3.2.src.rpm openSUSE-2018-576 moderate openSUSE Leap 15.0 Update This update for tar to version 1.30 fixes the following issues: - Report erroneous use of position-sensitive options. - --numeric-owner now affects private headers too. - Fixed the --delay-directory-restore option - The --warnings=none option now suppresses all warnings - Fixed reporting of hardlink mismatches during compare This update also replaces a previously patched security fix with the full upstream version: - Member names containing '..' components are now skipped when extracting tar-1.30-lp150.2.3.2.src.rpm tar-1.30-lp150.2.3.2.x86_64.rpm tar-backup-scripts-1.30-lp150.2.3.2.noarch.rpm tar-debuginfo-1.30-lp150.2.3.2.x86_64.rpm tar-debugsource-1.30-lp150.2.3.2.x86_64.rpm tar-doc-1.30-lp150.2.3.2.noarch.rpm tar-lang-1.30-lp150.2.3.2.noarch.rpm tar-rmt-1.30-lp150.2.3.2.x86_64.rpm tar-rmt-debuginfo-1.30-lp150.2.3.2.x86_64.rpm tar-tests-1.30-lp150.2.3.2.x86_64.rpm tar-tests-debuginfo-1.30-lp150.2.3.2.x86_64.rpm tar-1.30-lp150.2.3.2.i586.rpm tar-debuginfo-1.30-lp150.2.3.2.i586.rpm tar-debugsource-1.30-lp150.2.3.2.i586.rpm tar-rmt-1.30-lp150.2.3.2.i586.rpm tar-rmt-debuginfo-1.30-lp150.2.3.2.i586.rpm tar-tests-1.30-lp150.2.3.2.i586.rpm tar-tests-debuginfo-1.30-lp150.2.3.2.i586.rpm openSUSE-2018-600 moderate openSUSE Leap 15.0 Update This update for glibc fixes the following issues: This security issue was fixed: - Fixed an buffer overwrite issue in memcpy for Knights Landing CPUs (boo#1092877, CVE-2018-11237) glibc-2.26-lp150.11.3.2.src.rpm glibc-2.26-lp150.11.3.2.x86_64.rpm glibc-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-debugsource-2.26-lp150.11.3.2.x86_64.rpm glibc-devel-2.26-lp150.11.3.2.x86_64.rpm glibc-devel-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-devel-static-2.26-lp150.11.3.2.x86_64.rpm glibc-extra-2.26-lp150.11.3.2.x86_64.rpm glibc-extra-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-html-2.26-lp150.11.3.2.noarch.rpm glibc-i18ndata-2.26-lp150.11.3.2.noarch.rpm glibc-info-2.26-lp150.11.3.2.noarch.rpm glibc-locale-2.26-lp150.11.3.2.x86_64.rpm glibc-locale-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-profile-2.26-lp150.11.3.2.x86_64.rpm nscd-2.26-lp150.11.3.2.x86_64.rpm nscd-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-testsuite-src-2.26-lp150.11.3.2.nosrc.rpm glibc-utils-2.26-lp150.11.3.2.x86_64.rpm glibc-utils-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-utils-src-2.26-lp150.11.3.2.nosrc.rpm glibc-utils-src-debugsource-2.26-lp150.11.3.2.x86_64.rpm glibc-2.26-lp150.11.3.2.i586.rpm glibc-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-debugsource-2.26-lp150.11.3.2.i586.rpm glibc-devel-2.26-lp150.11.3.2.i586.rpm glibc-devel-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-devel-static-2.26-lp150.11.3.2.i586.rpm glibc-extra-2.26-lp150.11.3.2.i586.rpm glibc-extra-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-locale-2.26-lp150.11.3.2.i586.rpm glibc-locale-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-profile-2.26-lp150.11.3.2.i586.rpm nscd-2.26-lp150.11.3.2.i586.rpm nscd-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-2.26-lp150.11.3.2.i686.rpm glibc-2.26-lp150.11.3.2.nosrc.rpm glibc-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-32bit-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-debuginfo-2.26-lp150.11.3.2.i686.rpm glibc-debugsource-2.26-lp150.11.3.2.i686.rpm glibc-devel-2.26-lp150.11.3.2.i686.rpm glibc-devel-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-devel-32bit-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-devel-debuginfo-2.26-lp150.11.3.2.i686.rpm glibc-devel-static-2.26-lp150.11.3.2.i686.rpm glibc-devel-static-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-locale-2.26-lp150.11.3.2.i686.rpm glibc-locale-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-locale-32bit-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-locale-debuginfo-2.26-lp150.11.3.2.i686.rpm glibc-profile-2.26-lp150.11.3.2.i686.rpm glibc-profile-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-utils-2.26-lp150.11.3.2.i586.rpm glibc-utils-32bit-2.26-lp150.11.3.2.x86_64.rpm glibc-utils-32bit-debuginfo-2.26-lp150.11.3.2.x86_64.rpm glibc-utils-debuginfo-2.26-lp150.11.3.2.i586.rpm glibc-utils-src-debugsource-2.26-lp150.11.3.2.i586.rpm openSUSE-2018-601 important openSUSE Leap 15.0 Update This update for slf4j fixes the following security issue: - CVE-2018-8088: Remote attackers could have bypassed intended access restrictions via crafted data. Disallow EventData deserialization by default from now on (bsc#1085970). slf4j-1.7.12-lp150.4.3.1.noarch.rpm slf4j-1.7.12-lp150.4.3.1.src.rpm slf4j-javadoc-1.7.12-lp150.4.3.1.noarch.rpm slf4j-manual-1.7.12-lp150.4.3.1.noarch.rpm openSUSE-2018-602 important openSUSE Leap 15.0 Update This update for libvirt fixes the following issues: This update fixes the following security issue: - Added support for 'ssbd' and 'virt-ssbd' CPUID feature bits (CVE-2018-3639, boo#1092885) libvirt-4.0.0-lp150.7.3.1.src.rpm libvirt-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-admin-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-admin-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-client-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-client-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-config-network-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-config-nwfilter-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-interface-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-interface-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-libxl-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-libxl-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-lxc-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-lxc-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-network-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-network-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-nodedev-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-nodedev-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-nwfilter-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-nwfilter-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-qemu-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-qemu-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-secret-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-secret-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-core-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-core-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-disk-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-disk-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-logical-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-logical-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-uml-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-uml-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-vbox-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-driver-vbox-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-hooks-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-lxc-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-qemu-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-uml-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-vbox-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-daemon-xen-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-debugsource-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-devel-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-doc-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-libs-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-libs-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-lock-sanlock-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-lock-sanlock-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-nss-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-nss-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm wireshark-plugin-libvirt-4.0.0-lp150.7.3.1.x86_64.rpm wireshark-plugin-libvirt-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-4.0.0-lp150.7.3.1.i586.rpm libvirt-admin-4.0.0-lp150.7.3.1.i586.rpm libvirt-admin-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-client-32bit-debuginfo-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-client-4.0.0-lp150.7.3.1.i586.rpm libvirt-client-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-config-network-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-config-nwfilter-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-interface-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-interface-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-lxc-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-lxc-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-network-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-network-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-nodedev-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-nodedev-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-nwfilter-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-nwfilter-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-qemu-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-qemu-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-secret-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-secret-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-core-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-core-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-disk-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-disk-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-iscsi-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-logical-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-logical-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-mpath-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-mpath-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-scsi-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-storage-scsi-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-uml-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-uml-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-vbox-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-driver-vbox-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-hooks-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-lxc-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-qemu-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-uml-4.0.0-lp150.7.3.1.i586.rpm libvirt-daemon-vbox-4.0.0-lp150.7.3.1.i586.rpm libvirt-debugsource-4.0.0-lp150.7.3.1.i586.rpm libvirt-devel-32bit-4.0.0-lp150.7.3.1.x86_64.rpm libvirt-devel-4.0.0-lp150.7.3.1.i586.rpm libvirt-doc-4.0.0-lp150.7.3.1.i586.rpm libvirt-libs-4.0.0-lp150.7.3.1.i586.rpm libvirt-libs-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-lock-sanlock-4.0.0-lp150.7.3.1.i586.rpm libvirt-lock-sanlock-debuginfo-4.0.0-lp150.7.3.1.i586.rpm libvirt-nss-4.0.0-lp150.7.3.1.i586.rpm libvirt-nss-debuginfo-4.0.0-lp150.7.3.1.i586.rpm wireshark-plugin-libvirt-4.0.0-lp150.7.3.1.i586.rpm wireshark-plugin-libvirt-debuginfo-4.0.0-lp150.7.3.1.i586.rpm openSUSE-2018-568 low openSUSE Leap 15.0 Update This update for patch fixes the following issue: - Fixed a temporary file leak when applying ed-style patches (boo#1092500). patch-2.7.6-lp150.3.3.1.src.rpm patch-2.7.6-lp150.3.3.1.x86_64.rpm patch-debuginfo-2.7.6-lp150.3.3.1.x86_64.rpm patch-debugsource-2.7.6-lp150.3.3.1.x86_64.rpm patch-2.7.6-lp150.3.3.1.i586.rpm patch-debuginfo-2.7.6-lp150.3.3.1.i586.rpm patch-debugsource-2.7.6-lp150.3.3.1.i586.rpm openSUSE-2018-603 important openSUSE Leap 15.0 Update This update for qemu fixes the following issues: This security issue was fixed: - CVE-2018-3639: Spectre v4 vulnerability mitigation support for KVM guests (bsc#1092885). Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. This patch permits the new x86 cpu feature flag named "ssbd" to be presented to the guest, given that the host has this feature, and KVM exposes it to the guest as well. For this feature to be enabled please use the qemu commandline -cpu $MODEL,+spec-ctrl,+ssbd so the guest OS can take advantage of the feature. spec-ctrl and ssbd support is also required in the host. This non-security issue was fixed: - Fix qemu-guest-agent uninstall (boo#1093169) qemu-linux-user-2.11.1-lp150.7.3.1.src.rpm qemu-linux-user-2.11.1-lp150.7.3.1.x86_64.rpm qemu-linux-user-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-linux-user-debugsource-2.11.1-lp150.7.3.1.x86_64.rpm qemu-testsuite-2.11.1-lp150.7.3.1.src.rpm qemu-testsuite-2.11.1-lp150.7.3.1.x86_64.rpm qemu-2.11.1-lp150.7.3.1.src.rpm qemu-2.11.1-lp150.7.3.1.x86_64.rpm qemu-arm-2.11.1-lp150.7.3.1.x86_64.rpm qemu-arm-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-curl-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-curl-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-dmg-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-dmg-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-gluster-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-gluster-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-iscsi-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-iscsi-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-rbd-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-rbd-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-ssh-2.11.1-lp150.7.3.1.x86_64.rpm qemu-block-ssh-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-debugsource-2.11.1-lp150.7.3.1.x86_64.rpm qemu-extra-2.11.1-lp150.7.3.1.x86_64.rpm qemu-extra-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-guest-agent-2.11.1-lp150.7.3.1.x86_64.rpm qemu-guest-agent-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-ipxe-1.0.0-lp150.7.3.1.noarch.rpm qemu-ksm-2.11.1-lp150.7.3.1.x86_64.rpm qemu-kvm-2.11.1-lp150.7.3.1.x86_64.rpm qemu-lang-2.11.1-lp150.7.3.1.x86_64.rpm qemu-ppc-2.11.1-lp150.7.3.1.x86_64.rpm qemu-ppc-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-s390-2.11.1-lp150.7.3.1.x86_64.rpm qemu-s390-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-seabios-1.11.0-lp150.7.3.1.noarch.rpm qemu-sgabios-8-lp150.7.3.1.noarch.rpm qemu-tools-2.11.1-lp150.7.3.1.x86_64.rpm qemu-tools-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm qemu-vgabios-1.11.0-lp150.7.3.1.noarch.rpm qemu-x86-2.11.1-lp150.7.3.1.x86_64.rpm qemu-x86-debuginfo-2.11.1-lp150.7.3.1.x86_64.rpm openSUSE-2018-572 moderate openSUSE Leap 15.0 Update This update for mariadb to version 10.2.15 fixes the following issues: These security issues were fixed: - CVE-2018-2767: Enforse use of SSL/TLS in embedded server library (Return of BACKRONYM) (bsc#1088681). - CVE-2018-2786: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data (bsc#1089987). - CVE-2018-2759: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987). - CVE-2018-2777: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987). - CVE-2018-2810: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987). - CVE-2018-2782: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2784: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2787: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data (bsc#1089987, bsc#1090518). - CVE-2018-2766: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2755: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Difficult to exploit vulnerability allowed unauthenticated attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2819: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Easily exploitable vulnerability allowed low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2817: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Easily exploitable vulnerability allowed low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2761: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Difficult to exploit vulnerability allowed unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2781: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Easily exploitable vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2771: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Locking). Difficult to exploit vulnerability allowed high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server (bsc#1089987, bsc#1090518). - CVE-2018-2813: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Easily exploitable vulnerability allowed low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data (bsc#1089987, bsc#1090518). These non-security issues were fixed: - PCRE updated to 8.42 - Incomplete validation of missing tablespace during recovery - ib_buffer_pool unnecessarily includes the temporary tablespace - InnoDB may write uninitialized garbage to redo log - Virtual Columns: Assertion failed in dict_table_get_col_name - slow innodb startup/shutdown can exceed systemd timeout - Assertion failed in dict_check_sys_tables on upgrade from 5.5 - Change buffer crash during TRUNCATE or DROP TABLE - temporary table ROLLBACK fixes For additional details please see - https://mariadb.com/kb/en/library/mariadb-10215-release-notes - https://mariadb.com/kb/en/library/mariadb-10215-changelog libmysqld-devel-10.2.15-lp150.2.3.2.x86_64.rpm libmysqld19-10.2.15-lp150.2.3.2.x86_64.rpm libmysqld19-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-10.2.15-lp150.2.3.2.src.rpm mariadb-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-bench-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-bench-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-client-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-client-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-debugsource-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-errormessages-10.2.15-lp150.2.3.2.noarch.rpm mariadb-galera-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-test-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-test-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-tools-10.2.15-lp150.2.3.2.x86_64.rpm mariadb-tools-debuginfo-10.2.15-lp150.2.3.2.x86_64.rpm libmysqld-devel-10.2.15-lp150.2.3.2.i586.rpm libmysqld19-10.2.15-lp150.2.3.2.i586.rpm libmysqld19-debuginfo-10.2.15-lp150.2.3.2.i586.rpm mariadb-10.2.15-lp150.2.3.2.i586.rpm mariadb-bench-10.2.15-lp150.2.3.2.i586.rpm mariadb-bench-debuginfo-10.2.15-lp150.2.3.2.i586.rpm mariadb-client-10.2.15-lp150.2.3.2.i586.rpm mariadb-client-debuginfo-10.2.15-lp150.2.3.2.i586.rpm mariadb-debuginfo-10.2.15-lp150.2.3.2.i586.rpm mariadb-debugsource-10.2.15-lp150.2.3.2.i586.rpm mariadb-galera-10.2.15-lp150.2.3.2.i586.rpm mariadb-test-10.2.15-lp150.2.3.2.i586.rpm mariadb-test-debuginfo-10.2.15-lp150.2.3.2.i586.rpm mariadb-tools-10.2.15-lp150.2.3.2.i586.rpm mariadb-tools-debuginfo-10.2.15-lp150.2.3.2.i586.rpm openSUSE-2018-577 low openSUSE Leap 15.0 Update This update for yast2-storage-ng fixes the following issues: - Partitioner: Fixed an error when creating new BTRFS subvolumes in an installed system (boo#1067510) - Partitioner: Handle limitations for volume labels (boo#1084867) - Partitioner: Allow to move partitions (part of fate#318196) yast2-storage-ng-4.0.186-lp150.2.6.1.src.rpm yast2-storage-ng-4.0.186-lp150.2.6.1.x86_64.rpm yast2-storage-ng-4.0.186-lp150.2.6.1.i586.rpm openSUSE-2018-592 moderate openSUSE Leap 15.0 Update This update for mupdf fixes the following security issue: - CVE-2018-1000051: Prevent use after free in fz_keep_key_storable that can result in DOS / possible code execution. This attack appear to be exploitable via Victim opens a specially crafted PDF (bsc#1080531). mupdf-1.12.0-lp150.3.3.1.src.rpm mupdf-1.12.0-lp150.3.3.1.x86_64.rpm mupdf-debuginfo-1.12.0-lp150.3.3.1.x86_64.rpm mupdf-debugsource-1.12.0-lp150.3.3.1.x86_64.rpm mupdf-devel-static-1.12.0-lp150.3.3.1.x86_64.rpm mupdf-1.12.0-lp150.3.3.1.i586.rpm mupdf-debuginfo-1.12.0-lp150.3.3.1.i586.rpm mupdf-debugsource-1.12.0-lp150.3.3.1.i586.rpm mupdf-devel-static-1.12.0-lp150.3.3.1.i586.rpm openSUSE-2018-578 low openSUSE Leap 15.0 Update This update for autoyast2 fixes the following issues: - Partition configuration: Do not ask for saving values if they have not been changed at all. (boo#1082556) - Using new libstorage-ng in order to handle "label" tag in URL. E.G.: autoyast=label://my_home//autoinst.xml (boo#1094533) autoyast2-4.0.55-lp150.2.3.1.noarch.rpm autoyast2-4.0.55-lp150.2.3.1.src.rpm autoyast2-installation-4.0.55-lp150.2.3.1.noarch.rpm openSUSE-2018-604 moderate openSUSE Leap 15.0 Update This update for guix fixes the following issues: - Bugfix: package fetching via https was not possible (boo#1095970) guix-0.14.0-lp150.2.3.1.src.rpm guix-0.14.0-lp150.2.3.1.x86_64.rpm guix-debuginfo-0.14.0-lp150.2.3.1.x86_64.rpm guix-debugsource-0.14.0-lp150.2.3.1.x86_64.rpm openSUSE-2018-627 low openSUSE Leap 15.0 Update This update for taglib fixes this security issues: - CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file (bsc#1096180). libtag-devel-1.11.1-lp150.3.3.1.x86_64.rpm libtag1-1.11.1-lp150.3.3.1.x86_64.rpm libtag1-debuginfo-1.11.1-lp150.3.3.1.x86_64.rpm libtag_c0-1.11.1-lp150.3.3.1.x86_64.rpm libtag_c0-debuginfo-1.11.1-lp150.3.3.1.x86_64.rpm taglib-1.11.1-lp150.3.3.1.src.rpm taglib-1.11.1-lp150.3.3.1.x86_64.rpm taglib-debuginfo-1.11.1-lp150.3.3.1.x86_64.rpm taglib-debugsource-1.11.1-lp150.3.3.1.x86_64.rpm libtag-devel-1.11.1-lp150.3.3.1.i586.rpm libtag1-1.11.1-lp150.3.3.1.i586.rpm libtag1-32bit-1.11.1-lp150.3.3.1.x86_64.rpm libtag1-32bit-debuginfo-1.11.1-lp150.3.3.1.x86_64.rpm libtag1-debuginfo-1.11.1-lp150.3.3.1.i586.rpm libtag_c0-1.11.1-lp150.3.3.1.i586.rpm libtag_c0-32bit-1.11.1-lp150.3.3.1.x86_64.rpm libtag_c0-32bit-debuginfo-1.11.1-lp150.3.3.1.x86_64.rpm libtag_c0-debuginfo-1.11.1-lp150.3.3.1.i586.rpm taglib-1.11.1-lp150.3.3.1.i586.rpm taglib-debuginfo-1.11.1-lp150.3.3.1.i586.rpm taglib-debugsource-1.11.1-lp150.3.3.1.i586.rpm openSUSE-2018-579 moderate openSUSE Leap 15.0 Update This optional update adds pam_ldap to the distribution. The pam_ldap is required for LDAP configuration in YaST2. (boo#1096173) pam_ldap-186-lp150.2.1.src.rpm pam_ldap-186-lp150.2.1.x86_64.rpm pam_ldap-debuginfo-186-lp150.2.1.x86_64.rpm pam_ldap-debugsource-186-lp150.2.1.x86_64.rpm openSUSE-2018-581 moderate openSUSE Leap 15.0 Update This update for yast2 fixes the following issues: - Display proper release notes for product (bsc#1096138) - Rename SLES_HPC to SLE_HPC (bsc#1095053) - Calling YAST module: Do not create a post Snapper image if the pre Snapper image has already been failed (bsc#1093374) yast2-4.0.77-lp150.2.3.1.src.rpm yast2-4.0.77-lp150.2.3.1.x86_64.rpm yast2-4.0.77-lp150.2.3.1.i586.rpm openSUSE-2018-589 moderate openSUSE Leap 15.0 Update This update for curl to version 7.60.0 fixes the following issues: These security issues were fixed: - CVE-2018-1000300: Prevent heap-based buffer overflow when closing down an FTP connection with very long server command replies (bsc#1092094). - CVE-2018-1000301: Prevent buffer over-read that could have cause reading data beyond the end of a heap based buffer used to store downloaded RTSP content (bsc#1092098). These non-security issues were fixed: - Add CURLOPT_HAPROXYPROTOCOL, support for the HAProxy PROXY protocol - Add --haproxy-protocol for the command line tool - Add CURLOPT_DNS_SHUFFLE_ADDRESSES, shuffle returned IP addresses - FTP: fix typo in recursive callback detection for seeking - test1208: marked flaky - HTTP: make header-less responses still count correct body size - user-agent.d:: mention --proxy-header as well - http2: fixes typo - cleanup: misc typos in strings and comments - rate-limit: use three second window to better handle high speeds - examples/hiperfifo.c: improved - pause: when changing pause state, update socket state - curl_version_info.3: fix ssl_version description - add_handle/easy_perform: clear errorbuffer on start if set - cmake: add support for brotli - parsedate: support UT timezone - vauth/ntlm.h: fix the #ifdef header guard - lib/curl_path.h: added #ifdef header guard - vauth/cleartext: fix integer overflow check - CURLINFO_COOKIELIST.3: made the example not leak memory - cookie.d: mention that "-" as filename means stdin - CURLINFO_SSL_VERIFYRESULT.3: fixed the example - http2: read pending frames (including GOAWAY) in connection-check - timeval: remove compilation warning by casting - cmake: avoid warn-as-error during config checks - travis-ci: enable -Werror for CMake builds - openldap: fix for NULL return from ldap_get_attribute_ber() - threaded resolver: track resolver time and set suitable timeout values - cmake: Add advapi32 as explicit link library for win32 - docs: fix CURLINFO_*_T examples use of CURL_FORMAT_CURL_OFF_T - test1148: set a fixed locale for the test - cookies: when reading from a file, only remove_expired once - cookie: store cookies per top-level-domain-specific hash table - openssl: RESTORED verify locations when verifypeer==0 - file: restore old behavior for file:////foo/bar URLs - FTP: allow PASV on IPv6 connections when a proxy is being used - build-openssl.bat: allow custom paths for VS and perl - winbuild: make the clean target work without build-type - build-openssl.bat: Refer to VS2017 as VC14.1 instead of VC15 - curl: retry on FTP 4xx, ignore other protocols - configure: detect (and use) sa_family_t - examples/sftpuploadresume: Fix Windows large file seek - build: cleanup to fix clang warnings/errors - winbuild: updated the documentation - lib: silence null-dereference warnings - travis: bump to clang 6 and gcc 7 - travis: build libpsl and make builds use it - proxy: show getenv proxy use in verbose output - duphandle: make sure CURLOPT_RESOLVE is duplicated - all: Refactor malloc+memset to use calloc - checksrc: Fix typo - system.h: Add sparcv8plus to oracle/sunpro 32-bit detection - vauth: Fix typo - ssh: show libSSH2 error code when closing fails - test1148: tolerate progress updates better - urldata: make service names unconditional - configure: keep LD_LIBRARY_PATH changes local - ntlm_sspi: fix authentication using Credential Manager - schannel: add client certificate authentication - winbuild: Support custom devel paths for each dependency - schannel: add support for CURLOPT_CAINFO - http2: handle on_begin_headers() called more than once - openssl: support OpenSSL 1.1.1 verbose-mode trace messages - openssl: fix subjectAltName check on non-ASCII platforms - http2: avoid strstr() on data not zero terminated - http2: clear the "drain counter" when a stream is closed - http2: handle GOAWAY properly - tool_help: clarify --max-time unit of time is seconds - curl.1: clarify that options and URLs can be mixed - http2: convert an assert to run-time check - curl_global_sslset: always provide available backends - ftplistparser: keep state between invokes - Curl_memchr: zero length input can't match - examples/sftpuploadresume: typecast fseek argument to long - examples/http2-upload: expand buffer to avoid silly warning - ctype: restore character classification for non-ASCII platforms - mime: avoid NULL pointer dereference risk - cookies: ensure that we have cookies before writing jar - os400.c: fix checksrc warnings - configure: provide --with-wolfssl as an alias for --with-cyassl - cyassl: adapt to libraries without TLS 1.0 support built-in - http2: get rid of another strstr - checksrc: force indentation of lines after an else - cookies: remove unused macro - CURLINFO_PROTOCOL.3: mention the existing defined names - tests: provide 'manual' as a feature to optionally require - travis: enable libssh2 on both macos and Linux - CURLOPT_URL.3: added ENCODING section - wolfssl: Fix non-blocking connect - vtls: don't define MD5_DIGEST_LENGTH for wolfssl - docs: remove extraneous commas in man pages - URL: fix ASCII dependency in strcpy_url and strlen_url - ssh-libssh.c: fix left shift compiler warning - configure: only check for CA bundle for file-using SSL backends - travis: add an mbedtls build - http: don't set the "rewind" flag when not uploading anything - configure: put CURLDEBUG and DEBUGBUILD in lib/curl_config.h - transfer: don't unset writesockfd on setup of multiplexed conns - vtls: use unified "supports" bitfield member in backends - URLs: fix one more http url - travis: add a build using WolfSSL - openssl: change FILE ops to BIO ops - travis: add build using NSS - smb: reject negative file sizes - cookies: accept parameter names as cookie name - http2: getsock fix for uploads - all over: fixed format specifiers - http2: use the correct function pointer typedef curl-mini-7.60.0-lp150.2.3.1.src.rpm curl-mini-7.60.0-lp150.2.3.1.x86_64.rpm curl-mini-debuginfo-7.60.0-lp150.2.3.1.x86_64.rpm curl-mini-debugsource-7.60.0-lp150.2.3.1.x86_64.rpm libcurl-mini-devel-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-mini-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-mini-debuginfo-7.60.0-lp150.2.3.1.x86_64.rpm curl-7.60.0-lp150.2.3.1.src.rpm curl-7.60.0-lp150.2.3.1.x86_64.rpm curl-debuginfo-7.60.0-lp150.2.3.1.x86_64.rpm curl-debugsource-7.60.0-lp150.2.3.1.x86_64.rpm libcurl-devel-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-debuginfo-7.60.0-lp150.2.3.1.x86_64.rpm curl-mini-7.60.0-lp150.2.3.1.i586.rpm curl-mini-debuginfo-7.60.0-lp150.2.3.1.i586.rpm curl-mini-debugsource-7.60.0-lp150.2.3.1.i586.rpm libcurl-mini-devel-7.60.0-lp150.2.3.1.i586.rpm libcurl4-mini-7.60.0-lp150.2.3.1.i586.rpm libcurl4-mini-debuginfo-7.60.0-lp150.2.3.1.i586.rpm curl-7.60.0-lp150.2.3.1.i586.rpm curl-debuginfo-7.60.0-lp150.2.3.1.i586.rpm curl-debugsource-7.60.0-lp150.2.3.1.i586.rpm libcurl-devel-32bit-7.60.0-lp150.2.3.1.x86_64.rpm libcurl-devel-7.60.0-lp150.2.3.1.i586.rpm libcurl4-32bit-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-32bit-debuginfo-7.60.0-lp150.2.3.1.x86_64.rpm libcurl4-7.60.0-lp150.2.3.1.i586.rpm libcurl4-debuginfo-7.60.0-lp150.2.3.1.i586.rpm openSUSE-2018-629 moderate openSUSE Leap 15.0 Update This update for opencv fixes this security issue: - CVE-2017-18009: Prevent heap-based buffer over-read in the function cv::HdrDecoder::checkSignature (bsc#1074312). libopencv3_3-3.3.1-lp150.4.3.1.x86_64.rpm libopencv3_3-debuginfo-3.3.1-lp150.4.3.1.x86_64.rpm opencv-3.3.1-lp150.4.3.1.src.rpm opencv-3.3.1-lp150.4.3.1.x86_64.rpm opencv-debuginfo-3.3.1-lp150.4.3.1.x86_64.rpm opencv-debugsource-3.3.1-lp150.4.3.1.x86_64.rpm opencv-devel-3.3.1-lp150.4.3.1.x86_64.rpm opencv-doc-3.3.1-lp150.4.3.1.x86_64.rpm python2-opencv-3.3.1-lp150.4.3.1.x86_64.rpm python2-opencv-debuginfo-3.3.1-lp150.4.3.1.x86_64.rpm python3-opencv-3.3.1-lp150.4.3.1.x86_64.rpm python3-opencv-debuginfo-3.3.1-lp150.4.3.1.x86_64.rpm openSUSE-2018-585 moderate openSUSE Leap 15.0 Update This update for biosdevname fixes the following issues: - biosdevname could crash due to an infinite recursion (boo#1093625) biosdevname-0.7.3-lp150.3.3.1.src.rpm biosdevname-0.7.3-lp150.3.3.1.x86_64.rpm biosdevname-debuginfo-0.7.3-lp150.3.3.1.x86_64.rpm biosdevname-debugsource-0.7.3-lp150.3.3.1.x86_64.rpm biosdevname-0.7.3-lp150.3.3.1.i586.rpm biosdevname-debuginfo-0.7.3-lp150.3.3.1.i586.rpm biosdevname-debugsource-0.7.3-lp150.3.3.1.i586.rpm openSUSE-2018-583 moderate openSUSE Leap 15.0 Update This update for cloud-init fixes the following issues: - cloud-init may have reported "no datasource found (boo#1089824, boo#1093501) This bugfix is an improvement on a previous change. cloud-init-18.2-lp150.2.6.1.src.rpm cloud-init-18.2-lp150.2.6.1.x86_64.rpm cloud-init-config-suse-18.2-lp150.2.6.1.x86_64.rpm cloud-init-doc-18.2-lp150.2.6.1.x86_64.rpm openSUSE-2018-587 moderate openSUSE Leap 15.0 Update This update for crmsh fixes the following issues: - bash_completion: non-interactive mode completer did not work (boo#1090304) - terminal could have lost cursor after typing ctrl+c (boo#1090626) - Wrong prompt string after poped help messages when input at a new line (boo#1090140) - Documentation formatting issue (boo#1075764) crmsh-4.0.0+git.1526547258.54aafa1d-lp150.2.3.1.noarch.rpm crmsh-4.0.0+git.1526547258.54aafa1d-lp150.2.3.1.src.rpm crmsh-scripts-4.0.0+git.1526547258.54aafa1d-lp150.2.3.1.noarch.rpm crmsh-test-4.0.0+git.1526547258.54aafa1d-lp150.2.3.1.noarch.rpm openSUSE-2018-588 moderate openSUSE Leap 15.0 Update This update for filesystem fixes the following issues: - possible shutdown issues after upgrading from an older release (boo#1084119) filesystem-15.0-lp150.8.3.1.src.rpm filesystem-15.0-lp150.8.3.1.x86_64.rpm filesystem-15.0-lp150.8.3.1.i586.rpm openSUSE-2018-584 important openSUSE Leap 15.0 Update This update for google-compute-engine fixes the following issues: - Instance initialization failed due to an incompatibility with Python 3 (boo#1094074) google-compute-engine-20180510-lp150.2.6.1.src.rpm google-compute-engine-init-20180510-lp150.2.6.1.noarch.rpm google-compute-engine-oslogin-20180510-lp150.2.6.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20180510-lp150.2.6.1.x86_64.rpm google-compute-engine-oslogin-20180510-lp150.2.6.1.i586.rpm google-compute-engine-oslogin-32bit-20180510-lp150.2.6.1.x86_64.rpm google-compute-engine-oslogin-32bit-debuginfo-20180510-lp150.2.6.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20180510-lp150.2.6.1.i586.rpm openSUSE-2018-575 important openSUSE Leap 15.0 Update This update for MozillaFirefox, mozilla-nss fixes the following issues: Security issue fixed in Mozilla Firefox 60.0.2 ESR: - CVE-2018-6126: Heap buffer overflow rasterizing paths in SVG with Skia (MFSA 2018-14, boo#1096449) The following bugs were fixed: - In KDE Open with option in download dialog has no effect with kmozillahelper (boo#1094747) - Startup crashes on aarch64 (boo#1093059) Mozilla Firefox now requires NSS 3.36.4 (boo#1096515). The following changes are included in NSS: - Fix issues connecting to servers recently upgraded to TLS 1.3 (SSL_RX_MALFORMED_SERVER_HELLO error) - Fix a rare bug with PKCS#12 files - Apply additional harding (relro linker option) MozillaFirefox-60.0.2-lp150.3.6.1.src.rpm MozillaFirefox-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-branding-upstream-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-buildsymbols-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-debuginfo-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-debugsource-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-devel-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-translations-common-60.0.2-lp150.3.6.1.x86_64.rpm MozillaFirefox-translations-other-60.0.2-lp150.3.6.1.x86_64.rpm libfreebl3-3.36.4-lp150.2.3.1.x86_64.rpm libfreebl3-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm libsoftokn3-3.36.4-lp150.2.3.1.x86_64.rpm libsoftokn3-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-3.36.4-lp150.2.3.1.src.rpm mozilla-nss-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-certs-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-debugsource-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-devel-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-sysinit-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-tools-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-tools-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm libfreebl3-3.36.4-lp150.2.3.1.i586.rpm libfreebl3-32bit-3.36.4-lp150.2.3.1.x86_64.rpm libfreebl3-32bit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm libfreebl3-debuginfo-3.36.4-lp150.2.3.1.i586.rpm libsoftokn3-3.36.4-lp150.2.3.1.i586.rpm libsoftokn3-32bit-3.36.4-lp150.2.3.1.x86_64.rpm libsoftokn3-32bit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm libsoftokn3-debuginfo-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-32bit-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-32bit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-certs-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-certs-32bit-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-certs-32bit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-debuginfo-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-debugsource-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-devel-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-sysinit-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-sysinit-32bit-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-sysinit-32bit-debuginfo-3.36.4-lp150.2.3.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-tools-3.36.4-lp150.2.3.1.i586.rpm mozilla-nss-tools-debuginfo-3.36.4-lp150.2.3.1.i586.rpm openSUSE-2018-593 moderate openSUSE Leap 15.0 Update This update for yast2-proxy fixes the following issues: - Clean up of 'No Proxy Domains' field when whitespaces are detected (bsc#1089796) yast2-proxy-4.0.1-lp150.2.3.1.noarch.rpm yast2-proxy-4.0.1-lp150.2.3.1.src.rpm openSUSE-2018-594 moderate openSUSE Leap 15.0 Update This update for yast2-printer fixes the following issues: - Fixed alignment of input fields in "Connection Wizard". (bsc#1091290) yast2-printer-4.0.2-lp150.2.3.1.src.rpm yast2-printer-4.0.2-lp150.2.3.1.x86_64.rpm yast2-printer-debuginfo-4.0.2-lp150.2.3.1.x86_64.rpm yast2-printer-debugsource-4.0.2-lp150.2.3.1.x86_64.rpm yast2-printer-4.0.2-lp150.2.3.1.i586.rpm yast2-printer-debuginfo-4.0.2-lp150.2.3.1.i586.rpm yast2-printer-debugsource-4.0.2-lp150.2.3.1.i586.rpm openSUSE-2018-608 important openSUSE Leap 15.0 Update This update for libstorage-ng fixes the following issues: - multiple translation updates - YaST error caused when auto-mounting ext4 partition on Xen PV device after FS resize (boo#1073633) - error creating partitions on GPT not using complete disk (boo#1092193) - A message "Probing partitions failed" while Installation could be shown on Power (boo#1095168) - Avoid functional conflicts with libdmraid during upgrade (boo#1088570) - issues probing storage of certain nvme systems (boo#1093684) libstorage-ng-3.3.300-lp150.2.3.2.src.rpm libstorage-ng-debuginfo-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-debugsource-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-devel-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-integration-tests-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-lang-3.3.300-lp150.2.3.2.noarch.rpm libstorage-ng-python3-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-python3-debuginfo-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-ruby-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-ruby-debuginfo-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-utils-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-utils-debuginfo-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng1-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng1-debuginfo-3.3.300-lp150.2.3.2.x86_64.rpm libstorage-ng-debuginfo-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-debugsource-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-devel-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-integration-tests-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-python3-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-python3-debuginfo-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-ruby-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-ruby-debuginfo-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-utils-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng-utils-debuginfo-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng1-3.3.300-lp150.2.3.2.i586.rpm libstorage-ng1-debuginfo-3.3.300-lp150.2.3.2.i586.rpm openSUSE-2018-595 moderate openSUSE Leap 15.0 Update This update for yast2-pkg-bindings-devel-doc fixes the following issues: - Bugfix: Do not reset the source manager if also the options are the same as the ones used previously (bsc#1095702) yast2-pkg-bindings-devel-doc-4.0.11-lp150.2.6.1.noarch.rpm yast2-pkg-bindings-devel-doc-4.0.11-lp150.2.6.1.src.rpm yast2-pkg-bindings-4.0.11-lp150.2.6.1.src.rpm yast2-pkg-bindings-4.0.11-lp150.2.6.1.x86_64.rpm yast2-pkg-bindings-debuginfo-4.0.11-lp150.2.6.1.x86_64.rpm yast2-pkg-bindings-debugsource-4.0.11-lp150.2.6.1.x86_64.rpm yast2-pkg-bindings-4.0.11-lp150.2.6.1.i586.rpm yast2-pkg-bindings-debuginfo-4.0.11-lp150.2.6.1.i586.rpm yast2-pkg-bindings-debugsource-4.0.11-lp150.2.6.1.i586.rpm openSUSE-2018-606 moderate openSUSE Leap 15.0 Update This update for ibmtss fixes the following issues: - the ibmtss utility was missing the libtss.so.0 library (boo#1093612) ibmtss-1045-lp150.3.3.1.src.rpm ibmtss-1045-lp150.3.3.1.x86_64.rpm ibmtss-base-1045-lp150.3.3.1.noarch.rpm ibmtss-debuginfo-1045-lp150.3.3.1.x86_64.rpm ibmtss-debugsource-1045-lp150.3.3.1.x86_64.rpm ibmtss-devel-1045-lp150.3.3.1.x86_64.rpm libtss0-1045-lp150.3.3.1.x86_64.rpm libtss0-debuginfo-1045-lp150.3.3.1.x86_64.rpm openSUSE-2018-605 low openSUSE Leap 15.0 Update This update for cargo contains the following change: - cargo 0.26.0 is provided as imported from the SLE 15 codebase (boo#1096770) - No longer removes rust or rs prefixs/suffixs. - Now defaults to creating a binary crate, instead of a library crate cargo-0.26.0-lp150.2.3.4.src.rpm cargo-0.26.0-lp150.2.3.4.x86_64.rpm cargo-debuginfo-0.26.0-lp150.2.3.4.x86_64.rpm cargo-0.26.0-lp150.2.3.4.i686.rpm cargo-debuginfo-0.26.0-lp150.2.3.4.i686.rpm openSUSE-2018-611 moderate openSUSE Leap 15.0 Update This update for hyper-v fixes the following issues: - Running lsvmbus may have failed due to an incorrect interpreter string (boo#1093910) hyper-v-7-lp150.4.3.2.src.rpm hyper-v-7-lp150.4.3.2.x86_64.rpm hyper-v-debuginfo-7-lp150.4.3.2.x86_64.rpm hyper-v-debugsource-7-lp150.4.3.2.x86_64.rpm hyper-v-7-lp150.4.3.2.i586.rpm hyper-v-debuginfo-7-lp150.4.3.2.i586.rpm hyper-v-debugsource-7-lp150.4.3.2.i586.rpm openSUSE-2018-607 moderate openSUSE Leap 15.0 Update This update for issue-generator fixes the following issues: - Permission issue on /run/issue which was root readable only (boo#1095697) issue-generator-1.6-lp150.3.6.2.noarch.rpm issue-generator-1.6-lp150.3.6.2.src.rpm openSUSE-2018-609 moderate openSUSE Leap 15.0 Update This update for sysconfig fixes the following issues: - When using NetworkManager but some interfaces are not managed my NetworkManager, such as when using a VPN client directly, the DNS entries were not set correctly (boo#1079793) sysconfig-0.84.3-lp150.3.3.2.src.rpm sysconfig-0.84.3-lp150.3.3.2.x86_64.rpm sysconfig-debuginfo-0.84.3-lp150.3.3.2.x86_64.rpm sysconfig-debugsource-0.84.3-lp150.3.3.2.x86_64.rpm sysconfig-netconfig-0.84.3-lp150.3.3.2.x86_64.rpm sysconfig-0.84.3-lp150.3.3.2.i586.rpm sysconfig-debuginfo-0.84.3-lp150.3.3.2.i586.rpm sysconfig-debugsource-0.84.3-lp150.3.3.2.i586.rpm sysconfig-netconfig-0.84.3-lp150.3.3.2.i586.rpm openSUSE-2018-610 moderate openSUSE Leap 15.0 Update This update for libgphoto2 fixes the following issues: - Import of Photos from Canon EOS did not work correctly (boo#1091309) libgphoto2-2.5.18-lp150.2.3.1.src.rpm libgphoto2-6-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-6-debuginfo-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-6-lang-2.5.18-lp150.2.3.1.noarch.rpm libgphoto2-debugsource-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-devel-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-devel-doc-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-doc-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-6-2.5.18-lp150.2.3.1.i586.rpm libgphoto2-6-32bit-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-6-32bit-debuginfo-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-6-debuginfo-2.5.18-lp150.2.3.1.i586.rpm libgphoto2-debugsource-2.5.18-lp150.2.3.1.i586.rpm libgphoto2-devel-2.5.18-lp150.2.3.1.i586.rpm libgphoto2-devel-32bit-2.5.18-lp150.2.3.1.x86_64.rpm libgphoto2-devel-doc-2.5.18-lp150.2.3.1.i586.rpm libgphoto2-doc-2.5.18-lp150.2.3.1.i586.rpm openSUSE-2018-612 important openSUSE Leap 15.0 Update This update for hawk2 fixes the following issues: - UI may have reported a lowlevel error on certain errror conditions (boo#1090562) - Editing a resource with a name that contains a dot resulted in a redirection to 404 page (boo#1092108) - Help links seeded adjustment (boo#1089709) - Issues loading history explorer views (boo#1093420) - Primitive resource creation sometimes failed in Hawk (boo#1092122) hawk2-2.1.0+git.1526638315.05cdaf9d-lp150.2.3.1.src.rpm hawk2-2.1.0+git.1526638315.05cdaf9d-lp150.2.3.1.x86_64.rpm hawk2-debuginfo-2.1.0+git.1526638315.05cdaf9d-lp150.2.3.1.x86_64.rpm hawk2-debugsource-2.1.0+git.1526638315.05cdaf9d-lp150.2.3.1.x86_64.rpm openSUSE-2018-631 moderate openSUSE Leap 15.0 Update This update for installation-images fixes the following issues: - The installer dit not detext an existing ReiserFS system (fate#323394) install-initrd-openSUSE-14.373-lp150.2.3.2.x86_64.rpm installation-images-debuginfodeps-openSUSE-14.373-lp150.2.3.2.x86_64.rpm skelcd-installer-net-openSUSE-14.373-lp150.2.3.2.x86_64.rpm skelcd-installer-openSUSE-14.373-lp150.2.3.2.x86_64.rpm tftpboot-installation-openSUSE-Leap-15.0-x86_64-14.373-lp150.2.3.2.noarch.rpm openSUSE-2018-613 moderate openSUSE Leap 15.0 Update This update for tmon fixes the following issues: - race condition related to "cur_thermal_record" caused segmentation faults (boo#1075156) tmon-1.0-lp150.2.3.1.src.rpm tmon-1.0-lp150.2.3.1.x86_64.rpm tmon-debuginfo-1.0-lp150.2.3.1.x86_64.rpm tmon-debugsource-1.0-lp150.2.3.1.x86_64.rpm openSUSE-2018-615 moderate openSUSE Leap 15.0 Update This update contains the final releases for rmt-server and yast2-rmt (boo#1093879) This updates contains various code and packaging fixes as released for SLE 15. rmt-server is a Repository mirroring tool and registration proxy for SCC. yast2-rmt is a YaST module for configuring it. rmt-server-1.0.0-lp150.2.3.2.src.rpm rmt-server-1.0.0-lp150.2.3.2.x86_64.rpm rmt-server-debuginfo-1.0.0-lp150.2.3.2.x86_64.rpm yast2-rmt-1.0.0-lp150.2.3.2.noarch.rpm yast2-rmt-1.0.0-lp150.2.3.2.src.rpm openSUSE-2018-652 low openSUSE Leap 15.0 Update This update for aubio fixes the following security issue: - CVE-2017-17554: Prevent NULL pointer dereference in the function aubio_source_avcodec_readframe which may have lead to DoS when playing a crafted audio file (bsc#1072317). aubio-0.4.6-lp150.3.3.1.src.rpm aubio-debugsource-0.4.6-lp150.3.3.1.x86_64.rpm aubio-tools-0.4.6-lp150.3.3.1.x86_64.rpm aubio-tools-debuginfo-0.4.6-lp150.3.3.1.x86_64.rpm libaubio-devel-0.4.6-lp150.3.3.1.x86_64.rpm libaubio5-0.4.6-lp150.3.3.1.x86_64.rpm libaubio5-debuginfo-0.4.6-lp150.3.3.1.x86_64.rpm python-aubio-0.4.6-lp150.3.3.1.src.rpm python-aubio-debugsource-0.4.6-lp150.3.3.1.x86_64.rpm python2-aubio-0.4.6-lp150.3.3.1.x86_64.rpm python2-aubio-debuginfo-0.4.6-lp150.3.3.1.x86_64.rpm python3-aubio-0.4.6-lp150.3.3.1.x86_64.rpm python3-aubio-debuginfo-0.4.6-lp150.3.3.1.x86_64.rpm aubio-debugsource-0.4.6-lp150.3.3.1.i586.rpm aubio-tools-0.4.6-lp150.3.3.1.i586.rpm aubio-tools-debuginfo-0.4.6-lp150.3.3.1.i586.rpm libaubio-devel-0.4.6-lp150.3.3.1.i586.rpm libaubio5-0.4.6-lp150.3.3.1.i586.rpm libaubio5-32bit-0.4.6-lp150.3.3.1.x86_64.rpm libaubio5-32bit-debuginfo-0.4.6-lp150.3.3.1.x86_64.rpm libaubio5-debuginfo-0.4.6-lp150.3.3.1.i586.rpm openSUSE-2018-622 moderate openSUSE Leap 15.0 Update This update for yast2-packager fixes the following issues: - When running the installation in textmode, consider only the preselected language when showing the license for extensions, modules or add-ons (boo#1094793). - During an upgrade, skip the base produce license dialog when the same license was already accepted (boo#1080450) - Renaming of SLES_HPC to SLE_HPC (boo#1095053) - Display an error popup when the FIPS compliant mode is active and the "fips" pattern is not available (boo#1093060) yast2-packager-4.0.67-lp150.2.6.2.src.rpm yast2-packager-4.0.67-lp150.2.6.2.x86_64.rpm yast2-packager-4.0.67-lp150.2.6.2.i586.rpm openSUSE-2018-660 moderate openSUSE Leap 15.0 Update This update for gnuhealth, tryton, trytond fixes the following issues: - in GNU health, Caldav event did not update after changing the appointmen - trytond: incorrect requirement on postgres96 gnuhealth-3.2.10-lp150.5.3.1.noarch.rpm gnuhealth-3.2.10-lp150.5.3.1.src.rpm tryton-4.2.14-lp150.2.3.1.noarch.rpm tryton-4.2.14-lp150.2.3.1.src.rpm trytond-4.2.12-lp150.2.5.1.noarch.rpm trytond-4.2.12-lp150.2.5.1.src.rpm openSUSE-2018-617 moderate openSUSE Leap 15.0 Update This update for jeos-firstboot fixes the following issues: - licenses in non-latin scripts were not displayed incorrectly (boo#1094346) jeos-firstboot-0.0+git20180525.280836a-lp150.2.3.1.noarch.rpm jeos-firstboot-0.0+git20180525.280836a-lp150.2.3.1.src.rpm openSUSE-2018-618 moderate openSUSE Leap 15.0 Update This update for mksusecd fixes the following issues: - joliet file names on generated media were too long (boo#1094687) mksusecd-1.59-lp150.2.3.1.src.rpm mksusecd-1.59-lp150.2.3.1.x86_64.rpm mksusecd-debuginfo-1.59-lp150.2.3.1.x86_64.rpm mksusecd-debugsource-1.59-lp150.2.3.1.x86_64.rpm openSUSE-2018-619 moderate openSUSE Leap 15.0 Update This update for patterns-base fixes the following issues: - /var/log/messages did not exist because rsyslog was not included in the base pattern (boo#1094841) Rsyslog is now part of the base pattern for logging to go to /var/log/messages as documented. patterns-base-20171206-lp150.15.6.1.src.rpm patterns-base-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-apparmor-20171206-lp150.15.6.1.x86_64.rpm patterns-base-apparmor-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-apparmor_opt-20171206-lp150.15.6.1.x86_64.rpm patterns-base-base-20171206-lp150.15.6.1.x86_64.rpm patterns-base-base-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-basesystem-20171206-lp150.15.6.1.x86_64.rpm patterns-base-console-20171206-lp150.15.6.1.x86_64.rpm patterns-base-documentation-20171206-lp150.15.6.1.x86_64.rpm patterns-base-enhanced_base-20171206-lp150.15.6.1.x86_64.rpm patterns-base-enhanced_base-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-enhanced_base_opt-20171206-lp150.15.6.1.x86_64.rpm patterns-base-minimal_base-20171206-lp150.15.6.1.x86_64.rpm patterns-base-minimal_base-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-sw_management-20171206-lp150.15.6.1.x86_64.rpm patterns-base-sw_management-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-transactional_base-20171206-lp150.15.6.1.x86_64.rpm patterns-base-update_test-20171206-lp150.15.6.1.x86_64.rpm patterns-base-x11-20171206-lp150.15.6.1.x86_64.rpm patterns-base-x11-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-x11_enhanced-20171206-lp150.15.6.1.x86_64.rpm patterns-base-x11_enhanced-32bit-20171206-lp150.15.6.1.x86_64.rpm patterns-base-x11_opt-20171206-lp150.15.6.1.x86_64.rpm openSUSE-2018-620 moderate openSUSE Leap 15.0 Update This update for python-azure-agent fixes the following issues: - python-azure-agent uses obsolete nettools instead of ip tools (boo#1092831) python-azure-agent-2.2.18-lp150.5.3.1.noarch.rpm python-azure-agent-2.2.18-lp150.5.3.1.src.rpm python-azure-agent-test-2.2.18-lp150.5.3.1.noarch.rpm openSUSE-2018-632 low openSUSE Leap 15.0 Update This update for spyder3 fixes the following issues: - spyder3 did not declare the run-time dependency on python3-cloudpickle correctly (boo#1095587) spyder3-3.2.8-lp150.2.3.1.noarch.rpm spyder3-3.2.8-lp150.2.3.1.src.rpm spyder3-breakpoints-3.2.8-lp150.2.3.1.noarch.rpm spyder3-breakpoints-lang-3.2.8-lp150.2.3.1.noarch.rpm spyder3-dicom-3.2.8-lp150.2.3.1.noarch.rpm spyder3-doc-3.2.8-lp150.2.3.1.noarch.rpm spyder3-hdf5-3.2.8-lp150.2.3.1.noarch.rpm spyder3-lang-3.2.8-lp150.2.3.1.noarch.rpm spyder3-profiler-3.2.8-lp150.2.3.1.noarch.rpm spyder3-profiler-lang-3.2.8-lp150.2.3.1.noarch.rpm spyder3-pylint-3.2.8-lp150.2.3.1.noarch.rpm spyder3-pylint-lang-3.2.8-lp150.2.3.1.noarch.rpm openSUSE-2018-621 moderate openSUSE Leap 15.0 Update This update for util-linux fixes the following issues: - the rfkill-block@.service and rfkill-unblock@service were run in the package pre/postun scripts despite only being templates without parameters (boo#1092820, boo#1093176) python-libmount-2.31.1-lp150.7.3.1.src.rpm python-libmount-2.31.1-lp150.7.3.1.x86_64.rpm python-libmount-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm python-libmount-debugsource-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-systemd-2.31.1-lp150.7.3.1.src.rpm util-linux-systemd-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-systemd-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-systemd-debugsource-2.31.1-lp150.7.3.1.x86_64.rpm uuidd-2.31.1-lp150.7.3.1.x86_64.rpm uuidd-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libblkid-devel-2.31.1-lp150.7.3.1.x86_64.rpm libblkid-devel-static-2.31.1-lp150.7.3.1.x86_64.rpm libblkid1-2.31.1-lp150.7.3.1.x86_64.rpm libblkid1-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libfdisk-devel-2.31.1-lp150.7.3.1.x86_64.rpm libfdisk-devel-static-2.31.1-lp150.7.3.1.x86_64.rpm libfdisk1-2.31.1-lp150.7.3.1.x86_64.rpm libfdisk1-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libmount-devel-2.31.1-lp150.7.3.1.x86_64.rpm libmount-devel-static-2.31.1-lp150.7.3.1.x86_64.rpm libmount1-2.31.1-lp150.7.3.1.x86_64.rpm libmount1-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libsmartcols-devel-2.31.1-lp150.7.3.1.x86_64.rpm libsmartcols-devel-static-2.31.1-lp150.7.3.1.x86_64.rpm libsmartcols1-2.31.1-lp150.7.3.1.x86_64.rpm libsmartcols1-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libuuid-devel-2.31.1-lp150.7.3.1.x86_64.rpm libuuid-devel-static-2.31.1-lp150.7.3.1.x86_64.rpm libuuid1-2.31.1-lp150.7.3.1.x86_64.rpm libuuid1-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-2.31.1-lp150.7.3.1.src.rpm util-linux-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-debugsource-2.31.1-lp150.7.3.1.x86_64.rpm util-linux-lang-2.31.1-lp150.7.3.1.noarch.rpm util-linux-systemd-2.31.1-lp150.7.3.1.i586.rpm util-linux-systemd-debuginfo-2.31.1-lp150.7.3.1.i586.rpm util-linux-systemd-debugsource-2.31.1-lp150.7.3.1.i586.rpm uuidd-2.31.1-lp150.7.3.1.i586.rpm uuidd-debuginfo-2.31.1-lp150.7.3.1.i586.rpm libblkid-devel-2.31.1-lp150.7.3.1.i586.rpm libblkid-devel-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libblkid-devel-static-2.31.1-lp150.7.3.1.i586.rpm libblkid1-2.31.1-lp150.7.3.1.i586.rpm libblkid1-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libblkid1-32bit-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libblkid1-debuginfo-2.31.1-lp150.7.3.1.i586.rpm libfdisk-devel-2.31.1-lp150.7.3.1.i586.rpm libfdisk-devel-static-2.31.1-lp150.7.3.1.i586.rpm libfdisk1-2.31.1-lp150.7.3.1.i586.rpm libfdisk1-debuginfo-2.31.1-lp150.7.3.1.i586.rpm libmount-devel-2.31.1-lp150.7.3.1.i586.rpm libmount-devel-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libmount-devel-static-2.31.1-lp150.7.3.1.i586.rpm libmount1-2.31.1-lp150.7.3.1.i586.rpm libmount1-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libmount1-32bit-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libmount1-debuginfo-2.31.1-lp150.7.3.1.i586.rpm libsmartcols-devel-2.31.1-lp150.7.3.1.i586.rpm libsmartcols-devel-static-2.31.1-lp150.7.3.1.i586.rpm libsmartcols1-2.31.1-lp150.7.3.1.i586.rpm libsmartcols1-debuginfo-2.31.1-lp150.7.3.1.i586.rpm libuuid-devel-2.31.1-lp150.7.3.1.i586.rpm libuuid-devel-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libuuid-devel-static-2.31.1-lp150.7.3.1.i586.rpm libuuid1-2.31.1-lp150.7.3.1.i586.rpm libuuid1-32bit-2.31.1-lp150.7.3.1.x86_64.rpm libuuid1-32bit-debuginfo-2.31.1-lp150.7.3.1.x86_64.rpm libuuid1-debuginfo-2.31.1-lp150.7.3.1.i586.rpm util-linux-2.31.1-lp150.7.3.1.i586.rpm util-linux-debuginfo-2.31.1-lp150.7.3.1.i586.rpm util-linux-debugsource-2.31.1-lp150.7.3.1.i586.rpm openSUSE-2018-624 important openSUSE Leap 15.0 Update This update for systemd fixes the following issues: - Network did not start correctly when installing using a PCI network device (boo#1083158) - User services should not be enabled by default (boo#1090785) - udev: created /dev/disk/by-partlabel/primary and .../logical symlinks as these are contented names (boo#1089761) libsystemd0-mini-234-lp150.20.3.1.x86_64.rpm libsystemd0-mini-debuginfo-234-lp150.20.3.1.x86_64.rpm libudev-mini-devel-234-lp150.20.3.1.x86_64.rpm libudev-mini1-234-lp150.20.3.1.x86_64.rpm libudev-mini1-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-mini-234-lp150.20.3.1.src.rpm systemd-mini-234-lp150.20.3.1.x86_64.rpm systemd-mini-bash-completion-234-lp150.20.3.1.noarch.rpm systemd-mini-container-mini-234-lp150.20.3.1.x86_64.rpm systemd-mini-container-mini-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-mini-coredump-mini-234-lp150.20.3.1.x86_64.rpm systemd-mini-coredump-mini-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-mini-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-mini-debugsource-234-lp150.20.3.1.x86_64.rpm systemd-mini-devel-234-lp150.20.3.1.x86_64.rpm systemd-mini-sysvinit-234-lp150.20.3.1.x86_64.rpm udev-mini-234-lp150.20.3.1.x86_64.rpm udev-mini-debuginfo-234-lp150.20.3.1.x86_64.rpm libsystemd0-234-lp150.20.3.1.x86_64.rpm libsystemd0-debuginfo-234-lp150.20.3.1.x86_64.rpm libudev-devel-234-lp150.20.3.1.x86_64.rpm libudev1-234-lp150.20.3.1.x86_64.rpm libudev1-debuginfo-234-lp150.20.3.1.x86_64.rpm nss-myhostname-234-lp150.20.3.1.x86_64.rpm nss-myhostname-debuginfo-234-lp150.20.3.1.x86_64.rpm nss-mymachines-234-lp150.20.3.1.x86_64.rpm nss-mymachines-debuginfo-234-lp150.20.3.1.x86_64.rpm nss-systemd-234-lp150.20.3.1.x86_64.rpm nss-systemd-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-234-lp150.20.3.1.src.rpm systemd-234-lp150.20.3.1.x86_64.rpm systemd-bash-completion-234-lp150.20.3.1.noarch.rpm systemd-container-234-lp150.20.3.1.x86_64.rpm systemd-container-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-coredump-234-lp150.20.3.1.x86_64.rpm systemd-coredump-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-debugsource-234-lp150.20.3.1.x86_64.rpm systemd-devel-234-lp150.20.3.1.x86_64.rpm systemd-logger-234-lp150.20.3.1.x86_64.rpm systemd-sysvinit-234-lp150.20.3.1.x86_64.rpm udev-234-lp150.20.3.1.x86_64.rpm udev-debuginfo-234-lp150.20.3.1.x86_64.rpm libsystemd0-mini-234-lp150.20.3.1.i586.rpm libsystemd0-mini-debuginfo-234-lp150.20.3.1.i586.rpm libudev-mini-devel-234-lp150.20.3.1.i586.rpm libudev-mini1-234-lp150.20.3.1.i586.rpm libudev-mini1-debuginfo-234-lp150.20.3.1.i586.rpm systemd-mini-234-lp150.20.3.1.i586.rpm systemd-mini-container-mini-234-lp150.20.3.1.i586.rpm systemd-mini-container-mini-debuginfo-234-lp150.20.3.1.i586.rpm systemd-mini-coredump-mini-234-lp150.20.3.1.i586.rpm systemd-mini-coredump-mini-debuginfo-234-lp150.20.3.1.i586.rpm systemd-mini-debuginfo-234-lp150.20.3.1.i586.rpm systemd-mini-debugsource-234-lp150.20.3.1.i586.rpm systemd-mini-devel-234-lp150.20.3.1.i586.rpm systemd-mini-sysvinit-234-lp150.20.3.1.i586.rpm udev-mini-234-lp150.20.3.1.i586.rpm udev-mini-debuginfo-234-lp150.20.3.1.i586.rpm libsystemd0-234-lp150.20.3.1.i586.rpm libsystemd0-32bit-234-lp150.20.3.1.x86_64.rpm libsystemd0-32bit-debuginfo-234-lp150.20.3.1.x86_64.rpm libsystemd0-debuginfo-234-lp150.20.3.1.i586.rpm libudev-devel-234-lp150.20.3.1.i586.rpm libudev-devel-32bit-234-lp150.20.3.1.x86_64.rpm libudev1-234-lp150.20.3.1.i586.rpm libudev1-32bit-234-lp150.20.3.1.x86_64.rpm libudev1-32bit-debuginfo-234-lp150.20.3.1.x86_64.rpm libudev1-debuginfo-234-lp150.20.3.1.i586.rpm nss-myhostname-234-lp150.20.3.1.i586.rpm nss-myhostname-32bit-234-lp150.20.3.1.x86_64.rpm nss-myhostname-32bit-debuginfo-234-lp150.20.3.1.x86_64.rpm nss-myhostname-debuginfo-234-lp150.20.3.1.i586.rpm nss-mymachines-234-lp150.20.3.1.i586.rpm nss-mymachines-32bit-234-lp150.20.3.1.x86_64.rpm nss-mymachines-32bit-debuginfo-234-lp150.20.3.1.x86_64.rpm nss-mymachines-debuginfo-234-lp150.20.3.1.i586.rpm nss-systemd-234-lp150.20.3.1.i586.rpm nss-systemd-debuginfo-234-lp150.20.3.1.i586.rpm systemd-234-lp150.20.3.1.i586.rpm systemd-32bit-234-lp150.20.3.1.x86_64.rpm systemd-32bit-debuginfo-234-lp150.20.3.1.x86_64.rpm systemd-container-234-lp150.20.3.1.i586.rpm systemd-container-debuginfo-234-lp150.20.3.1.i586.rpm systemd-coredump-234-lp150.20.3.1.i586.rpm systemd-coredump-debuginfo-234-lp150.20.3.1.i586.rpm systemd-debuginfo-234-lp150.20.3.1.i586.rpm systemd-debugsource-234-lp150.20.3.1.i586.rpm systemd-devel-234-lp150.20.3.1.i586.rpm systemd-logger-234-lp150.20.3.1.i586.rpm systemd-sysvinit-234-lp150.20.3.1.i586.rpm udev-234-lp150.20.3.1.i586.rpm udev-debuginfo-234-lp150.20.3.1.i586.rpm openSUSE-2018-625 moderate openSUSE Leap 15.0 Update This update for yast2-dns-server fixes the following issues: - YaST DNS would reload named.service even when it was not running, resulting in an error (boo#1093029) yast2-dns-server-4.0.2-lp150.2.3.1.noarch.rpm yast2-dns-server-4.0.2-lp150.2.3.1.src.rpm openSUSE-2018-626 moderate openSUSE Leap 15.0 Update This update for yast2-installation fixes the following issues: - Possible crash when multipath is not available (boo#1095323) - On s390 important devices may be blocked when cio_ignore is active (boo#1095033) - AutoYaST re-installation mode detection did not work correctly on DASK disks (boo#1089547) yast2-installation-4.0.63-lp150.2.6.1.noarch.rpm yast2-installation-4.0.63-lp150.2.6.1.src.rpm openSUSE-2018-633 moderate openSUSE Leap 15.0 Update This update for python-kiwi fixes the following issues: - Adding 'additionaltags' containerconfig attribute to support multiple tags for containers - Bugfix: Does no longer delete uncompressed base docker images - Bugfix: Does no longer create static dev nodes in root init (bsc#1087104) - Bugfix: Adds the initrd-root-fs.target service dependency to auto generated sysroot.mount for kiwi-live and kiwi-overlay dracut modules. - Adds a verification to check that the target file doesn't exist before creating a symlink - Adds a documentation for config-cdroot archive - Bugfix: Fix setup of LOADER_TYPE in sysconfig/bootloader (bsc#1094883) dracut-kiwi-lib-9.15.3-lp150.2.6.1.x86_64.rpm dracut-kiwi-live-9.15.3-lp150.2.6.1.x86_64.rpm dracut-kiwi-oem-dump-9.15.3-lp150.2.6.1.x86_64.rpm dracut-kiwi-oem-repart-9.15.3-lp150.2.6.1.x86_64.rpm dracut-kiwi-overlay-9.15.3-lp150.2.6.1.x86_64.rpm kiwi-man-pages-9.15.3-lp150.2.6.1.x86_64.rpm kiwi-pxeboot-9.15.3-lp150.2.6.1.x86_64.rpm kiwi-tools-9.15.3-lp150.2.6.1.x86_64.rpm kiwi-tools-debuginfo-9.15.3-lp150.2.6.1.x86_64.rpm python-kiwi-9.15.3-lp150.2.6.1.src.rpm python-kiwi-debugsource-9.15.3-lp150.2.6.1.x86_64.rpm python2-kiwi-9.15.3-lp150.2.6.1.x86_64.rpm python3-kiwi-9.15.3-lp150.2.6.1.x86_64.rpm dracut-kiwi-lib-9.15.3-lp150.2.6.1.i586.rpm dracut-kiwi-live-9.15.3-lp150.2.6.1.i586.rpm dracut-kiwi-oem-dump-9.15.3-lp150.2.6.1.i586.rpm dracut-kiwi-oem-repart-9.15.3-lp150.2.6.1.i586.rpm dracut-kiwi-overlay-9.15.3-lp150.2.6.1.i586.rpm kiwi-man-pages-9.15.3-lp150.2.6.1.i586.rpm kiwi-pxeboot-9.15.3-lp150.2.6.1.i586.rpm kiwi-tools-9.15.3-lp150.2.6.1.i586.rpm kiwi-tools-debuginfo-9.15.3-lp150.2.6.1.i586.rpm python-kiwi-debugsource-9.15.3-lp150.2.6.1.i586.rpm python2-kiwi-9.15.3-lp150.2.6.1.i586.rpm python3-kiwi-9.15.3-lp150.2.6.1.i586.rpm openSUSE-2018-634 moderate openSUSE Leap 15.0 Update This update for salt fixes the following issues: - Updates the documentation to 2018.3.0 - No more AWS EC2 rate limitations in salt-cloud (bsc#1088888) - MySQL returner now also allows to use Unix sockets (bsc#1091371) - Do not override jid on returners, only sending back to master (bsc#1092373) - salt-ssh: * Bugfix: Option --extra-filerefs doesn't add all files to the state archive * Pillar completely overwritten (not merged) when doing module.run + state.apply with pillar in kwargs - Remove minion/thin/version if exists to force thin regeneration (bsc#1092161) python2-salt-2018.3.0-lp150.3.3.1.x86_64.rpm python3-salt-2018.3.0-lp150.3.3.1.x86_64.rpm salt-2018.3.0-lp150.3.3.1.src.rpm salt-2018.3.0-lp150.3.3.1.x86_64.rpm salt-api-2018.3.0-lp150.3.3.1.x86_64.rpm salt-bash-completion-2018.3.0-lp150.3.3.1.noarch.rpm salt-cloud-2018.3.0-lp150.3.3.1.x86_64.rpm salt-doc-2018.3.0-lp150.3.3.1.x86_64.rpm salt-fish-completion-2018.3.0-lp150.3.3.1.noarch.rpm salt-master-2018.3.0-lp150.3.3.1.x86_64.rpm salt-minion-2018.3.0-lp150.3.3.1.x86_64.rpm salt-proxy-2018.3.0-lp150.3.3.1.x86_64.rpm salt-ssh-2018.3.0-lp150.3.3.1.x86_64.rpm salt-syndic-2018.3.0-lp150.3.3.1.x86_64.rpm salt-zsh-completion-2018.3.0-lp150.3.3.1.noarch.rpm openSUSE-2018-635 moderate openSUSE Leap 15.0 Update This update for yast2-nfs-client fixes the following issues: - Fixed a regression that was preventing some strings to be translated. - Do not crash when 'edit' button is pressed in the partitioner if there are no NFS entries (affects installation, part of fate#318196). - When executed standalone (not embedded in the Partitioner), use storage-ng to read and write /etc/fstab, instead of the old buggy parser (boo#429326, bsc#1064437). yast2-nfs-client-4.0.6-lp150.2.3.1.noarch.rpm yast2-nfs-client-4.0.6-lp150.2.3.1.src.rpm openSUSE-2018-639 moderate openSUSE Leap 15.0 Update This update for pin fixes the following issues: - Bugfix: pin was broken on systems without /etc/SuSE-release file (boo#1095723) pin-0.38-lp150.2.3.1.noarch.rpm pin-0.38-lp150.2.3.1.src.rpm openSUSE-2018-657 moderate openSUSE Leap 15.0 Update This update for switcheroo-control fixes the following issues: - Adds a service file for switcheroo-control (boo#1096823). switcheroo-control-1.2-lp150.2.3.1.src.rpm switcheroo-control-1.2-lp150.2.3.1.x86_64.rpm switcheroo-control-debuginfo-1.2-lp150.2.3.1.x86_64.rpm switcheroo-control-debugsource-1.2-lp150.2.3.1.x86_64.rpm switcheroo-control-doc-1.2-lp150.2.3.1.noarch.rpm openSUSE-2018-658 moderate openSUSE Leap 15.0 Update This is an update for diskimage-builder to version 2.15.1 including the following fixes/features: Version 2.15.1 (boo#1097115): - elements: pip-and-virtualenv: Handle openSUSE Leap 15 - Allow to rebuild arbitrary images - Replace the ubuntu-minimal trusty test with a bionic one - Remove non-maintained ubuntu-core element - elements: zypper-minimal: Add support for openSUSE Leap 15.X - Add support for Ubuntu 18.04 - Bugfix: Remove duplicate GRUB command line entry - rpm-distro: set the contentdir yum var - Fixes add-apt-keys in dpkg element - Add pip cache cleanup to pip-and-virtualenv - pip-and-virtualenv: fix install-pip when centos-release-openstack is enabled diskimage-builder-2.15.1-lp150.2.3.1.noarch.rpm diskimage-builder-2.15.1-lp150.2.3.1.src.rpm openSUSE-2018-654 moderate openSUSE Leap 15.0 Update This update for matrix-synapse fixes the following security issue: - CVE-2018-12291: visibility rules were not applied correctly in the get_missing_events federation API (boo#1096833) matrix-synapse-0.28.1-lp150.2.4.1.src.rpm python2-matrix-synapse-0.28.1-lp150.2.4.1.noarch.rpm python3-matrix-synapse-0.28.1-lp150.2.4.1.noarch.rpm matrix-synapse-test-0.28.1-lp150.2.4.1.src.rpm openSUSE-2018-647 moderate openSUSE Leap 15.0 Update This update for calibre adds support for a number of e-book reads, amoung other improvements: - Support Kobo Clara HD (boo#1097180)o - Improve PDF output - Various UI and e-book handling bug fixes - Add option to output EPUB 3 files calibre-3.25.0-lp150.3.3.1.src.rpm calibre-3.25.0-lp150.3.3.1.x86_64.rpm calibre-debuginfo-3.25.0-lp150.3.3.1.x86_64.rpm calibre-debugsource-3.25.0-lp150.3.3.1.x86_64.rpm openSUSE-2018-630 moderate openSUSE Leap 15.0 Update This update for enigmail fixes vulnerabilities that allowed spoofing of e-mail signatures: - CVE-2018-12019: signature spoofing via specially crafted OpenPGP user IDs (boo#1097525) - CVE-2018-12020: signature spoofing via diagnostic output of the original file name in GnuPG verbose mode (boo#1096745) This mitigation prevents CVE-2018-12020 from being exploited even if GnuPG is not patched. enigmail-2.0.7-lp150.2.12.1.src.rpm enigmail-2.0.7-lp150.2.12.1.x86_64.rpm openSUSE-2018-646 moderate openSUSE Leap 15.0 Update This update for python-python-gnupg to version 0.4.3 fixes the following issues: The following security vulnerabilities were addressed: - Sanitize diagnostic output of the original file name in verbose mode (CVE-2018-12020 boo#1096745) The following other changes were made: - Add --no-verbose to the gpg command line, in case verbose is specified is gpg.conf. - Add expect_passphrase password for use on GnuPG >= 2.1 when passing passphrase to gpg via pinentry - Provide a trust_keys method to allow setting the trust level for keys - When the gpg executable is not found, note the path used in the exception message - Make error messages more informational python-python-gnupg-0.4.3-lp150.2.3.1.src.rpm python2-python-gnupg-0.4.3-lp150.2.3.1.noarch.rpm python3-python-gnupg-0.4.3-lp150.2.3.1.noarch.rpm openSUSE-2018-641 important openSUSE Leap 15.0 Update This update for java-1_8_0-openjdk to version 8u171 fixes the following issues: These security issues were fixed: - S8180881: Better packaging of deserialization - S8182362: Update CipherOutputStream Usage - S8183032: Upgrade to LittleCMS 2.9 - S8189123: More consistent classloading - S8189969, CVE-2018-2790, bsc#1090023: Manifest better manifest entries - S8189977, CVE-2018-2795, bsc#1090025: Improve permission portability - S8189981, CVE-2018-2796, bsc#1090026: Improve queuing portability - S8189985, CVE-2018-2797, bsc#1090027: Improve tabular data portability - S8189989, CVE-2018-2798, bsc#1090028: Improve container portability - S8189993, CVE-2018-2799, bsc#1090029: Improve document portability - S8189997, CVE-2018-2794, bsc#1090024: Enhance keystore mechanisms - S8190478: Improved interface method selection - S8190877: Better handling of abstract classes - S8191696: Better mouse positioning - S8192025, CVE-2018-2814, bsc#1090032: Less referential references - S8192030: Better MTSchema support - S8192757, CVE-2018-2815, bsc#1090033: Improve stub classes implementation - S8193409: Improve AES supporting classes - S8193414: Improvements in MethodType lookups - S8193833, CVE-2018-2800, bsc#1090030: Better RMI connection support For other changes please consult the changelog. This update was imported from the SUSE:SLE-12-SP1:Update update project. java-1_8_0-openjdk-1.8.0.171-lp150.2.3.1.src.rpm java-1_8_0-openjdk-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-debuginfo-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-debugsource-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.171-lp150.2.3.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.171-lp150.2.3.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-accessibility-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-debuginfo-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-debugsource-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-demo-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-devel-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-headless-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.171-lp150.2.3.1.i586.rpm java-1_8_0-openjdk-src-1.8.0.171-lp150.2.3.1.i586.rpm openSUSE-2018-640 important openSUSE Leap 15.0 Update This update for gpg2 fixes the following security issue: - CVE-2018-12020: GnuPG mishandled the original filename during decryption and verification actions, which allowed remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option (bsc#1096745) gpg2-2.2.5-lp150.3.3.1.src.rpm gpg2-2.2.5-lp150.3.3.1.x86_64.rpm gpg2-debuginfo-2.2.5-lp150.3.3.1.x86_64.rpm gpg2-debugsource-2.2.5-lp150.3.3.1.x86_64.rpm gpg2-lang-2.2.5-lp150.3.3.1.noarch.rpm gpg2-2.2.5-lp150.3.3.1.i586.rpm gpg2-debuginfo-2.2.5-lp150.3.3.1.i586.rpm gpg2-debugsource-2.2.5-lp150.3.3.1.i586.rpm openSUSE-2018-667 important openSUSE Leap 15.0 Update This update for redis to 4.0.10 fixes the following issues: These security issues were fixed: - CVE-2018-11218: Prevent heap corruption vulnerability in cmsgpack (bsc#1097430). - CVE-2018-11219: Prevent integer overflow in Lua scripting (bsc#1097768). For Leap 42.3 and openSUSE SLE 12 backports this is a jump from 4.0.6. For additional details please see - https://raw.githubusercontent.com/antirez/redis/4.0.9/00-RELEASENOTES - https://raw.githubusercontent.com/antirez/redis/4.0.8/00-RELEASENOTES - https://raw.githubusercontent.com/antirez/redis/4.0.7/00-RELEASENOTES redis-4.0.10-lp150.3.3.1.src.rpm redis-4.0.10-lp150.3.3.1.x86_64.rpm redis-debuginfo-4.0.10-lp150.3.3.1.x86_64.rpm redis-debugsource-4.0.10-lp150.3.3.1.x86_64.rpm openSUSE-2018-672 moderate openSUSE Leap 15.0 Update This update for go1.9 fixes the following issues: Security issues fixed: - CVE-2018-7187: arbitrary command execution via VCS path (boo#1081495) Non-security changes: - Update to version 1.9.7 - fixes to the go command and compiler - minimal support to the go command for the vgo transition go-1.9.7-lp150.2.4.1.src.rpm go-1.9.7-lp150.2.4.1.x86_64.rpm go-doc-1.9.7-lp150.2.4.1.x86_64.rpm go-race-1.9.7-lp150.2.4.1.x86_64.rpm go1.9-1.9.7-lp150.2.4.2.src.rpm go1.9-1.9.7-lp150.2.4.2.x86_64.rpm go1.9-doc-1.9.7-lp150.2.4.2.x86_64.rpm go1.9-race-1.9.7-lp150.2.4.2.x86_64.rpm go-1.9.7-lp150.2.4.1.i586.rpm go-doc-1.9.7-lp150.2.4.1.i586.rpm go1.9-1.9.7-lp150.2.4.2.i586.rpm go1.9-doc-1.9.7-lp150.2.4.2.i586.rpm openSUSE-2018-673 moderate openSUSE Leap 15.0 Update This update for hg-git fixes the following issues: - hg-git was incompatible with mercurial 4.5 (boo#1096561) This update to version 0.8.11 also contains the following changes: - add config knob for marking git branches public - re-enable support for git subrepositories hg-git-0.8.11-lp150.2.3.1.noarch.rpm hg-git-0.8.11-lp150.2.3.1.src.rpm openSUSE-2018-666 moderate openSUSE Leap 15.0 Update This update for perl-Finance-Quote fixes the following issues: - GnuCash was no longer able to retrieve pricing information for various securities (boo#1077300) perl-Finance-Quote-1.47-lp150.2.3.1.noarch.rpm perl-Finance-Quote-1.47-lp150.2.3.1.src.rpm openSUSE-2018-671 important openSUSE Leap 15.0 Update This update for hylafax+ fixes the following issues: - hylafax+ failed to start with message '550 Cannot set privileges' (boo#1091476) hylafax+-5.5.9-lp150.5.3.1.src.rpm hylafax+-5.5.9-lp150.5.3.1.x86_64.rpm hylafax+-client-5.5.9-lp150.5.3.1.x86_64.rpm hylafax+-client-debuginfo-5.5.9-lp150.5.3.1.x86_64.rpm hylafax+-debuginfo-5.5.9-lp150.5.3.1.x86_64.rpm hylafax+-debugsource-5.5.9-lp150.5.3.1.x86_64.rpm libfaxutil5_5_9-5.5.9-lp150.5.3.1.x86_64.rpm libfaxutil5_5_9-debuginfo-5.5.9-lp150.5.3.1.x86_64.rpm openSUSE-2018-689 low openSUSE Leap 15.0 Update This update for GraphicsMagick fixes the following issues: The following security fixes were fixed: - CVE-2018-10805: Fixed a memory leak in ReadYCBCRImage in coders/ycbcr.c and rgb.c, cmyk.c and gray.c (boo#1095812) - Fixed invalid memory reads in dcm.c (boo#1075821#c14) GraphicsMagick-1.3.29-lp150.3.6.1.src.rpm GraphicsMagick-1.3.29-lp150.3.6.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.29-lp150.3.6.1.x86_64.rpm GraphicsMagick-debugsource-1.3.29-lp150.3.6.1.x86_64.rpm GraphicsMagick-devel-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.6.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.29-lp150.3.6.1.x86_64.rpm perl-GraphicsMagick-1.3.29-lp150.3.6.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.29-lp150.3.6.1.x86_64.rpm openSUSE-2018-679 moderate openSUSE Leap 15.0 Update This update for kwayland fixes the following issues: - Under Wayland, copy-past from GTK3 applications did not work (boo#1097606) kwayland-5.45.0-lp150.2.3.1.src.rpm kwayland-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-debugsource-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-devel-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-devel-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-32bit-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-32bit-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-5.45.0-lp150.2.3.1.i586.rpm kwayland-debuginfo-5.45.0-lp150.2.3.1.i586.rpm kwayland-debugsource-5.45.0-lp150.2.3.1.i586.rpm kwayland-devel-32bit-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-devel-32bit-debuginfo-5.45.0-lp150.2.3.1.x86_64.rpm kwayland-devel-5.45.0-lp150.2.3.1.i586.rpm kwayland-devel-debuginfo-5.45.0-lp150.2.3.1.i586.rpm openSUSE-2018-670 moderate openSUSE Leap 15.0 Update This update for VirtualGL fixes the following issues: - VirtualGL would pick up the Nvidia OpenGL library to environment files which changed the preload order (boo#1097210) VirtualGL-2.5.2-lp150.2.3.1.src.rpm VirtualGL-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-debuginfo-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-debugsource-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-devel-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-2.5.2-lp150.2.3.1.i586.rpm VirtualGL-32bit-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-32bit-debuginfo-2.5.2-lp150.2.3.1.x86_64.rpm VirtualGL-debuginfo-2.5.2-lp150.2.3.1.i586.rpm VirtualGL-debugsource-2.5.2-lp150.2.3.1.i586.rpm VirtualGL-devel-2.5.2-lp150.2.3.1.i586.rpm openSUSE-2018-680 moderate openSUSE Leap 15.0 Update This update for libXaw fixes the following issues: - a segmentation fault may have occurred in xen PV domU during a live migration if a required font was not installed (boo#1098411) libXaw-1.0.13-lp150.2.3.1.src.rpm libXaw-debugsource-1.0.13-lp150.2.3.1.x86_64.rpm libXaw-devel-1.0.13-lp150.2.3.1.x86_64.rpm libXaw6-1.0.13-lp150.2.3.1.x86_64.rpm libXaw6-debuginfo-1.0.13-lp150.2.3.1.x86_64.rpm libXaw7-1.0.13-lp150.2.3.1.x86_64.rpm libXaw7-debuginfo-1.0.13-lp150.2.3.1.x86_64.rpm libXaw8-1.0.13-lp150.2.3.1.x86_64.rpm libXaw-debugsource-1.0.13-lp150.2.3.1.i586.rpm libXaw-devel-1.0.13-lp150.2.3.1.i586.rpm libXaw-devel-32bit-1.0.13-lp150.2.3.1.x86_64.rpm libXaw6-1.0.13-lp150.2.3.1.i586.rpm libXaw6-32bit-1.0.13-lp150.2.3.1.x86_64.rpm libXaw6-32bit-debuginfo-1.0.13-lp150.2.3.1.x86_64.rpm libXaw6-debuginfo-1.0.13-lp150.2.3.1.i586.rpm libXaw7-1.0.13-lp150.2.3.1.i586.rpm libXaw7-32bit-1.0.13-lp150.2.3.1.x86_64.rpm libXaw7-32bit-debuginfo-1.0.13-lp150.2.3.1.x86_64.rpm libXaw7-debuginfo-1.0.13-lp150.2.3.1.i586.rpm libXaw8-1.0.13-lp150.2.3.1.i586.rpm libXaw8-32bit-1.0.13-lp150.2.3.1.x86_64.rpm openSUSE-2018-669 important openSUSE Leap 15.0 Update This update for phpMyAdmin fixes multiple issues. Security issues fixed: * CVE-2018-12613: File inclusion and remote code execution attack (boo#1098751) * CVE-2018-12581: XSS in Designer feature (boo#1098752) This update to version 4.8.2 also contains number of upstream bug fixes and improvements. phpMyAdmin-4.8.2-lp150.2.3.1.noarch.rpm phpMyAdmin-4.8.2-lp150.2.3.1.src.rpm openSUSE-2018-681 moderate openSUSE Leap 15.0 Update This update for putty fixes the following issues: - putty did not start under Wayland (boo#1098962) putty-0.70-lp150.4.3.1.src.rpm putty-0.70-lp150.4.3.1.x86_64.rpm putty-debuginfo-0.70-lp150.4.3.1.x86_64.rpm putty-debugsource-0.70-lp150.4.3.1.x86_64.rpm openSUSE-2018-682 moderate openSUSE Leap 15.0 Update This optional update makes available znc version 1.7.0 with multiple useful features: - Implement IRCv3.2 capabilities away-notify, account-notify, extended-join - Implement IRCv3.2 capabilities echo-message, cap-notify on the "client side" - Update capability names as they are named in IRCv3.2 - Make ZNC request server-time from server when available (#839) - Increase accepted line length from 1024 to 2048 to give some space to message tags - Support separate SSLKeyFile and SSLDHParamFile configuration in addition to existing SSLCertFile - Add modules: pyeval, stripcontrols - Add new substitutions to ExpandString: %empty% and %network% - Add ClearAllBuffers command - Set HttpOnly and SameSite=strict for session cookies - Add SNI SSL client support (#1200) - Add support for CIDR notation in allowed hosts list and in trusted proxy list - Add network-specific config for cert validation in addition to user-supplied fingerprints - Add /attach command for symmetry with /detach znc-1.7.0-lp150.2.3.1.src.rpm znc-1.7.0-lp150.2.3.1.x86_64.rpm znc-debuginfo-1.7.0-lp150.2.3.1.x86_64.rpm znc-debugsource-1.7.0-lp150.2.3.1.x86_64.rpm znc-devel-1.7.0-lp150.2.3.1.x86_64.rpm znc-lang-1.7.0-lp150.2.3.1.noarch.rpm znc-perl-1.7.0-lp150.2.3.1.x86_64.rpm znc-perl-debuginfo-1.7.0-lp150.2.3.1.x86_64.rpm znc-python3-1.7.0-lp150.2.3.1.x86_64.rpm znc-python3-debuginfo-1.7.0-lp150.2.3.1.x86_64.rpm znc-tcl-1.7.0-lp150.2.3.1.x86_64.rpm znc-tcl-debuginfo-1.7.0-lp150.2.3.1.x86_64.rpm openSUSE-2018-678 moderate openSUSE Leap 15.0 Update This update for wireless-regdb to version 2018.05.09 provides the following fixes: (bsc#1095397) - Updated regulatory database for France and Panama. - Fixes in python3 scripts. This update was imported from the SUSE:SLE-12:Update update project. wireless-regdb-2018.05.09-lp150.2.3.1.noarch.rpm wireless-regdb-2018.05.09-lp150.2.3.1.src.rpm openSUSE-2018-676 important openSUSE Leap 15.0 Update This security update for MozillaFirefox to version 60.1.0esr fixes multiple issues. Security issues fixed (MFSA 2018-16, boo#1098998): - CVE-2018-12359: Buffer overflow using computed size of canvas element - CVE-2018-12360: Use-after-free when using focus() - CVE-2018-12361: Integer overflow in SwizzleData - CVE-2018-12362: Integer overflow in SSSE3 scaler - CVE-2018-5156: Media recorder segmentation fault when track type is changed during capture - CVE-2018-12363: Use-after-free when appending DOM nodes - CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins - CVE-2018-12365: Compromised IPC child process can list local filenames - CVE-2018-12371: Integer overflow in Skia library during edge builder allocation - CVE-2018-12366: Invalid data handling during QCMS transformations - CVE-2018-12367: Timing attack mitigation of PerformanceNavigationTiming - CVE-2018-12369: WebExtension security permission checks bypassed by embedded experiments - CVE-2018-5187: Memory safety bugs fixed in Firefox 60 and Firefox ESR 60.1 - CVE-2018-5188: Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9 Other issues fixed: - various stability and regression fixes - do not disable system installed unsigned language packs (bmo#1464766) MozillaFirefox-60.1.0-lp150.3.11.1.src.rpm MozillaFirefox-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-branding-upstream-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-buildsymbols-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-debuginfo-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-debugsource-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-devel-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-translations-common-60.1.0-lp150.3.11.1.x86_64.rpm MozillaFirefox-translations-other-60.1.0-lp150.3.11.1.x86_64.rpm openSUSE-2018-691 moderate openSUSE Leap 15.0 Update This update for mailman to version 2.1.27 fixes the following issues: This security issue was fixed: - CVE-2018-0618: Additional protections against injecting scripts into listinfo and error messages pages (bsc#1099510). These non-security issues were fixed: - The hash generated when SUBSCRIBE_FORM_SECRET is set could have been the same as one generated at the same time for a different list and IP address. - An option has been added to bin/add_members to issue invitations instead of immediately adding members. - A new BLOCK_SPAMHAUS_LISTED_IP_SUBSCRIBE setting has been added to enable blocking web subscribes from IPv4 addresses listed in Spamhaus SBL, CSS or XBL. It will work with IPv6 addresses if Python's py2-ipaddress module is installed. The module can be installed via pip if not included in your Python. - Mailman has a new 'security' log and logs authentication failures to the various web CGI functions. The logged data include the remote IP and can be used to automate blocking of IPs with something like fail2ban. Since Mailman 2.1.14, these have returned an http 401 status and the information should be logged by the web server, but this new log makes that more convenient. Also, the 'mischief' log entries for 'hostile listname' noe include the remote IP if available. - admin notices of (un)subscribes now may give the source of the action. This consists of a %(whence)s replacement that has been added to the admin(un)subscribeack.txt templates. Thanks to Yasuhito FUTATSUKI for updating the non-English templates and help with internationalizing the reasons. - there is a new BLOCK_SPAMHAUS_LISTED_DBL_SUBSCRIBE setting to enable blocking web subscribes for addresses in domains listed in the Spamhaus DBL. mailman-2.1.27-lp150.2.3.1.src.rpm mailman-2.1.27-lp150.2.3.1.x86_64.rpm mailman-debuginfo-2.1.27-lp150.2.3.1.x86_64.rpm mailman-debugsource-2.1.27-lp150.2.3.1.x86_64.rpm openSUSE-2018-692 moderate openSUSE Leap 15.0 Update This update for spec-cleaner fixes the following issues (boo#1099674): - An error was reported on parsing non-utf spec-file - Move some checks from rpmlint to be autochecked - Use Leap 15.0 as base for conversions to pkgconfig/etc spec-cleaner-1.1.0-lp150.2.5.1.noarch.rpm spec-cleaner-1.1.0-lp150.2.5.1.src.rpm spec-cleaner-format_spec_file-1.1.0-lp150.2.5.1.noarch.rpm openSUSE-2018-697 moderate openSUSE Leap 15.0 Update This update for git-annex to version 6.20180626 fixes the following issues: - CVE-2018-10857: Prevent file content disclosure by refusing to download content that cannot be verified with a hash, from encrypted special remotes and glacier (bsc#1098062). - CVE-2018-10859: Prevent local gpg encrypted file disclosure by refusing to download content that cannot be verified with a hash, from encrypted special remotes (bsc#1098364). This update brings many other bug fixes and new features. http://hackage.haskell.org/package/git-annex-6.20180626/changelog has a detailed list of changes. git-annex-6.20180626-lp150.2.5.1.src.rpm git-annex-6.20180626-lp150.2.5.1.x86_64.rpm git-annex-bash-completion-6.20180626-lp150.2.5.1.x86_64.rpm openSUSE-2018-702 moderate openSUSE Leap 15.0 Update This update for opensc fixes the following issues: - Support of Feitian epass2003 was broken (boo#1097951) opensc-0.17.0-lp150.2.3.1.src.rpm opensc-0.17.0-lp150.2.3.1.x86_64.rpm opensc-debuginfo-0.17.0-lp150.2.3.1.x86_64.rpm opensc-debugsource-0.17.0-lp150.2.3.1.x86_64.rpm opensc-0.17.0-lp150.2.3.1.i586.rpm opensc-32bit-0.17.0-lp150.2.3.1.x86_64.rpm opensc-32bit-debuginfo-0.17.0-lp150.2.3.1.x86_64.rpm opensc-debuginfo-0.17.0-lp150.2.3.1.i586.rpm opensc-debugsource-0.17.0-lp150.2.3.1.i586.rpm openSUSE-2018-695 moderate openSUSE Leap 15.0 Update This update for curl provides the following fix: - Use OPENSSL_config() instead of CONF_modules_load_file() to avoid crashes due to conflicting openssl engines. (bsc#1086367) This update was imported from the SUSE:SLE-15:Update update project. curl-mini-7.60.0-lp150.2.6.1.src.rpm curl-mini-7.60.0-lp150.2.6.1.x86_64.rpm curl-mini-debuginfo-7.60.0-lp150.2.6.1.x86_64.rpm curl-mini-debugsource-7.60.0-lp150.2.6.1.x86_64.rpm libcurl-mini-devel-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-mini-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-mini-debuginfo-7.60.0-lp150.2.6.1.x86_64.rpm curl-7.60.0-lp150.2.6.1.src.rpm curl-7.60.0-lp150.2.6.1.x86_64.rpm curl-debuginfo-7.60.0-lp150.2.6.1.x86_64.rpm curl-debugsource-7.60.0-lp150.2.6.1.x86_64.rpm libcurl-devel-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-debuginfo-7.60.0-lp150.2.6.1.x86_64.rpm curl-mini-7.60.0-lp150.2.6.1.i586.rpm curl-mini-debuginfo-7.60.0-lp150.2.6.1.i586.rpm curl-mini-debugsource-7.60.0-lp150.2.6.1.i586.rpm libcurl-mini-devel-7.60.0-lp150.2.6.1.i586.rpm libcurl4-mini-7.60.0-lp150.2.6.1.i586.rpm libcurl4-mini-debuginfo-7.60.0-lp150.2.6.1.i586.rpm curl-7.60.0-lp150.2.6.1.i586.rpm curl-debuginfo-7.60.0-lp150.2.6.1.i586.rpm curl-debugsource-7.60.0-lp150.2.6.1.i586.rpm libcurl-devel-32bit-7.60.0-lp150.2.6.1.x86_64.rpm libcurl-devel-7.60.0-lp150.2.6.1.i586.rpm libcurl4-32bit-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-32bit-debuginfo-7.60.0-lp150.2.6.1.x86_64.rpm libcurl4-7.60.0-lp150.2.6.1.i586.rpm libcurl4-debuginfo-7.60.0-lp150.2.6.1.i586.rpm openSUSE-2018-698 moderate openSUSE Leap 15.0 Update This update for cairo fixes the following issues: The following security vulnerability was addressed: - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with _cairo_malloc and checking the size before memory allocation (bsc#1049092) This update was imported from the SUSE:SLE-15:Update update project. cairo-1.15.10-lp150.3.3.1.src.rpm cairo-debugsource-1.15.10-lp150.3.3.1.x86_64.rpm cairo-devel-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm cairo-debugsource-1.15.10-lp150.3.3.1.i586.rpm cairo-devel-1.15.10-lp150.3.3.1.i586.rpm cairo-devel-32bit-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-1.15.10-lp150.3.3.1.i586.rpm cairo-tools-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo-gobject2-1.15.10-lp150.3.3.1.i586.rpm libcairo-gobject2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo-script-interpreter2-1.15.10-lp150.3.3.1.i586.rpm libcairo-script-interpreter2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo2-1.15.10-lp150.3.3.1.i586.rpm libcairo2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm openSUSE-2018-699 moderate openSUSE Leap 15.0 Update This update for zsh to version 5.5 fixes the following issues: Security issues fixed: - CVE-2018-1100: Fixes a buffer overflow in utils.c:checkmailpath() that can lead to local arbitrary code execution (bsc#1089030) - CVE-2018-1071: Fixed a stack-based buffer overflow in exec.c:hashcmd() (bsc#1084656) - CVE-2018-1083: Fixed a stack-based buffer overflow in gen_matches_files() at compctl.c (bsc#1087026) Non-security issues fixed: - The effect of the NO_INTERACTIVE_COMMENTS option extends into $(...) and `...` command substitutions when used on the command line. - The 'exec' and 'command' precommand modifiers, and options to them, are now parsed after parameter expansion. - Functions executed by ZLE widgets no longer have their standard input closed, but redirected from /dev/null instead. - There is an option WARN_NESTED_VAR, a companion to the existing WARN_CREATE_GLOBAL that causes a warning if a function updates a variable from an enclosing scope without using typeset -g. - zmodload now has an option -s to be silent on a failure to find a module but still print other errors. This update was imported from the SUSE:SLE-15:Update update project. zsh-5.5-lp150.2.3.1.src.rpm zsh-5.5-lp150.2.3.1.x86_64.rpm zsh-debuginfo-5.5-lp150.2.3.1.x86_64.rpm zsh-debugsource-5.5-lp150.2.3.1.x86_64.rpm zsh-htmldoc-5.5-lp150.2.3.1.x86_64.rpm openSUSE-2018-715 moderate openSUSE Leap 15.0 Update This update for lxqt-panel fixes the following issues: - Bugfix: lxqt-panel has called an invalid volume plugin name (boo#1043608) lxqt-panel-0.12.0-lp150.2.3.1.src.rpm lxqt-panel-0.12.0-lp150.2.3.1.x86_64.rpm lxqt-panel-debuginfo-0.12.0-lp150.2.3.1.x86_64.rpm lxqt-panel-debugsource-0.12.0-lp150.2.3.1.x86_64.rpm lxqt-panel-devel-0.12.0-lp150.2.3.1.x86_64.rpm openSUSE-2018-701 moderate openSUSE Leap 15.0 Update This update for Mozilla Thunderbird to version 52.9.0 fixes multiple issues. Security issues fixed, inherited from the Mozilla common code base (MFSA 2018-16, bsc#1098998): - CVE-2018-12359: Buffer overflow using computed size of canvas element - CVE-2018-12360: Use-after-free when using focus() - CVE-2018-12362: Integer overflow in SSSE3 scaler - CVE-2018-12363: Use-after-free when appending DOM nodes - CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins - CVE-2018-12365: Compromised IPC child process can list local filenames - CVE-2018-12366: Invalid data handling during QCMS transformations - CVE-2018-5188: Memory safety bugs fixed in Thunderbird 52.9.0 Security issues fixed that affect e-mail privacy and integrity (including EFAIL): - CVE-2018-12372: S/MIME and PGP decryption oracles can be built with HTML emails (bsc#1100082) - CVE-2018-12373: S/MIME plaintext can be leaked through HTML reply/forward (bsc#1100079) - CVE-2018-12374: Using form to exfiltrate encrypted mail part by pressing enter in form field (bsc#1100081) The following options are available for added security in certain scenarios: - Option for not decrypting subordinate message parts that otherwise might reveal decryted content to the attacker. Preference mailnews.p7m_subparts_external needs to be set to true for added security. The following upstream changes are included: - Thunderbird will now prompt to compact IMAP folders even if the account is online - Fix various problems when forwarding messages inline when using "simple" HTML view The following tracked packaging changes are included: - correct requires and provides handling (boo#1076907) - reduce memory footprint with %ix86 at linking time via additional compiler flags (boo#1091376) - Build from upstream source archive and verify source signature (boo#1085780) MozillaThunderbird-52.9.0-lp150.3.8.1.src.rpm MozillaThunderbird-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-buildsymbols-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-debuginfo-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-debugsource-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-devel-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-translations-common-52.9.0-lp150.3.8.1.x86_64.rpm MozillaThunderbird-translations-other-52.9.0-lp150.3.8.1.x86_64.rpm openSUSE-2018-727 moderate openSUSE Leap 15.0 Update This update for exiv2 to 0.26 fixes the following security issues: - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service (bsc#1060995). - CVE-2017-14862: Prevent invalid memory address dereference in Exiv2::DataValue::read that could have caused a segmentation fault and application crash, which leads to denial of service (bsc#1060996). - CVE-2017-14859: Prevent invalid memory address dereference in Exiv2::StringValueBase::read that could have caused a segmentation fault and application crash, which leads to denial of service (bsc#1061000). - CVE-2017-14860: Prevent heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function via a crafted input that could have lead to a denial of service attack (bsc#1061023). - CVE-2017-11337: Prevent invalid free in the Action::TaskFactory::cleanup function via a crafted input that could have lead to a remote denial of service attack (bsc#1048883). - CVE-2017-11338: Prevent infinite loop in the Exiv2::Image::printIFDStructure function via a crafted input that could have lead to a remote denial of service attack (bsc#1048883). - CVE-2017-11339: Prevent heap-based buffer overflow in the Image::printIFDStructure function via a crafted input that could have lead to a remote denial of service attack (bsc#1048883). - CVE-2017-11340: Prevent Segmentation fault in the XmpParser::terminate() function via a crafted input that could have lead to a remote denial of service attack (bsc#1048883). - CVE-2017-12955: Prevent heap-based buffer overflow. The vulnerability caused an out-of-bounds write in Exiv2::Image::printIFDStructure(), which may lead to remote denial of service or possibly unspecified other impact (bsc#1054593). - CVE-2017-12956: Preventn illegal address access in Exiv2::FileIo::path[abi:cxx11]() that could have lead to remote denial of service (bsc#1054592). - CVE-2017-12957: Prevent heap-based buffer over-read that was triggered in the Exiv2::Image::io function and could have lead to remote denial of service (bsc#1054590). - CVE-2017-11683: Prevent reachable assertion in the Internal::TiffReader::visitDirectory function that could have lead to a remote denial of service attack via crafted input (bsc#1051188). - CVE-2017-11591: Prevent Floating point exception in the Exiv2::ValueType function that could have lead to a remote denial of service attack via crafted input (bsc#1050257). - CVE-2017-11553: Prevent illegal address access in the extend_alias_table function via a crafted input could have lead to remote denial of service. - CVE-2017-11592: Prevent mismatched Memory Management Routines vulnerability in the Exiv2::FileIo::seek function that could have lead to a remote denial of service attack (heap memory corruption) via crafted input. This update was imported from the SUSE:SLE-15:Update update project. exiv2-0.26-lp150.5.3.1.src.rpm exiv2-0.26-lp150.5.3.1.x86_64.rpm exiv2-debuginfo-0.26-lp150.5.3.1.x86_64.rpm exiv2-debugsource-0.26-lp150.5.3.1.x86_64.rpm exiv2-lang-0.26-lp150.5.3.1.noarch.rpm libexiv2-26-0.26-lp150.5.3.1.x86_64.rpm libexiv2-26-debuginfo-0.26-lp150.5.3.1.x86_64.rpm libexiv2-devel-0.26-lp150.5.3.1.x86_64.rpm libexiv2-doc-0.26-lp150.5.3.1.x86_64.rpm exiv2-0.26-lp150.5.3.1.i586.rpm exiv2-debuginfo-0.26-lp150.5.3.1.i586.rpm exiv2-debugsource-0.26-lp150.5.3.1.i586.rpm libexiv2-26-0.26-lp150.5.3.1.i586.rpm libexiv2-26-32bit-0.26-lp150.5.3.1.x86_64.rpm libexiv2-26-32bit-debuginfo-0.26-lp150.5.3.1.x86_64.rpm libexiv2-26-debuginfo-0.26-lp150.5.3.1.i586.rpm libexiv2-devel-0.26-lp150.5.3.1.i586.rpm libexiv2-doc-0.26-lp150.5.3.1.i586.rpm openSUSE-2018-706 moderate openSUSE Leap 15.0 Update This update for ghostscript fixes the following issues: - CVE-2018-10194: The set_text_distance function did not prevent overflows in text-positioning calculation, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document (bsc#1090099). This update was imported from the SUSE:SLE-15:Update update project. ghostscript-mini-9.23-lp150.2.3.1.src.rpm ghostscript-mini-9.23-lp150.2.3.1.x86_64.rpm ghostscript-mini-debuginfo-9.23-lp150.2.3.1.x86_64.rpm ghostscript-mini-debugsource-9.23-lp150.2.3.1.x86_64.rpm ghostscript-mini-devel-9.23-lp150.2.3.1.x86_64.rpm ghostscript-9.23-lp150.2.3.1.src.rpm ghostscript-9.23-lp150.2.3.1.x86_64.rpm ghostscript-debuginfo-9.23-lp150.2.3.1.x86_64.rpm ghostscript-debugsource-9.23-lp150.2.3.1.x86_64.rpm ghostscript-devel-9.23-lp150.2.3.1.x86_64.rpm ghostscript-x11-9.23-lp150.2.3.1.x86_64.rpm ghostscript-x11-debuginfo-9.23-lp150.2.3.1.x86_64.rpm ghostscript-mini-9.23-lp150.2.3.1.i586.rpm ghostscript-mini-debuginfo-9.23-lp150.2.3.1.i586.rpm ghostscript-mini-debugsource-9.23-lp150.2.3.1.i586.rpm ghostscript-mini-devel-9.23-lp150.2.3.1.i586.rpm ghostscript-9.23-lp150.2.3.1.i586.rpm ghostscript-debuginfo-9.23-lp150.2.3.1.i586.rpm ghostscript-debugsource-9.23-lp150.2.3.1.i586.rpm ghostscript-devel-9.23-lp150.2.3.1.i586.rpm ghostscript-x11-9.23-lp150.2.3.1.i586.rpm ghostscript-x11-debuginfo-9.23-lp150.2.3.1.i586.rpm openSUSE-2018-722 moderate openSUSE Leap 15.0 Update This update for libvorbis fixes the following issues: The following security issue was fixed: - Fixed the validation of channels in mapping0_forward(), which previously allowed remote attackers to cause a denial of service via specially crafted files (CVE-2018-10392, bsc#1091070) This update was imported from the SUSE:SLE-15:Update update project. libvorbis-doc-1.3.6-lp150.3.3.1.noarch.rpm libvorbis-doc-1.3.6-lp150.3.3.1.src.rpm libvorbis-1.3.6-lp150.3.3.1.src.rpm libvorbis-debugsource-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis-devel-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis0-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis0-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisenc2-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisenc2-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisfile3-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisfile3-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis-debugsource-1.3.6-lp150.3.3.1.i586.rpm libvorbis-devel-1.3.6-lp150.3.3.1.i586.rpm libvorbis-devel-32bit-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis0-1.3.6-lp150.3.3.1.i586.rpm libvorbis0-32bit-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis0-32bit-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbis0-debuginfo-1.3.6-lp150.3.3.1.i586.rpm libvorbisenc2-1.3.6-lp150.3.3.1.i586.rpm libvorbisenc2-32bit-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisenc2-32bit-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisenc2-debuginfo-1.3.6-lp150.3.3.1.i586.rpm libvorbisfile3-1.3.6-lp150.3.3.1.i586.rpm libvorbisfile3-32bit-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisfile3-32bit-debuginfo-1.3.6-lp150.3.3.1.x86_64.rpm libvorbisfile3-debuginfo-1.3.6-lp150.3.3.1.i586.rpm openSUSE-2018-705 moderate openSUSE Leap 15.0 Update This update for openvpn fixes the following issues: - CVE-2018-9336: Fix potential double-free() in Interactive Service could lead to denial of service (bsc#1090839). This update was imported from the SUSE:SLE-15:Update update project. openvpn-2.4.3-lp150.3.3.1.src.rpm openvpn-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-auth-pam-plugin-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-auth-pam-plugin-debuginfo-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-debuginfo-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-debugsource-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-devel-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-down-root-plugin-2.4.3-lp150.3.3.1.x86_64.rpm openvpn-down-root-plugin-debuginfo-2.4.3-lp150.3.3.1.x86_64.rpm openSUSE-2018-728 moderate openSUSE Leap 15.0 Update This update for tiff fixes the following security issues: These security issues were fixed: - CVE-2017-18013: Fixed a NULL pointer dereference in the tif_print.cTIFFPrintDirectory function that could have lead to denial of service (bsc#1074317). - CVE-2018-10963: Fixed an assertion failure in the TIFFWriteDirectorySec() function in tif_dirwrite.c, which allowed remote attackers to cause a denial of service via a crafted file (bsc#1092949). - CVE-2018-7456: Prevent a NULL Pointer dereference in the function TIFFPrintDirectory when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013 (bsc#1082825). - CVE-2017-11613: Prevent denial of service in the TIFFOpen function. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If the value of td_imagelength is set close to the amount of system memory, it will hang the system or trigger the OOM killer (bsc#1082332). - CVE-2018-8905: Prevent heap-based buffer overflow in the function LZWDecodeCompat via a crafted TIFF file (bsc#1086408). This update was imported from the SUSE:SLE-15:Update update project. libtiff-devel-4.0.9-lp150.4.3.1.x86_64.rpm libtiff5-4.0.9-lp150.4.3.1.x86_64.rpm libtiff5-debuginfo-4.0.9-lp150.4.3.1.x86_64.rpm tiff-4.0.9-lp150.4.3.1.src.rpm tiff-4.0.9-lp150.4.3.1.x86_64.rpm tiff-debuginfo-4.0.9-lp150.4.3.1.x86_64.rpm tiff-debugsource-4.0.9-lp150.4.3.1.x86_64.rpm libtiff-devel-32bit-4.0.9-lp150.4.3.1.x86_64.rpm libtiff-devel-4.0.9-lp150.4.3.1.i586.rpm libtiff5-32bit-4.0.9-lp150.4.3.1.x86_64.rpm libtiff5-32bit-debuginfo-4.0.9-lp150.4.3.1.x86_64.rpm libtiff5-4.0.9-lp150.4.3.1.i586.rpm libtiff5-debuginfo-4.0.9-lp150.4.3.1.i586.rpm tiff-4.0.9-lp150.4.3.1.i586.rpm tiff-debuginfo-4.0.9-lp150.4.3.1.i586.rpm tiff-debugsource-4.0.9-lp150.4.3.1.i586.rpm openSUSE-2018-709 moderate openSUSE Leap 15.0 Update This update for unzip fixes the following issues: - CVE-2014-9636: Prevent denial of service (out-of-bounds read or write and crash) via an extra field with an uncompressed size smaller than the compressed field size in a zip archive that advertises STORED method compression (bsc#914442) - CVE-2018-1000035: Prevent heap-based buffer overflow in the processing of password-protected archives that allowed an attacker to perform a denial of service or to possibly achieve code execution (bsc#1080074) This non-security issue was fixed: +- Allow processing of Windows zip64 archives (Windows archivers set total_disks field to 0 but per standard, valid values are 1 and higher) (bnc#910683) This update was imported from the SUSE:SLE-15:Update update project. unzip-rcc-6.00-lp150.3.3.1.src.rpm unzip-rcc-6.00-lp150.3.3.1.x86_64.rpm unzip-rcc-debuginfo-6.00-lp150.3.3.1.x86_64.rpm unzip-rcc-debugsource-6.00-lp150.3.3.1.x86_64.rpm unzip-6.00-lp150.3.3.1.src.rpm unzip-6.00-lp150.3.3.1.x86_64.rpm unzip-debuginfo-6.00-lp150.3.3.1.x86_64.rpm unzip-debugsource-6.00-lp150.3.3.1.x86_64.rpm unzip-doc-6.00-lp150.3.3.1.x86_64.rpm unzip-6.00-lp150.3.3.1.i586.rpm unzip-debuginfo-6.00-lp150.3.3.1.i586.rpm unzip-debugsource-6.00-lp150.3.3.1.i586.rpm unzip-doc-6.00-lp150.3.3.1.i586.rpm openSUSE-2018-700 important openSUSE Leap 15.0 Update This update for ucode-intel fixes the following issues: The microcode bundles was updated to the 20180703 release For the listed CPU chipsets this fixes CVE-2018-3640 (Spectre v3a) and helps mitigating CVE-2018-3639 (Spectre v4) (bsc#1100147 bsc#1087082 bsc#1087083). More information on: https://downloadcenter.intel.com/download/27945/Linux-Processor-Microcode-Data-File Following chipsets are fixed in this round: Model Stepping F-MO-S/PI Old->New ---- updated platforms ------------------------------------ SNB-EP C1 6-2d-6/6d 0000061c->0000061d Xeon E5 SNB-EP C2 6-2d-7/6d 00000713->00000714 Xeon E5 IVT C0 6-3e-4/ed 0000042c->0000042d Xeon E5 v2; Core i7-4960X/4930K/4820K IVT D1 6-3e-7/ed 00000713->00000714 Xeon E5 v2 HSX-E/EP/4S C0 6-3f-2/6f 0000003c->0000003d Xeon E5 v3 HSX-EX E0 6-3f-4/80 00000011->00000012 Xeon E7 v3 SKX-SP/D/W/X H0 6-55-4/b7 02000043->0200004d Xeon Bronze 31xx, Silver 41xx, Gold 51xx/61xx Platinum 81xx, D/W-21xx; Core i9-7xxxX BDX-DE A1 6-56-5/10 0e000009->0e00000a Xeon D-15x3N BDX-ML B/M/R0 6-4f-1/ef 0b00002c->0b00002e Xeon E5/E7 v4; Core i7-69xx/68xx ucode-intel-20180703-lp150.2.4.1.src.rpm ucode-intel-20180703-lp150.2.4.1.x86_64.rpm openSUSE-2018-712 moderate openSUSE Leap 15.0 Update This update for nextcloud fixes the following issues: Security issues fixed: - CVE-2018-3761: Fix improper authentication on the OAuth2 token endpoint (bsc#1100344). - CVE-2018-3762: Fix improper checks of dropped permissions for incoming shares allowing a user to still request previews for files it should not have access to (bsc#1100343). nextcloud-13.0.4-lp150.2.3.1.noarch.rpm nextcloud-13.0.4-lp150.2.3.1.src.rpm openSUSE-2018-717 moderate openSUSE Leap 15.0 Update This update for virtualbox fixes the following issue: - The warning box regarding the USB password features was updated (boo#1097248) This update to the stable release 5.2.14 also contains the following upstream changes and fixes: - Fixd a segmentation fault when accessing the interface through VNC - Handle repeating keys on the host system correctly - Fix emulation of the undocumented SALC instruction - Fix emulation of so-called "huge unreal mode" - Keyboard: The PS/2 keyboard emulation has been corrected to not queue partial scan code sequences - Fix CUE file support to correct REM keyword parsing - Fix a problem where the emulated xHCI device under very rare circumstances failed to report an empty isochronous transfer ring error, causing the transfers on the corresponding endpoint to stop. - Audio: fix Linux kernel log flooding python3-virtualbox-5.2.14-lp150.4.6.1.x86_64.rpm python3-virtualbox-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-5.2.14-lp150.4.6.1.src.rpm virtualbox-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-debugsource-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-devel-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-guest-desktop-icons-5.2.14-lp150.4.6.1.noarch.rpm virtualbox-guest-kmp-default-5.2.14_k4.12.14_lp150.12.4-lp150.4.6.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.2.14_k4.12.14_lp150.12.4-lp150.4.6.1.x86_64.rpm virtualbox-guest-source-5.2.14-lp150.4.6.1.noarch.rpm virtualbox-guest-tools-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-guest-x11-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-host-kmp-default-5.2.14_k4.12.14_lp150.12.4-lp150.4.6.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.2.14_k4.12.14_lp150.12.4-lp150.4.6.1.x86_64.rpm virtualbox-host-source-5.2.14-lp150.4.6.1.noarch.rpm virtualbox-qt-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-qt-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-vnc-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-websrv-5.2.14-lp150.4.6.1.x86_64.rpm virtualbox-websrv-debuginfo-5.2.14-lp150.4.6.1.x86_64.rpm openSUSE-2018-724 moderate openSUSE Leap 15.0 Update This update for nodejs8 to version 8.11.3 fixes the following issues: These security issues were fixed: - CVE-2018-7167: Calling Buffer.fill() or Buffer.alloc() with some parameters could have lead to a hang which could have resulted in a DoS (bsc#1097375). - CVE-2018-7161: By interacting with the http2 server in a manner that triggered a cleanup bug where objects are used in native code after they are no longer available an attacker could have caused a denial of service (DoS) by causing a node server providing an http2 server to crash (bsc#1097404). - CVE-2018-1000168: Fixed a denial of service vulnerability by unbundling nghttp2 (bsc#1097401) This update was imported from the SUSE:SLE-15:Update update project. nodejs8-8.11.3-lp150.2.3.1.src.rpm nodejs8-8.11.3-lp150.2.3.1.x86_64.rpm nodejs8-debuginfo-8.11.3-lp150.2.3.1.x86_64.rpm nodejs8-debugsource-8.11.3-lp150.2.3.1.x86_64.rpm nodejs8-devel-8.11.3-lp150.2.3.1.x86_64.rpm nodejs8-docs-8.11.3-lp150.2.3.1.noarch.rpm npm8-8.11.3-lp150.2.3.1.x86_64.rpm nodejs8-8.11.3-lp150.2.3.1.i586.rpm nodejs8-debuginfo-8.11.3-lp150.2.3.1.i586.rpm nodejs8-debugsource-8.11.3-lp150.2.3.1.i586.rpm nodejs8-devel-8.11.3-lp150.2.3.1.i586.rpm npm8-8.11.3-lp150.2.3.1.i586.rpm openSUSE-2018-725 important openSUSE Leap 15.0 Update This update for openslp fixes the following issues: - CVE-2017-17833: Prevent heap-related memory corruption issue which may have manifested itself as a denial-of-service or a remote code-execution vulnerability (bsc#1090638) - Prevent out of bounds reads in message parsing This update was imported from the SUSE:SLE-15:Update update project. openslp-2.0.0-lp150.5.3.1.src.rpm openslp-2.0.0-lp150.5.3.1.x86_64.rpm openslp-debuginfo-2.0.0-lp150.5.3.1.x86_64.rpm openslp-debugsource-2.0.0-lp150.5.3.1.x86_64.rpm openslp-devel-2.0.0-lp150.5.3.1.x86_64.rpm openslp-server-2.0.0-lp150.5.3.1.x86_64.rpm openslp-server-debuginfo-2.0.0-lp150.5.3.1.x86_64.rpm openslp-2.0.0-lp150.5.3.1.i586.rpm openslp-32bit-2.0.0-lp150.5.3.1.x86_64.rpm openslp-32bit-debuginfo-2.0.0-lp150.5.3.1.x86_64.rpm openslp-debuginfo-2.0.0-lp150.5.3.1.i586.rpm openslp-debugsource-2.0.0-lp150.5.3.1.i586.rpm openslp-devel-2.0.0-lp150.5.3.1.i586.rpm openslp-server-2.0.0-lp150.5.3.1.i586.rpm openslp-server-debuginfo-2.0.0-lp150.5.3.1.i586.rpm openSUSE-2018-718 low openSUSE Leap 15.0 Update This update for calibre fixes the following issues: - Support for newer kobo firmware (4.9.11311) (boo#1100454) This version update to 3.27.1 also contains a number of upstream improvements and bug fixes: - Various UI fixes and improvements - Various fixes to e-book format conversions - Improvements ti Kindle Fire support calibre-3.27.1-lp150.3.6.1.src.rpm calibre-3.27.1-lp150.3.6.1.x86_64.rpm calibre-debuginfo-3.27.1-lp150.3.6.1.x86_64.rpm calibre-debugsource-3.27.1-lp150.3.6.1.x86_64.rpm openSUSE-2018-710 moderate openSUSE Leap 15.0 Update This update for mc fixes the following issues: - Fix logins to remote SSH sessions where only Keyboard-Interactive password is available and tunneled password is disabled (boo#1098235) - Fix mc to call xls2csv correctly (boo#1087708) mc-4.8.20-lp150.3.3.1.src.rpm mc-4.8.20-lp150.3.3.1.x86_64.rpm mc-debuginfo-4.8.20-lp150.3.3.1.x86_64.rpm mc-debugsource-4.8.20-lp150.3.3.1.x86_64.rpm mc-lang-4.8.20-lp150.3.3.1.noarch.rpm openSUSE-2018-711 important openSUSE Leap 15.0 Update This update for Mozilla Thunderbird fixes the following issue: * Deleting or detaching attachments corrupted messages under certain circumstances (boo#1100780) MozillaThunderbird-52.9.1-lp150.3.11.1.src.rpm MozillaThunderbird-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-buildsymbols-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-debuginfo-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-debugsource-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-devel-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-translations-common-52.9.1-lp150.3.11.1.x86_64.rpm MozillaThunderbird-translations-other-52.9.1-lp150.3.11.1.x86_64.rpm openSUSE-2018-713 moderate openSUSE Leap 15.0 Update This update for perl-Gtk2-Unique fixes the following issues: - Fix crash on starting of second instance (rt#120115, boo#1099774). perl-Gtk2-Unique-0.05-lp150.2.3.1.src.rpm perl-Gtk2-Unique-0.05-lp150.2.3.1.x86_64.rpm perl-Gtk2-Unique-debuginfo-0.05-lp150.2.3.1.x86_64.rpm perl-Gtk2-Unique-debugsource-0.05-lp150.2.3.1.x86_64.rpm openSUSE-2018-719 moderate openSUSE Leap 15.0 Update This update for SUSEConnect provides the following fixes: - Add dependencies needed by the rmt-client-setup script as Recommends. (bsc#1093658, bsc#1094348) - Enhance error message generation. - Add not supported operation exception to PackageSearch API. This update was imported from the SUSE:SLE-15:Update update project. SUSEConnect-0.3.11-lp150.2.6.1.src.rpm SUSEConnect-0.3.11-lp150.2.6.1.x86_64.rpm openSUSE-2018-720 moderate openSUSE Leap 15.0 Update This update for google-compute-engine fixes the following issues: - Ensure that google-ip-forwarding-daemon service and google-network-setup are stopped and disabled during upgrade. - Ensure that google-network-daemon service is enabled and started during upgrade. - Set run_dir to /var/run. (bsc#1097378, #1097616) This update was imported from the SUSE:SLE-15:Update update project. google-compute-engine-20180510-lp150.2.9.1.src.rpm google-compute-engine-init-20180510-lp150.2.9.1.noarch.rpm google-compute-engine-oslogin-20180510-lp150.2.9.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20180510-lp150.2.9.1.x86_64.rpm openSUSE-2018-729 moderate openSUSE Leap 15.0 Update This update for slurm to version 17.11.7 fixes the following issues: This security issue was fixed: - CVE-2018-10995: Ensure correct handling of user names and group ids (bsc#1095508). These non-security issues were fixed: - CRAY - Add slurmsmwd to the contribs/cray dir - PMIX - Added the direct connect authentication. - Prevent the backup slurmctld from losing the active/available node features list on takeover. - Be able to force power_down of cloud node even if in power_save state. - Allow cloud nodes to be recognized in Slurm when booted out of band. - Notify srun and ctld when unkillable stepd exits. - Fixes daemoniziation in newly introduced slurmsmwd daemon. The following tracked packaging changes are included: - avoid postun error in libpmi0 (bsc#1100850) This update was imported from the SUSE:SLE-15:Update update project. libpmi0-17.11.7-lp150.5.7.1.x86_64.rpm libpmi0-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm libslurm32-17.11.7-lp150.5.7.1.x86_64.rpm libslurm32-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm perl-slurm-17.11.7-lp150.5.7.1.x86_64.rpm perl-slurm-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-17.11.7-lp150.5.7.1.src.rpm slurm-17.11.7-lp150.5.7.1.x86_64.rpm slurm-auth-none-17.11.7-lp150.5.7.1.x86_64.rpm slurm-auth-none-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-config-17.11.7-lp150.5.7.1.x86_64.rpm slurm-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-debugsource-17.11.7-lp150.5.7.1.x86_64.rpm slurm-devel-17.11.7-lp150.5.7.1.x86_64.rpm slurm-doc-17.11.7-lp150.5.7.1.x86_64.rpm slurm-lua-17.11.7-lp150.5.7.1.x86_64.rpm slurm-lua-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-munge-17.11.7-lp150.5.7.1.x86_64.rpm slurm-munge-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-node-17.11.7-lp150.5.7.1.x86_64.rpm slurm-node-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-openlava-17.11.7-lp150.5.7.1.x86_64.rpm slurm-pam_slurm-17.11.7-lp150.5.7.1.x86_64.rpm slurm-pam_slurm-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-plugins-17.11.7-lp150.5.7.1.x86_64.rpm slurm-plugins-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-seff-17.11.7-lp150.5.7.1.x86_64.rpm slurm-sjstat-17.11.7-lp150.5.7.1.x86_64.rpm slurm-slurmdbd-17.11.7-lp150.5.7.1.x86_64.rpm slurm-slurmdbd-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-sql-17.11.7-lp150.5.7.1.x86_64.rpm slurm-sql-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-sview-17.11.7-lp150.5.7.1.x86_64.rpm slurm-sview-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm slurm-torque-17.11.7-lp150.5.7.1.x86_64.rpm slurm-torque-debuginfo-17.11.7-lp150.5.7.1.x86_64.rpm openSUSE-2018-737 moderate openSUSE Leap 15.0 Update This update for php7 fixes the following issues: - CVE-2018-12882: exif_read_from_impl allowed attackers to trigger a use-after-free (in exif_read_from_file) because it closed a stream that it is not responsible for closing (bsc#1099098). This update was imported from the SUSE:SLE-15:Update update project. apache2-mod_php7-7.2.5-lp150.2.6.1.x86_64.rpm apache2-mod_php7-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-7.2.5-lp150.2.6.1.src.rpm php7-7.2.5-lp150.2.6.1.x86_64.rpm php7-bcmath-7.2.5-lp150.2.6.1.x86_64.rpm php7-bcmath-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-bz2-7.2.5-lp150.2.6.1.x86_64.rpm php7-bz2-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-calendar-7.2.5-lp150.2.6.1.x86_64.rpm php7-calendar-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-ctype-7.2.5-lp150.2.6.1.x86_64.rpm php7-ctype-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-curl-7.2.5-lp150.2.6.1.x86_64.rpm php7-curl-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-dba-7.2.5-lp150.2.6.1.x86_64.rpm php7-dba-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-debugsource-7.2.5-lp150.2.6.1.x86_64.rpm php7-devel-7.2.5-lp150.2.6.1.x86_64.rpm php7-dom-7.2.5-lp150.2.6.1.x86_64.rpm php7-dom-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-embed-7.2.5-lp150.2.6.1.x86_64.rpm php7-embed-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-enchant-7.2.5-lp150.2.6.1.x86_64.rpm php7-enchant-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-exif-7.2.5-lp150.2.6.1.x86_64.rpm php7-exif-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-fastcgi-7.2.5-lp150.2.6.1.x86_64.rpm php7-fastcgi-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-fileinfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-fileinfo-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-firebird-7.2.5-lp150.2.6.1.x86_64.rpm php7-firebird-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-fpm-7.2.5-lp150.2.6.1.x86_64.rpm php7-fpm-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-ftp-7.2.5-lp150.2.6.1.x86_64.rpm php7-ftp-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-gd-7.2.5-lp150.2.6.1.x86_64.rpm php7-gd-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-gettext-7.2.5-lp150.2.6.1.x86_64.rpm php7-gettext-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-gmp-7.2.5-lp150.2.6.1.x86_64.rpm php7-gmp-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-iconv-7.2.5-lp150.2.6.1.x86_64.rpm php7-iconv-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-intl-7.2.5-lp150.2.6.1.x86_64.rpm php7-intl-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-json-7.2.5-lp150.2.6.1.x86_64.rpm php7-json-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-ldap-7.2.5-lp150.2.6.1.x86_64.rpm php7-ldap-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-mbstring-7.2.5-lp150.2.6.1.x86_64.rpm php7-mbstring-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-mysql-7.2.5-lp150.2.6.1.x86_64.rpm php7-mysql-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-odbc-7.2.5-lp150.2.6.1.x86_64.rpm php7-odbc-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-opcache-7.2.5-lp150.2.6.1.x86_64.rpm php7-opcache-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-openssl-7.2.5-lp150.2.6.1.x86_64.rpm php7-openssl-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-pcntl-7.2.5-lp150.2.6.1.x86_64.rpm php7-pcntl-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-pdo-7.2.5-lp150.2.6.1.x86_64.rpm php7-pdo-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-pear-7.2.5-lp150.2.6.1.noarch.rpm php7-pear-Archive_Tar-7.2.5-lp150.2.6.1.noarch.rpm php7-pgsql-7.2.5-lp150.2.6.1.x86_64.rpm php7-pgsql-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-phar-7.2.5-lp150.2.6.1.x86_64.rpm php7-phar-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-posix-7.2.5-lp150.2.6.1.x86_64.rpm php7-posix-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-readline-7.2.5-lp150.2.6.1.x86_64.rpm php7-readline-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-shmop-7.2.5-lp150.2.6.1.x86_64.rpm php7-shmop-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-snmp-7.2.5-lp150.2.6.1.x86_64.rpm php7-snmp-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-soap-7.2.5-lp150.2.6.1.x86_64.rpm php7-soap-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sockets-7.2.5-lp150.2.6.1.x86_64.rpm php7-sockets-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sodium-7.2.5-lp150.2.6.1.x86_64.rpm php7-sodium-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sqlite-7.2.5-lp150.2.6.1.x86_64.rpm php7-sqlite-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvmsg-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvmsg-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvsem-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvsem-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvshm-7.2.5-lp150.2.6.1.x86_64.rpm php7-sysvshm-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-tidy-7.2.5-lp150.2.6.1.x86_64.rpm php7-tidy-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-tokenizer-7.2.5-lp150.2.6.1.x86_64.rpm php7-tokenizer-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-wddx-7.2.5-lp150.2.6.1.x86_64.rpm php7-wddx-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlreader-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlreader-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlrpc-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlrpc-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlwriter-7.2.5-lp150.2.6.1.x86_64.rpm php7-xmlwriter-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-xsl-7.2.5-lp150.2.6.1.x86_64.rpm php7-xsl-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-zip-7.2.5-lp150.2.6.1.x86_64.rpm php7-zip-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm php7-zlib-7.2.5-lp150.2.6.1.x86_64.rpm php7-zlib-debuginfo-7.2.5-lp150.2.6.1.x86_64.rpm apache2-mod_php7-7.2.5-lp150.2.6.1.i586.rpm apache2-mod_php7-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-7.2.5-lp150.2.6.1.i586.rpm php7-bcmath-7.2.5-lp150.2.6.1.i586.rpm php7-bcmath-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-bz2-7.2.5-lp150.2.6.1.i586.rpm php7-bz2-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-calendar-7.2.5-lp150.2.6.1.i586.rpm php7-calendar-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-ctype-7.2.5-lp150.2.6.1.i586.rpm php7-ctype-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-curl-7.2.5-lp150.2.6.1.i586.rpm php7-curl-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-dba-7.2.5-lp150.2.6.1.i586.rpm php7-dba-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-debugsource-7.2.5-lp150.2.6.1.i586.rpm php7-devel-7.2.5-lp150.2.6.1.i586.rpm php7-dom-7.2.5-lp150.2.6.1.i586.rpm php7-dom-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-embed-7.2.5-lp150.2.6.1.i586.rpm php7-embed-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-enchant-7.2.5-lp150.2.6.1.i586.rpm php7-enchant-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-exif-7.2.5-lp150.2.6.1.i586.rpm php7-exif-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-fastcgi-7.2.5-lp150.2.6.1.i586.rpm php7-fastcgi-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-fileinfo-7.2.5-lp150.2.6.1.i586.rpm php7-fileinfo-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-firebird-7.2.5-lp150.2.6.1.i586.rpm php7-firebird-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-fpm-7.2.5-lp150.2.6.1.i586.rpm php7-fpm-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-ftp-7.2.5-lp150.2.6.1.i586.rpm php7-ftp-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-gd-7.2.5-lp150.2.6.1.i586.rpm php7-gd-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-gettext-7.2.5-lp150.2.6.1.i586.rpm php7-gettext-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-gmp-7.2.5-lp150.2.6.1.i586.rpm php7-gmp-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-iconv-7.2.5-lp150.2.6.1.i586.rpm php7-iconv-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-intl-7.2.5-lp150.2.6.1.i586.rpm php7-intl-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-json-7.2.5-lp150.2.6.1.i586.rpm php7-json-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-ldap-7.2.5-lp150.2.6.1.i586.rpm php7-ldap-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-mbstring-7.2.5-lp150.2.6.1.i586.rpm php7-mbstring-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-mysql-7.2.5-lp150.2.6.1.i586.rpm php7-mysql-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-odbc-7.2.5-lp150.2.6.1.i586.rpm php7-odbc-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-opcache-7.2.5-lp150.2.6.1.i586.rpm php7-opcache-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-openssl-7.2.5-lp150.2.6.1.i586.rpm php7-openssl-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-pcntl-7.2.5-lp150.2.6.1.i586.rpm php7-pcntl-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-pdo-7.2.5-lp150.2.6.1.i586.rpm php7-pdo-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-pgsql-7.2.5-lp150.2.6.1.i586.rpm php7-pgsql-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-phar-7.2.5-lp150.2.6.1.i586.rpm php7-phar-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-posix-7.2.5-lp150.2.6.1.i586.rpm php7-posix-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-readline-7.2.5-lp150.2.6.1.i586.rpm php7-readline-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-shmop-7.2.5-lp150.2.6.1.i586.rpm php7-shmop-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-snmp-7.2.5-lp150.2.6.1.i586.rpm php7-snmp-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-soap-7.2.5-lp150.2.6.1.i586.rpm php7-soap-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sockets-7.2.5-lp150.2.6.1.i586.rpm php7-sockets-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sodium-7.2.5-lp150.2.6.1.i586.rpm php7-sodium-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sqlite-7.2.5-lp150.2.6.1.i586.rpm php7-sqlite-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sysvmsg-7.2.5-lp150.2.6.1.i586.rpm php7-sysvmsg-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sysvsem-7.2.5-lp150.2.6.1.i586.rpm php7-sysvsem-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-sysvshm-7.2.5-lp150.2.6.1.i586.rpm php7-sysvshm-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-tidy-7.2.5-lp150.2.6.1.i586.rpm php7-tidy-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-tokenizer-7.2.5-lp150.2.6.1.i586.rpm php7-tokenizer-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-wddx-7.2.5-lp150.2.6.1.i586.rpm php7-wddx-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-xmlreader-7.2.5-lp150.2.6.1.i586.rpm php7-xmlreader-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-xmlrpc-7.2.5-lp150.2.6.1.i586.rpm php7-xmlrpc-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-xmlwriter-7.2.5-lp150.2.6.1.i586.rpm php7-xmlwriter-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-xsl-7.2.5-lp150.2.6.1.i586.rpm php7-xsl-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-zip-7.2.5-lp150.2.6.1.i586.rpm php7-zip-debuginfo-7.2.5-lp150.2.6.1.i586.rpm php7-zlib-7.2.5-lp150.2.6.1.i586.rpm php7-zlib-debuginfo-7.2.5-lp150.2.6.1.i586.rpm openSUSE-2018-738 moderate openSUSE Leap 15.0 Update This update for rsyslog fixes the following security issue: - CVE-2015-3243: Prevent weak permissions for generated log files, which allowed local users to obtain sensitive information (bsc#935393). This update was imported from the SUSE:SLE-15:Update update project. rsyslog-8.33.1-lp150.2.3.2.src.rpm rsyslog-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-debugsource-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-diag-tools-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-diag-tools-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-doc-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-dbi-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-dbi-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-elasticsearch-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-elasticsearch-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gcrypt-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gcrypt-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gssapi-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gssapi-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gtls-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-gtls-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-mmnormalize-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-mmnormalize-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-mysql-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-mysql-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omamqp1-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omamqp1-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omhttpfs-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omhttpfs-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omtcl-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-omtcl-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-pgsql-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-pgsql-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-relp-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-relp-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-snmp-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-snmp-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-udpspoof-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-module-udpspoof-debuginfo-8.33.1-lp150.2.3.2.x86_64.rpm rsyslog-8.33.1-lp150.2.3.2.i586.rpm rsyslog-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-debugsource-8.33.1-lp150.2.3.2.i586.rpm rsyslog-diag-tools-8.33.1-lp150.2.3.2.i586.rpm rsyslog-diag-tools-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-doc-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-dbi-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-dbi-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-elasticsearch-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-elasticsearch-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gcrypt-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gcrypt-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gssapi-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gssapi-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gtls-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-gtls-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-mmnormalize-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-mmnormalize-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-mysql-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-mysql-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omamqp1-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omamqp1-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omhttpfs-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omhttpfs-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omtcl-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-omtcl-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-pgsql-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-pgsql-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-relp-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-relp-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-snmp-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-snmp-debuginfo-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-udpspoof-8.33.1-lp150.2.3.2.i586.rpm rsyslog-module-udpspoof-debuginfo-8.33.1-lp150.2.3.2.i586.rpm openSUSE-2018-742 moderate openSUSE Leap 15.0 Update This update for libopenmpt to version 0.3.9 fixes the following issues: These security issues were fixed: - CVE-2018-11710: Prevent write near address 0 in out-of-memory situations when reading AMS files (bsc#1095644) - CVE-2018-10017: Preven out-of-bounds memory read with IT/ITP/MO3 files containing pattern loops (bsc#1089080) These non-security issues were fixed: - [Bug] openmpt123: Fixed build failure in C++17 due to use of removed feature std::random_shuffle. - STM: Having both Bxx and Cxx commands in a pattern imported the Bxx command incorrectly. - STM: Last character of sample name was missing. - Speed up reading of truncated ULT files. - ULT: Portamento import was sometimes broken. - The resonant filter was sometimes unstable when combining low-volume samples, low cutoff and high mixing rates. - Keep track of active SFx macro during seeking. - The "note cut" duplicate note action did not volume-ramp the previously playing sample. - A song starting with non-existing patterns could not be played. - DSM: Support restart position and 16-bit samples. - DTM: Import global volume. This update was imported from the SUSE:SLE-15:Update update project. libmodplug-devel-0.3.9-lp150.2.3.1.x86_64.rpm libmodplug1-0.3.9-lp150.2.3.1.x86_64.rpm libmodplug1-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt-0.3.9-lp150.2.3.1.src.rpm libopenmpt-debugsource-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt-devel-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt0-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt0-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt_modplug1-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt_modplug1-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm openmpt123-0.3.9-lp150.2.3.1.x86_64.rpm openmpt123-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libmodplug-devel-0.3.9-lp150.2.3.1.i586.rpm libmodplug1-0.3.9-lp150.2.3.1.i586.rpm libmodplug1-32bit-0.3.9-lp150.2.3.1.x86_64.rpm libmodplug1-32bit-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libmodplug1-debuginfo-0.3.9-lp150.2.3.1.i586.rpm libopenmpt-debugsource-0.3.9-lp150.2.3.1.i586.rpm libopenmpt-devel-0.3.9-lp150.2.3.1.i586.rpm libopenmpt0-0.3.9-lp150.2.3.1.i586.rpm libopenmpt0-32bit-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt0-32bit-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt0-debuginfo-0.3.9-lp150.2.3.1.i586.rpm libopenmpt_modplug1-0.3.9-lp150.2.3.1.i586.rpm libopenmpt_modplug1-32bit-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt_modplug1-32bit-debuginfo-0.3.9-lp150.2.3.1.x86_64.rpm libopenmpt_modplug1-debuginfo-0.3.9-lp150.2.3.1.i586.rpm openmpt123-0.3.9-lp150.2.3.1.i586.rpm openmpt123-debuginfo-0.3.9-lp150.2.3.1.i586.rpm openSUSE-2018-743 important openSUSE Leap 15.0 Update This update for transactional-update fixes the following issues: - When using overlayfs, system updates may have caused a loss or invisibility of configuration files. Support for overlayfs extended attributes like trusted.overlay.opaque (boo#1101130) - Improve handling of locale specific packages transactional-update-2.5-lp150.2.3.2.src.rpm transactional-update-2.5-lp150.2.3.2.x86_64.rpm transactional-update-debuginfo-2.5-lp150.2.3.2.x86_64.rpm transactional-update-debugsource-2.5-lp150.2.3.2.x86_64.rpm transactional-update-2.5-lp150.2.3.2.i586.rpm transactional-update-debuginfo-2.5-lp150.2.3.2.i586.rpm transactional-update-debugsource-2.5-lp150.2.3.2.i586.rpm openSUSE-2018-744 moderate openSUSE Leap 15.0 Update This update for bluez fixes the following issues: - Bluetooth headset could fail to recommed after suspend/resume (bsc#1101119) - Missing RPi3 bluetooth support (bsc#995059, bsc#1094902) bluez-5.48-lp150.4.3.1.src.rpm bluez-5.48-lp150.4.3.1.x86_64.rpm bluez-auto-enable-devices-5.48-lp150.4.3.1.noarch.rpm bluez-cups-5.48-lp150.4.3.1.x86_64.rpm bluez-cups-debuginfo-5.48-lp150.4.3.1.x86_64.rpm bluez-debuginfo-5.48-lp150.4.3.1.x86_64.rpm bluez-debugsource-5.48-lp150.4.3.1.x86_64.rpm bluez-devel-5.48-lp150.4.3.1.x86_64.rpm bluez-test-5.48-lp150.4.3.1.x86_64.rpm bluez-test-debuginfo-5.48-lp150.4.3.1.x86_64.rpm libbluetooth3-5.48-lp150.4.3.1.x86_64.rpm libbluetooth3-debuginfo-5.48-lp150.4.3.1.x86_64.rpm bluez-5.48-lp150.4.3.1.i586.rpm bluez-cups-5.48-lp150.4.3.1.i586.rpm bluez-cups-debuginfo-5.48-lp150.4.3.1.i586.rpm bluez-debuginfo-5.48-lp150.4.3.1.i586.rpm bluez-debugsource-5.48-lp150.4.3.1.i586.rpm bluez-devel-32bit-5.48-lp150.4.3.1.x86_64.rpm bluez-devel-5.48-lp150.4.3.1.i586.rpm bluez-test-5.48-lp150.4.3.1.i586.rpm bluez-test-debuginfo-5.48-lp150.4.3.1.i586.rpm libbluetooth3-32bit-5.48-lp150.4.3.1.x86_64.rpm libbluetooth3-32bit-debuginfo-5.48-lp150.4.3.1.x86_64.rpm libbluetooth3-5.48-lp150.4.3.1.i586.rpm libbluetooth3-debuginfo-5.48-lp150.4.3.1.i586.rpm openSUSE-2018-745 moderate openSUSE Leap 15.0 Update This update for bind provides the following fix: - Fixed ldapdump to use a temporary pseudo nameserver that conforms to BIND's expected syntax. Prior versions would not work correctly with an LDAP backed DNS server. (bsc#965748) - Add SPF records in dnszone-schema file. (bsc#901577) This update was imported from the SUSE:SLE-15:Update update project. bind-9.11.2-lp150.8.6.1.src.rpm bind-9.11.2-lp150.8.6.1.x86_64.rpm bind-chrootenv-9.11.2-lp150.8.6.1.x86_64.rpm bind-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm bind-debugsource-9.11.2-lp150.8.6.1.x86_64.rpm bind-devel-9.11.2-lp150.8.6.1.x86_64.rpm bind-doc-9.11.2-lp150.8.6.1.noarch.rpm bind-lwresd-9.11.2-lp150.8.6.1.x86_64.rpm bind-lwresd-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm bind-utils-9.11.2-lp150.8.6.1.x86_64.rpm bind-utils-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libbind9-160-9.11.2-lp150.8.6.1.x86_64.rpm libbind9-160-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libdns169-9.11.2-lp150.8.6.1.x86_64.rpm libdns169-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libirs-devel-9.11.2-lp150.8.6.1.x86_64.rpm libirs160-9.11.2-lp150.8.6.1.x86_64.rpm libirs160-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisc166-9.11.2-lp150.8.6.1.x86_64.rpm libisc166-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisccc160-9.11.2-lp150.8.6.1.x86_64.rpm libisccc160-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisccfg160-9.11.2-lp150.8.6.1.x86_64.rpm libisccfg160-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm liblwres160-9.11.2-lp150.8.6.1.x86_64.rpm liblwres160-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm python3-bind-9.11.2-lp150.8.6.1.noarch.rpm bind-9.11.2-lp150.8.6.1.i586.rpm bind-chrootenv-9.11.2-lp150.8.6.1.i586.rpm bind-debuginfo-9.11.2-lp150.8.6.1.i586.rpm bind-debugsource-9.11.2-lp150.8.6.1.i586.rpm bind-devel-32bit-9.11.2-lp150.8.6.1.x86_64.rpm bind-devel-9.11.2-lp150.8.6.1.i586.rpm bind-lwresd-9.11.2-lp150.8.6.1.i586.rpm bind-lwresd-debuginfo-9.11.2-lp150.8.6.1.i586.rpm bind-utils-9.11.2-lp150.8.6.1.i586.rpm bind-utils-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libbind9-160-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libbind9-160-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libbind9-160-9.11.2-lp150.8.6.1.i586.rpm libbind9-160-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libdns169-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libdns169-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libdns169-9.11.2-lp150.8.6.1.i586.rpm libdns169-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libirs-devel-9.11.2-lp150.8.6.1.i586.rpm libirs160-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libirs160-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libirs160-9.11.2-lp150.8.6.1.i586.rpm libirs160-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libisc166-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libisc166-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisc166-9.11.2-lp150.8.6.1.i586.rpm libisc166-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libisccc160-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libisccc160-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisccc160-9.11.2-lp150.8.6.1.i586.rpm libisccc160-debuginfo-9.11.2-lp150.8.6.1.i586.rpm libisccfg160-32bit-9.11.2-lp150.8.6.1.x86_64.rpm libisccfg160-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm libisccfg160-9.11.2-lp150.8.6.1.i586.rpm libisccfg160-debuginfo-9.11.2-lp150.8.6.1.i586.rpm liblwres160-32bit-9.11.2-lp150.8.6.1.x86_64.rpm liblwres160-32bit-debuginfo-9.11.2-lp150.8.6.1.x86_64.rpm liblwres160-9.11.2-lp150.8.6.1.i586.rpm liblwres160-debuginfo-9.11.2-lp150.8.6.1.i586.rpm openSUSE-2018-751 moderate openSUSE Leap 15.0 Update This update for perl fixes the following issues: - CVE-2018-12015: The Archive::Tar module allowed remote attackers to bypass a directory-traversal protection mechanism and overwrite arbitrary files (bsc#1096718) This update was imported from the SUSE:SLE-15:Update update project. perl-5.26.1-lp150.6.3.1.src.rpm perl-5.26.1-lp150.6.3.1.x86_64.rpm perl-base-5.26.1-lp150.6.3.1.x86_64.rpm perl-base-debuginfo-5.26.1-lp150.6.3.1.x86_64.rpm perl-debuginfo-5.26.1-lp150.6.3.1.x86_64.rpm perl-debugsource-5.26.1-lp150.6.3.1.x86_64.rpm perl-doc-5.26.1-lp150.6.3.1.noarch.rpm perl-32bit-5.26.1-lp150.6.3.1.x86_64.rpm perl-32bit-debuginfo-5.26.1-lp150.6.3.1.x86_64.rpm perl-5.26.1-lp150.6.3.1.i586.rpm perl-base-32bit-5.26.1-lp150.6.3.1.x86_64.rpm perl-base-32bit-debuginfo-5.26.1-lp150.6.3.1.x86_64.rpm perl-base-5.26.1-lp150.6.3.1.i586.rpm perl-base-debuginfo-5.26.1-lp150.6.3.1.i586.rpm perl-debuginfo-5.26.1-lp150.6.3.1.i586.rpm perl-debugsource-5.26.1-lp150.6.3.1.i586.rpm openSUSE-2018-740 moderate openSUSE Leap 15.0 Update This update for timezone provides the following fixes: - yast2-country is no longer setting TIMEZONE in /etc/sysconfig/clock and is calling systemd timedatectl instead. Do not set /etc/localtime on timezone package updates to avoid setting an incorrect timezone. (bsc#1093392) This update was imported from the SUSE:SLE-15:Update update project. timezone-java-2018e-lp150.2.6.1.noarch.rpm timezone-java-2018e-lp150.2.6.1.src.rpm timezone-2018e-lp150.2.6.1.src.rpm timezone-2018e-lp150.2.6.1.x86_64.rpm timezone-debuginfo-2018e-lp150.2.6.1.x86_64.rpm timezone-debugsource-2018e-lp150.2.6.1.x86_64.rpm timezone-2018e-lp150.2.6.1.i586.rpm timezone-debuginfo-2018e-lp150.2.6.1.i586.rpm timezone-debugsource-2018e-lp150.2.6.1.i586.rpm openSUSE-2018-748 moderate openSUSE Leap 15.0 Update This update for virt-manager provides the following fixes: - Fix the "Couldn't find hvm kernel for SUSE tree" error. (bsc#1096819) - Make sure osinfo-query and virt-install detect CaaS Platform 3.0 correctly. (bsc#1098054) - Fix some untranslated text. (bsc#1081544, bsc#1081542) - Backport some missing upstream fixes. (bsc#1027942) This update was imported from the SUSE:SLE-15:Update update project. virt-install-1.5.1-lp150.6.3.1.noarch.rpm virt-manager-1.5.1-lp150.6.3.1.noarch.rpm virt-manager-1.5.1-lp150.6.3.1.src.rpm virt-manager-common-1.5.1-lp150.6.3.1.noarch.rpm openSUSE-2018-749 moderate openSUSE Leap 15.0 Update This update for cloud-netconfig fixes the following issues: - Make interface names in Azure persistent. (bsc#1095485) This update was imported from the SUSE:SLE-15:Update update project. cloud-netconfig-azure-0.7-lp150.4.3.1.noarch.rpm cloud-netconfig-azure-0.7-lp150.4.3.1.src.rpm cloud-netconfig-ec2-0.7-lp150.4.3.1.noarch.rpm cloud-netconfig-ec2-0.7-lp150.4.3.1.src.rpm openSUSE-2018-766 important openSUSE Leap 15.0 Update This update for xen fixes the following issues: Security issues fixed: - CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242). - CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU operations that affect the entire host (XSA-264) (bsc#1097521). - CVE-2018-12892: Fix libxl to honour the readonly flag on HVM emulated SCSI disks (XSA-266) (bsc#1097523). - CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check (XSA-265) (bsc#1097522). Bug fixes: - bsc#1027519: Add upstream patches from January. - bsc#1098403: Fix regression introduced by changes for bsc#1079730. A PV domU without qcow2 and/or vfb has no qemu attached. Ignore QMP errors for PV domUs to handle PV domUs with and without an attached qemu-xen. - bsc#1087289: Fix xen scheduler crash. This update was imported from the SUSE:SLE-15:Update update project. xen-4.10.1_06-lp150.2.6.1.src.rpm xen-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-debugsource-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-devel-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-doc-html-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-libs-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-libs-debuginfo-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-tools-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-tools-debuginfo-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-tools-domU-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-tools-domU-debuginfo-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-debugsource-4.10.1_06-lp150.2.6.1.i586.rpm xen-devel-4.10.1_06-lp150.2.6.1.i586.rpm xen-libs-32bit-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-libs-32bit-debuginfo-4.10.1_06-lp150.2.6.1.x86_64.rpm xen-libs-4.10.1_06-lp150.2.6.1.i586.rpm xen-libs-debuginfo-4.10.1_06-lp150.2.6.1.i586.rpm xen-tools-domU-4.10.1_06-lp150.2.6.1.i586.rpm xen-tools-domU-debuginfo-4.10.1_06-lp150.2.6.1.i586.rpm openSUSE-2018-768 moderate openSUSE Leap 15.0 Update This update for cinnamon fixes the following issues: Security issue fixed: - CVE-2018-13054: Fix symlink attack vulnerability (boo#1083067). cinnamon-3.6.7-lp150.3.3.1.src.rpm cinnamon-3.6.7-lp150.3.3.1.x86_64.rpm cinnamon-debuginfo-3.6.7-lp150.3.3.1.x86_64.rpm cinnamon-debugsource-3.6.7-lp150.3.3.1.x86_64.rpm cinnamon-gschemas-3.6.7-lp150.3.3.1.x86_64.rpm cinnamon-gschemas-branding-upstream-3.6.7-lp150.3.3.1.noarch.rpm openSUSE-2018-756 moderate openSUSE Leap 15.0 Update This update for kmymoney fixes the following issues: - Fix a crash when creating or editing a transaction (boo#1100025, kde#392735) kmymoney-5.0.1-lp150.2.3.1.src.rpm kmymoney-5.0.1-lp150.2.3.1.x86_64.rpm kmymoney-debuginfo-5.0.1-lp150.2.3.1.x86_64.rpm kmymoney-debugsource-5.0.1-lp150.2.3.1.x86_64.rpm kmymoney-devel-5.0.1-lp150.2.3.1.x86_64.rpm kmymoney-lang-5.0.1-lp150.2.3.1.noarch.rpm openSUSE-2018-762 important openSUSE Leap 15.0 Update The openSUSE Leap 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13406: An integer overflow in the uvesafb_setcmap function could have result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used (bnc#1100418) - CVE-2018-13053: The alarm_timer_nsleep function had an integer overflow via a large relative timeout because ktime_add_safe was not used (bnc#1099924) - CVE-2018-9385: Prevent overread of the "driver_override" buffer (bsc#1100491) - CVE-2018-13405: The inode_init_owner function allowed local users to create files with an unintended group ownership allowing attackers to escalate privileges by making a plain file executable and SGID (bnc#1100416) - CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may have allowed unauthorized disclosure of information to an attacker with local user access via a side-channel analysis (bsc#1068032). - CVE-2018-1118: Linux kernel vhost did not properly initialize memory in messages passed between virtual guests and the host operating system. This could have allowed local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file (bsc#1092472). - CVE-2018-12233: A memory corruption bug in JFS could have been triggered by calling setxattr twice with two different extended attribute names on the same file. This vulnerability could be triggered by an unprivileged user with the ability to create files and execute programs (bsc#1097234) - CVE-2018-5848: In the function wmi_set_ie(), the length validation code did not handle unsigned integer overflow properly. As a result, a large value of the 'ie_len' argument could have caused a buffer overflow (bnc#1097356) - CVE-2018-1000204: Prevent infoleak caused by incorrect handling of the SG_IO ioctl (bsc#1096728) - CVE-2018-1120: By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker could have caused utilities from psutils or procps (such as ps, w) to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks) (bsc#1093158). - CVE-2018-1094: The ext4_fill_super function did not always initialize the crc32c checksum driver, which allowed attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4 image (bsc#1087007). - CVE-2018-1092: The ext4_iget function mishandled the case of a root directory with a zero i_links_count, which allowed attackers to cause a denial of service (ext4_process_freed_data NULL pointer dereference and OOPS) via a crafted ext4 image (bsc#1087012). - CVE-2018-1093: The ext4_valid_block_bitmap function allowed attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers (bsc#1087095). - CVE-2018-1000200: Prevent NULL pointer dereference which could have resulted in an out of memory (OOM) killing of large mlocked processes (bsc#1090150). - CVE-2018-1130: NULL pointer dereference in dccp_write_xmit() function that allowed a local user to cause a denial of service by a number of certain crafted system calls (bsc#1092904) - CVE-2018-5803: Prevent error in the "_sctp_make_chunk()" function when handling SCTP packets length that could have been exploited to cause a kernel crash (bnc#1083900) - CVE-2018-7492: Prevent NULL pointer dereference in the net/rds/rdma.c __rds_rdma_map() function that allowed local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST (bsc#1082962) - CVE-2018-1108: Prevent weakness in the implementation of random seed data. Programs, early in the boot sequence, could have used the data allocated for the seed (bsc#1090818). - CVE-2018-10323: The xfs_bmap_extents_to_btree function allowed local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image (bsc#1090717). - CVE-2018-8781: The udl_fb_mmap function had an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space (bsc#1090643) - CVE-2018-10124: The kill_something_info function in kernel/signal.c might have allowed local users to cause a denial of service via an INT_MIN argument (bnc#1089752) - CVE-2018-10087: The kernel_wait4 function in kernel/exit.c might have allowed local users to cause a denial of service by triggering an attempted use of the -INT_MIN value (bnc#1089608) - CVE-2017-5715: Prevent unauthorized disclosure of information to an attacker with local user access caused by speculative execution and indirect branch prediction (bsc#1068032) The following non-security bugs were fixed: - 1wire: family module autoload fails because of upper/lower case mismatch (bsc#1051510). - 8021q: fix a memory leak for VLAN 0 device (networking-stable-18_01_12). - 8139too: Use disable_irq_nosync() in rtl8139_poll_controller() (networking-stable-18_05_15). - 8139too: revisit napi_complete_done() usage (networking-stable-17_10_09). - 9p/trans_virtio: discard zero-length reply (bsc#1052766). - ACPI / APEI: Replace ioremap_page_range() with fixmap (bsc#1051510). - ACPI / LPSS: Add missing prv_offset setting for byt/cht PWM devices (bsc#1051510). - ACPI / NUMA: ia64: Parse all entries of SRAT memory affinity table (bnc#1088796, ). - ACPI / bus: Do not call _STA on battery devices with unmet dependencies (bsc#1051510). - ACPI / button: make module loadable when booted in non-ACPI mode (bsc#1051510). - ACPI / hotplug / PCI: Check presence of slot itself in get_slot_status() (bsc#1051510). - ACPI / scan: Initialize watchdog before PNP (bsc#1073960). - ACPI / scan: Send change uevent with offine environmental data (bsc#1082485). - ACPI / scan: Use acpi_bus_get_status() to initialize ACPI_TYPE_DEVICE devs (bsc#1051510). - ACPI / video: Add quirk to force acpi-video backlight on Samsung 670Z5E (bsc#1051510). - ACPI / video: Default lcd_only to true on Win8-ready and newer machines (bsc#1051510). - ACPI / video: Only default only_lcd to true on Win8-ready _desktops_ (bsc#1051510). - ACPI / watchdog: Prefer iTCO_wdt on Lenovo Z50-70 (bsc#1051510). - ACPI / watchdog: properly initialize resources (bsc#1051510). - ACPI: EC: Fix debugfs_create_*() usage (bsc#1051510). - ACPI: acpi_pad: Fix memory leak in power saving threads (bsc#1051510). - ACPI: processor_perflib: Do not send _PPC change notification if not ready (bsc#1051510). - ACPI: sysfs: Make ACPI GPE mask kernel parameter cover all GPEs (bsc#1051510). - ACPICA: ACPI 6.0A: Changes to the NFIT ACPI table (bsc#1091424). - ACPICA: Events: add a return on failure from acpi_hw_register_read (bsc#1051510). - ACPICA: Fix memory leak on unusual memory leak (bsc#1051510). - ACPICA: acpi: acpica: fix acpi operand cache leak in nseval.c (bsc#1051510). - ALSA: aloop: Add missing cable lock to ctl API callbacks (bsc#1051510). - ALSA: aloop: Mark paused device as inactive (bsc#1051510). - ALSA: asihpi: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: caiaq: Add yet more sanity checks for invalid EPs (bsc#1051510). - ALSA: control: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: control: fix a redundant-copy issue (bsc#1051510). - ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr (bsc#1051510). - ALSA: dice: fix OUI for TC group (bsc#1051510). - ALSA: dice: fix error path to destroy initialized stream data (bsc#1051510). - ALSA: dice: fix kernel NULL pointer dereference due to invalid calculation for array index (bsc#1051510). - ALSA: emu10k1: Fix kABI breakage (bsc#1093027). - ALSA: emu10k1: add a IOMMU workaround (bsc#1093027). - ALSA: emu10k1: add optional debug printouts with DMA addresses (bsc#1093027). - ALSA: emu10k1: make sure synth DMA pages are allocated with DMA functions (bsc#1093027). - ALSA: emu10k1: remove reserved_page (bsc#1093027). - ALSA: emu10k1: use dma_set_mask_and_coherent() (bsc#1093027). - ALSA: hda - Fix incorrect usage of IS_REACHABLE() (bsc#1051510). - ALSA: hda - Handle kzalloc() failure in snd_hda_attach_pcm_stream() (bsc#1051510). - ALSA: hda - New VIA controller suppor no-snoop path (bsc#1051510). - ALSA: hda - Skip jack and others for non-existing PCM streams (bsc#1051510). - ALSA: hda/ca0132 - use ARRAY_SIZE (bsc#1051510). - ALSA: hda/ca0132: Add DSP Volume set and New mixers for SBZ + R3Di (bsc#1096696). - ALSA: hda/ca0132: Add PCI region2 iomap for SBZ (bsc#1096696). - ALSA: hda/ca0132: Add dsp setup + gpio functions for r3di (bsc#1096696). - ALSA: hda/ca0132: Add extra exit functions for R3Di and SBZ (bsc#1096696). - ALSA: hda/ca0132: Add new control changes for SBZ + R3Di (bsc#1096696). - ALSA: hda/ca0132: Add pincfg for SBZ + R3Di, add fp hp auto-detect (bsc#1096696). - ALSA: hda/ca0132: Delete pointless assignments to struct auto_pin_cfg fields (bsc#1051510). - ALSA: hda/ca0132: Delete redundant UNSOL event requests (bsc#1051510). - ALSA: hda/ca0132: Do not test for QUIRK_NONE (bsc#1051510). - ALSA: hda/ca0132: Fix DMic data rate for Alienware M17x R4 (bsc#1051510). - ALSA: hda/ca0132: R3Di and SBZ quirk entires + alt firmware loading (bsc#1096696). - ALSA: hda/ca0132: Restore PCM Analog Mic-In2 (bsc#1051510). - ALSA: hda/ca0132: Restore behavior of QUIRK_ALIENWARE (bsc#1051510). - ALSA: hda/ca0132: add alt_select_in/out for R3Di + SBZ (bsc#1096696). - ALSA: hda/ca0132: add ca0132_alt_set_vipsource (bsc#1096696). - ALSA: hda/ca0132: add dsp setup related commands for the sbz (bsc#1096696). - ALSA: hda/ca0132: add extra init functions for r3di + sbz (bsc#1096696). - ALSA: hda/ca0132: add the ability to set src_id on scp commands (bsc#1096696). - ALSA: hda/ca0132: constify parameter table for effects (bsc#1096696). - ALSA: hda/ca0132: constify read-only members of string array (bsc#1096696). - ALSA: hda/ca0132: constify templates for control element set (bsc#1096696). - ALSA: hda/ca0132: fix array_size.cocci warnings (bsc#1096696). - ALSA: hda/ca0132: fix build failure when a local macro is defined (bsc#1051510). - ALSA: hda/ca0132: make array ca0132_alt_chmaps static (bsc#1051510). - ALSA: hda/ca0132: merge strings just for printk (bsc#1096696). - ALSA: hda/ca0132: update core functions for sbz + r3di (bsc#1096696). - ALSA: hda/conexant - Add fixup for HP Z2 G4 workstation (bsc#1092975). - ALSA: hda/conexant - Add hp-mic-fix model string (bsc#1092975). - ALSA: hda/realtek - Add a quirk for FSC ESPRIMO U9210 (bsc#1051510). - ALSA: hda/realtek - Add shutup hint (bsc#1051510). - ALSA: hda/realtek - Add some fixes for ALC233 (bsc#1051510). - ALSA: hda/realtek - Clevo P950ER ALC1220 Fixup (bsc#1051510). - ALSA: hda/realtek - Enable mic-mute hotkey for several Lenovo AIOs (bsc#1051510). - ALSA: hda/realtek - Fix pop noise on Lenovo P50 and co (bsc#1051510). - ALSA: hda/realtek - Fix the problem of two front mics on more machines (bsc#1051510). - ALSA: hda/realtek - Fixup for HP x360 laptops with BO speakers (bsc#1096705). - ALSA: hda/realtek - Fixup mute led on HP Spectre x360 (bsc#1096705). - ALSA: hda/realtek - Refactor alc269_fixup_hp_mute_led_mic*() (bsc#1096705). - ALSA: hda/realtek - Update ALC255 depop optimize (bsc#1051510). - ALSA: hda/realtek - adjust the location of one mic (bsc#1051510). - ALSA: hda/realtek - change the location for one of two front mics (bsc#1051510). - ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags (bsc#1051510). - ALSA: hda: Add ASRock H81M-HDS to the power_save blacklist (bsc#1051510). - ALSA: hda: Add Clevo W35xSS_370SS to the power_save blacklist (bsc#1051510). - ALSA: hda: Add Gigabyte P55A-UD3 and Z87-D3HP to the power_save blacklist (bsc#1051510). - ALSA: hda: Add Icelake PCI ID (bsc#1051510). - ALSA: hda: Add Intel NUC5i7RY to the power_save blacklist (bsc#1051510). - ALSA: hda: Add Intel NUC7i3BNB to the power_save blacklist (bsc#1051510). - ALSA: hda: Add Lenovo C50 All in one to the power_save blacklist (bsc#1051510). - ALSA: hda: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: hda: add dock and led support for HP EliteBook 830 G5 (bsc#1051510). - ALSA: hda: add dock and led support for HP ProBook 640 G4 (bsc#1051510). - ALSA: hdspm: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: hiface: Add sanity checks for invalid EPs (bsc#1051510). - ALSA: line6: Add yet more sanity checks for invalid EPs (bsc#1051510). - ALSA: line6: Use correct endpoint type for midi output (bsc#1051510). - ALSA: line6: add support for POD HD DESKTOP (bsc#1051510). - ALSA: line6: add support for POD HD500X (bsc#1051510). - ALSA: line6: remove unnecessary initialization to PODHD500X (bsc#1051510). - ALSA: opl3: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: pcm: Avoid potential races between OSS ioctls and read/write (bsc#1051510). - ALSA: pcm: Check PCM state at xfern compat ioctl (bsc#1051510). - ALSA: pcm: Fix UAF at PCM release via PCM timer access (bsc#1051510). - ALSA: pcm: Fix endless loop for XRUN recovery in OSS emulation (bsc#1051510). - ALSA: pcm: Fix mutex unbalance in OSS emulation ioctls (bsc#1051510). - ALSA: pcm: Return -EBUSY for OSS ioctls changing busy streams (bsc#1051510). - ALSA: pcm: potential uninitialized return values (bsc#1051510). - ALSA: rawmidi: Fix missing input substream checks in compat ioctls (bsc#1051510). - ALSA: rme9652: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: seq: Fix UBSAN warning at SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT ioctl (bsc#1051510). - ALSA: seq: Fix races at MIDI encoding in snd_virmidi_output_trigger() (bsc#1051510). - ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device (bsc#1051510). - ALSA: seq: oss: Hardening for potential Spectre v1 (bsc#1051510). - ALSA: timer: Fix UBSAN warning at SNDRV_TIMER_IOCTL_NEXT_DEVICE ioctl (bsc#1051510). - ALSA: timer: Fix pause event notification (bsc#1051510). - ALSA: usb-audio: Add "Keep Interface" control (bsc#1089467). - ALSA: usb-audio: Add a quirk for Nura's first gen headset (bsc#1051510). - ALSA: usb-audio: Add keep_iface flag (bsc#1089467). - ALSA: usb-audio: Add native DSD support for Luxman DA-06 (bsc#1051510). - ALSA: usb-audio: Add native DSD support for Mytek DACs (bsc#1051510). - ALSA: usb-audio: Add native DSD support for TEAC UD-301 (bsc#1051510). - ALSA: usb-audio: Add sample rate quirk for Plantronics C310/C520-M (bsc#1051510). - ALSA: usb-audio: Add sample rate quirk for Plantronics P610 (bsc#1051510). - ALSA: usb-audio: Add sanity checks for invalid EPs (bsc#1051510). - ALSA: usb-audio: Allow to override the longname string (bsc#1091678). - ALSA: usb-audio: Apply vendor ID matching for sample rate quirk (bsc#1051510). - ALSA: usb-audio: Avoid superfluous usb_set_interface() calls (bsc#1089467). - ALSA: usb-audio: Change the semantics of the enable option (bsc#1051510). - ALSA: usb-audio: Disable the quirk for Nura headset (bsc#1051510). - ALSA: usb-audio: FIX native DSD support for TEAC UD-501 DAC (bsc#1051510). - ALSA: usb-audio: Generic DSD detection for XMOS-based implementations (bsc#1051510). - ALSA: usb-audio: Give proper vendor/product name for Dell WD15 Dock (bsc#1091678). - ALSA: usb-audio: Initialize Dell Dock playback volumes (bsc#1089467). - ALSA: usb-audio: Integrate native DSD support for ITF-USB based DACs (bsc#1051510). - ALSA: usb-audio: Remove explicitly listed Mytek devices (bsc#1051510). - ALSA: usb-audio: Skip broken EU on Dell dock USB-audio (bsc#1090658). - ALSA: usb-audio: Support changing input on Sound Blaster E1 (bsc#1051510). - ALSA: usb-audio: add boot quirk for Axe-Fx III (bsc#1051510). - ALSA: usb-audio: add more quirks for DSD interfaces (bsc#1051510). - ALSA: usb-audio: simplify set_sync_ep_implicit_fb_quirk (bsc#1051510). - ALSA: usb: mixer: volume quirk for CM102-A+/102S+ (bsc#1051510). - ALSA: usx2y: Add sanity checks for invalid EPs (bsc#1051510). - ALSA: usx2y: Fix invalid stream URBs (bsc#1051510). - ALSA: vmaster: Propagate slave error (bsc#1051510). - ASoC: Intel: Skylake: Disable clock gating during firmware and library download (bsc#1051510). - ASoC: Intel: cht_bsw_rt5645: Analog Mic support (bsc#1051510). - ASoC: Intel: sst: remove redundant variable dma_dev_name (bsc#1051510). - ASoC: adau17x1: Handling of DSP_RUN register during fw setup (bsc#1051510). - ASoC: cirrus: i2s: Fix LRCLK configuration (bsc#1051510). - ASoC: cirrus: i2s: Fix {TX|RX}LinCtrlData setup (bsc#1051510). - ASoC: cs35l35: Add use_single_rw to regmap config (bsc#1051510). - ASoC: dapm: delete dapm_kcontrol_data paths list before freeing it (bsc#1051510). - ASoC: fsl_esai: Fix divisor calculation failure at lower ratio (bsc#1051510). - ASoC: hdmi-codec: Fix module unloading caused kernel crash (bsc#1051510). - ASoC: hdmi-codec: fix spelling mistake: "deteced" -> "detected" (bsc#1051510). - ASoC: hdmi-codec: remove multi detection support (bsc#1051510). - ASoC: omap: Remove OMAP_MUX dependency from Nokia N810 audio support (bsc#1051510). - ASoC: rockchip: Fix dai_name for HDMI codec (bsc#1051510). - ASoC: rockchip: rk3288-hdmi-analog: Select needed codecs (bsc#1051510). - ASoC: rsnd: mark PM functions __maybe_unused (bsc#1051510). - ASoC: rt5514: Add the missing register in the readable table (bsc#1051510). - ASoC: samsung: i2s: Ensure the RCLK rate is properly determined (bsc#1051510). - ASoC: samsung: odroid: Drop requirement of clocks in the sound node (bsc#1051510). - ASoC: samsung: odroid: Fix 32000 sample rate handling (bsc#1051510). - ASoC: samsung: odroid: Fix EPLL frequency values (bsc#1051510). - ASoC: ssm2602: Replace reg_default_raw with reg_default (bsc#1051510). - ASoC: topology: Check widget kcontrols before deref (bsc#1051510). - ASoC: topology: Check widget kcontrols before deref (bsc#1051510). - ASoC: topology: Fix bugs of freeing soc topology (bsc#1051510). - ASoC: topology: Fix kcontrol name string handling (bsc#1051510). - ASoC: topology: create TLV data for dapm widgets (bsc#1051510). - ASoC: topology: fix some tiny memory leaks (bsc#1051510). - Bluetooth: Add a new 04ca:3015 QCA_ROME device (bsc#1051510). - Bluetooth: Apply QCA Rome patches for some ATH3012 models (bsc#1082504). - Bluetooth: Fix missing encryption refresh on Security Request (bsc#1051510). - Bluetooth: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for BTUSB_QCA_ROME (bsc#1051510). - Bluetooth: btrtl: Fix a error code in rtl_load_config() (bsc#1051510). - Bluetooth: btusb: Add Dell XPS 13 9360 to btusb_needs_reset_resume_table (bsc#1051510). - Bluetooth: btusb: Add USB ID 7392:a611 for Edimax EW-7611ULB (bsc#1051510). - Bluetooth: btusb: Add device ID for RTL8822BE (bsc#1051510). - Bluetooth: btusb: Only check needs_reset_resume DMI table for QCA rome chipsets (bsc#1051510). - Bluetooth: btusb: add ID for LiteOn 04ca:3016 (bsc#1051510). - Bluetooth: hci_bcm: Add 6 new ACPI HIDs (bsc#1051510). - Bluetooth: hci_bcm: Add active_low irq polarity quirk for Asus T100CHI (bsc#1051510). - Bluetooth: hci_bcm: Add support for BCM2E72 (bsc#1051510). - Bluetooth: hci_bcm: Add support for MINIX Z83-4 based devices (bsc#1051510). - Bluetooth: hci_bcm: Fix setting of irq trigger type (bsc#1051510). - Bluetooth: hci_bcm: Handle empty packet after firmware loading (bsc#1051510). - Bluetooth: hci_bcm: Make bcm_request_irq fail if no IRQ resource (bsc#1051510). - Bluetooth: hci_bcm: Remove DMI quirk for the MINIX Z83-4 (bsc#1051510). - Bluetooth: hci_bcm: Treat Interrupt ACPI resources as always being active-low (bsc#1051510). - Bluetooth: hci_qca: Avoid missing rampatch failure with userspace fw loader (bsc#1051510). - Btrfs: Fix race condition between delayed refs and blockgroup removal (bsc#1086224). - Btrfs: Fix wrong first_key parameter in replace_path (follow up fix for bsc#1084721). - Btrfs: Only check first key for committed tree blocks (bsc#1084721). - Btrfs: Take trans lock before access running trans in check_delayed_ref (bsc#1097105). - Btrfs: Validate child tree block's level and first key (bsc#1084721). - Btrfs: fix copy_items() return value when logging an inode (bsc#1097105). - Btrfs: fix xattr loss after power failure (bsc#1097105). - Btrfs: push relocation recovery into a helper thread (bsc#1086467). - Btrfs: qgroups, fix rescan worker running races (bsc#1091101). - Btrfs: return error value if create_io_em failed in cow_file_range (bsc#1097105). - Btrfs: suspend qgroups during relocation recovery (bsc#1086467). - Btrfs: use btrfs_op instead of bio_op in __btrfs_map_block (bsc#1099918). - Btrfs: use spinlock to protect ->caching_block_groups list (bsc#1083684). - Correct bug reference in the patch (bnc#1095155) - Delete patches.arch/powerpc64-ftrace-Use-the-generic-version-of-ftrace_r.patch (bsc#1088804). - Downgrade printk level for MMC SDHCI host version error (bsc#1097941). - Enable uniput driver (bsc#1092566). - Fix copy_in_user() declaration (bsc#1052766). - Fix kABI breakage due to acpi_ec gpe field change (bsc#1051510). - Fix kABI breakage due to snd_usb_audio_quirk profile_name addition (bsc#1091678). - Fix kABI breakage due to sound/timer.h inclusion (bsc#1051510). - Fix kABI breakage for iwl_fw_runtime_ops change (bsc#1051510). - Fix kABI breakage for iwlwifi (bsc#1051510). - Fix kABI breakage of iio_buffer (bsc#1051510). - Fix kABI breakage with CONFIG_RT_GROUP_SCHED=n (bsc#1100734). - Fix kABI incompatibility by snd_pcm_oss_runtime.rw_ref addition (bsc#1051510). - Fix the build error in adau17x1 soc driver (bsc#1051510) - Fix the build of da9063_wdt module (bsc#1100843) Backport the missing prerequisite commit, move the previous fixes into the sorted section and refresh. - GFS2: Take inode off order_write list when setting jdata flag (bsc#1052766). - HID: add backlight level quirk for Asus ROG laptops (bsc#1101324). - HID: cp2112: fix broken gpio_direction_input callback (bsc#1051510). - HID: debug: check length before copy_to_user() (bsc#1051510). - HID: hiddev: fix potential Spectre v1 (bsc#1051510). - HID: hidraw: Fix crash on HIDIOCGFEATURE with a destroyed device (bsc#1051510). - HID: i2c-hid: Fix "incomplete report" noise (bsc#1051510). - HID: i2c-hid: fix size check and type usage (bsc#1051510). - HID: intel-ish-hid: Enable Gemini Lake ish driver (bsc#1073765,). - HID: intel-ish-hid: use put_device() instead of kfree() (bsc#1051510). - HID: intel_ish-hid: ipc: register more pm callbacks to support hibernation (bsc#1051510). - HID: lenovo: Add support for IBM/Lenovo Scrollpoint mice (bsc#1051510). - HID: roccat: prevent an out of bounds read in kovaplus_profile_activated() (bsc#1051510). - HID: wacom: Add support for One by Wacom (CTL-472 / CTL-672) (bsc#1100633). - HID: wacom: Correct logical maximum Y for 2nd-gen Intuos Pro large (bsc#1051510). - HID: wacom: Correct touch maximum XY of 2nd-gen Intuos (bsc#1051510). - HID: wacom: EKR: ensure devres groups at higher indexes are released (bsc#1051510). - HID: wacom: Fix reporting of touch toggle (WACOM_HID_WD_MUTE_DEVICE) events (bsc#1051510). - HID: wacom: Release device resource data obtained by devres_alloc() (bsc#1051510). - HID: wacom: bluetooth: send exit report for recent Bluetooth devices (bsc#1051510). - IB/Hfi1: Read CCE Revision register to verify the device is responsive (bsc#1096793 ). - IB/core: Generate GID change event regardless of RoCE GID table property (bsc#1046306 ). - IB/core: Refer to RoCE port property instead of GID table property (bsc#1046306 ). - IB/cq: Do not force IB_POLL_DIRECT poll context for ib_process_cq_direct (bsc#1046306 ). - IB/hfi1 Use correct type for num_user_context (bsc#1096793 ). - IB/hfi1: Add a safe wrapper for _rcd_get_by_index (bsc#1096793 ). - IB/hfi1: Add tx_opcode_stats like the opcode_stats (bsc#1096793 ). - IB/hfi1: Complete check for locally terminated smp (bsc#1096793 ). - IB/hfi1: Compute BTH only for RDMA_WRITE_LAST/SEND_LAST packet (bsc#1096793 ). - IB/hfi1: Convert PortXmitWait/PortVLXmitWait counters to flit times (bsc#1096793 ). - IB/hfi1: Create common functions for affinity CPU mask operations (bsc#1096793 ). - IB/hfi1: Do not allocate PIO send contexts for VNIC (bsc#1096793 ). - IB/hfi1: Do not modify num_user_contexts module parameter (bsc#1096793 ). - IB/hfi1: Do not override given pcie_pset value (bsc#1096793 ). - IB/hfi1: Ensure VL index is within bounds (bsc#1096793 ). - IB/hfi1: Fix NULL pointer dereference when invalid num_vls is used (bsc#1060463 ). - IB/hfi1: Fix a wrapping test to insure the correct timeout (bsc#1096793 ). - IB/hfi1: Fix for early release of sdma context (bsc#1096793 ). - IB/hfi1: Fix handling of FECN marked multicast packet (bsc#1060463 ). - IB/hfi1: Fix loss of BECN with AHG (bsc#1096793 ). - IB/hfi1: Fix memory leak in exception path in get_irq_affinity() (bsc#1096793 ). - IB/hfi1: Fix serdes loopback set-up (bsc#1096793 ). - IB/hfi1: Handle initial value of 0 for CCTI setting (bsc#1096793 ). - IB/hfi1: Inline common calculation (bsc#1096793 ). - IB/hfi1: Insure int mask for in-kernel receive contexts is clear (bsc#1096793 ). - IB/hfi1: Look up ibport using a pointer in receive path (bsc#1096793 ). - IB/hfi1: Optimize kthread pointer locking when queuing CQ entries (bsc#1096793 ). - IB/hfi1: Optimize packet type comparison using 9B and bypass code paths (bsc#1096793 ). - IB/hfi1: Prevent LNI hang when LCB can't obtain lanes (bsc#1096793 ). - IB/hfi1: Prohibit invalid Init to Armed state transition (bsc#1096793 ). - IB/hfi1: Race condition between user notification and driver state (bsc#1096793 ). - IB/hfi1: Re-order IRQ cleanup to address driver cleanup race (bsc#1060463 ). - IB/hfi1: Refactor assign_ctxt() IOCTL (bsc#1096793 ). - IB/hfi1: Refactor get_base_info (bsc#1096793 ). - IB/hfi1: Refactor get_ctxt_info (bsc#1096793 ). - IB/hfi1: Refactor get_user() IOCTLs (bsc#1096793 ). - IB/hfi1: Refactor hfi_user_exp_rcv_clear() IOCTLs (bsc#1096793 ). - IB/hfi1: Refactor hfi_user_exp_rcv_invalid() IOCTLs (bsc#1096793 ). - IB/hfi1: Refactor hfi_user_exp_rcv_setup() IOCTL (bsc#1096793 ). - IB/hfi1: Remove unused hfi1_cpulist variables (bsc#1096793 ). - IB/hfi1: Reorder incorrect send context disable (bsc#1096793 ). - IB/hfi1: Return correct value for device state (bsc#1096793 ). - IB/hfi1: Send 'reboot' as planned down remote reason (bsc#1096793 ). - IB/hfi1: Set port number for errorinfo MAD response (bsc#1096793 ). - IB/hfi1: Show fault stats in both TX and RX directions (bsc#1096793 ). - IB/hfi1: Update HFI to use the latest PCI API (bsc#1096793 ). - IB/hfi1: Use after free race condition in send context error path (bsc#1096793 ). - IB/hfi1: Validate PKEY for incoming GSI MAD packets (bsc#1096793 ). - IB/ipoib: Avoid memory leak if the SA returns a different DGID (bsc#1046307 ). - IB/ipoib: Change number of TX wqe to 64 (bsc#1096793 ). - IB/ipoib: Fix for notify send CQ failure messages (bsc#1096793 ). - IB/ipoib: Fix for potential no-carrier state (bsc#1046307 ). - IB/ipoib: Get rid of the tx_outstanding variable in all modes (bsc#1096793 ). - IB/ipoib: Use NAPI in UD/TX flows (bsc#1096793 ). - IB/mlx4: Fix integer overflow when calculating optimal MTT size (bsc#1071218). - IB/mlx4: Move mlx4_uverbs_ex_query_device_resp to include/uapi/ (bsc#1071218). - IB/mlx5: Enable ECN capable bits for UD RoCE v2 QPs (bsc#1046305 ). - IB/mlx5: Respect new UMR capabilities (bsc#1093205). - IB/mlx5: Set the default active rate and width to QDR and 4X (bsc#1046305 ). - IB/mlx5: Use unlimited rate when static rate is not supported (bsc#1046305 ). - IB/mlx5:: pr_err() and mlx5_ib_dbg() strings should end with newlines (bsc#1093205). - IB/rdmavt: Add trace for RNRNAK timer (bsc#1096793 ). - IB/rdmavt: Allocate CQ memory on the correct node (bsc#1058717 ). - IB/rdmavt: No need to cancel RNRNAK retry timer when it is running (bsc#1096793 ). - IB/rdmavt: Use correct numa node for SRQ allocation (bsc#1096793 ). - IB/srp: Fix completion vector assignment algorithm (bsc#1046306 ). - IB/srp: Fix srp_abort() (bsc#1046306 ). - IB/srpt: Fix an out-of-bounds stack access in srpt_zerolength_write() (bsc#1046306 ). - IB/uverbs: Fix validating mandatory attributes (bsc#1046306 ). - IB/{hfi1, qib}: Add handling of kernel restart (bsc#1096793 ). - IB/{hfi1, rdmavt}: Fix memory leak in hfi1_alloc_devdata() upon failure (bsc#1096793 ). - IB/{rdmavt,hfi1}: Change hrtimer add to use pinned version (bsc#1096793 ). - Input: ALPS - fix TrackStick detection on Thinkpad L570 and Latitude 7370 (bsc#1051510). - Input: atmel_mxt_ts - add touchpad button mapping for Samsung Chromebook Pro (bsc#1051510). - Input: atmel_mxt_ts - fix the firmware update (bsc#1051510). - Input: elan_i2c - add ELAN0612 (Lenovo v330 14IKB) ACPI ID (bsc#1051510). - Input: elan_i2c - add ELAN0618 (Lenovo v330 15IKB) ACPI ID (bsc#1051510). - Input: elan_i2c_smbus - fix corrupted stack (bsc#1051510). - Input: elan_i2c_smbus - fix more potential stack buffer overflows (bsc#1051510). - Input: elantech - enable middle button of touchpads on ThinkPad P52 (bsc#1051510). - Input: elantech - fix V4 report decoding for module with middle key (bsc#1051510). - Input: goodix - add new ACPI id for GPD Win 2 touch screen (bsc#1051510). - Input: goodix - disable IRQs while suspended (bsc#1051510). - Input: i8042 - add Lenovo ThinkPad L460 to i8042 reset list (bsc#1051510). - Input: i8042 - enable MUX on Sony VAIO VGN-CS series to fix touchpad (bsc#1051510). - Input: leds - fix out of bound access (bsc#1051510). - Input: synaptics - Lenovo Carbon X1 Gen5 (2017) devices should use RMI (bsc#1051510). - Input: synaptics - Lenovo Thinkpad X1 Carbon G5 (2017) with Elantech trackpoints should use RMI (bsc#1051510). - Input: synaptics - add Intertouch support on X1 Carbon 6th and X280 (bsc#1051510). - Input: synaptics - add Lenovo 80 series ids to SMBus (bsc#1051510). - Input: synaptics - reset the ABS_X/Y fuzz after initializing MT axes (bsc#1051510). - Input: synaptics-rmi4 - fix an unchecked out of memory error path (bsc#1051510). - Input: synaptics: Add intertouch blacklist for Thinkpad Helix (bsc#1090457). - Input: xpad - add GPD Win 2 Controller USB IDs (bsc#1051510). - Input: xpad - fix GPD Win 2 controller name (bsc#1051510). - Input: xpad - sync supported devices with 360Controller (bsc#1051510). - Input: xpad - sync supported devices with XBCD (bsc#1051510). - KABI: hide ftrace_enabled in paca (bsc#1088804). - KEYS: DNS: limit the length of option strings (networking-stable-18_04_26). - KEYS: Use individual pages in big_key for crypto buffers (bsc#1051510). - KVM: MMU: consider host cache mode in MMIO page check (bsc#1087213). - KVM: PPC: Book3S HV: Fix ppc_breakpoint_available compile error (bsc#1061840). - KVM: PPC: Book3S HV: Handle migration with POWER9 disabled DAWR (bsc#1061840). - KVM: PPC: Book3S HV: Return error from h_set_dabr() on POWER9 (bsc#1061840). - KVM: PPC: Book3S HV: Return error from h_set_mode(SET_DAWR) on POWER9 (bsc#1061840). - KVM: PPC: Book3S HV: trace_tlbie must not be called in realmode (bsc#1061840). - KVM: arm64: Fix HYP idmap unmap when using 52bit PA (bsc#1089074). - MD: Free bioset when md_run fails (bsc#1093023). - Move upstreamed ideapad-laptop patch to sorted section (bsc#1093035) - NET: usb: qmi_wwan: add support for ublox R410M PID 0x90b2 (bsc#1090888). - NFC: fix device-allocation error return (bsc#1051510). - NFC: llcp: Limit size of SDP URI (bsc#1051510). - NFC: pn533: do not send USB data off of the stack (bsc#1051510). - NFS: Revert "NFS: Move the flock open mode check into nfs_flock()" (bsc#1098983). - NFSv4: Revert commit 5f83d86cf531d ("NFSv4.x: Fix wraparound issues..") (git-fixes). - PCI/ASPM: Add L1 Substates definitions (bsc#1051510). - PCI/ASPM: Calculate LTR_L1.2_THRESHOLD from device characteristics (bsc#1051510). - PCI/DPC: Do not enable DPC if AER control is not allowed by the BIOS (bsc#1093184). - PCI/PME: Handle invalid data when reading Root Status (bsc#1051510). - PCI: Add ACS quirk for Intel 300 series (bsc#1051510). - PCI: Add ACS quirk for Intel 7th and 8th Gen mobile (bsc#1051510). - PCI: Add function 1 DMA alias quirk for Highpoint RocketRAID 644L (bsc#1051510). - PCI: Add function 1 DMA alias quirk for Marvell 88SE9220 (bsc#1051510). - PCI: Add function 1 DMA alias quirk for Marvell 9128 (bsc#1051510). - PCI: Create SR-IOV virtfn/physfn links before attaching driver (bsc#1051510). - PCI: Detach driver before procfs and sysfs teardown on device remove (bsc#1051510). - PCI: Mark Broadcom HT1100 and HT2000 Root Port Extended Tags as broken (bsc#1051510). - PCI: Remove messages about reassigning resources (bsc#1051510). - PCI: Restore config space on runtime resume despite being unbound (bsc#1051510). - PCI: aardvark: Fix PCIe Max Read Request Size setting (bsc#1051510). - PCI: aardvark: Fix logic in advk_pcie_{rd,wr}_conf() (bsc#1051510). - PCI: aardvark: Set PIO_ADDR_LS correctly in advk_pcie_rd_conf() (bsc#1051510). - PCI: aardvark: Use ISR1 instead of ISR0 interrupt in legacy irq mode (bsc#1051510). - PCI: designware-ep: Fix find_first_zero_bit() usage (bsc#1051510). - PCI: hv: Fix a __local_bh_enable_ip warning in hv_compose_msi_msg() (bnc#1094541). - PCI: pciehp: Clear Presence Detect and Data Link Layer Status Changed on resume (bsc#1051510). - PCI: shpchp: Enable bridge bus mastering if MSI is enabled (bsc#1051510). - PM / OPP: Add missing of_node_put(np) (bsc#1051510). - PM / OPP: Call notifier without holding opp_table->lock (bsc#1051510). - PM / OPP: Move error message to debug level (bsc#1051510). - PM / devfreq: Fix potential NULL pointer dereference in governor_store (bsc#1051510). - PM / s2idle: Clear the events_check_enabled flag (bsc#1051510). - PM / wakeirq: Fix unbalanced IRQ enable for wakeirq (bsc#1051510). - PM: docs: Drop an excess character from devices.rst (bsc#1051510). - Pass x86 as architecture on x86_64 and i386 (bsc#1093118). - RDMA/bnxt_re: Fix broken RoCE driver due to recent L2 driver changes (bsc#1086283 ). - RDMA/bnxt_re: Remove redundant bnxt_qplib_disable_nq() call (bsc#1086283 ). - RDMA/core: Avoid that ib_drain_qp() triggers an out-of-bounds stack access (bsc#1046306 ). - RDMA/core: Reduce poll batch for direct cq polling (bsc#1046306 ). - RDMA/i40iw: Avoid panic when reading back the IRQ affinity hint (bsc#1084001). - RDMA/mlx4: Fix uABI structure layouts for 32/64 compat (bsc#1071218). - RDMA/mlx5: Fix crash while accessing garbage pointer and freed memory (bsc#1046305 ). - RDMA/mlx5: Protect from NULL pointer derefence (bsc#1046305 ). - RDMA/ocrdma: Fix permissions for OCRDMA_RESET_STATS (bsc#1058513 ). - RDMA/rxe: Fix an out-of-bounds read (bsc#1050662 ). - RDMA/ucma: Allow resolving address w/o specifying source address (bsc#1046306 ). - RDMA/ucma: Introduce safer rdma_addr_size() variants (bsc#1046306 ). - RDMAVT: Fix synchronization around percpu_ref (bsc#1058717 ). - RDS: Check cmsg_len before dereferencing CMSG_DATA (networking-stable-17_12_31). - Refresh patches.suse/btrfs-use-kvzalloc-to-allocate-btrfs_fs_info.patch - Fixed References (bsc#1062897). - Remove the old fallback for iTCO/WDAT conflict (bsc#1073960) Now the upstream fix is included, so let's rip off the old trickery. - Revert "Bluetooth: btusb: Fix quirk for Atheros 1525/QCA6174" (bsc#1051510). - Revert "Remove patces for bug 1087405 due to regression" This reverts commit f91a2ea5192d9e933c41600da5d1543155df381c. - Revert "ath10k: send (re)assoc peer command when NSS changed" (bsc#1051510). - Revert "drm/i915/edp: Allow alternate fixed mode for eDP if available." (bsc#1093604). - Revert "kernel-binary: do not package extract-cert when not signing modules" This reverts commit 10a8bc496a553b8069d490a8ae7508bdb19f58d9. - Revert "rt2800: use TXOP_BACKOFF for probe frames" (bsc#1051510). - Revert "scsi: core: return BLK_STS_OK for DID_OK in __scsi_error_from_host_byte()" (bsc#1099918). - Revert "scsi: make 'state' device attribute pollable" (bsc#1085341). - USB: Accept bulk endpoints with 1024-byte maxpacket (bsc#1092888). - USB: serial: pl2303: new device id for Chilitag (bsc#1087092). - USB: serial: simple: add Motorola Tetra driver (bsc#1087092). - USB:fix USB3 devices behind USB3 hubs not resuming at hibernate thaw (bsc#1090888). - Update config files, add CONFIG_EXPOLINE_AUTO=y for s390x (bsc#1090098). - Update config files: disable CONFIG_RT_GROUP_SCHED again (bsc#1100734) - Update config files: fix for Cherrytrail devices (bsc#1068546) - Update for above change patches.drivers/0003-md-cluster-Suspend-writes-in-RAID10-if-within-range.patch (bsc#1093023). - Update patches.fixes/vti-fix-use-after-free-in-vti_tunnel_xmit-vti6_tnl_x.patch (bsc#1076830 networking-stable-17_10_09). - Update patches.suse/ceph-don-t-check-quota-for-snap-inode.patch (bsc#1089115). - Update patches.suse/ceph-fix-root-quota-realm-check.patch (bsc#1089115). - Update patches.suse/ceph-quota-add-counter-for-snaprealms-with-quota.patch (bsc#1089115). - Update patches.suse/ceph-quota-add-initial-infrastructure-to-support-cephfs-quotas.patch (bsc#1089115). - Update patches.suse/ceph-quota-cache-inode-pointer-in-ceph_snap_realm.patch (bsc#1089115). - Update patches.suse/ceph-quota-don-t-allow-cross-quota-renames.patch (bsc#1089115). - Update patches.suse/ceph-quota-support-for-ceph-quota-max_bytes.patch (bsc#1089115). - Update patches.suse/ceph-quota-support-for-ceph-quota-max_files.patch (bsc#1089115). - Update patches.suse/ceph-quota-update-mds-when-max_bytes-is-approaching.patch (bsc#1089115). - X.509: fix BUG_ON() when hash algorithm is unsupported (bsc#1051510). - X.509: fix NULL dereference when restricting key with unsupported_sig (bsc#1051510). - X.509: fix comparisons of ->pkey_algo (bsc#1051510). - X.509: reject invalid BIT STRING for subjectPublicKey (bsc#1051510). - acpi, nfit: quiet invalid block-aperture-region warnings (bsc#1091781). - acpi, nfit: rework NVDIMM leaf method detection (bsc#1091782). - acpi: Add helper for deactivating memory region (bsc#1100132). - acpi: nfit: Add support for detect platform CPU cache flush on power loss (bsc#1091424). - acpi: nfit: add persistent memory control flag for nd_region (bsc#1091424). - adding missing rcu_read_unlock in ipxip6_rcv (networking-stable-17_12_31). - af_netlink: ensure that NLMSG_DONE never fails in dumps (networking-stable-17_11_20). - afs: Connect up the CB.ProbeUuid (bsc#1052766). - afs: Fix missing error handling in afs_write_end() (bsc#1052766). - allow_unsupported: add module tainting on feature use (). - amd-xgbe: Add pre/post auto-negotiation phy hooks (networking-stable-18_04_26). - amd-xgbe: Improve KR auto-negotiation and training (networking-stable-18_04_26). - amd-xgbe: Only use the SFP supported transceiver signals (networking-stable-18_04_26). - amd-xgbe: Restore PCI interrupt enablement setting on resume (networking-stable-18_03_07). - apparmor: fix dangling symlinks to policy rawdata after replacement (bsc#1095893). - apparmor: fix display of .ns_name for containers (bsc#1095893). - apparmor: fix logging of the existence test for signals (bsc#1095893). - apparmor: fix memory leak on buffer on error exit path (bsc#1095893). - arch/*: Kconfig: fix documentation for NMI watchdog (bsc#1099918). - arm/arm64: smccc: Add SMCCC-specific return codes (bsc#1085308). - arm64: Add 'ssbd' command-line option (bsc#1085308). - arm64: Add ARCH_WORKAROUND_2 probing (bsc#1085308). - arm64: Add per-cpu infrastructure to call ARCH_WORKAROUND_2 (bsc#1085308). - arm64: Call ARCH_WORKAROUND_2 on transitions between EL0 and EL1 (bsc#1085308). - arm64: Update config files. (bsc#1089762) Set NR_CPUS to 256. - arm64: alternatives: Add dynamic patching feature (bsc#1085308). - arm64: fix endianness annotation for __apply_alternatives()/get_alt_insn() (bsc#1085308). - arm64: ssbd: Add global mitigation state accessor (bsc#1085308). - arm64: ssbd: Add prctl interface for per-thread mitigation (bsc#1085308). - arm64: ssbd: Introduce thread flag to control userspace mitigation (bsc#1085308). - arm64: ssbd: Restore mitigation status on CPU resume (bsc#1085308). - arm64: ssbd: Skip apply_ssbd if not using dynamic mitigation (bsc#1085308). - arp: fix arp_filter on l3slave devices (networking-stable-18_04_10). - ath10k: Fix kernel panic while using worker (ath10k_sta_rc_update_wk) (bsc#1051510). - ath10k: correct target assert problem due to CE5 stuck (bsc#1051510). - ath10k: search all IEs for variant before falling back (bsc#1051510). - ath9k: fix crash in spectral scan (bsc#1051510). - auxdisplay: fix broken menu (bsc#1051510). - auxdisplay: img-ascii-lcd: Only build on archs that have IOMEM (bsc#1051510). - auxdisplay: img-ascii-lcd: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE (bsc#1051510). - backlight: as3711_bl: Fix Device Tree node lookup (bsc#1051510). - backlight: max8925_bl: Fix Device Tree node lookup (bsc#1051510). - backlight: tdo24m: Fix the SPI CS between transfers (bsc#1051510). - backlight: tps65217_bl: Fix Device Tree node lookup (bsc#1051510). - bcache: Add __printf annotation to __bch_check_keys() (bsc#1093023). - bcache: Annotate switch fall-through (bsc#1093023). - bcache: Fix a compiler warning in bcache_device_init() (bsc#1093023). - bcache: Fix indentation (bsc#1093023). - bcache: Fix kernel-doc warnings (bsc#1093023). - bcache: Fix, improve efficiency of closure_sync() (bsc#1093023). - bcache: Reduce the number of sparse complaints about lock imbalances (bsc#1093023). - bcache: Remove an unused variable (bsc#1093023). - bcache: Suppress more warnings about set-but-not-used variables (bsc#1093023). - bcache: Use PTR_ERR_OR_ZERO() (bsc#1093023). - bcache: add CACHE_SET_IO_DISABLE to struct cache_set flags (bsc#1093023). - bcache: add backing_request_endio() for bi_end_io (bsc#1093023). - bcache: add io_disable to struct cached_dev (bsc#1093023). - bcache: add journal statistic (bsc#1093023). - bcache: add stop_when_cache_set_failed option to backing device (bsc#1093023). - bcache: add wait_for_kthread_stop() in bch_allocator_thread() (bsc#1093023). - bcache: allow quick writeback when backing idle (bsc#1093023). - bcache: closures: move control bits one bit right (bsc#1093023). - bcache: comment on direct access to bvec table (bsc#1093023). - bcache: correct flash only vols (check all uuids) (bsc#1093023). - bcache: count backing device I/O error for writeback I/O (bsc#1093023). - bcache: fix cached_dev->count usage for bch_cache_set_error() (bsc#1093023). - bcache: fix error return value in memory shrink (bsc#1093023). - bcache: fix for allocator and register thread race (bsc#1093023). - bcache: fix for data collapse after re-attaching an attached device (bsc#1093023). - bcache: fix high CPU occupancy during journal (bsc#1093023). - bcache: fix inaccurate io state for detached bcache devices (bsc#1093023). - bcache: fix incorrect sysfs output value of strip size (bsc#1093023). - bcache: fix kcrashes with fio in RAID5 backend dev (bsc#1093023). - bcache: fix misleading error message in bch_count_io_errors() (bsc#1093023). - bcache: fix unmatched generic_end_io_acct() and generic_start_io_acct() (bsc#1093023). - bcache: fix using of loop variable in memory shrink (bsc#1093023). - bcache: fix writeback target calc on large devices (bsc#1093023). - bcache: fix wrong return value in bch_debug_init() (bsc#1093023). - bcache: mark closure_sync() __sched (bsc#1093023). - bcache: move closure debug file into debug directory (bsc#1093023). - bcache: properly set task state in bch_writeback_thread() (bsc#1093023). - bcache: quit dc->writeback_thread when BCACHE_DEV_DETACHING is set (bsc#1093023). - bcache: reduce cache_set devices iteration by devices_max_used (bsc#1093023). - bcache: ret IOERR when read meets metadata error (bsc#1093023). - bcache: return 0 from bch_debug_init() if CONFIG_DEBUG_FS=n (bsc#1093023). - bcache: return attach error when no cache set exist (bsc#1093023). - bcache: segregate flash only volume write streams (bsc#1093023). - bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error() (bsc#1093023). - bcache: set dc->io_disable to true in conditional_stop_bcache_device() (bsc#1093023). - bcache: set error_limit correctly (bsc#1093023). - bcache: set writeback_rate_update_seconds in range [1, 60] seconds (bsc#1093023). - bcache: stop dc->writeback_rate_update properly (bsc#1093023). - bcache: stop writeback thread after detaching (bsc#1093023). - bcache: store disk name in struct cache and struct cached_dev (bsc#1093023). - bcache: use pr_info() to inform duplicated CACHE_SET_IO_DISABLE set (bsc#1093023). - bcache: writeback: properly order backing device IO (bsc#1093023). - bdi: Fix oops in wb_workfn() (bsc#1052766). - bdi: wake up concurrent wb_shutdown() callers (bsc#1052766). - be2net: Fix HW stall issue in Lancer (bsc#1086288 ). - be2net: Fix error detection logic for BE3 (bsc#1050252 ). - be2net: Handle transmit completion errors in Lancer (bsc#1086288 ). - bfq-iosched: ensure to clear bic/bfqq pointers when preparing request (bsc#1052766). - bfq: Re-enable auto-loading when built as a module (bsc#1099918). - bio-integrity: move the bio integrity profile check earlier in bio_integrity_prep (bsc#1093023). - bitmap: fix memset optimization on big-endian systems (bsc#1051510). - bitops: Introduce assign_bit() (bsc#1093023). - blacklist.conf: blacklist further commits not needed (bsc#1085933, bsc#1085938, bsc#1085939) - blacklist.conf: blacklist stable fix 880cd276dff1 ("mm, slab: memcg_link the SLAB's kmem_cache"), bsc#1097471 - blacklist.conf: blacklist tools specific change bsc#1085941 - blk-mq-debugfs: fix device sched directory for default scheduler (bsc#1099918). - blk-mq: do not keep offline CPUs mapped to hctx 0 (bsc#1099918). - blk-mq: make sure hctx->next_cpu is set correctly (bsc#1099918). - blk-mq: make sure that correct hctx->next_cpu is set (bsc#1099918). - blk-mq: reinit q->tag_set_list entry only after grace period (bsc#1099918). - blk-mq: simplify queue mapping and schedule with each possisble CPU (bsc#1099918). - block, bfq: add missing invocations of bfqg_stats_update_io_add/remove (bsc#1099918). - block, bfq: fix occurrences of request finish method's old name (bsc#1099918). - block, bfq: put async queues for root bfq groups too (bsc#1052766). - block/loop: fix deadlock after loop_set_status (bsc#1052766). - block/swim: Remove extra put_disk() call from error path (bsc#1099918). - block: Add comment to submit_bio_wait() (bsc#1093023). - block: Fix __bio_integrity_endio() documentation (bsc#1099918). - block: Fix cloning of requests with a special payload (bsc#1099918). - block: Set BIO_TRACE_COMPLETION on new bio during split (bsc#1052766). - block: cope with WRITE ZEROES failing in blkdev_issue_zeroout() (bsc#1099918). - block: factor out __blkdev_issue_zero_pages() (bsc#1099918). - block: sed-opal: Fix a couple off by one bugs (bsc#1099918). - bnx2x: Collect the device debug information during Tx timeout (bsc#1086323 ). - bnx2x: Deprecate pci_get_bus_and_slot() (bsc#1086323 ). - bnx2x: Replace doorbell barrier() with wmb() (bsc#1086323 ). - bnx2x: Use NETIF_F_GRO_HW (bsc#1086323 ). - bnx2x: Use pci_ari_enabled() instead of local copy (bsc#1086323 ). - bnx2x: fix slowpath null crash (bsc#1086323 ). - bnx2x: fix spelling mistake: "registeration" -> "registration" (bsc#1086323 ). - bnx2x: use the right constant (bsc#1086323 ). - bnxt_en: Add BCM5745X NPAR device IDs (bsc#1086282 ). - bnxt_en: Add IRQ remapping logic (bsc#1086282 ). - bnxt_en: Add TC to hardware QoS queue mapping logic (bsc#1086282 ). - bnxt_en: Add ULP calls to stop and restart IRQs (bsc#1086282 ). - bnxt_en: Add cache line size setting to optimize performance (bsc#1086282 ). - bnxt_en: Add extended port statistics support (bsc#1086282 ). - bnxt_en: Add support for ndo_set_vf_trust (bsc#1086282 ). - bnxt_en: Add the new firmware API to query hardware resources (bsc#1086282 ). - bnxt_en: Adjust default rings for multi-port NICs (bsc#1086282 ). - bnxt_en: Always forward VF MAC address to the PF (bsc#1086282 ). - bnxt_en: Change IRQ assignment for RDMA driver (bsc#1086282 ). - bnxt_en: Check max_tx_scheduler_inputs value from firmware (bsc#1086282 ). - bnxt_en: Check the lengths of encapsulated firmware responses (bsc#1086282 ). - bnxt_en: Check unsupported speeds in bnxt_update_link() on PF only (bsc#1086282 ). - bnxt_en: Display function level rx/tx_discard_pkts via ethtool (bsc#1086282 ). - bnxt_en: Do not allow VF to read EEPROM (bsc#1086282 ). - bnxt_en: Do not reserve rings on VF when min rings were not provisioned by PF (bsc#1086282 ). - bnxt_en: Do not set firmware time from VF driver on older firmware (bsc#1086282 ). - bnxt_en: Eliminate duplicate barriers on weakly-ordered archs (bsc#1086282 ). - bnxt_en: Expand bnxt_check_rings() to check all resources (bsc#1086282 ). - bnxt_en: Fix NULL pointer dereference at bnxt_free_irq() (bsc#1086282 ). - bnxt_en: Fix ethtool -x crash when device is down (bsc#1086282 ). - bnxt_en: Fix firmware message delay loop regression (bsc#1086282 ). - bnxt_en: Fix memory fault in bnxt_ethtool_init() (bsc#1050242 ). - bnxt_en: Fix regressions when setting up MQPRIO TX rings (bsc#1086282 ). - bnxt_en: Fix vnic accounting in the bnxt_check_rings() path (bsc#1086282 ). - bnxt_en: Forward VF MAC address to the PF (bsc#1086282 ). - bnxt_en: Ignore src port field in decap filter nodes (bsc#1050242 ). - bnxt_en: Implement new method for the PF to assign SRIOV resources (bsc#1086282 ). - bnxt_en: Implement new method to reserve rings (bsc#1086282 ). - bnxt_en: Improve resource accounting for SRIOV (bsc#1086282 ). - bnxt_en: Improve ring allocation logic (bsc#1086282 ). - bnxt_en: Improve valid bit checking in firmware response message (bsc#1086282 ). - bnxt_en: Include additional hardware port statistics in ethtool -S (bsc#1086282 ). - bnxt_en: Increase RING_IDLE minimum threshold to 50 (bsc#1086282 ). - bnxt_en: Need to include RDMA rings in bnxt_check_rings() (bsc#1086282 ). - bnxt_en: Pass complete VLAN TCI to the stack (bsc#1086282 ). - bnxt_en: Read phy eeprom A2h address only when optical diagnostics is supported (bsc#1086282 ). - bnxt_en: Refactor bnxt_close_nic() (bsc#1086282 ). - bnxt_en: Refactor bnxt_need_reserve_rings() (bsc#1086282 ). - bnxt_en: Refactor hardware resource data structures (bsc#1086282 ). - bnxt_en: Refactor the functions to reserve hardware rings (bsc#1086282 ). - bnxt_en: Remap TC to hardware queues when configuring PFC (bsc#1086282 ). - bnxt_en: Reserve RSS and L2 contexts for VF (bsc#1086282 ). - bnxt_en: Reserve completion rings and MSIX for bnxt_re RDMA driver (bsc#1086282 ). - bnxt_en: Reserve resources for RFS (bsc#1086282 ). - bnxt_en: Reserve rings at driver open if none was reserved at probe time (bsc#1086282 ). - bnxt_en: Reserve rings in bnxt_set_channels() if device is down (bsc#1086282 ). - bnxt_en: Restore MSIX after disabling SRIOV (bsc#1086282 ). - bnxt_en: Set initial default RX and TX ring numbers the same in combined mode (bsc#1086282 ). - bnxt_en: Simplify ring alloc/free error messages (bsc#1086282 ). - bnxt_en: Support max-mtu with VF-reps (bsc#1086282 ). - bnxt_en: Update firmware interface to 1.9.0 (bsc#1086282 ). - bnxt_en: Update firmware interface to 1.9.1.15 (bsc#1086282 ). - bnxt_en: Use a dedicated VNIC mode for RDMA (bsc#1086282 ). - bnxt_en: close and open NIC, only when the interface is in running state (bsc#1086282 ). - bnxt_en: do not allow wildcard matches for L2 flows (bsc#1050242 ). - bnxt_en: export a common switchdev PARENT_ID for all reps of an adapter (bsc#1086282 ). - bnxt_en: fix clear flags in ethtool reset handling (bsc#1050242 ). - bnxt_en: reduce timeout on initial HWRM calls (bsc#1086282 ). - bonding: discard lowest hash bit for 802.3ad layer3+4 (networking-stable-17_11_20). - bonding: do not set slave_dev npinfo before slave_enable_netpoll in bond_enslave (networking-stable-18_04_26). - bonding: fix the err path for dev hwaddr sync in bond_enslave (networking-stable-18_04_10). - bonding: move dev_mc_sync after master_upper_dev_link in bond_enslave (networking-stable-18_04_10). - bonding: process the err returned by dev_set_allmulti properly in bond_enslave (networking-stable-18_04_10). - bonding: send learning packets for vlans on slave (networking-stable-18_05_15). - bpf, ppc64: fix out of bounds access in tail call (bsc#1083647). - bpf, x64: fix memleak when not converging after image (bsc#1083647). - bpf: add schedule points in percpu arrays management (bsc#1083647). - bpf: fix bpf_skb_adjust_net/bpf_skb_proto_xlat to deal with gso sctp skbs (bsc#1076830). - bpf: fix mlock precharge on arraymaps (bsc#1083647). - bpf: make bnxt compatible w/ bpf_xdp_adjust_tail (bsc#1086282 ). - bpf: properly enforce index mask to prevent out-of-bounds speculation (bsc#1098425). - brcmfmac: Fix check for ISO3166 code (bsc#1051510). - brd: fix overflow in __brd_direct_access (bsc#1052766). - bridge: check iface upper dev when setting master via ioctl (networking-stable-18_05_15). - can: af_can: can_pernet_init(): add missing error handling for kzalloc returning NULL (bsc#1051510). - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once (bsc#1051510). - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once (bsc#1051510). - can: c_can: do not indicate triple sampling support for D_CAN (bsc#1051510). - can: cc770: Fix queue stall and dropped RTR reply (bsc#1051510). - can: cc770: Fix stalls on rt-linux, remove redundant IRQ ack (bsc#1051510). - can: cc770: Fix use after free in cc770_tx_interrupt() (bsc#1051510). - can: ems_usb: cancel urb on -EPIPE and -EPROTO (bsc#1051510). - can: esd_usb2: Fix can_dlc value for received RTR, frames (bsc#1051510). - can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bsc#1051510). - can: flex_can: Correct the checking for frame length in flexcan_start_xmit() (bsc#1051510). - can: flexcan: fix VF610 state transition issue (bsc#1051510). - can: flexcan: fix i.MX28 state transition issue (bsc#1051510). - can: flexcan: fix i.MX6 state transition issue (bsc#1051510). - can: flexcan: fix p1010 state transition issue (bsc#1051510). - can: flexcan: fix state transition regression (bsc#1051510). - can: flexcan: implement error passive state quirk (bsc#1051510). - can: flexcan: rename legacy error state quirk (bsc#1051510). - can: gs_usb: fix busy loop if no more TX context is available (bsc#1051510). - can: gs_usb: fix return value of the "set_bittiming" callback (bsc#1051510). - can: hi311x: Acquire SPI lock on ->do_get_berr_counter (bsc#1051510). - can: hi311x: Work around TX complete interrupt erratum (bsc#1051510). - can: ifi: Check core revision upon probe (bsc#1051510). - can: ifi: Fix transmitter delay calculation (bsc#1051510). - can: ifi: Repair the error handling (bsc#1051510). - can: kvaser_usb: Correct return value in printout (bsc#1051510). - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() (bsc#1051510). - can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages (bsc#1051510). - can: kvaser_usb: Increase correct stats counter in kvaser_usb_rx_can_msg() (bsc#1051510). - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bsc#1051510). - can: kvaser_usb: free buf in error paths (bsc#1051510). - can: kvaser_usb: ratelimit errors if incomplete messages are received (bsc#1051510). - can: mcba_usb: cancel urb on -EPROTO (bsc#1051510). - can: mcba_usb: fix device disconnect bug (bsc#1051510). - can: peak/pci: fix potential bug when probe() fails (bsc#1051510). - can: peak/pcie_fd: fix echo_skb is occupied! bug (bsc#1051510). - can: peak/pcie_fd: fix potential bug in restarting tx queue (bsc#1051510). - can: peak/pcie_fd: remove useless code when interface starts (bsc#1051510). - can: peak: Add support for new PCIe/M2 CAN FD interfaces (bsc#1051510). - can: peak: fix potential bug in packet fragmentation (bsc#1051510). - can: sun4i: fix loopback mode (bsc#1051510). - can: sun4i: handle overrun in RX FIFO (bsc#1051510). - can: ti_hecc: Fix napi poll return value for repoll (bsc#1051510). - can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bsc#1051510). - can: vxcan: improve handling of missing peer name attribute (bsc#1051510). - cdc_ether: flag the Cinterion AHS8 modem by gemalto as WWAN (networking-stable-18_04_13). - cdrom: information leak in cdrom_ioctl_media_changed() (bsc#1051510). - ceph: adding protection for showing cap reservation info (bsc#1089115). - ceph: always update atime/mtime/ctime for new inode (bsc#1089115). - ceph: change variable name to follow common rule (bsc#1089115). - ceph: check if mds create snaprealm when setting quota (bsc#1089115). - ceph: do not wait on writeback when there is no more dirty pages (bsc#1089115). - ceph: filter out used flags when printing unused open flags (bsc#1089115). - ceph: fix alignment of rasize (bsc#1098236). - ceph: fix dentry leak in splice_dentry() (bsc#1098236). - ceph: fix invalid point dereference for error case in mdsc destroy (bsc#1089115). - ceph: fix rsize/wsize capping in ceph_direct_read_write() (bsc#1089115). - ceph: fix st_nlink stat for directories (bsc#1093904). - ceph: fix use-after-free in ceph_statfs() (bsc#1098236). - ceph: fix wrong check for the case of updating link count (bsc#1098236). - ceph: keep consistent semantic in fscache related option combination (bsc#1089115). - ceph: mark the cap cache as unreclaimable (bsc#1089115). - ceph: optimize mds session register (bsc#1089115). - ceph: optimize memory usage (bsc#1089115). - ceph: optimizing cap allocation (bsc#1089115). - ceph: optimizing cap reservation (bsc#1089115). - ceph: prevent i_version from going back (bsc#1098236). - ceph: quota: report root dir quota usage in statfs (bsc#1089115). - ceph: release unreserved caps if having enough available caps (bsc#1089115). - ceph: return proper bool type to caller instead of pointer (bsc#1089115). - ceph: support file lock on directory (bsc#1098236). - ceph: use seq_show_option for string type options (bsc#1089115). - cfg80211: clear wep keys after disconnection (bsc#1051510). - cfg80211: further limit wiphy names to 64 bytes (bsc#1051510). - cfg80211: limit wiphy names to 128 bytes (bsc#1051510). - cgroup: Fix deadlock in cpu hotplug path (Git-fixes). - cgroup: Reinit cgroup_taskset structure before cgroup_migrate_execute() returns (Git-fixes). - cifs: Check for timeout on Negotiate stage (bsc#1091171). - cifs: silence compiler warnings showing up with gcc-8.0.0 (bsc#1090734). - config: arm64: enable Spectre-v4 per-thread mitigation - coresight: Fix disabling of CoreSight TPIU (bsc#1051510). - cpufreq: intel_pstate: Add HWP boost utility and sched util hooks (bsc#1066110). - cpufreq: intel_pstate: Fix scaling max/min limits with Turbo 3.0 (bsc#1051510). - cpufreq: intel_pstate: HWP boost performance on IO wakeup (bsc#1066110). - cpufreq: intel_pstate: New sysfs entry to control HWP boost (bsc#1066110). - cpufreq: intel_pstate: enable boost for Skylake Xeon (bsc#1066110). - cpufreq: schedutil: Avoid using invalid next_freq (git-fixes). - cpuidle: fix broadcast control when broadcast can not be entered (Git-fixes). - cros_ec: fix nul-termination for firmware build info (bsc#1051510). - crypto: AF_ALG - remove SGL terminator indicator when chaining (bsc#1051510). - crypto: aes-generic - build with -Os on gcc-7+ (bsc#1051510). - crypto: aes-generic - fix aes-generic regression on powerpc (bsc#1051510). - crypto: af_alg - fix possible uninit-value in alg_bind() (bsc#1051510). - crypto: ahash - Fix early termination in hash walk (bsc#1051510). - crypto: arm,arm64 - Fix random regeneration of S_shipped (bsc#1051510). - crypto: atmel-aes - fix the keys zeroing on errors (bsc#1051510). - crypto: caam - Fix null dereference at error path (bsc#1051510). - crypto: caam - fix DMA mapping dir for generated IV (bsc#1051510). - crypto: caam - fix IV DMA mapping and updating (bsc#1051510). - crypto: caam - fix incorrect define (bsc#1051510). - crypto: caam - strip input zeros from RSA input buffer (bsc#1051510). - crypto: caam/qi - fix IV DMA mapping and updating (bsc#1051510). - crypto: caam/qi - fix IV DMA mapping and updating (bsc#1051510). - crypto: cavium - Fix fallout from CONFIG_VMAP_STACK (bsc#1089141). - crypto: cavium - Fix smp_processor_id() warnings (bsc#1089141). - crypto: cavium - Fix statistics pending request value (bsc#1089141). - crypto: cavium - Limit result reading attempts (bsc#1089141). - crypto: cavium - Prevent division by zero (bsc#1089141). - crypto: ccp - Fix sparse, use plain integer as NULL pointer (git-fixes 200664d5237f). - crypto: drbg - set freed buffers to NULL (bsc#1051510). - crypto: lrw - Free rctx->ext with kzfree (bsc#1051510). - crypto: omap-sham - fix memleak (bsc#1051510). - crypto: qat - remove unused and redundant pointer vf_info (bsc#1051510). - crypto: sunxi-ss - Add MODULE_ALIAS to sun4i-ss (bsc#1051510). - crypto: vmx - Remove overly verbose printk from AES XTS init (bsc#1051510). - crypto: vmx - Remove overly verbose printk from AES init routines (bsc#1051510). - crypto: x86/cast5-avx - fix ECB encryption when long sg follows short one (bsc#1051510). - cxgb4: Correct ntuple mask validation for hash filters (bsc#1064802 bsc#1066129). - cxgb4: fix error return code in adap_init0() (bsc#1064802 bsc#1066129). - cxgb4: fix offset in collecting TX rate limit info (bsc#1073513). - cxgb4vf: Fix SGE FL buffer initialization logic for 64K pages (bsc#1046542 ). - dax, dm: allow device-mapper to operate without dax support (bsc#1093023). - dax: check for QUEUE_FLAG_DAX in bdev_dax_supported() (bsc#1101315). - dccp: do not restart ccid2_hc_tx_rto_expire() if sk in closed state (networking-stable-18_01_28). - dccp: fix tasklet usage (networking-stable-18_05_15). - delayacct: Account blkio completion on the correct task (bsc#1052766). - dell_rbu: make firmware payload memory uncachable (bsc#1087978). - device-dax: allow MAP_SYNC to succeed (bsc#1052766). - devlink: Remove redundant free on error path (networking-stable-18_03_28). - direct-io: Prevent NULL pointer access in submit_page_section (bsc#1052766). - disable patches.drivers/s390-qeth-use-Read-device-to-query-hypervisor-for-MA.patch Backport of mainline commit b7493e91c11a ("s390/qeth: use Read device to query hypervisor for MAC") changes assigned MAC address (and breaks networking) on one of our machines and it's not clear which address is actually correct (bsc#1094575). Disable the patch for now with a marker so that we prevent releasing a maintenance update incompatible with GM. Once the bug is resolved, we will either reenable the patch or drop it. - dlm: fix a clerical error when set SCTP_NODELAY (bsc#1091594). - dlm: make sctp_connect_to_sock() return in specified time (bsc#1080542). - dlm: remove O_NONBLOCK flag in sctp_connect_to_sock (bsc#1080542). - dm btree: fix serious bug in btree_split_beneath() (bsc#1093023). - dm bufio: add missed destroys of client mutex (bsc#1093023). - dm bufio: check result of register_shrinker() (bsc#1093023). - dm bufio: delete outdated comment (bsc#1093023). - dm bufio: do not embed a bio in the dm_buffer structure (bsc#1093023). - dm bufio: eliminate unnecessary labels in dm_bufio_client_create() (bsc#1093023). - dm bufio: fix buffer alignment (bsc#1093023). - dm bufio: fix integer overflow when limiting maximum cache size (bsc#1093023). - dm bufio: fix shrinker scans when (nr_to_scan lower than retain_target) (bsc#1093023). - dm bufio: get rid of slab cache name allocations (bsc#1093023). - dm bufio: move dm-bufio.h to include/linux/ (bsc#1093023). - dm bufio: relax alignment constraint on slab cache (bsc#1093023). - dm bufio: remove code that merges slab caches (bsc#1093023). - dm bufio: reorder fields in dm_buffer structure (bsc#1093023). - dm bufio: support non-power-of-two block sizes (bsc#1093023). - dm bufio: use REQ_OP_READ and REQ_OP_WRITE (bsc#1093023). - dm bufio: use slab cache for dm_buffer structure allocations (bsc#1093023). - dm cache background tracker: limit amount of background work that may be issued at once (bsc#1093023). - dm cache policy smq: allocate cache blocks in order (bsc#1093023). - dm cache policy smq: change max background work from 10240 to 4096 blocks (bsc#1093023). - dm cache policy smq: handle races with queuing background_work (bsc#1093023). - dm cache policy smq: take origin idle status into account when queuing writebacks (bsc#1093023). - dm cache: convert dm_cache_metadata.ref_count from atomic_t to refcount_t (bsc#1093023). - dm cache: fix race condition in the writeback mode overwrite_bio optimisation (bsc#1093023). - dm cache: lift common migration preparation code to alloc_migration() (bsc#1093023). - dm cache: pass cache structure to mode functions (bsc#1093023). - dm cache: remove all obsolete writethrough-specific code (bsc#1093023). - dm cache: remove usused deferred_cells member from struct cache (bsc#1093023). - dm cache: simplify get_per_bio_data() by removing data_size argument (bsc#1093023). - dm cache: submit writethrough writes in parallel to origin and cache (bsc#1093023). - dm crypt: allow unaligned bv_offset (bsc#1093023). - dm crypt: fix crash by adding missing check for auth key size (bsc#1093023). - dm crypt: fix error return code in crypt_ctr() (bsc#1093023). - dm crypt: fix memory leak in crypt_ctr_cipher_old() (bsc#1093023). - dm crypt: limit the number of allocated pages (bsc#1093023). - dm crypt: reject sector_size feature if device length is not aligned to it (bsc#1093023). - dm crypt: remove BIOSET_NEED_RESCUER flag (bsc#1093023). - dm crypt: wipe kernel key copy after IV initialization (bsc#1093023). - dm flakey: check for null arg_name in parse_features() (bsc#1093023). - dm integrity: allow unaligned bv_offset (bsc#1093023). - dm integrity: count and display checksum failures (bsc#1093023). - dm integrity: do not check integrity for failed read operations (bsc#1093023). - dm integrity: do not store cipher request on the stack (bsc#1093023). - dm integrity: fail early if required HMAC key is not available (bsc#1093023). - dm integrity: make blk_integrity_profile structure const (bsc#1093023). - dm integrity: optimize writing dm-bufio buffers that are partially changed (bsc#1093023). - dm integrity: use init_completion instead of COMPLETION_INITIALIZER_ONSTACK (bsc#1093023). - dm integrity: use kvfree for kvmalloc'd memory (bsc#1099918). - dm io: remove BIOSET_NEED_RESCUER flag from bios bioset (bsc#1093023). - dm ioctl: constify ioctl lookup table (bsc#1093023). - dm log writes: add support for DAX (bsc#1093023). - dm log writes: add support for inline data buffers (bsc#1093023). - dm log writes: do not use all the cpu while waiting to log blocks (bsc#1093023). - dm log writes: fix >512b sectorsize support (bsc#1093023). - dm log writes: fix max length used for kstrndup (bsc#1093023). - dm log writes: record metadata flag for better flags record (bsc#1093023). - dm mpath: fix bio-based multipath queue_if_no_path handling (bsc#1099918). - dm raid: add component device size checks to avoid runtime failure (bsc#1093023). - dm raid: avoid passing array_in_sync variable to raid_status() callees (bsc#1093023). - dm raid: bump target version to reflect numerous fixes (bsc#1093023). - dm raid: consume sizes after md_finish_reshape() completes changing them (bsc#1093023). - dm raid: correct resizing state relative to reshape space in ctr (bsc#1093023). - dm raid: display a consistent copy of the MD status via raid_status() (bsc#1093023). - dm raid: do not use 'const' in function return (bsc#1099918). - dm raid: ensure 'a' chars during reshape (bsc#1093023). - dm raid: fix deadlock caused by premature md_stop_writes() (bsc#1093023). - dm raid: fix incorrect status output at the end of a "recover" process (bsc#1093023). - dm raid: fix incorrect sync_ratio when degraded (bsc#1093023). - dm raid: fix nosync status (bsc#1093023). - dm raid: fix panic when attempting to force a raid to sync (bsc#1093023). - dm raid: fix parse_raid_params() variable range issue (bsc#1093023). - dm raid: fix raid set size revalidation (bsc#1093023). - dm raid: fix raid_resume() to keep raid set frozen as needed (bsc#1093023). - dm raid: fix rs_get_progress() synchronization state/ratio (bsc#1093023). - dm raid: make raid_sets symbol static (bsc#1093023). - dm raid: simplify rs_get_progress() (bsc#1093023). - dm raid: small cleanup and remove unsed "struct raid_set" member (bsc#1093023). - dm raid: stop keeping raid set frozen altogether (bsc#1093023). - dm raid: use rs_is_raid*() (bsc#1093023). - dm raid: validate current raid sets redundancy (bsc#1093023). - dm rq: do not update rq partially in each ending bio (bsc#1093023). - dm rq: make dm-sq requeuing behavior consistent with dm-mq behavior (bsc#1093023). - dm space map metadata: use ARRAY_SIZE (bsc#1093023). - dm stripe: get rid of a Variable Length Array (VLA) (bsc#1093023). - dm table: fix regression from improper dm_dev_internal.count refcount_t conversion (bsc#1093023). - dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6 (bsc#1093023). - dm thin: fix trailing semicolon in __remap_and_issue_shared_cell (bsc#1093023). - dm zoned: avoid triggering reclaim from inside dmz_map() (bsc#1099918). - dm zoned: ignore last smaller runt zone (bsc#1093023). - dm-crypt: do not clear bvec->bv_page in crypt_free_buffer_pages() (bsc#1093023). - dm-crypt: do not mess with BIP_BLOCK_INTEGRITY (bsc#1093023). - dm-raid: fix a race condition in request handling (bsc#1093023). - dm: backfill missing calls to mutex_destroy() (bsc#1093023). - dm: clear all discard attributes in queue_limits when discards are disabled (bsc#1093023). - dm: convert DM printk macros to pr_ level macros (bsc#1099918). - dm: convert dm_dev_internal.count from atomic_t to refcount_t (bsc#1093023). - dm: convert table_device.count from atomic_t to refcount_t (bsc#1093023). - dm: correctly handle chained bios in dec_pending() (bsc#1093023). - dm: discard support requires all targets in a table support discards (bsc#1093023). - dm: do not set 'discards_supported' in targets that do not need it (bsc#1093023). - dm: ensure bio submission follows a depth-first tree walk (bsc#1093023). - dm: ensure bio-based DM's bioset and io_pool support targets' maximum IOs (bsc#1093023). - dm: fix __send_changing_extent_only() to send first bio and chain remainder (bsc#1093023). - dm: fix comment above dm_accept_partial_bio (bsc#1093023). - dm: fix printk() rate limiting code (bsc#1099918). - dm: fix various targets to dm_register_target after module __init resources created (bsc#1093023). - dm: limit the max bio size as BIO_MAX_PAGES * PAGE_SIZE (bsc#1093023). - dm: move dm_table_destroy() to same header as dm_table_create() (bsc#1093023). - dm: remove BIOSET_NEED_RESCUER based dm_offload infrastructure (bsc#1093023). - dm: remove stale comment blocks (bsc#1093023). - dm: remove unused 'num_write_bios' target interface (bsc#1093023). - dm: remove unused macro DM_MOD_NAME_SIZE (bsc#1093023). - dm: rename 'bio' member of dm_io structure to 'orig_bio' (bsc#1093023). - dm: safely allocate multiple bioset bios (bsc#1093023). - dm: set QUEUE_FLAG_DAX accordingly in dm_table_set_restrictions() (bsc#1093023). - dm: simplify start of block stats accounting for bio-based (bsc#1093023). - dm: small cleanup in dm_get_md() (bsc#1093023). - dm: use bio_split() when splitting out the already processed bio (bsc#1099918). - dmaengine: at_hdmac: fix potential NULL pointer dereference in atc_prep_dma_interleaved (bsc#1051510). - dmaengine: at_xdmac: fix rare residue corruption (bsc#1051510). - dmaengine: dmatest: fix container_of member in dmatest_callback (bsc#1051510). - dmaengine: dmatest: move callback wait queue to thread context (bsc#1051510). - dmaengine: dmatest: warn user when dma test times out (bsc#1051510). - dmaengine: edma: Align the memcpy acnt array size with the transfer (bsc#1051510). - dmaengine: ioat: Fix error handling path (bsc#1051510). - dmaengine: jz4740: disable/unprepare clk if probe fails (bsc#1051510). - dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type (bsc#1051510). - dmaengine: ti-dma-crossbar: Fix event mapping for TPCC_EVT_MUX_60_63 (bsc#1051510). - dmaengine: ti-dma-crossbar: Fix possible race condition with dma_inuse (bsc#1051510). - docs: disable KASLR when debugging kernel (bsc#1051510). - dpaa_eth: increment the RX dropped counter when needed (networking-stable-18_03_28). - dpaa_eth: remove duplicate increment of the tx_errors counter (networking-stable-18_03_28). - dpaa_eth: remove duplicate initialization (networking-stable-18_03_28). - drbd: Fix drbd_request_prepare() discard handling (bsc#1099918). - driver core: Do not ignore class_dir_create_and_add() failure (bsc#1051510). - driver core: Move device_links_purge() after bus_remove_device() (bsc#1099918). - drivers/infiniband/core/verbs.c: fix build with gcc-4.4.4 (bsc#1046306 ). - drivers/infiniband/ulp/srpt/ib_srpt.c: fix build with gcc-4.4.4 (bsc#1046306 ). - drivers: net: bnx2x: use setup_timer() helper (bsc#1086323 ). - drm/amd/powerplay: Fix enum mismatch (bsc#1051510). - drm/amdgpu/sdma: fix mask in emit_pipeline_sync (bsc#1051510). - drm/amdgpu/si: implement get/set pcie_lanes asic callback (bsc#1051510). - drm/amdgpu: Add APU support in vi_set_uvd_clocks (bsc#1051510). - drm/amdgpu: Add APU support in vi_set_vce_clocks (bsc#1051510). - drm/amdgpu: Add an ATPX quirk for hybrid laptop (bsc#1051510). - drm/amdgpu: Fix PCIe lane width calculation (bsc#1051510). - drm/amdgpu: Fix always_valid bos multiple LRU insertions (bsc#1051510). - drm/amdgpu: Fix deadlock on runtime suspend (bsc#1051510). - drm/amdgpu: Use kvmalloc_array for allocating VRAM manager nodes array (bsc#1051510). - drm/amdgpu: adjust timeout for ib_ring_tests(v2) (bsc#1051510). - drm/amdgpu: disable GFX ring and disable PQ wptr in hw_fini (bsc#1051510). - drm/amdgpu: set COMPUTE_PGM_RSRC1 for SGPR/VGPR clearing shaders (bsc#1051510). - drm/amdkfd: fix clock counter retrieval for node without GPU (bsc#1051510). - drm/armada: fix leak of crtc structure (bsc#1051510). - drm/ast: Fixed 1280x800 Display Issue (bsc#1051510). - drm/atmel-hlcdc: check stride values in the first plane (bsc#1051510). - drm/atomic: Clean old_state/new_state in drm_atomic_state_default_clear() (bsc#1051510). - drm/atomic: Clean private obj old_state/new_state in drm_atomic_state_default_clear() (bsc#1051510). - drm/bridge: analogix dp: Fix runtime PM state in get_modes() callback (bsc#1051510). - drm/bridge: tc358767: do no fail on hi-res displays (bsc#1051510). - drm/bridge: tc358767: filter out too high modes (bsc#1051510). - drm/bridge: tc358767: fix 1-lane behavior (bsc#1051510). - drm/bridge: tc358767: fix AUXDATAn registers access (bsc#1051510). - drm/bridge: tc358767: fix DP0_MISC register set (bsc#1051510). - drm/bridge: tc358767: fix timing calculations (bsc#1051510). - drm/bridge: vga-dac: Fix edid memory leak (bsc#1051510). - drm/dumb-buffers: Integer overflow in drm_mode_create_ioctl() (bsc#1051510). - drm/exynos/dsi: mask frame-done interrupt (bsc#1051510). - drm/exynos: Allow DRM_EXYNOS on s5pv210 (bsc#1051510). - drm/exynos: Fix default value for zpos plane property (bsc#1051510). - drm/exynos: fix comparison to bitshift when dealing with a mask (bsc#1051510). - drm/exynos: g2d: use monotonic timestamps (bsc#1051510). - drm/fsl-dcu: enable IRQ before drm_atomic_helper_resume() (bsc#1051510). - drm/hisilicon: Ensure LDI regs are properly configured (bsc#1051510). - drm/i915/audio: Fix audio detection issue on GLK (bsc#1051510). - drm/i915/audio: set minimum CD clock to twice the BCLK (bsc#1095265). - drm/i915/bios: filter out invalid DDC pins from VBT child devices (bsc#1051510). - drm/i915/execlists: Use rmb() to order CSB reads (bsc#1051510). - drm/i915/gen9: Add WaClearHIZ_WM_CHICKEN3 for bxt and glk (bsc#1051510). - drm/i915/glk: Add MODULE_FIRMWARE for Geminilake (bsc#1095265). - drm/i915/gvt: fix memory leak of a cmd_entry struct on error exit path (bsc#1051510). - drm/i915/gvt: throw error on unhandled vfio ioctls (bsc#1051510). - drm/i915/lvds: Move acpi lid notification registration to registration phase (bsc#1051510). - drm/i915/psr: Chase psr.enabled only under the psr.lock (bsc#1051510). - drm/i915/userptr: reject zero user_size (bsc#1051510). - drm/i915: Adjust eDP's logical vco in a reliable place (bsc#1095265). - drm/i915: Apply batch location restrictions before pinning (bsc#1051510). - drm/i915: Call i915_perf_fini() on init_hw error unwind (bsc#1051510). - drm/i915: Disable LVDS on Radiant P845 (bsc#1051510). - drm/i915: Do no use kfree() to free a kmem_cache_alloc() return value (bsc#1051510). - drm/i915: Do not request a bug report for unsafe module parameters (bsc#1051510). - drm/i915: Enable display WA#1183 from its correct spot (bsc#1051510). - drm/i915: Enable provoking vertex fix on Gen9 systems (bsc#1051510). - drm/i915: Fix LSPCON TMDS output buffer enabling from low-power state (bsc#1051510). - drm/i915: Fix context ban and hang accounting for client (bsc#1051510). - drm/i915: Fix drm:intel_enable_lvds ERROR message in kernel log (bsc#1051510). - drm/i915: Remove stale asserts from i915_gem_find_active_request() (bsc#1051510). - drm/i915: Remove stale asserts from i915_gem_find_active_request() (bsc#1051510). - drm/i915: Remove unbannable context spam from reset (bsc#1051510). - drm/i915: Restore planes after load detection (bsc#1051510). - drm/i915: Restore planes after load detection (bsc#1051510). - drm/i915: Try GGTT mmapping whole object as partial (bsc#1051510). - drm/imx: move arming of the vblank event to atomic_flush (bsc#1051510). - drm/meson: Fix an un-handled error path in 'meson_drv_bind_master()' (bsc#1051510). - drm/meson: Fix some error handling paths in 'meson_drv_bind_master()' (bsc#1051510). - drm/meson: fix vsync buffer update (bsc#1051510). - drm/msm/dsi: use correct enum in dsi_get_cmd_fmt (bsc#1051510). - drm/msm: Fix possible null dereference on failure of get_pages() (bsc#1051510). - drm/msm: do not deref error pointer in the msm_fbdev_create error path (bsc#1100209). - drm/msm: fix leak in failed get_pages (bsc#1051510). - drm/nouveau/bar/gf100: add config option to limit BAR2 to 16MiB (bsc#1095094). - drm/nouveau/bios/iccsense: rails for power sensors have a mask of 0xf8 for version 0x10 (bsc#1095094). - drm/nouveau/bios/init: add a new devinit script interpreter entry-point (bsc#1095094). - drm/nouveau/bios/init: add or/link args separate from output path (bsc#1095094). - drm/nouveau/bios/init: bump script offset to 32-bits (bsc#1095094). - drm/nouveau/bios/init: remove internal use of nvbios_init.bios (bsc#1095094). - drm/nouveau/bios/init: rename 'crtc' to 'head' (bsc#1095094). - drm/nouveau/bios/init: rename nvbios_init() to nvbios_devinit() (bsc#1095094). - drm/nouveau/bios/volt: Parse min and max for Version 0x40 (bsc#1095094). - drm/nouveau/bios: Demote missing fp table message to NV_DEBUG (bsc#1095094). - drm/nouveau/bl: fix backlight regression (bsc#1095094). - drm/nouveau/devinit: use new devinit script interpreter entry-point (bsc#1095094). - drm/nouveau/disp/dp: determine a failsafe link training rate (bsc#1095094). - drm/nouveau/disp/dp: determine link bandwidth requirements from head state (bsc#1095094). - drm/nouveau/disp/dp: no need for lt_state except during manual link training (bsc#1095094). - drm/nouveau/disp/dp: only check for re-train when the link is active (bsc#1095094). - drm/nouveau/disp/dp: remove DP_PWR method (bsc#1095094). - drm/nouveau/disp/dp: store current link configuration in nvkm_ior (bsc#1095094). - drm/nouveau/disp/dp: train link only when actively displaying an image (bsc#1095094). - drm/nouveau/disp/dp: use cached link configuration when checking link status (bsc#1095094). - drm/nouveau/disp/dp: use new devinit script interpreter entry-point (bsc#1095094). - drm/nouveau/disp/g84-: Extend NVKM HDMI power control method to set InfoFrames (bsc#1095094). - drm/nouveau/disp/g84-: port OR HDMI control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/g84-gt200: Use supplied HDMI InfoFrames (bsc#1095094). - drm/nouveau/disp/g94-: port OR DP drive setting control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/g94-: port OR DP lane mapping to nvkm_ior (bsc#1095094). - drm/nouveau/disp/g94-: port OR DP link power control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/g94-: port OR DP link setup to nvkm_ior (bsc#1095094). - drm/nouveau/disp/g94-: port OR DP training pattern control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/gf119-: avoid creating non-existent heads (bsc#1095094). - drm/nouveau/disp/gf119-: port OR DP VCPI control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/gf119: Use supplied HDMI InfoFrames (bsc#1095094). - drm/nouveau/disp/gf119: add missing drive vfunc ptr (bsc#1095094). - drm/nouveau/disp/gk104-: Use supplied HDMI InfoFrames (bsc#1095094). - drm/nouveau/disp/gm200-: allow non-identity mapping of SOR != macro links (bsc#1095094). - drm/nouveau/disp/gt215-: port HDA ELD controls to nvkm_ior (bsc#1095094). - drm/nouveau/disp/gt215: Use supplied HDMI InfoFrames (bsc#1095094). - drm/nouveau/disp/nv04: avoid creation of output paths (bsc#1095094). - drm/nouveau/disp/nv50-: avoid creating ORs that are not present on HW (bsc#1095094). - drm/nouveau/disp/nv50-: execute supervisor on its own workqueue (bsc#1095094). - drm/nouveau/disp/nv50-: fetch head/OR state at beginning of supervisor (bsc#1095094). - drm/nouveau/disp/nv50-: implement a common supervisor 1.0 (bsc#1095094). - drm/nouveau/disp/nv50-: implement a common supervisor 2.0 (bsc#1095094). - drm/nouveau/disp/nv50-: implement a common supervisor 2.1 (bsc#1095094). - drm/nouveau/disp/nv50-: implement a common supervisor 2.2 (bsc#1095094). - drm/nouveau/disp/nv50-: implement a common supervisor 3.0 (bsc#1095094). - drm/nouveau/disp/nv50-: port OR manual sink detection to nvkm_ior (bsc#1095094). - drm/nouveau/disp/nv50-: port OR power state control to nvkm_ior (bsc#1095094). - drm/nouveau/disp/nv50-gt21x: remove workaround for dp->tmds hotplug issues (bsc#1095094). - drm/nouveau/disp: Add mechanism to convert HDMI InfoFrames to hardware format (bsc#1095094). - drm/nouveau/disp: Silence DCB warnings (bsc#1095094). - drm/nouveau/disp: add tv encoders to output resource mapping (bsc#1095094). - drm/nouveau/disp: common implementation of scanoutpos method in nvkm_head (bsc#1095094). - drm/nouveau/disp: delay output path / connector construction until oneinit() (bsc#1095094). - drm/nouveau/disp: fork off some new hw-specific implementations (bsc#1095094). - drm/nouveau/disp: identity-map display paths to output resources (bsc#1095094). - drm/nouveau/disp: introduce acquire/release display path methods (bsc#1095094). - drm/nouveau/disp: introduce input/output resource abstraction (bsc#1095094). - drm/nouveau/disp: introduce object to track per-head functions/state (bsc#1095094). - drm/nouveau/disp: move vblank_{get,put} methods into nvkm_head (bsc#1095094). - drm/nouveau/disp: remove hw-specific customisation of output paths (bsc#1095094). - drm/nouveau/disp: rename nvkm_output to nvkm_outp (bsc#1095094). - drm/nouveau/disp: rename nvkm_output_dp to nvkm_dp (bsc#1095094). - drm/nouveau/disp: s/nvkm_connector/nvkm_conn/ (bsc#1095094). - drm/nouveau/disp: shuffle functions around (bsc#1095094). - drm/nouveau/falcon: use a more reasonable msgqueue timeout value (bsc#1095094). - drm/nouveau/fb/gf100-: zero mmu debug buffers (bsc#1095094). - drm/nouveau/fb/ram/nv40-: use new devinit script interpreter entry-point (bsc#1095094). - drm/nouveau/fbcon: fix oops without fbdev emulation (bsc#1094751). - drm/nouveau/hwmon: Add config for all sensors and their settings (bsc#1095094). - drm/nouveau/hwmon: Add nouveau_hwmon_ops structure with .is_visible/.read_string (bsc#1095094). - drm/nouveau/hwmon: Change permissions to numeric (bsc#1095094). - drm/nouveau/hwmon: Remove old code, add .write/.read operations (bsc#1095094). - drm/nouveau/hwmon: expose the auto_point and pwm_min/max attrs (bsc#1095094). - drm/nouveau/kms/nv04-nv40: improve overlay error detection, fix pitch setting (bsc#1095094). - drm/nouveau/kms/nv04-nv40: prevent undisplayable framebuffers from creation (bsc#1095094). - drm/nouveau/kms/nv04-nv4x: fix exposed format list (bsc#1095094). - drm/nouveau/kms/nv04: use new devinit script interpreter entry-point (bsc#1095094). - drm/nouveau/kms/nv10-nv40: add NV21 support to overlay (bsc#1095094). - drm/nouveau/mc/gf100: add pmu to reset mask (bsc#1095094). - drm/nouveau/mpeg: print more debug info when rejecting dma objects (bsc#1095094). - drm/nouveau/pmu/fuc: do not use movw directly anymore (bsc#1051510). - drm/nouveau/pmu/gt215-: abstract detection of whether reset is needed (bsc#1095094). - drm/nouveau/pmu/gt215: fix reset (bsc#1095094). - drm/nouveau/tegra: Do not leave GPU in reset (bsc#1095094). - drm/nouveau/tegra: Skip manual unpowergating when not necessary (bsc#1095094). - drm/nouveau/therm/gm200: Added (bsc#1095094). - drm/nouveau/therm: fix spelling mistake on array thresolds (bsc#1095094). - drm/nouveau/tmr: remove nvkm_timer_alarm_cancel() (bsc#1095094). - drm/nouveau: Clean up nv50_head_atomic_check_mode() and fix blankus calculation (bsc#1095094). - drm/nouveau: Convert nouveau to use new iterator macros, v2 (bsc#1095094). - drm/nouveau: Drop drm_vblank_cleanup (bsc#1095094). - drm/nouveau: Enable stereoscopic 3D output over HDMI (bsc#1095094). - drm/nouveau: Fix deadlock in nv50_mstm_register_connector() (bsc#1051510). - drm/nouveau: Fix deadlock on runtime suspend (bsc#1051510). - drm/nouveau: Fix merge commit (bsc#1095094). - drm/nouveau: Handle drm_atomic_helper_swap_state failure (bsc#1095094). - drm/nouveau: Handle frame-packing mode geometry and timing effects (bsc#1095094). - drm/nouveau: Pass mode-dependent AVI and Vendor HDMI InfoFrames to NVKM (bsc#1095094). - drm/nouveau: Skip vga_fini on non-PCI device (bsc#1095094). - drm/nouveau: Use the drm_driver.dumb_destroy default (bsc#1095094). - drm/nouveau: silence suspend/resume debugging messages (bsc#1095094). - drm/nouveau: use drm_for_each_connector_iter() (bsc#1095094). - drm/omap: DMM: Check for DMM readiness after successful transaction commit (bsc#1051510). - drm/omap: fix possible NULL ref issue in tiler_reserve_2d (bsc#1051510). - drm/omap: fix uninitialized ret variable (bsc#1051510). - drm/omap: handle alloc failures in omap_connector (bsc#1051510). - drm/omap: silence unititialized variable warning (bsc#1051510). - drm/panel: simple: Fix the bus format for the Ontat panel (bsc#1051510). - drm/psr: Fix missed entry in PSR setup time table (bsc#1051510). - drm/qxl: Call qxl_bo_unref outside atomic context (bsc#1051510). - drm/radeon: Fix PCIe lane width calculation (bsc#1051510). - drm/radeon: Fix deadlock on runtime suspend (bsc#1051510). - drm/radeon: add PX quirk for Asus K73TK (bsc#1051510). - drm/radeon: make MacBook Pro d3_delay quirk more generic (bsc#1051510). - drm/rockchip: Clear all interrupts before requesting the IRQ (bsc#1051510). - drm/rockchip: Respect page offset for PRIME mmap calls (bsc#1051510). - drm/rockchip: dw-mipi-dsi: fix possible un-balanced runtime PM enable (bsc#1051510). - drm/sun4i: Fix dclk_set_phase (bsc#1051510). - drm/sun4i: Fix error path handling (bsc#1051510). - drm/tegra: Shutdown on driver unbind (bsc#1051510). - drm/tilcdc: ensure nonatomic iowrite64 is not used (bsc#1051510). - drm/vc4: Fix memory leak during BO teardown (bsc#1051510). - drm/vc4: Fix scaling of uni-planar formats (bsc#1051510). - drm/virtio: fix vq wait_event condition (bsc#1051510). - drm/vmwgfx: Fix 32-bit VMW_PORT_HB_[IN|OUT] macros (bsc#1051510). - drm/vmwgfx: Fix a buffer object leak (bsc#1051510). - drm/vmwgfx: Set dmabuf_size when vmw_dmabuf_init is successful (bsc#1051510). - drm/vmwgfx: Unpin the screen object backup buffer when not used (bsc#1051510). - drm: Allow determining if current task is output poll worker (bsc#1051510). - drm: Match sysfs name in link removal to link creation (bsc#1051510). - drm: bridge: dw-hdmi: Fix overflow workaround for Amlogic Meson GX SoCs (bsc#1051510). - drm: nouveau: remove dead code and pointless local lut storage (bsc#1095094). - drm: rcar-du: lvds: Fix LVDS startup on R-Car Gen2 (bsc#1051510). - drm: rcar-du: lvds: Fix LVDS startup on R-Car Gen3 (bsc#1051510). - drm: set FMODE_UNSIGNED_OFFSET for drm files (bsc#1051510). - e1000e: Ignore TSYNCRXCTL when getting I219 clock attributes (bsc#1075876). - eCryptfs: do not pass up plaintext names when using filename encryption (bsc#1052766). - earlycon: Use a pointer table to fix __earlycon_table stride (bsc#1099918). - efi/esrt: Use memunmap() instead of kfree() to free the remapping (bsc#1051510). - emulex/benet: Constify *be_misconfig_evt_port_state (bsc#1086288 ). - ethernet/broadcom: Use zeroing memory allocator than allocator/memset (bsc#1086282 ). - ethernet: Use octal not symbolic permissions (bsc#1086288 ). - ethtool: do not print warning for applications using legacy API (networking-stable-18_01_12). - etnaviv: fix gem object list corruption (bsc#1051510). - etnaviv: fix submit error path (bsc#1051510). - ext4: Fix hole length detection in ext4_ind_map_blocks() (bsc#1090953). - ext4: add bounds checking to ext4_xattr_find_entry() (bsc#1052766). - ext4: do not update checksum of new initialized bitmaps (bsc#1052766). - ext4: eliminate sleep from shutdown ioctl (bsc#1052766). - ext4: fix hole length detection in ext4_ind_map_blocks() (bsc#1090953). - ext4: fix offset overflow on 32-bit archs in ext4_iomap_begin() (bsc#1079747). - ext4: fix unsupported feature message formatting (bsc#1098435). - ext4: move call to ext4_error() into ext4_xattr_check_block() (bsc#1052766). - ext4: pass -ESHUTDOWN code to jbd2 layer (bsc#1052766). - ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS (bsc#1052766). - ext4: protect i_disksize update by i_data_sem in direct write path (bsc#1052766). - ext4: set h_journal if there is a failure starting a reserved handle (bsc#1052766). - ext4: shutdown should not prevent get_write_access (bsc#1052766). - extcon: intel-cht-wc: Set direction and drv flags for V5 boost GPIO (bsc#1051510). - f2fs: avoid hungtask when GC encrypted block if io_bits is set (bsc#1052766). - f2fs: expose some sectors to user in inline data or dentry case (bsc#1052766). - f2fs: fix a panic caused by NULL flush_cmd_control (bsc#1086400). - f2fs: fix heap mode to reset it back (bsc#1052766). - f2fs: fix to clear CP_TRIMMED_FLAG (bsc#1052766). - f2fs: fix to wake up all sleeping flusher (bsc#1099918). - fanotify: fix logic of events on child (bsc#1052766). - fbdev: controlfb: Add missing modes to fix out of bounds access (bsc#1051510). - fealnx: Fix building error on MIPS (networking-stable-17_11_20). - fib_semantics: Do not match route with mismatching tclassid (networking-stable-18_03_07). - firewire-ohci: work around oversized DMA reads on JMicron controllers (bsc#1051510). - firmware: add helper to unregister pm ops (bsc#1085937). - firmware: always enable the reboot notifier (bsc#1085937). - firmware: dmi_scan: Fix UUID length safety check (bsc#1051510). - firmware: dmi_scan: Fix handling of empty DMI strings (bsc#1051510). - firmware: fix capturing errors on fw_cache_init() on early init (bsc#1085937). - firmware: fix checking for return values for fw_add_devm_name() (bsc#1051510). - firmware: fix detecting error on register_reboot_notifier() (bsc#1085936). - firmware: move kill_requests_without_uevent() up above (bsc#1085937). - firmware: provide helpers for registering the syfs loader (bsc#1085937). - firmware: share fw fallback killing on reboot/suspend (bsc#1085937). - fix kabi breaker in md.h (git-fixes). - flow_dissector: properly cap thoff field (networking-stable-18_01_28). - fs/aio: Add explicit RCU grace period when freeing kioctx (bsc#1088722). - fs/aio: Use RCU accessors for kioctx_table->table[] (bsc#1088722). - fs/binfmt_misc.c: do not allow offset overflow (bsc#1099142). - fs/fat/inode.c: fix sb_rdonly() change (bsc#1052766). - fs/reiserfs/journal.c: add missing resierfs_warning() arg (bsc#1052766). - fs: Teach path_connected to handle nfs filesystems with multiple roots (git-fixes). - fsnotify: Fix fsnotify_mark_connector race (bsc#1052766). - fsnotify: Hide kABI changes in fsnotify_mark_connector (bsc#1052766). - ftrace: Fix selftest goto location on error (bsc#1099918). - fuse: fix READDIRPLUS skipping an entry (bsc#1088690). - geneve: Fix function matching VNI and tunnel ID on big-endian (bsc#1051510). - geneve: fix fill_info when link down (bsc#1051510). - gfs2: Fix debugfs glocks dump (bsc#1052766). - gpio: No NULL owner (bsc#1051510). - gpio: ath79: add missing MODULE_DESCRIPTION/LICENSE (bsc#1051510). - gpio: davinci: Assign first bank regs for unbanked case (bsc#1051510). - gpio: fix "gpio-line-names" property retrieval (bsc#1051510). - gpio: fix aspeed_gpio unmask irq (bsc#1051510). - gpio: fix error path in lineevent_create (bsc#1051510). - gpio: iop: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE (bsc#1051510). - gpio: label descriptors using the device name (bsc#1051510). - gpio: stmpe: i2c transfer are forbiden in atomic context (bsc#1051510). - gpioib: do not free unrequested descriptors (bsc#1051510). - gpu: ipu-v3: pre: fix device node leak in ipu_pre_lookup_by_phandle (bsc#1051510). - gpu: ipu-v3: prg: avoid possible array underflow (bsc#1051510). - gpu: ipu-v3: prg: fix device node leak in ipu_prg_lookup_by_phandle (bsc#1051510). - hdlc_ppp: carrier detect ok, do not turn off negotiation (networking-stable-18_03_07). - hv_netvsc: Fix a network regression after ifdown/ifup (bsc#1094420). - hwmon: (ina2xx) Fix access to uninitialized mutex (bsc#1051510). - hwmon: (ina2xx) Make calibration register value fixed (bsc#1051510). - hwmon: (jc42) optionally try to disable the SMBUS timeout (bsc#1051510). - hwmon: (nct6775) Fix writing pwmX_mode (bsc#1051510). - hwmon: (pmbus/adm1275) Accept negative page register values (bsc#1051510). - hwmon: (pmbus/max8688) Accept negative page register values (bsc#1051510). - hwtracing: stm: fix build error on some arches (bsc#1051510). - i2c: designware: fix poll-after-enable regression (bsc#1051510). - i2c: i801: Restore configuration at shutdown (bsc#1051510). - i2c: i801: Save register SMBSLVCMD value only once (bsc#1051510). - i2c: ismt: Separate I2C block read from SMBus block read (bsc#1051510). - i2c: mv64xxx: Apply errata delay only in standard mode (bsc#1051510). - i2c: pmcmsp: fix error return from master_xfer (bsc#1051510). - i2c: pmcmsp: return message count on master_xfer success (bsc#1051510). - i2c: viperboard: return message count on master_xfer success (bsc#1051510). - i40e: Close client on suspend and restore client MSIx on resume (bsc#1088821). - i40e: Do not allow use more TC queue pairs than MSI-X vectors exist (bsc#1094978). - i40e: Fix attach VF to VM issue (bsc#1056658 bsc#1056662 ). - i40e: Fix the number of queues available to be mapped for use (bsc#1094978). - i40e: program fragmented IPv4 filter input set (bsc#1056658 bsc#1056662 ). - i40evf: Do not schedule reset_task when device is being removed (bsc#1056658 bsc#1056662 ). - i40evf: do not rely on netif_running() outside rtnl_lock() (bsc#1056658 bsc#1056662 ). - i40evf: ignore link up if not running (bsc#1056658 bsc#1056662 ). - i40iw: Zero-out consumer key on allocate stag for FMR (bsc#1058659 ). - ibmvnic: Check CRQ command return codes (bsc#1094840). - ibmvnic: Clean actual number of RX or TX pools (bsc#1092289). - ibmvnic: Clear pending interrupt after device reset (bsc#1089644). - ibmvnic: Create separate initialization routine for resets (bsc#1094840). - ibmvnic: Define vnic_login_client_data name field as unsized array (bsc#1089198). - ibmvnic: Do not notify peers on parameter change resets (bsc#1089198). - ibmvnic: Fix non-fatal firmware error reset (bsc#1093990). - ibmvnic: Fix partial success login retries (bsc#1094840). - ibmvnic: Fix statistics buffers memory leak (bsc#1093990). - ibmvnic: Free coherent DMA memory if FW map failed (bsc#1093990). - ibmvnic: Handle all login error conditions (bsc#1089198). - ibmvnic: Handle error case when setting link state (bsc#1094840). - ibmvnic: Introduce active CRQ state (bsc#1094840). - ibmvnic: Introduce hard reset recovery (bsc#1094840). - ibmvnic: Mark NAPI flag as disabled when released (bsc#1094840). - ibmvnic: Only do H_EOI for mobility events (bsc#1094356). - ibmvnic: Return error code if init interrupted by transport event (bsc#1094840). - ibmvnic: Set resetting state at earliest possible point (bsc#1094840). - ide: Make ide_cdrom_prep_fs() initialize the sense buffer pointer (bsc#1099918). - ide: ide-atapi: fix compile error with defining macro DEBUG (bsc#1099918). - ide:ide-cd: fix kernel panic resulting from missing scsi_req_init (bsc#1099918). - idr: fix invalid ptr dereference on item delete (bsc#1051510). - ieee802154: 6lowpan: fix possible NULL deref in lowpan_device_event() (networking-stable-18_03_28). - igb: Allow to remove administratively set MAC on VFs (bsc#1056651 ). - igb: Clear TXSTMP when ptp_tx_work() is timeout (bsc#1056651 ). - igb: Fix a test with HWTSTAMP_TX_ON (bsc#1056651 bsc#1056643 ). - iio: ABI: Fix name of timestamp sysfs file (bsc#1051510). - iio: ad7793: Fix the serial interface reset (bsc#1051510). - iio: ad7793: implement IIO_CHAN_INFO_SAMP_FREQ (bsc#1051510). - iio: ad_sigma_delta: Implement a dedicated reset function (bsc#1051510). - iio: adc/accel: Fix up module licenses (bsc#1051510). - iio: adc: cpcap: fix incorrect validation (bsc#1051510). - iio: adc: mcp320x: Fix oops on module unload (bsc#1051510). - iio: adc: mcp320x: Fix readout of negative voltages (bsc#1051510). - iio: adc: meson-saradc: fix the bit_idx of the adc_en clock (bsc#1051510). - iio: adc: stm32: fix scan of multiple channels with DMA (bsc#1051510). - iio: adc: ti-ads1015: add 10% to conversion wait time (bsc#1051510). - iio: adc: twl4030: Disable the vusb3v1 rugulator in the error handling path of 'twl4030_madc_probe()' (bsc#1051510). - iio: adc: twl4030: Fix an error handling path in 'twl4030_madc_probe()' (bsc#1051510). - iio: adis_lib: Initialize trigger before requesting interrupt (bsc#1051510). - iio: buffer: check if a buffer has been set up when poll is called (bsc#1051510). - iio: buffer: fix the function signature to match implementation (bsc#1051510). - iio: core: Return error for failed read_reg (bsc#1051510). - iio: fix kernel-doc build errors (bsc#1051510). - iio: health: max30102: Add power enable parameter to get_temp function (bsc#1051510). - iio: health: max30102: Temperature should be in milli Celsius (bsc#1051510). - iio: imu: st_lsm6dsx: fix endianness in st_lsm6dsx_read_oneshot() (bsc#1051510). - iio: st_pressure: st_accel: Initialise sensor platform data properly (bsc#1051510). - iio: st_pressure: st_accel: pass correct platform data to init (bsc#1051510). - iio: trigger: stm32-timer: fix get/set down count direction (bsc#1051510). - iio: trigger: stm32-timer: fix get/set down count direction (bsc#1051510). - iio: trigger: stm32-timer: preset shouldn't be buffered (bsc#1051510). - iio:buffer: make length types match kfifo types (bsc#1051510). - iio:kfifo_buf: check for uint overflow (bsc#1051510). - ima: Fallback to the builtin hash algorithm (bsc#1091686). - infiniband: drop unknown function from core_priv.h (bsc#1046306 ). - init: fix false positives in W+X checking (bsc#1093721). - initial support (display-only) for GP108 (bsc#1095094). - intel_th: Use correct device when freeing buffers (bsc#1051510). - iommu/amd: Take into account that alloc_dev_data() may return NULL (bsc#975772). - iommu/vt-d: Clear pasid table entry when memory unbound (bsc#1087214). - iommu/vt-d: Fix race condition in add_unmap() (bsc#1096790, bsc#1097034). - iov_iter: fix memory leak in pipe_get_pages_alloc() (bsc#1092710). - iov_iter: fix return type of __pipe_get_pages() (bsc#1092710). - ip6_gre: better validate user provided tunnel names (networking-stable-18_04_10). - ip6_gre: fix device features for ioctl setup (networking-stable-17_12_31). - ip6_gre: init dev->mtu and dev->hard_header_len correctly (networking-stable-18_01_28). - ip6_gre: ip6gre_tap device should keep dst (networking-stable-17_10_09). - ip6_gre: only increase err_count for some certain type icmpv6 in ip6gre_err (networking-stable-17_11_14). - ip6_gre: skb_push ipv6hdr before packing the header in ip6gre_header (networking-stable-17_10_09). - ip6_tunnel: better validate user provided tunnel names (networking-stable-18_04_10). - ip6_tunnel: disable dst caching if tunnel is dual-stack (networking-stable-18_01_12). - ip6_tunnel: do not allow loading ip6_tunnel if ipv6 is disabled in cmdline (networking-stable-17_10_09). - ip6_vti: adjust vti mtu according to mtu of lower device (bsc#1082869). - ip6mr: fix stale iterator (networking-stable-18_02_06). - ip6mr: only set ip6mr_table from setsockopt when ip6mr_new_table succeeds (git-fixes). - ip_gre: fix IFLA_MTU ignored on NEWLINK (bsc#1076830). - ip_tunnel: better validate user provided tunnel names (networking-stable-18_04_10). - ipip: only increase err_count for some certain type icmp in ipip_err (networking-stable-17_11_14). - ipmi_ssif: Fix kernel panic at msg_done_handler (bsc#1088872). - ipv4: Fix use-after-free when flushing FIB tables (networking-stable-17_12_31). - ipv4: Make neigh lookup keys for loopback/point-to-point devices be INADDR_ANY (networking-stable-18_01_28). - ipv4: fix fnhe usage by non-cached routes (networking-stable-18_05_15). - ipv4: fix memory leaks in udp_sendmsg, ping_v4_sendmsg (networking-stable-18_05_15). - ipv4: igmp: guard against silly MTU values (bsc#1082869). - ipv6 sit: work around bogus gcc-8 -Wrestrict warning (networking-stable-18_03_07). - ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL (git-fixes). - ipv6: add RTA_TABLE and RTA_PREFSRC to rtm_ipv6_policy (networking-stable-18_04_26). - ipv6: fix access to non-linear packet in ndisc_fill_redirect_hdr_option() (networking-stable-18_03_28). - ipv6: fix udpv6 sendmsg crash caused by too small MTU (networking-stable-18_01_28). - ipv6: flowlabel: do not leave opt->tot_len with garbage (networking-stable-17_11_14). - ipv6: mcast: better catch silly mtu values (networking-stable-17_12_31). - ipv6: old_dport should be a __be16 in __ip6_datagram_connect() (networking-stable-18_03_28). - ipv6: omit traffic class when calculating flow hash (bsc#1095042). - ipv6: sit: better validate user provided tunnel names (networking-stable-18_04_10). - ipv6: sr: fix NULL pointer dereference in seg6_do_srh_encap()- v4 pkts (git-fixes). - ipv6: sr: fix NULL pointer dereference when setting encap source address (networking-stable-18_03_28). - ipv6: sr: fix TLVs not being copied using setsockopt (networking-stable-18_01_12). - ipv6: sr: fix scheduling in RCU when creating seg6 lwtunnel state (networking-stable-18_03_28). - ipv6: sr: fix seg6 encap performances with TSO enabled (networking-stable-18_04_10). - ipv6: the entire IPv6 header chain must fit the first fragment (networking-stable-18_04_10). - irqchip/gic-v3-its: Ensure nr_ites >= nr_lpis (bsc#1098401). - isdn: eicon: fix a missing-check bug (bsc#1051510). - iw_cxgb4: Atomically flush per QP HW CQEs (bsc#1046543 ). - iw_cxgb4: Fix an error handling path in 'c4iw_get_dma_mr()' (bsc#1064802 bsc#1066129). - iw_cxgb4: print mapped ports correctly (bsc#1046543 ). - iwlmvm: tdls: Check TDLS channel switch support (bsc#1051510). - iwlwifi: add a bunch of new 9000 PCI IDs (1051510). - iwlwifi: add shared clock PHY config flag for some devices (bsc#1051510). - iwlwifi: avoid collecting firmware dump if not loaded (bsc#1051510). - iwlwifi: fix non_shared_ant for 9000 devices (bsc#1051510). - iwlwifi: fw: harden page loading code (bsc#1051510). - iwlwifi: mvm: Correctly set IGTK for AP (bsc#1051510). - iwlwifi: mvm: Correctly set the tid for mcast queue (bsc#1051510). - iwlwifi: mvm: Direct multicast frames to the correct station (bsc#1051510). - iwlwifi: mvm: Fix channel switch for count 0 and 1 (bsc#1051510). - iwlwifi: mvm: Increase session protection time after CS (bsc#1051510). - iwlwifi: mvm: always init rs with 20mhz bandwidth rates (bsc#1051510). - iwlwifi: mvm: clear tx queue id when unreserving aggregation queue (bsc#1051510). - iwlwifi: mvm: do not warn in queue sync on RF-kill (bsc#1051510 ). - iwlwifi: mvm: fix "failed to remove key" message (bsc#1051510). - iwlwifi: mvm: fix IBSS for devices that support station type API (bsc#1051510). - iwlwifi: mvm: fix TSO with highly fragmented SKBs (bsc#1051510). - iwlwifi: mvm: fix TX of CCMP 256 (bsc#1051510). - iwlwifi: mvm: fix array out of bounds reference (bsc#1051510). - iwlwifi: mvm: fix assert 0x2B00 on older FWs (bsc#1051510). - iwlwifi: mvm: fix error checking for multi/broadcast sta (bsc#1051510). - iwlwifi: mvm: fix race in queue notification wait (bsc#1051510). - iwlwifi: mvm: fix security bug in PN checking (bsc#1051510). - iwlwifi: mvm: honor the max_amsdu_subframes limit (bsc#1051510). - iwlwifi: mvm: make sure internal station has a valid id (bsc#1051510). - iwlwifi: mvm: remove DQA non-STA client mode special case (bsc#1051510 ). - iwlwifi: mvm: set the correct tid when we flush the MCAST sta (bsc#1051510). - iwlwifi: pcie: compare with number of IRQs requested for, not number of CPUs (bsc#1051510). - ixgbe: do not set RXDCTL.RLPML for 82599 (bsc#1056657 ). - ixgbe: prevent ptp_rx_hang from running when in FILTER_ALL mode (bsc#1056657 bsc#1056653 ). - jbd2: if the journal is aborted then do not allow update of the log tail (bsc#1052766). - jffs2_kill_sb(): deal with failed allocations (bsc#1052766). - kabi protect struct acpi_nfit_desc (bsc#1091424). - kabi: add struct bpf_map back (References: bsc#1098425). - kabi: arm64: reserve space in cpu_hwcaps and cpu_hwcap_keys arrays (bsc#1089086). - kabi: arm64: update crc for cpu_hwcaps and cpu_hwcap_keys References: bsc#1089086 - kcm: lock lower socket in kcm_attach (networking-stable-18_03_28). - kconfig: Avoid format overflow warning from GCC 8.1 (bsc#1051510). - kconfig: Do not leak main menus during parsing (bsc#1051510). - kconfig: Fix automatic menu creation mem leak (bsc#1051510). - kconfig: Fix expr_free() E_NOT leak (bsc#1051510). - kernel/acct.c: fix the acct->needcheck check in check_free_space() (Git-fixes). - kernel/async.c: revert "async: simplify lowest_in_progress()" (Git-fixes). - kernel/relay.c: limit kmalloc size to KMALLOC_MAX_SIZE (bsc#1051510). - kernel/relay.c: revert "kernel/relay.c: fix potential memory leak" (Git-fixes). - kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from !sig_kernel_only() signals (Git-fixes). - kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL (Git-fixes). - kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal() (Git-fixes). - kexec: export PG_swapbacked to VMCOREINFO (bsc#1088354). - kexec_file: do not add extra alignment to efi memmap (bsc#1089268). - klp_symbols: make --klp-symbols argument semantic sane It selects build of klp symbols and defaults to off - kmod: fix wait on recursive loop (bsc#1099792). - kmod: reduce atomic operations on kmod_concurrent and simplify (bsc#1099792). - kmod: throttle kmod thread limit (bsc#1099792). - kobject: do not use WARN for registration failures (bsc#1051510). - kvm/x86: fix icebp instruction handling (bsc#1087088). - kvm: Introduce nopvspin kernel parameter (bsc#1056427). - kvm: nVMX: Enforce cpl=0 for VMX instructions (bsc#1099183). - l2tp: check sockaddr length in pppol2tp_connect() (networking-stable-18_04_26). - l2tp: do not accept arbitrary sockets (bsc#1076830). - lan78xx: Crash in lan78xx_writ_reg (Workqueue: events lan78xx_deferred_multicast_write) (networking-stable-18_04_10). - leds: pm8058: Silence pointer to integer size warning (bsc#1051510). - lib/kobject: Join string literals back (bsc#1051510). - lib/string_helpers: Add missed declaration of struct task_struct (bsc#1099918). - lib/test_bitmap.c: fix bitmap optimisation tests to report errors correctly (bsc#1051510). - libata: Apply NOLPM quirk for SanDisk SD7UB3Q*G1001 SSDs (bsc#1051510). - libata: Blacklist some Sandisk SSDs for NCQ (bsc#1051510). - libata: Drop SanDisk SD7UB3Q*G1001 NOLPM quirk (bsc#1051510). - libata: blacklist Micron 500IT SSD with MU01 firmware (bsc#1051510). - libata: zpodd: make arrays cdb static, reduces object code size (bsc#1051510). - libata: zpodd: small read overflow in eject_tray() (bsc#1051510). - libceph, ceph: change permission for readonly debugfs entries (bsc#1089115). - libceph: adding missing message types to ceph_msg_type_name() (bsc#1089115). - libceph: fix misjudgement of maximum monitor number (bsc#1089115). - libceph: reschedule a tick in finish_hunting() (bsc#1089115). - libceph: un-backoff on tick when we have a authenticated session (bsc#1089115). - libceph: validate con->state at the top of try_write() (bsc#1089115). - libnvdimm, btt: add a couple of missing kernel-doc lines (bsc#1087210). - libnvdimm, btt: clean up warning and error messages (bsc#1087205). - libnvdimm, btt: fix format string warnings (bsc#1087205). - libnvdimm, dimm: handle EACCES failures from label reads (). - libnvdimm, label: change min label storage size per UEFI 2.7 (bsc#1091666). - libnvdimm, namespace: use a safe lookup for dimm device name (bsc#1095321). - libnvdimm, nfit: fix persistence domain reporting (bsc#1091424). - libnvdimm, pmem: Add sysfs notifications to badblocks (). - libnvdimm, pmem: Do not flush power-fail protected CPU caches (bsc#1091424). - libnvdimm, pmem: Unconditionally deep flush on *sync (bsc#1091424). - libnvdimm, region, pmem: fix 'badblocks' sysfs_get_dirent() reference lifetime (). - libnvdimm, region: hide persistence_domain when unknown (bsc#1091424). - libnvdimm: expose platform persistence attribute for nd_region (bsc#1091424). - libnvdimm: re-enable deep flush for pmem devices via fsync() (bsc#1091424). - livepatch: Allow to call a custom callback when freeing shadow variables (bsc#1071995 ). - livepatch: Initialize shadow variables safely by a custom callback (bsc#1071995 ). - llc: better deal with too small mtu (networking-stable-18_05_15). - llc: fix NULL pointer deref for SOCK_ZAPPED (networking-stable-18_04_26). - llc: hold llc_sap before release_sock() (networking-stable-18_04_26). - lock_parent() needs to recheck if dentry got __dentry_kill'ed under it (bsc#1052766). - locking/atomics, dm-integrity: Convert ACCESS_ONCE() to READ_ONCE()/WRITE_ONCE() (bsc#1093023). - locking/atomics: COCCINELLE/treewide: Convert trivial ACCESS_ONCE() patterns to READ_ONCE()/WRITE_ONCE() (bsc#1093023). - locking/qspinlock: Ensure node is initialised before updating prev->next (bsc#1050549). - locking/qspinlock: Ensure node->count is updated before initialising node (bsc#1050549). - locking: Remove smp_read_barrier_depends() from queued_spin_lock_slowpath() (bsc#1050549). - loop: handle short DIO reads (bsc#1052766). - lpfc: Fix 16gb hbas failing cq create (bsc#1093290). - lpfc: Fix port initialization failure (bsc#1093290). - lsm: fix smack_inode_removexattr and xattr_getsecurity memleak (bsc#1051510). - mac80211: Adjust SAE authentication timeout (bsc#1051510). - mac80211: Do not disconnect on invalid operating class (bsc#1051510). - mac80211: Fix condition validating WMM IE (bsc#1051510). - mac80211: Fix sending ADDBA response for an ongoing session (bsc#1051510). - mac80211: Fix setting TX power on monitor interfaces (bsc#1051510). - mac80211: drop frames with unexpected DS bits from fast-rx to slow path (bsc#1051510). - mac80211: mesh: fix wrong mesh TTL offset calculation (bsc#1051510). - mac80211: round IEEE80211_TX_STATUS_HEADROOM up to multiple of 4 (bsc#1051510). - mac80211: use timeout from the AddBA response instead of the request (bsc#1051510). - macros.kernel-source: define linux_arch for KMPs (boo#1098050). CONFIG_64BIT is no longer defined so KMP spec files need to include %{?linux_make_arch} in any make call to build modules or descent into the kernel directory for any reason. - macvlan: filter out unsupported feature flags (networking-stable-18_03_28). - macvlan: fix memory hole in macvlan_dev (bsc#1099918). - macvlan: remove unused fields in struct macvlan_dev (bsc#1099918). - mailbox: bcm-flexrm-mailbox: Fix FlexRM ring flush sequence (bsc#1051510). - mailbox: bcm-flexrm-mailbox: Fix mask used in CMPL_START_ADDR_VALUE() (bsc#1051510). - mailbox: mailbox-test: do not rely on rx_buffer content to signal data ready (bsc#1051510). - mbcache: initialize entry->e_referenced in mb_cache_entry_create() (bsc#1052766). - md raid10: fix NULL deference in handle_write_completed() (git-fixes). - md-cluster: choose correct label when clustered layout is not supported (bsc#1093023). - md-cluster: do not update recovery_offset for faulty device (bsc#1093023). - md-cluster: make function cluster_check_sync_size static (bsc#1093023). - md-multipath: Use seq_putc() in multipath_status() (bsc#1093023). - md/bitmap: clear BITMAP_WRITE_ERROR bit before writing it to sb (bsc#1093023). - md/bitmap: copy correct data for bitmap super (bsc#1093023). - md/bitmap: revert a patch (bsc#1093023). - md/r5cache: call mddev_lock/unlock() in r5c_journal_mode_show (bsc#1093023). - md/r5cache: fix io_unit handling in r5l_log_endio() (bsc#1093023). - md/r5cache: move mddev_lock() out of r5c_journal_mode_set() (bsc#1093023). - md/r5cache: print more info of log recovery (bsc#1093023). - md/raid0: attach correct cgroup info in bio (bsc#1093023). - md/raid1,raid10: silence warning about wait-within-wait (bsc#1093023). - md/raid1/10: add missed blk plug (bsc#1093023). - md/raid1: Fix trailing semicolon (bsc#1093023). - md/raid1: exit sync request if MD_RECOVERY_INTR is set (bsc#1093023). - md/raid1: fix NULL pointer dereference (bsc#1093023). - md/raid5: cap worker count (bsc#1093023). - md/raid5: correct degraded calculation in raid5_error (bsc#1093023). - md/raid5: simplify uninitialization of shrinker (bsc#1093023). - md: Delete gendisk before cleaning up the request queue (bsc#1093023). - md: allow metadata update while suspending (bsc#1093023). - md: always hold reconfig_mutex when calling mddev_suspend() (bsc#1093023). - md: be cautious about using ->curr_resync_completed for ->recovery_offset (bsc#1093023). - md: do not call bitmap_create() while array is quiesced (bsc#1093023). - md: do not check MD_SB_CHANGE_CLEAN in md_allow_write (bsc#1093023). - md: document lifetime of internal rdev pointer (bsc#1093023). - md: fix a potential deadlock of raid5/raid10 reshape (bsc#1093023). - md: fix a race condition for flush request handling (bsc#1093023). - md: fix deadlock error in recent patch (bsc#1093023). - md: fix md_write_start() deadlock w/o metadata devices (git-fixes). - md: fix two problems with setting the "re-add" device state (bsc#1098176). - md: forbid a RAID5 from having both a bitmap and a journal (bsc#1093023). - md: free unused memory after bitmap resize (bsc#1093023). - md: limit mdstat resync progress to max_sectors (bsc#1093023). - md: move suspend_hi/lo handling into core md code (bsc#1093023). - md: only allow remove_and_add_spares when no sync_thread running (bsc#1093023). - md: raid10: remove VLAIS (bsc#1093023). - md: raid10: remove a couple of redundant variables and initializations (bsc#1093023). - md: raid5: avoid string overflow warning (bsc#1093023). - md: release allocated bitset sync_set (bsc#1093023). - md: remove redundant variable q (bsc#1093023). - md: remove special meaning of ->quiesce(.., 2) (bsc#1093023). - md: rename some drivers/md/ files to have an "md-" prefix (bsc#1093023). - md: replace seq_release_private with seq_release (bsc#1093023). - md: separate request handling (bsc#1093023). - md: use TASK_IDLE instead of blocking signals (bsc#1093023). - md: use lockdep_assert_held (bsc#1093023). - md: use mddev_suspend/resume instead of ->quiesce() (bsc#1093023). - media: atomisp_fops.c: disable atomisp_compat_ioctl32 (bsc#1051510). - media: au0828: add VIDEO_V4L2 dependency (bsc#1051510). - media: cx231xx: Add support for AverMedia DVD EZMaker 7 (bsc#1051510). - media: cx23885: Override 888 ImpactVCBe crystal frequency (bsc#1051510). - media: cx23885: Set subdev host data to clk_freq pointer (bsc#1051510). - media: dmxdev: fix error code for invalid ioctls (bsc#1051510). - media: dvb_frontend: fix locking issues at dvb_frontend_get_event() (bsc#1051510). - media: em28xx: Add Hauppauge SoloHD/DualHD bulk models (bsc#1051510). - media: em28xx: USB bulk packet size fix (bsc#1051510). - media: lgdt3306a: Fix a double kfree on i2c device remove (bsc#1051510). - media: lgdt3306a: Fix module count mismatch on usb unplug (bsc#1051510). - media: smiapp: fix timeout checking in smiapp_read_nvm (bsc#1099918). - media: uvcvideo: Support realtek's UVC 1.5 device (bsc#1099109). - media: v4l2-compat-ioctl32: do not oops on overlay (bsc#1051510). - media: v4l2-compat-ioctl32: prevent go past max size (bsc#1051510). - media: videobuf2-core: do not go out of the buffer range (bsc#1051510). - media: vivid: check if the cec_adapter is valid (bsc#1051510). - mei: me: add cannon point device ids (). - mei: me: add cannon point device ids for 4th device (). - mei: remove dev_err message on an unsupported ioctl (bsc#1051510). - mfd: cros ec: spi: Do not send first message too soon (bsc#1051510). - mfd: intel-lpss: Fix Intel Cannon Lake LPSS I2C input clock (bsc#1051510). - mfd: intel-lpss: Program REMAP register in PIO mode (bsc#1051510). - mkspec: only build docs for default variant kernel. - mlxsw: spectrum: Disable MAC learning for ovs port (networking-stable-17_12_31). - mlxsw: spectrum: Forbid linking to devices that have uppers FIX (stable-fixes). - mlxsw: spectrum: Prevent mirred-related crash on removal (networking-stable-17_10_09). - mlxsw: spectrum: Relax sanity checks during enslavement (networking-stable-18_01_12). - mlxsw: spectrum_buffers: Set a minimum quota for CPU port traffic (networking-stable-18_03_28). - mlxsw: spectrum_router: Do not log an error on missing neighbor (networking-stable-18_01_28). - mlxsw: spectrum_router: Fix NULL pointer deref (networking-stable-18_01_12). - mlxsw: spectrum_router: Fix error path in mlxsw_sp_vr_create (networking-stable-18_03_07). - mlxsw: spectrum_router: Simplify a piece of code (networking-stable-18_01_12). - mlxsw: spectrum_switchdev: Check success of FDB add operation (networking-stable-18_03_07). - mm, oom_reaper: skip mm structs with mmu notifiers (bsc#1099918). - mm, page_alloc: do not break __GFP_THISNODE by zonelist reset (bsc#1079152, VM Functionality). - mm, percpu: add support for __GFP_NOWARN flag (bsc#1089753). - mm, slab: reschedule cache_reap() on the same CPU (VM Functionality, bsc#1097796). - mm, swap: fix false error message in __swp_swapcount() (VM Functionality, bsc#1098043). - mm, swap: fix race between swap count continuation operations (VM Functionality, bsc#1097373). mm, swap: fix race between swap count continuation operations - KABI fix (VM Functionality, bsc#1097373). - mm, thp: do not cause memcg oom for thp (bnc#1089663). - mm/fadvise: discard partial page if endbyte is also EOF (bsc#1052766). - mm/filemap.c: fix NULL pointer in page_cache_tree_insert() (bsc#1052766). - mm/huge_memory.c: __split_huge_page() use atomic ClearPageDirty() (VM Functionality, bsc#1097800). - mm/khugepaged.c: convert VM_BUG_ON() to collapse fail (VM Functionality, bsc#1097468). - mm/ksm.c: fix inconsistent accounting of zero pages (VM Functionality, bsc#1097780). - mm/mempolicy.c: avoid use uninitialized preferred_node (VM Functionality, bsc#1097465). - mm/page_owner: fix recursion bug after changing skip entries (VM Functionality, bsc#1097472). - mm/pkeys, powerpc, x86: Provide an empty vma_pkey() in linux/pkeys.h (bsc#1078248). - mm/pkeys, x86, powerpc: Display pkey in smaps if arch supports pkeys (bsc#1078248). - mm/pkeys: Add an empty arch_pkeys_enabled() (bsc#1078248). - mm/pkeys: Remove include of asm/mmu_context.h from pkeys.h (bsc#1078248). - mm/shmem: do not wait for lock_page() in shmem_unused_huge_shrink() (bnc#1089667). - mm/thp: do not wait for lock_page() in deferred_split_scan() (VM Functionality, bsc#1097470). - mm: Fix memory size alignment in devm_memremap_pages_release() (VM Functionality, bsc#1097439). - mm: fix device-dax pud write-faults triggered by get_user_pages() (bsc#1052766). - mm: fix the NULL mapping case in __isolate_lru_page() (bnc#971975 VM -- git fixes). - mmc: dw_mmc: Fix the DTO/CTO timeout overflow calculation for 32-bit systems (bsc#1088713). - mmc: dw_mmc: exynos: fix the suspend/resume issue for exynos5433 (bsc#1051510). - mmc: jz4740: Fix race condition in IRQ mask update (bsc#1051510). - mmc: sdhci-iproc: add SDHCI_QUIRK2_HOST_OFF_CARD_ON for cygnus (bsc#1051510). - mmc: sdhci-iproc: fix 32bit writes for TRANSFER_MODE register (bsc#1051510). - mmc: sdhci-iproc: remove hard coded mmc cap 1.8v (bsc#1051510). - mmc: sdhci-pci: Fix voltage switch for some Intel host controllers (bsc#1051510). - mmc: sdhci-pci: Only do AMD tuning for HS200 (bsc#1051510). - mq-deadline: Enable auto-loading when built as module (bsc#1099918). - mremap: Remove LATENCY_LIMIT from mremap to reduce the number of TLB shootdowns (bnc#1095115). - mtd: cmdlinepart: Update comment for introduction of OFFSET_CONTINUOUS (bsc#1099918). - mtd: jedec_probe: Fix crash in jedec_read_mfr() (bsc#1099918). - mtd: nand: fsl_ifc: Fix eccstat array overflow for IFC ver >= 2.0.0 (bsc#1099918). - mtd: partitions: add helper for deleting partition (bsc#1099918). - mtd: partitions: remove sysfs files when deleting all master's partitions (bsc#1099918). - mtd: ubi: wl: Fix error return code in ubi_wl_init() (bsc#1051510). - mwifiex: pcie: tighten a check in mwifiex_pcie_process_event_ready() (bsc#1051510). - n_tty: Access echo_* variables carefully (bsc#1051510). - n_tty: Fix stall at n_tty_receive_char_special() (bsc#1051510). - n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (bnc#1094825). - nbd: do not start req until after the dead connection logic (bsc#1099918). - nbd: fix -ERESTARTSYS handling (bsc#1099918). - nbd: fix nbd device deletion (bsc#1099918). - nbd: fix return value in error handling path (bsc#1099918). - nbd: wait uninterruptible for the dead timeout (bsc#1099918). - net sched actions: fix refcnt leak in skbmod (networking-stable-18_05_15). - net sched actions: return explicit error when tunnel_key mode is not specified (bsc#1056787). - net/ipv6: Fix route leaking between VRFs (networking-stable-18_04_10). - net/ipv6: Increment OUTxxx counters after netfilter hook (networking-stable-18_04_10). - net/iucv: Free memory obtained by kzalloc (networking-stable-18_03_28). - net/mlx4_en: Fix an error handling path in 'mlx4_en_init_netdev()' (networking-stable-18_05_15). - net/mlx4_en: Verify coalescing parameters are in range (networking-stable-18_05_15). - net/mlx5: Avoid cleaning flow steering table twice during error flow (bsc#1091532). - net/mlx5: E-Switch, Include VF RDMA stats in vport statistics (networking-stable-18_05_15). - net/mlx5: Eliminate query xsrq dead code (bsc#1046303 ). - net/mlx5: Fix build break when CONFIG_SMP=n (bsc#1046303 ). - net/mlx5: Fix mlx5_get_vector_affinity function (bsc#1046303 ). - net/mlx5e: Allow offloading ipv4 header re-write for icmp (bsc#1046303 ). - net/mlx5e: Do not reset Receive Queue params on every type change (bsc#1046303 ). - net/mlx5e: Err if asked to offload TC match on frag being first (networking-stable-18_05_15). - net/mlx5e: Fixed sleeping inside atomic context (bsc#1046303 ). - net/mlx5e: Remove unused define MLX5_MPWRQ_STRIDES_PER_PAGE (bsc#1046303 ). - net/mlx5e: TX, Use correct counter in dma_map error flow (networking-stable-18_05_15). - net/sched: cls_u32: fix cls_u32 on filter replace (networking-stable-18_03_07). - net/sched: fix NULL dereference in the error path of tcf_bpf_init() (bsc#1056787). - net/sched: fix NULL dereference in the error path of tunnel_key_init() (bsc#1056787). - net/sched: fix NULL dereference on the error path of tcf_skbmod_init() (bsc#1056787). - net/sctp: Always set scope_id in sctp_inet6_skb_msgname (networking-stable-17_11_20). - net/unix: do not show information about sockets from other namespaces (networking-stable-17_11_14). - net/usb/qmi_wwan.c: Add USB id for lt4120 modem (bsc#1087092). - net: Allow neigh contructor functions ability to modify the primary_key (networking-stable-18_01_28). - net: Fix hlist corruptions in inet_evict_bucket() (networking-stable-18_03_28). - net: Only honor ifindex in IP_PKTINFO if non-0 (networking-stable-18_03_28). - net: Set sk_prot_creator when cloning sockets to the right proto (networking-stable-17_10_09). - net: af_packet: fix race in PACKET_{R|T}X_RING (networking-stable-18_04_26). - net: bonding: Fix transmit load balancing in balance-alb mode if specified by sysfs (networking-stable-17_10_09). - net: bonding: fix tlb_dynamic_lb default value (networking-stable-17_10_09). - net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks (networking-stable-17_12_31). - net: bridge: fix returning of vlan range op errors (networking-stable-17_11_14). - net: core: fix module type in sock_diag_bind (networking-stable-18_01_12). - net: dsa: bcm_sf2: Clear IDDQ_GLOBAL_PWR bit for PHY (networking-stable-17_12_31). - net: dsa: check master device before put (networking-stable-17_11_14). - net: dsa: mv88e6xxx: lock mutex when freeing IRQs (networking-stable-17_10_09). - net: emac: Fix napi poll list corruption (networking-stable-17_10_09). - net: ethernet: arc: Fix a potential memory leak if an optional regulator is deferred (networking-stable-18_03_28). - net: ethernet: sun: niu set correct packet size in skb (networking-stable-18_05_15). - net: ethernet: ti: cpsw: add check for in-band mode setting with RGMII PHY interface (networking-stable-18_03_28). - net: ethernet: ti: cpsw: fix net watchdog timeout (networking-stable-18_03_07). - net: ethernet: ti: cpsw: fix packet leaking in dual_mac mode (networking-stable-18_05_15). - net: ethernet: ti: cpsw: fix tx vlan priority mapping (networking-stable-18_04_26). - net: ethtool: Add missing kernel doc for FEC parameters (bsc#1046540 ). - net: fec: Fix unbalanced PM runtime calls (networking-stable-18_03_28). - net: fec: defer probe if regulator is not ready (networking-stable-18_01_12). - net: fec: free/restore resource in related probe error pathes (networking-stable-18_01_12). - net: fec: restore dev_id in the cases of probe error (networking-stable-18_01_12). - net: fec: unmap the xmit buffer that are not transferred by DMA (networking-stable-17_12_31). - net: fix deadlock while clearing neighbor proxy table (networking-stable-18_04_26). - net: fix possible out-of-bound read in skb_network_protocol() (networking-stable-18_04_10). - net: fool proof dev_valid_name() (networking-stable-18_04_10). - net: igmp: Use correct source address on IGMPv3 reports (networking-stable-17_12_31). - net: igmp: add a missing rcu locking section (git-fixes). - net: igmp: fix source address check for IGMPv3 reports (git-fixes). - net: ipv4: avoid unused variable warning for sysctl (git-fixes). - net: ipv4: do not allow setting net.ipv4.route.min_pmtu below 68 (networking-stable-18_03_07). - net: ipv6: keep sk status consistent after datagram connect failure (networking-stable-18_03_28). - net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case (networking-stable-17_12_31). - net: phy: Fix mask value write on gmii2rgmii converter speed register (networking-stable-17_10_09). - net: phy: Tell caller result of phy_change() (networking-stable-18_03_28). - net: phy: fix phy_start to consider PHY_IGNORE_INTERRUPT (networking-stable-18_03_07). - net: phy: marvell: Limit 88m1101 autoneg errata to 88E1145 as well (networking-stable-17_12_31). - net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround (networking-stable-17_12_31). - net: qcom/emac: specify the correct size when mapping a DMA buffer (networking-stable-17_10_09). - net: qdisc_pkt_len_init() should be more robust (networking-stable-18_01_28). - net: qlge: use memmove instead of skb_copy_to_linear_data (bsc#1050529 bsc#1086319 ). - net: realtek: r8169: implement set_link_ksettings() (networking-stable-17_12_12). - net: reevalulate autoflowlabel setting after sysctl setting (networking-stable-17_12_31). - net: remove hlist_nulls_add_tail_rcu() (networking-stable-17_12_12). - net: sched: fix error path in tcf_proto_create() when modules are not configured (networking-stable-18_05_15). - net: sched: ife: check on metadata length (networking-stable-18_04_26). - net: sched: ife: handle malformed tlv length (networking-stable-18_04_26). - net: sched: ife: signal not finding metaid (networking-stable-18_04_26). - net: sched: report if filter is too large to dump (networking-stable-18_03_07). - net: stmmac: enable EEE in MII, GMII or RGMII only (networking-stable-18_01_12). - net: support compat 64-bit time in {s,g}etsockopt (networking-stable-18_05_15). - net: systemport: Correct IPG length settings (networking-stable-17_11_20). - net: systemport: Rewrite __bcm_sysport_tx_reclaim() (networking-stable-18_03_28). - net: tcp: close sock if net namespace is exiting (networking-stable-18_01_28). - net: validate attribute sizes in neigh_dump_table() (networking-stable-18_04_26). - net: vrf: Add support for sends to local broadcast address (networking-stable-18_01_28). - net_sched: fq: take care of throttled flows before reuse (networking-stable-18_05_15). - netfilter/ipvs: clear ipvs_property flag when SKB net namespace changed (networking-stable-17_11_20). - netfilter: use skb_to_full_sk in ip6_route_me_harder (bsc#1076830). - netlink: avoid a double skb free in genlmsg_mcast() (git-fixes). - netlink: do not proceed if dump's start() errs (networking-stable-17_10_09). - netlink: do not set cb_running if dump's start() errs (networking-stable-17_11_14). - netlink: ensure to loop over all netns in genlmsg_multicast_allns() (networking-stable-18_03_07). - netlink: extack needs to be reset each time through loop (networking-stable-18_01_28). - netlink: make sure nladdr has correct size in netlink_connect() (networking-stable-18_04_10). - netlink: put module reference if dump start fails (git-fixes). - netlink: reset extack earlier in netlink_rcv_skb (networking-stable-18_01_28). - nfit-test: Add platform cap support from ACPI 6.2a to test (bsc#1091424). - nfit: skip region registration for incomplete control regions (bsc#1091666). - nfp: use full 40 bits of the NSP buffer address (bsc#1055968). - nfs: system crashes after NFS4ERR_MOVED recovery (git-fixes). - nfsd: fix incorrect umasks (git-fixes). - nl80211: relax ht operation checks for mesh (bsc#1051510). - nubus: Avoid array underflow and overflow (bsc#1099918). - nubus: Fix up header split (bsc#1099918). - nvme-fabrics: allow duplicate connections to the discovery controller (bsc#1098706). - nvme-fabrics: allow internal passthrough command on deleting controllers (bsc#1098706). - nvme-fabrics: centralize discovery controller defaults (bsc#1098706). - nvme-fabrics: fix and refine state checks in __nvmf_check_ready (bsc#1098706). - nvme-fabrics: handle the admin-only case properly in nvmf_check_ready (bsc#1098706). - nvme-fabrics: refactor queue ready check (bsc#1098706). - nvme-fabrics: remove unnecessary controller subnqn validation (bsc#1098706). - nvme-fc: change controllers first connect to use reconnect path (bsc#1098706). - nvme-fc: fix nulling of queue data on reconnect (bsc#1098706). - nvme-fc: release io queues to allow fast fail (bsc#1098706). - nvme-fc: remove reinit_request routine (bsc#1098706). - nvme-fc: remove setting DNR on exception conditions (bsc#1098706). - nvme-multipath: fix sysfs dangerously created links (bsc#1096529). - nvme-rdma: Do not flush delete_wq by default during remove_one (bsc#1089977). - nvme-rdma: Fix command completion race at error recovery (bsc#1099041). - nvme-rdma: correctly check for target keyed sgl support (bsc#1099041). - nvme-rdma: do not override opts->queue_size (bsc#1099041). - nvme-rdma: fix error flow during mapping request data (bsc#1099041). - nvme-rdma: fix possible double free condition when failing to create a controller (bsc#1099041). - nvme/multipath: Fix multipath disabled naming collisions (bsc#1098706). - nvme: Set integrity flag for user passthrough commands (bsc#1098706). - nvme: Skip checking heads without namespaces (bsc#1098706). - nvme: Use admin command effects for admin commands (bsc#1098706). - nvme: add quirk to force medium priority for SQ creation (). - nvme: allow duplicate controller if prior controller being deleted (bsc#1098706). - nvme: check return value of init_srcu_struct function (bsc#1098706). - nvme: do not send keep-alives to the discovery controller (). - nvme: expand nvmf_check_if_ready checks (bsc#1098706). - nvme: fix NULL pointer dereference in nvme_init_subsystem (bsc#1098706). - nvme: fix extended data LBA supported setting (). - nvme: fix lockdep warning in nvme_mpath_clear_current_path (). - nvme: fix potential memory leak in option parsing (bsc#1098706). - nvme: move init of keep_alive work item to controller initialization (bsc#1098706). - nvme: target: fix buffer overflow (). - nvmet-fc: increase LS buffer count per fc port (bsc#1098706). - nvmet-rdma: Do not flush system_wq by default during remove_one (bsc#1089977). - nvmet: fix space padding in serial number (). - nvmet: switch loopback target state to connecting when resetting (bsc#1098706). - objtool, perf: Fix GCC 8 -Wrestrict error (Fix gcc 8 restrict error). - ocfs2/acl: use 'ip_xattr_sem' to protect getting extended attribute (bsc#1052766). - ocfs2/dlm: Fix up kABI in dlm_ctxt (bsc#1052766). - ocfs2/dlm: wait for dlm recovery done when migrating all lock resources (bsc#1052766). - ocfs2: return -EROFS to mount.ocfs2 if inode block is invalid (bsc#1052766). - of: overlay: validate offset from property fixups (bsc#1051510). - of: platform: stop accessing invalid dev in of_platform_device_destroy (bsc#1051510). - of: unittest: for strings, account for trailing \0 in property length field (bsc#1051510). - omapdrm: panel: fix compatible vendor string for td028ttec1 (bsc#1051510). - openvswitch: Do not swap table in nlattr_set() after OVS_ATTR_NESTED is found (networking-stable-18_05_15). - ovl: Put upperdentry if ovl_check_origin() fails (bsc#1088704). - ovl: Return -ENOMEM if an allocation fails ovl_lookup() (bsc#1096065). - ovl: fix failure to fsync lower dir. - ovl: fix lookup with middle layer opaque dir and absolute path redirects (bsc#1090605). - ovl: treat btrfs mounts as different superblocks (bsc#1059336). - p54: do not unregister leds when they are not initialized (bsc#1051510). - parport_pc: Add support for WCH CH382L PCI-E single parallel port card (bsc#1051510). - partitions/msdos: Unable to mount UFS 44bsd partitions (bsc#1051510). - pinctrl/amd: Fix build dependency on pinmux code (bsc#1051510). - pinctrl/amd: save pin registers over suspend/resume (bsc#1051510). - pinctrl: adi2: Fix Kconfig build problem (bsc#1051510). - pinctrl: armada-37xx: Fix direction_output() callback behavior (bsc#1051510). - pinctrl: artpec6: dt: add missing pin group uart5nocts (bsc#1051510). - pinctrl: baytrail: Enable glitch filter for GPIOs used as interrupts (bsc#1051510). - pinctrl: denverton: Fix UART2 RTS pin mode (bsc#1051510). - pinctrl: pxa: pxa2xx: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE (bsc#1051510). - pinctrl: rockchip: enable clock when reading pin direction register (bsc#1051510). - pinctrl: samsung: Fix NULL pointer exception on external interrupts on S3C24xx (bsc#1051510). - pinctrl: samsung: Fix invalid register offset used for Exynos5433 external interrupts (bsc#1051510). - pinctrl: sh-pfc: r8a7795-es1: Fix MOD_SEL1 bit[25:24] to 0x3 when using STP_ISEN_1_D (bsc#1051510). - pinctrl: sh-pfc: r8a7796: Fix MOD_SEL register pin assignment for SSI pins group (bsc#1051510). - pinctrl: sunxi: Fix A64 UART mux value (bsc#1051510). - pinctrl: sunxi: Fix A80 interrupt pin bank (bsc#1051510). - pinctrl: sx150x: Add a static gpio/pinctrl pin range mapping (bsc#1051510). - pinctrl: sx150x: Register pinctrl before adding the gpiochip (bsc#1051510). - pinctrl: sx150x: Unregister the pinctrl on release (bsc#1051510). - pipe: fix off-by-one error when checking buffer limits (bsc#1051510). - pktcdvd: Fix a recently introduced NULL pointer dereference (bsc#1099918). - pktcdvd: Fix pkt_setup_dev() error path (bsc#1099918). - platform/chrome: Use proper protocol transfer function (bsc#1051510). - platform/chrome: cros_ec_lpc: remove redundant pointer request (bsc#1051510). - platform/x86: asus-wireless: Fix NULL pointer dereference (bsc#1051510). - platform/x86: asus-wmi: Fix NULL pointer dereference (bsc#1051510). - platform/x86: fujitsu-laptop: Support Lifebook U7x7 hotkeys (bsc#1087284). - platform/x86: ideapad-laptop: Add MIIX 720-12IKB to no_hw_rfkill (bsc#1093035). - platform/x86: ideapad-laptop: Apply no_hw_rfkill to Y20-15IKBM, too (bsc#1098626). - platform/x86: thinkpad_acpi: suppress warning about palm detection (bsc#1051510). - power: supply: ab8500_charger: Bail out in case of error in 'ab8500_charger_init_hw_registers()' (bsc#1051510). - power: supply: ab8500_charger: Fix an error handling path (bsc#1051510). - power: supply: axp288_charger: Properly stop work on probe-error / remove (bsc#1051510). - powerpc/64/kexec: fix race in kexec when XIVE is shutdown (bsc#1088273). Refresh patchset with upstream patches - powerpc/64s/idle: Fix restore of AMOR on POWER9 after deep sleep (bsc#1055186, ). - powerpc/64s/idle: avoid sync for KVM state when waking from idle (bsc#1061840). - powerpc/64s: Add all POWER9 features to CPU_FTRS_ALWAYS (bsc#1055117). - powerpc/64s: Enable barrier_nospec based on firmware settings (bsc#1068032, bsc#1080157). Delete patches.arch/powerpc-64-barrier_nospec-Add-commandline-trigger.patch. Delete patches.arch/powerpc-64s-barrier_nospec-Add-hcall-trigger.patch. - powerpc/64s: Enhance the information in cpu_show_spectre_v1() (bsc#1068032). - powerpc/64s: Explicitly add vector features to CPU_FTRS_POSSIBLE (bsc#1055117). - powerpc/64s: Fix CPU_FTRS_ALWAYS vs DT CPU features (bsc#1055117). - powerpc/64s: Fix POWER9 DD2.2 and above in DT CPU features (bsc#1055117). - powerpc/64s: Fix POWER9 DD2.2 and above in cputable features (bsc#1055117). - powerpc/64s: Fix dt_cpu_ftrs to have restore_cpu clear unwanted LPCR bits (bsc#1055117). - powerpc/64s: Fix mce accounting for powernv (bsc#1094244). - powerpc/64s: Fix pkey support in dt_cpu_ftrs, add CPU_FTR_PKEY bit (bsc#1055117). - powerpc/64s: Refine feature sets for little endian builds (bsc#1055117). - powerpc/64s: Remove POWER4 support (bsc#1055117). - powerpc/64s: Set assembler machine type to POWER4 (bsc#1055117). - powerpc/fadump: Do not use hugepages when fadump is active (bsc#1092772). - powerpc/fadump: exclude memory holes while reserving memory in second kernel (bsc#1092772). - powerpc/kvm: Fix guest boot failure on Power9 since DAWR changes (bsc#1061840). - powerpc/kvm: Fix lockups when running KVM guests on Power8 (bsc#1061840). - powerpc/lib: Fix off-by-one in alternate feature patching (bsc#1065729). - powerpc/livepatch: Fix KABI breaker in stacktrace.c (bsc#1071995 bsc#1072856 bsc#1087458 bsc#1089664 bsc#1089669). - powerpc/livepatch: Fix build error with kprobes disabled (bsc#1071995 ). - powerpc/mm/radix: Fix always false comparison against MMU_NO_CONTEXT (bsc#1055186, ). - powerpc/mm/radix: Fix checkstops caused by invalid tlbiel (bsc#1055186, ). - powerpc/mm/radix: Parse disable_radix commandline correctly (bsc#1055186, ). - powerpc/mm/radix: Update command line parsing for disable_radix (bsc#1055186, ). - powerpc/mm/radix: Update pte fragment count from 16 to 256 on radix (bsc#1055186, ). - powerpc/mm: Add a CONFIG option to choose if radix is used by default (bsc#1055186, ). - powerpc/mm: Fix thread_pkey_regs_init() (bsc#1078248, git-fixes). - powerpc/perf: Add blacklisted events for Power9 DD2.1 (bsc1056686). - powerpc/perf: Add blacklisted events for Power9 DD2.2 (bsc1056686). - powerpc/perf: Fix kernel address leak via sampling registers (bsc1056686). - powerpc/perf: Infrastructure to support addition of blacklisted events (bsc1056686). - powerpc/perf: Prevent kernel address leak to userspace via BHRB buffer (bsc1056686). - powerpc/perf: Prevent kernel address leak via perf_get_data_addr() (bsc1056686). - powerpc/perf: fix bug references. - powerpc/pkeys: Detach execute_only key on !PROT_EXEC (bsc#1078248, git-fixes). - powerpc/pkeys: Drop private VM_PKEY definitions (bsc#1078248). - powerpc/pseries: Restore default security feature flags on setup (bsc#1068032). Refresh patches.arch/powerpc-64s-barrier_nospec-Add-hcall-trigger.patch. - powerpc/ptrace: Fix enforcement of DAWR constraints (bsc#1099918). - powerpc/xive: Fix wrong xmon output caused by typo (bsc#1088273). - powerpc/xmon: Also setup debugger hooks when single-stepping (bsc#1072829). - powerpc64/ftrace: Add a field in paca to disable ftrace in unsafe code paths (bsc#1088804). - powerpc64/ftrace: Add helpers to hard disable ftrace (bsc#1088804). - powerpc64/ftrace: Delay enabling ftrace on secondary cpus (bsc#1088804). - powerpc64/ftrace: Disable ftrace during hotplug (bsc#1088804). - powerpc64/ftrace: Disable ftrace during kvm guest entry/exit (bsc#1088804). - powerpc64/ftrace: Rearrange #ifdef sections in ftrace.h (bsc#1088804). - powerpc64/ftrace: Use the generic version of ftrace_replace_code() (bsc#1088804). - powerpc64/kexec: Hard disable ftrace before switching to the new kernel (bsc#1088804). - powerpc64/module: Tighten detection of mcount call sites with -mprofile-kernel (bsc#1088804). - powerpc: Add ppc_breakpoint_available() (bsc#1055117). - powerpc: Machine check interrupt is a non-maskable interrupt (bsc#1094244). - powerpc: Remove unused CPU_FTR_ARCH_201 (bsc#1055117). - powerpc: Use barrier_nospec in copy_from_user() (bsc#1068032, bsc#1080157). - ppc64le: reliable stacktrace: handle graph traced functions (bsc#1089664). - ppc64le: reliable stacktrace: mark stacktraces with exception frames as unreliable (bsc#1089669). - ppc64le: reliable stacktrace: mark stacktraces with kretprobe_trampoline as unreliable (bsc#1090522). - ppp: avoid loop in xmit recursion detection code (networking-stable-18_03_28). - ppp: fix race in ppp device destruction (networking-stable-17_11_14). - ppp: prevent unregistered channels from connecting to PPP units (networking-stable-18_03_07). - ppp: unlock all_ppp_mutex before registering device (networking-stable-18_01_28). - pppoe: check sockaddr length in pppoe_connect() (networking-stable-18_04_26). - pppoe: take ->needed_headroom of lower device into account on xmit (networking-stable-18_01_28). - pptp: remove a buggy dst release in pptp_connect() (networking-stable-18_04_10). - printk: fix possible reuse of va_list variable (bsc#1100602). - procfs: add tunable for fd/fdinfo dentry retention (bsc#1086652). - ptr_ring: add barriers (networking-stable-17_12_31). - pty: cancel pty slave port buf's work in tty_release (bsc#1051510). - pwm: lpss: platform: Save/restore the ctrl register over a suspend/resume (bsc#1051510). - pwm: rcar: Fix a condition to prevent mismatch value setting to duty (bsc#1051510). - pwm: stmpe: Fix wrong register offset for hwpwm=2 case (bsc#1051510). - qed: Fix l2 initializations over iWARP personality (bsc#1050536 bsc#1050545 ). - qed: Fix non TCP packets should be dropped on iWARP ll2 connection (bsc#1050545 ). - qed: Free RoCE ILT Memory on rmmod qedr (bsc#1050536 bsc#1050545 ). - qed: Use after free in qed_rdma_free() (bsc#1050536 bsc#1050545 ). - qede: Fix gfp flags sent to rdma event node allocation (bsc#1050538 bsc#1050545 ). - qede: Fix qedr link update (bsc#1050538 bsc#1050545 ). - qla2xxx: Enable T10-DIF with FC-NVMe enabled (bsc#1091264). - qla2xxx: Mask off Scope bits in retry delay (bsc#1068054). - qmi_wwan: Add missing skb_reset_mac_header-call (networking-stable-17_11_20). - qmi_wwan: Add support for Quectel EP06 (networking-stable-18_02_06). - qmi_wwan: do not steal interfaces from class drivers (bsc#1092888). - r8169: fix powering up RTL8168h (bsc#1051510). - r8169: fix setting driver_data after register_netdev (bsc#1051510). - radeon: hide pointless #warning when compile testing (bsc#1051510). - radix tree test suite: add item_delete_rcu() (bsc#1095467). - radix tree test suite: fix compilation issue (bsc#1095467). - radix tree test suite: fix mapshift build target (bsc#1095467). - radix tree test suite: multi-order iteration race (bsc#1095467). - radix tree: fix multi-order iteration race (bsc#1095467). - raid10: check bio in r10buf_pool_free to void NULL pointer dereference (bsc#1098174). - raid1: copy write hint from master bio to behind bio (bsc#1093023). - raid1: prevent freeze_array/wait_all_barriers deadlock (bsc#1093023). - raid1: remove obsolete code in raid1_write_request (bsc#1093023). - raid5-ppl: PPL support for disks with write-back cache enabled (bsc#1093023). - raid5-ppl: fix handling flush requests (bsc#1093023). - raid5: Set R5_Expanded on parity devices as well as data (bsc#1093023). - raid5: remove raid5_build_block (bsc#1093023). - raid: remove tile specific raid6 implementation (bsc#1093023). - random: crng_reseed() should lock the crng instance that it is modifying (bsc#1051510). - random: use a different mixing algorithm for add_device_randomness() (bsc#1051510). - random: use a tighter cap in credit_entropy_bits_safe() (bsc#1051510). - rbd: use GFP_NOIO for parent stat and data requests (bsc#1093728). - rds: Incorrect reference counting in TCP socket creation (bsc#1076830). - rds: MP-RDS may use an invalid c_path (networking-stable-18_04_13). - rds: do not leak kernel memory to user land (networking-stable-18_05_15). - regulator: Do not return or expect -errno from of_map_mode() (bsc#1099029). - regulator: cpcap: Fix standby mode (bsc#1051510). - regulator: gpio: Fix some error handling paths in 'gpio_regulator_probe()' (bsc#1091960). - regulator: of: Add a missing 'of_node_put()' in an error handling path of 'of_regulator_match()' (bsc#1051510). - reiserfs: mark read-write mode unsupported (). - reiserfs: package in separate KMP (). - resource: fix integer overflow at reallocation (bsc#1086739). - restore cond_resched() in shrink_dcache_parent() (bsc#1098599). - rfkill: gpio: fix memory leak in probe error path (bsc#1051510). - rhashtable: Fix rhlist duplicates insertion (bsc#1051510). - rmdir(),rename(): do shrink_dcache_parent() only on success (bsc#1100340). - rocker: fix possible null pointer dereference in rocker_router_fib_event_work (networking-stable-18_02_06). - route: check sysctl_fib_multipath_use_neigh earlier than hash (networking-stable-18_04_10). - rpm/config.sh: Fixup BUGZILLA_PRODUCT variable - rpm/kernel-docs.spec.in: Fix and cleanup for 4.13 doc build (bsc#1048129) The whole DocBook stuff has been deleted. The PDF build still non-working thus the sub-packaging disabled so far. - rpm/kernel-source.changes.old: Add pre-SLE15 history (bsc#1098995). - rpm/modules.fips include module list from dracut - rpm: fix typo, SUSE_KERNEL_RELEASE -> SUSE_KERNEL_RELEASED (bsc#1095104). This causes release kernels to report as (unreleased). - rt2x00: do not pause queue unconditionally on error path (bsc#1051510). - rtc-opal: Fix handling of firmware error codes, prevent busy loops (bsc#1051510). - rtc: hctosys: Ensure system time does not overflow time_t (bsc#1051510). - rtc: pcf8563: fix output clock rate (bsc#1051510). - rtc: pl031: make interrupt optional (bsc#1051510). - rtc: snvs: Fix usage of snvs_rtc_enable (bsc#1051510). - rtc: tx4939: avoid unintended sign extension on a 24 bit shift (bsc#1051510). - rtl8187: Fix NULL pointer dereference in priv->conf_mutex (bsc#1051510). - rtlwifi: rtl8192cu: Remove variable self-assignment in rf.c (bsc#1051510). - rxrpc: Fix send in rxrpc_send_data_packet() (networking-stable-18_03_07). - s390/archrandom: Reconsider s390 arch random implementation (bnc#1096753, LTC#168037). - s390/archrandom: Rework arch random implementation (bnc#1096753, LTC#168037). - s390/cio: update chpid descriptor after resource accessibility event (bnc#1093148, LTC#167307). - s390/cpum_sf: ensure sample frequency of perf event attributes is non-zero (bnc#1096753, LTC#168037). - s390/crypto: Adjust s390 aes and paes cipher priorities (bsc#1090098). - s390/dasd: fix IO error for newly defined devices (bnc#1093148, LTC#167307). - s390/qdio: do not merge ERROR output buffers (bsc#1099715). - s390/qdio: fix access to uninitialized qdio_q fields (bnc#1096753, LTC#168037). - s390/qeth: do not dump control cmd twice (bsc#1099715). - s390/qeth: fix IPA command submission race (bsc#1099715). - s390/qeth: fix IPA command submission race (networking-stable-18_03_07). - s390/qeth: fix MAC address update sequence (bnc#1093148, LTC#167307). - s390/qeth: fix overestimated count of buffer elements (bsc#1099715). - s390/qeth: fix overestimated count of buffer elements (networking-stable-18_03_07). - s390/qeth: free netdevice when removing a card (bsc#1099715). - s390/qeth: free netdevice when removing a card (networking-stable-18_03_28). - s390/qeth: lock read device while queueing next buffer (bsc#1099715). - s390/qeth: lock read device while queueing next buffer (networking-stable-18_03_28). - s390/qeth: translate SETVLAN/DELVLAN errors (bnc#1093148, LTC#167307). - s390/qeth: use Read device to query hypervisor for MAC (bsc#1061024 ). - s390/qeth: when thread completes, wake up all waiters (bsc#1099715). - s390/qeth: when thread completes, wake up all waiters (networking-stable-18_03_28). - s390/uprobes: implement arch_uretprobe_is_alive() (bnc#1093148, LTC#167307). - s390/zcrypt: Fix CCA and EP11 CPRB processing failure memory leak (bnc#1096753, LTC#168037). - s390: add automatic detection of the spectre defense (bsc#1090098). - s390: add sysfs attributes for spectre (bsc#1090098). - s390: correct nospec auto detection init order (bsc#1090098). - s390: move nobp parameter functions to nospec-branch.c (bsc#1090098). - s390: report spectre mitigation via syslog (bsc#1090098). - sch_netem: fix skb leak in netem_enqueue() (networking-stable-18_03_28). - sched/numa: Stagger NUMA balancing scan periods for new threads (Automatic NUMA Balancing ()). - sched/rt: Fix rq->clock_update_flags lower than RQCF_ACT_SKIP warning (bsc#1022476). - sched: Make resched_cpu() unconditional (Git-fixes). - sched: Stop resched_cpu() from sending IPIs to offline CPUs (Git-fixes). - sched: Stop switched_to_rt() from sending IPIs to offline CPUs (Git-fixes). - scripts/git_sort/git_sort.py: - scripts/git_sort/git_sort.py: Remove duplicated repo entry - scripts/git_sort/git_sort.py: add Viro's vfs git - scsi: core: return BLK_STS_OK for DID_OK in __scsi_error_from_host_byte() (bsc#1099918). - scsi: ipr: Format HCAM overlay ID 0x41 (bsc#1097961). - scsi: ipr: new IOASC update (bsc#1097961). - scsi: lpfc: Add per io channel NVME IO statistics (bsc#1088866). - scsi: lpfc: Change IO submit return to EBUSY if remote port is recovering (bsc#1088866). - scsi: lpfc: Comment cleanup regarding Broadcom copyright header (bsc#1088866). - scsi: lpfc: Correct fw download error message (bsc#1088866). - scsi: lpfc: Correct missing remoteport registration during link bounces (bsc#1088866). - scsi: lpfc: Correct target queue depth application changes (bsc#1088866). - scsi: lpfc: Driver NVME load fails when CPU cnt > WQ resource cnt (bsc#1088866). - scsi: lpfc: Enhance log messages when reporting CQE errors (bsc#1088866). - scsi: lpfc: Enlarge nvmet asynchronous receive buffer counts (bsc#1088866). - scsi: lpfc: Fix 16gb hbas failing cq create (bsc#1093290). - scsi: lpfc: Fix Abort request WQ selection (bsc#1088866). - scsi: lpfc: Fix MDS diagnostics failure (Rx lower than Tx) (bsc#1088866). - scsi: lpfc: Fix NULL pointer access in lpfc_nvme_info_show (bsc#1088866). - scsi: lpfc: Fix NULL pointer reference when resetting adapter (bsc#1088866). - scsi: lpfc: Fix crash in blk_mq layer when executing modprobe -r lpfc (bsc#1088866). - scsi: lpfc: Fix driver not recovering NVME rports during target link faults (bsc#1088866). - scsi: lpfc: Fix lingering lpfc_wq resource after driver unload (bsc#1088866). - scsi: lpfc: Fix multiple PRLI completion error path (bsc#1088866). - scsi: lpfc: Fix nvme remoteport registration race conditions (bsc#1088866). - scsi: lpfc: Fix port initialization failure (bsc#1093290). - scsi: lpfc: Fix up log messages and stats counters in IO submit code path (bsc#1088866). - scsi: lpfc: Handle new link fault code returned by adapter firmware (bsc#1088866). - scsi: lpfc: correct oversubscription of nvme io requests for an adapter (bsc#1088866). - scsi: lpfc: enhance LE data structure copies to hardware (bsc#1088866). - scsi: lpfc: fix spelling mistakes: "mabilbox" and "maibox" (bsc#1088866). - scsi: lpfc: update driver version to 12.0.0.2 (bsc#1088866). - scsi: lpfc: update driver version to 12.0.0.3 (bsc#1088866). - scsi: lpfc: update driver version to 12.0.0.4 (bsc#1088866). - scsi: qla2xxx: Add FC-NVMe abort processing (bsc#1084570). - scsi: qla2xxx: Add changes for devloss timeout in driver (bsc#1084570). - scsi: qla2xxx: Cleanup code to improve FC-NVMe error handling (bsc#1084570). - scsi: qla2xxx: Delete session for nport id change (bsc#1077338). - scsi: qla2xxx: Fix Async GPN_FT for FCP and FC-NVMe scan (bsc#1084570). - scsi: qla2xxx: Fix FC-NVMe IO abort during driver reset (bsc#1084570). - scsi: qla2xxx: Fix n2n_ae flag to prevent dev_loss on PDB change (bsc#1084570). - scsi: qla2xxx: Fix retry for PRLI RJT with reason of BUSY (bsc#1084570). - scsi: qla2xxx: Fix small memory leak in qla2x00_probe_one on probe failure (bsc#1077338). - scsi: qla2xxx: Remove nvme_done_list (bsc#1084570). - scsi: qla2xxx: Remove unneeded message and minor cleanup for FC-NVMe (bsc#1084570). - scsi: qla2xxx: Restore ZIO threshold setting (bsc#1084570). - scsi: qla2xxx: Return busy if rport going away (bsc#1084570). - scsi: qla2xxx: Set IIDMA and fcport state before qla_nvme_register_remote() (bsc#1084570). - scsi: qla2xxx: Update driver version to 10.00.00.06-k (bsc#1084570). - scsi: raid_class: Add 'JBOD' RAID level (bsc#1093023). - scsi: sg: mitigate read/write abuse (bsc#1101296). - scsi: target: fix crash with iscsi target and dvd (bsc#1099918). - sctp: delay the authentication for the duplicated cookie-echo chunk (networking-stable-18_05_15). - sctp: do not check port in sctp_inet6_cmp_addr (networking-stable-18_04_26). - sctp: do not leak kernel memory to user space (networking-stable-18_04_10). - sctp: do not retransmit upon FragNeeded if PMTU discovery is disabled (networking-stable-18_01_12). - sctp: fix dst refcnt leak in sctp_v6_get_dst() (networking-stable-18_03_07). - sctp: fix the handling of ICMP Frag Needed for too small MTUs (networking-stable-18_01_12). - sctp: fix the issue that the cookie-ack with auth can't get processed (networking-stable-18_05_15). - sctp: full support for ipv6 ip_nonlocal_bind and IP_FREEBIND (networking-stable-17_11_14). - sctp: handle two v4 addrs comparison in sctp_inet6_cmp_addr - sctp: potential read out of bounds in sctp_ulpevent_type_enabled() (networking-stable-17_10_09). - sctp: remove sctp_chunk_put from fail_mark err path in sctp_ulpevent_make_rcvmsg (networking-stable-18_05_15). - sctp: reset owner sk for data chunks on out queues when migrating a sock (networking-stable-17_11_14). - sctp: sctp_sockaddr_af must check minimal addr length for AF_INET6 (networking-stable-18_04_10). - sctp: use right member as the param of list_for_each_entry (git-fixes). - sctp: use the old asoc when making the cookie-ack chunk in dupcook_d (networking-stable-18_05_15). - sdhci: Advertise 2.0v supply on SDIO host controller (bsc#1051510). - selftests/powerpc: Fix copyloops build since Power4 assembler change (bsc#1055117). - selinux: KASAN: slab-out-of-bounds in xattr_getsecurity (bsc#1051510). - selinux: ensure the context is NUL terminated in security_context_to_sid_core() (bsc#1051510). - selinux: skip bounded transition processing if the policy isn't loaded (bsc#1051510). - serdev: fix memleak on module unload (bsc#1051510). - serdev: fix receive_buf return value when no callback (bsc#1051510). - serdev: fix registration of second slave (bsc#1051510). - serdev: ttyport: add missing open() error handling (bsc#1051510). - serdev: ttyport: add missing receive_buf sanity checks (bsc#1051510). - serdev: ttyport: enforce tty-driver open() requirement (bsc#1051510). - serdev: ttyport: fix NULL-deref on hangup (bsc#1051510). - serdev: ttyport: fix tty locking in close (bsc#1051510). - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X (bsc#1051510). - serial: 8250: omap: Fix idling of clocks for unused uarts (bsc#1051510). - serial: 8250_dw: Disable clock on error (bsc#1051510). - serial: 8250_fintek: Fix finding base_port with activated SuperIO (bsc#1051510). - serial: 8250_pci: Add Brainboxes UC-260 4 port serial device (bsc#1051510). - serial: altera: ensure port->regshift is honored consistently (bsc#1051510). - serial: arc_uart: Fix out-of-bounds access through DT alias (bsc#1051510). - serial: core: mark port as initialized in autoconfig (bsc#1051510). - serial: fsl_lpuart: Fix out-of-bounds access through DT alias (bsc#1051510). - serial: imx: Fix out-of-bounds access through serial port index (bsc#1051510). - serial: imx: Only wakeup via RTSDEN bit if the system has RTS/CTS (bsc#1051510). - serial: mxs-auart: Fix out-of-bounds access through serial port index (bsc#1051510). - serial: omap: Fix EFR write on RTS deassertion (bsc#1051510). - serial: samsung: Fix out-of-bounds access through serial port index (bsc#1051510). - serial: samsung: fix maxburst parameter for DMA transactions (bsc#1051510). - serial: sh-sci: Fix out-of-bounds access through DT alias (bsc#1051510). - serial: sh-sci: Stop using printk format %pCr (bsc#1051510). - serial: sh-sci: prevent lockup on full TTY buffers (bsc#1051510). - serial: xuartps: Fix out-of-bounds access through DT alias (bsc#1051510). - sget(): handle failures of register_shrinker() (bsc#1052766). - sh_eth: fix SH7757 GEther initialization (networking-stable-18_01_12). - sh_eth: fix TSU resource handling (networking-stable-18_01_12). - skbuff: Fix not waking applications when errors are enqueued (networking-stable-18_03_28). - sky2: Increase D3 delay to sky2 stops working after suspend (bsc#1051510). - slip: Check if rstate is initialized before uncompressing (networking-stable-18_04_13). - sock: free skb in skb_complete_tx_timestamp on error (networking-stable-17_12_31). - soreuseport: fix mem leak in reuseport_add_sock() (networking-stable-18_02_06). - spi: Fix scatterlist elements size in spi_map_buf (bsc#1051510). - spi: a3700: Fix clk prescaling for coefficient over 15 (bsc#1051510). - spi: a3700: Return correct value on timeout detection (bsc#1051510). - spi: armada-3700: Fix failing commands with quad-SPI (bsc#1051510). - spi: atmel: fixed spin_lock usage inside atmel_spi_remove (bsc#1051510). - spi: atmel: init FIFOs before spi enable (bsc#1051510). - spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path (bsc#1051510). - spi: imx: do not access registers while clocks disabled (bsc#1051510). - spi: sh-msiof: Fix DMA transfer size check (bsc#1051510). - spi: spi-axi: fix potential use-after-free after deregistration (bsc#1051510). - spi: sun4i: disable clocks in the remove function (bsc#1051510). - spi: sun6i: disable/unprepare clocks on remove (bsc#1051510). - spi: xilinx: Detect stall with Unknown commands (bsc#1051510). - srcu: Provide ordering for CPU not involved in grace period (bsc#1052766). - staging: bcm2835-audio: Release resources on module_exit() (bsc#1051510). - staging: comedi: fix comedi_nsamples_left (bsc#1051510). - staging: comedi: ni_mio_common: ack ai fifo error interrupts (bsc#1051510). - staging: iio: ad5933: switch buffer mode to software (bsc#1051510). - staging: iio: ad7192: Fix - use the dedicated reset function avoiding dma from stack (bsc#1051510). - staging: iio: adc: ad7192: fix external frequency setting (bsc#1051510). - staging: rtl8192u: return -ENOMEM on failed allocation of priv->oldaddr (bsc#1051510). - staging: vchiq_2835_arm: Fix NULL ptr dereference in free_pagelist (bsc#1051510). - staging: wilc1000: Fix bssid buffer offset in Txq (bsc#1051510). - stm class: Fix a use-after-free (bsc#1051510). - stm class: Use vmalloc for the master map (bsc#1051510). - stmmac: reset last TSO segment size after device open (networking-stable-17_12_12). - strparser: Do not call mod_delayed_work with a timeout of LONG_MAX (networking-stable-18_04_26). - strparser: Fix incorrect strp->need_bytes value (networking-stable-18_04_26). - strparser: Fix sign of err codes (networking-stable-18_04_10). - sunrpc: remove incorrect HMAC request initialization (bsc#1051510). - supported.conf: Remove external flag from iwlwifi modules (bsc#1093273) - supported.conf: add arch/s390/crypto/crc32-vx_s390 (bsc#1089889). - supported.conf: fix folder of the driver module - supported.conf: mark new FIPS modules as supported: sha2-mb, sha3, crc32 and crypto_engine (bsc#1074984) - supported.conf: remove obsolete entry drivers/tty/serial/of_serial -> drivers/tty/serial/8250/8250_of - swap: divide-by-zero when zero length swap file on ssd (bsc#1051510). - swiotlb: suppress warning when __GFP_NOWARN is set (bsc#1051510). - tap: reference to KVA of an unloaded module causes kernel panic (networking-stable-17_11_14). - target: transport should handle st FM/EOM/ILI reads (bsc#1081599). - tcp: do not read out-of-bounds opsize (networking-stable-18_04_26). - tcp: fix data delivery rate (networking-stable-17_10_09). - tcp: ignore Fast Open on repair mode (networking-stable-18_05_15). - tcp: md5: reject TCP_MD5SIG or TCP_MD5SIG_EXT on established sockets (networking-stable-18_04_26). - tcp: release sk_frag.page in tcp_disconnect (networking-stable-18_02_06). - tcp: revert F-RTO extension to detect more spurious timeouts (networking-stable-18_03_07). - tcp: revert F-RTO middle-box workaround (bsc#1076830). - tcp_bbr: fix to zero idle_restart only upon S/ACKed data (networking-stable-18_05_15). - tcp_bbr: record "full bw reached" decision in new full_bw_reached bit (networking-stable-17_12_31). - tcp_bbr: reset full pipe detection on loss recovery undo (networking-stable-17_12_31). - tcp_bbr: reset long-term bandwidth sampling on loss recovery undo (networking-stable-17_12_31). - tcp_nv: fix division by zero in tcpnv_acked() (networking-stable-17_11_20). - team: Fix double free in error path (networking-stable-18_03_28). - team: avoid adding twice the same option to the event list (networking-stable-18_04_26). - team: fix netconsole setup over team (networking-stable-18_04_26). - team: move dev_mc_sync after master_upper_dev_link in team_port_add (networking-stable-18_04_10). - tee: check shm references are consistent in offset/size (bsc#1051510). - tee: shm: fix use-after-free via temporarily dropped reference (bsc#1051510). - test_firmware: fix missing unlock on error in config_num_requests_store() (bsc#1051510). - test_firmware: fix setting old custom fw path back on exit (bsc#1051510). - test_firmware: fix setting old custom fw path back on exit, second try (bsc#1051510). - tg3: APE heartbeat changes (bsc#1086286 ). - tg3: Add Macronix NVRAM support (bsc#1086286 ). - tg3: Fix vunmap() BUG_ON() triggered from tg3_free_consistent() (bsc#1086286 ). - tg3: prevent scheduling while atomic splat (bsc#1086286 ). - thermal/drivers/step_wise: Fix temperature regulation misbehavior (bsc#1051510). - thermal: bcm2835: Stop using printk format %pCr (bsc#1051510). - thermal: enable broadcom menu for arm64 bcm2835 (bsc#1095573). - thermal: exynos: Propagate error value from tmu_read() (bsc#1051510). - thermal: exynos: Reading temperature makes sense only when TMU is turned on (bsc#1051510). - thermal: imx: Fix race condition in imx_thermal_probe() (bsc#1051510). - thermal: int3400_thermal: fix error handling in int3400_thermal_probe() (bsc#1051510). - thermal: int3403_thermal: Fix NULL pointer deref on module load / probe (bsc#1051510). - thermal: power_allocator: fix one race condition issue for thermal_instances list (bsc#1051510). - thunderbolt: Prevent crash when ICM firmware is not running (bsc#1090888). - thunderbolt: Resume control channel after hibernation image is created (bsc#1051510). - thunderbolt: Serialize PCIe tunnel creation with PCI rescan (bsc#1090888). - thunderbolt: Wait a bit longer for ICM to authenticate the active NVM (bsc#1090888). - timekeeping: Eliminate the stale declaration of ktime_get_raw_and_real_ts64() (bsc#1099918). - timers: Invoke timer_start_debug() where it makes sense (Git-fixes). - timers: Reinitialize per cpu bases on hotplug (Git-fixes). - timers: Unconditionally check deferrable base (Git-fixes). - timers: Use deferrable base independent of base::nohz_active (Git-fixes). - tipc: add policy for TIPC_NLA_NET_ADDR (networking-stable-18_04_26). - tipc: fix a memory leak in tipc_nl_node_get_link() (networking-stable-18_01_28). - tipc: fix hanging poll() for stream sockets (networking-stable-17_12_31). - tipc: fix memory leak in tipc_accept_from_sock() (networking-stable-17_12_12). - tools headers: Restore READ_ONCE() C++ compatibility (bsc#1093023). - tools/lib/subcmd/pager.c: do not alias select() params (Fix gcc 8 restrict error). - tracing/uprobe_event: Fix strncpy corner case (bsc#1099918). - tracing: Fix converting enum's from the map in trace_event_eval_update() (bsc#1099918). - tracing: Fix missing tab for hwlat_detector print format (bsc#1099918). - tracing: Kconfig text fixes for CONFIG_HWLAT_TRACER (bsc#1099918). - tracing: Make the snapshot trigger work with instances (bsc#1099918). - tracing: probeevent: Fix to support minus offset from symbol (bsc#1099918). - tty fix oops when rmmod 8250 (bsc#1051510). - tty/serial: atmel: add new version check for usart (bsc#1051510). - tty/serial: atmel: use port->name as name in request_irq() (bsc#1051510). - tty: Avoid possible error pointer dereference at tty_ldisc_restore() (bsc#1051510). - tty: Do not call panic() at tty_ldisc_init() (bsc#1051510). - tty: Use __GFP_NOFAIL for tty_ldisc_get() (bsc#1051510). - tty: fix __tty_insert_flip_char regression (bsc#1051510). - tty: fix tty_ldisc_receive_buf() documentation (bsc#1051510). - tty: improve tty_insert_flip_char() fast path (bsc#1051510). - tty: improve tty_insert_flip_char() slow path (bsc#1051510). - tty: make n_tty_read() always abort if hangup is in progress (bsc#1051510). - tty: n_gsm: Allow ADM response in addition to UA for control dlci (bsc#1051510). - tty: n_gsm: Fix DLCI handling for ADM mode if debug and 2 is not set (bsc#1051510). - tty: n_gsm: Fix long delays with control frame timeouts in ADM mode (bsc#1051510). - tty: pl011: Avoid spuriously stuck-off interrupts (bsc#1051510). - tty: vt: fix up tabstops properly (bsc#1051510). - tun/tap: sanitize TUNSETSNDBUF input (networking-stable-17_11_14). - tun: allow positive return values on dev_get_valid_name() call (networking-stable-17_11_14). - tun: bail out from tun_get_user() if the skb is empty (networking-stable-17_10_09). - tun: call dev_get_valid_name() before register_netdevice() (networking-stable-17_11_14). - ubi: Fix error for write access (bsc#1051510). - ubi: Fix race condition between ubi volume creation and udev (bsc#1051510). - ubi: Reject MLC NAND (bsc#1051510). - ubi: block: Fix locking for idr_alloc/idr_remove (bsc#1051510). - ubi: fastmap: Cancel work upon detach (bsc#1051510). - ubi: fastmap: Cancel work upon detach (bsc#1051510). - ubi: fastmap: Do not flush fastmap work on detach (bsc#1051510). - ubi: fastmap: Erase outdated anchor PEBs during attach (bsc#1051510). - ubifs: Check ubifs_wbuf_sync() return code (bsc#1052766). - ubifs: free the encrypted symlink target (bsc#1052766). - udf: Avoid overflow when session starts at large offset (bsc#1052766). - udf: Fix leak of UTF-16 surrogates into encoded strings (bsc#1052766). - usb: core: Add quirk for HP v222w 16GB Mini (bsc#1090888). - usb: quirks: add control message delay for 1b1c:1b20 (bsc#1087092). - usb: typec: ucsi: Fix for incorrect status data issue (bsc#1100132). - usb: typec: ucsi: Increase command completion timeout value (bsc#1090888). - usb: typec: ucsi: acpi: Workaround for cache mode issue (bsc#1100132). - usb: xhci: Disable slot even when virt-dev is null (bsc#1085539). - usb: xhci: Fix potential memory leak in xhci_disable_slot() (bsc#1085539). - usb: xhci: Make some static functions global (). - usbip: usbip_host: delete device from busid_table after rebind (bsc#1096480). - usbip: usbip_host: fix NULL-ptr deref and use-after-free errors (bsc#1096480). - usbip: usbip_host: fix bad unlock balance during stub_probe() (bsc#1096480). - usbip: usbip_host: fix to hold parent lock for device_attach() calls (bsc#1096480). - usbip: usbip_host: run rebind from exit when module is removed (bsc#1096480). - usbip: vudc: fix null pointer dereference on udc->lock (bsc#1087092). - userns: Do not fail follow_automount based on s_user_ns (bsc#1099918). - vfb: fix video mode and line_length being set when loaded (bsc#1100362). - vfio: Use get_user_pages_longterm correctly (bsc#1095337). - vfio: disable filesystem-dax page pinning (bsc#1095337). - vfio: platform: Fix reset module leak in error path (bsc#1099918). - vhost: Fix vhost_copy_to_user() (networking-stable-18_04_13). - vhost: correctly remove wait queue during poll failure (networking-stable-18_04_10). - vhost: fix vhost_vq_access_ok() log check (networking-stable-18_04_13). - vhost: validate log when IOTLB is enabled (networking-stable-18_04_10). - vhost_net: add missing lock nesting notation (networking-stable-18_04_10). - vhost_net: stop device during reset owner (networking-stable-18_02_06). - video/fbdev/stifb: Return -ENOMEM after a failed kzalloc() in stifb_init_fb() (bsc#1090888 bsc#1099966). - video/hdmi: Allow "empty" HDMI infoframes (bsc#1051510). - video: fbdev/mmp: add MODULE_LICENSE (bsc#1051510). - video: fbdev: atmel_lcdfb: fix display-timings lookup (bsc#1051510). - video: fbdev: aty: do not leak uninitialized padding in clk to userspace (bsc#1051510). - video: fbdev: au1200fb: Release some resources if a memory allocation fails (bsc#1051510). - video: fbdev: au1200fb: Return an error code if a memory allocation fails (bsc#1051510). - virtio-gpu: fix ioctl and expose the fixed status to userspace (bsc#1100382). - virtio: add ability to iterate over vqs (bsc#1051510). - virtio: release virtio index when fail to device_register (bsc#1051510). - virtio_console: do not tie bufs to a vq (bsc#1051510). - virtio_console: drop custom control queue cleanup (bsc#1051510). - virtio_console: free buffers after reset (bsc#1051510). - virtio_console: move removal code (bsc#1051510). - virtio_console: reset on out of memory (bsc#1051510). - virtio_net: fix adding vids on big-endian (networking-stable-18_04_26). - virtio_net: fix return value check in receive_mergeable() (bsc#1089271). - virtio_net: split out ctrl buffer (networking-stable-18_04_26). - virtio_ring: fix num_free handling in error case (bsc#1051510). - vlan: Fix reading memory beyond skb->tail in skb_vlan_tagged_multi (networking-stable-18_04_26). - vlan: also check phy_driver ts_info for vlan's real device (networking-stable-18_04_10). - vlan: fix a use-after-free in vlan_device_event() (networking-stable-17_11_20). - vmw_balloon: fix inflation with batching (bsc#1051510). - vmw_balloon: fixing double free when batching mode is off (bsc#1051510). - vmxnet3: avoid xmit reset due to a race in vmxnet3 (bsc#1091860). - vmxnet3: fix incorrect dereference when rxvlan is disabled (bsc#1091860). - vmxnet3: increase default rx ring sizes (bsc#1091860). - vmxnet3: repair memory leak (bsc#1051510). - vmxnet3: set the DMA mask before the first DMA map operation (bsc#1091860). - vmxnet3: use DMA memory barriers where required (bsc#1091860). - vmxnet3: use correct flag to indicate LRO feature (bsc#1091860). - vrf: Fix use after free and double free in vrf_finish_output (networking-stable-18_04_10). - vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend (bsc#1051510). - vt: change SGR 21 to follow the standards (bsc#1051510). - vt: prevent leaking uninitialized data to userspace via /dev/vcs* (bsc#1051510). - vti6: Change minimum MTU to IPV4_MIN_MTU, vti6 can carry IPv4 too (bsc#1082869). - vti6: Fix dev->max_mtu setting (bsc#1082869). - vti6: Keep set MTU on link creation or change, validate it (bsc#1082869). - vti6: Properly adjust vti6 MTU from MTU of lower device (bsc#1082869). - vti6: better validate user provided tunnel names (networking-stable-18_04_10). - vti: fix use after free in vti_tunnel_xmit/vti6_tnl_xmit (bsc#1076830). - vxlan: fix the issue that neigh proxy blocks all icmpv6 packets (networking-stable-17_11_20). - w1: mxc_w1: Enable clock before calling clk_get_rate() on it (bsc#1051510). - wait: add wait_event_killable_timeout() (bsc#1099792). - watchdog: da9063: Fix setting/changing timeout (bsc#1100843). - watchdog: da9063: Fix timeout handling during probe (bsc#1100843). - watchdog: da9063: Fix updating timeout value (bsc#1100843). - watchdog: f71808e_wdt: Fix WD_EN register read (bsc#1051510). - watchdog: f71808e_wdt: Fix magic close handling (bsc#1051510). - watchdog: sp5100_tco: Fix watchdog disable bit (bsc#1051510). - wcn36xx: Fix dynamic power saving (bsc#1051510). - wcn36xx: Introduce mutual exclusion of fw configuration (bsc#1051510). - wl1251: check return from call to wl1251_acx_arp_ip_filter (bsc#1051510). - workqueue: Allow retrieval of current task's work struct (bsc#1051510). - workqueue: use put_device() instead of kfree() (bsc#1051510). - x86,sched: Allow topologies where NUMA nodes share an LLC (bsc#1091158). - x86/cpu_entry_area: Map also trace_idt_table (bsc#1089878). - x86/cpuinfo: Ignore ->initialized member (bsc#1091543). - x86/intel_rdt: Add command line parameter to control L2_CDP (). - x86/intel_rdt: Add two new resources for L2 Code and Data Prioritization (CDP) (). - x86/intel_rdt: Enable L2 CDP in MSR IA32_L2_QOS_CFG (). - x86/intel_rdt: Enumerate L2 Code and Data Prioritization (CDP) feature (). - x86/mm/64: Fix vmapped stack syncing on very-large-memory 4-level systems (bsc#1088374). - x86/mm: add a function to check if a pfn is UC/UC-/WC (bsc#1087213). - x86/pkeys: Add arch_pkeys_enabled() (bsc#1078248). - x86/pkeys: Move vma_pkey() into asm/pkeys.h (bsc#1078248). - x86/pti: do not report XenPV as vulnerable (bsc#1097551). - x86/setup: Do not reserve a crash kernel region if booted on Xen PV (bsc#1085626). - x86/smpboot: Do not use smp_num_siblings in __max_logical_packages calculation (bsc#1091543). - x86/smpboot: Fix __max_logical_packages estimate (bsc#1091543). - x86/smpboot: Fix uncore_pci_remove() indexing bug when hot-removing a physical CPU (bsc#1091543). - x86/stacktrace: Clarify the reliable success paths (bnc#1058115). - x86/stacktrace: Do not fail for ORC with regs on stack (bnc#1058115). - x86/stacktrace: Do not unwind after user regs (bnc#1058115). - x86/stacktrace: Enable HAVE_RELIABLE_STACKTRACE for the ORC unwinder (bnc#1058115). - x86/stacktrace: Remove STACKTRACE_DUMP_ONCE (bnc#1058115). - x86/topology: Avoid wasting 128k for package id array (bsc#1091543). - x86/tsc: Future-proof native_calibrate_tsc() (bsc#1074873). - x86/unwind/orc: Detect the end of the stack (bnc#1058115). - x86/xen: Calculate __max_logical_packages on PV domains (bsc#1091543). - xen/acpi: off by one in read_acpi_id() (bnc#1065600). - xen/netfront: raise max number of slots in xennet_get_responses() (bnc#1076049). - xen/vcpu: Handle xen_vcpu_setup() failure at boot (bsc#1091543). - xen: do not print error message in case of missing Xenstore entry (bnc#1065600). - xfs: allow CoW remap transactions to use reserve blocks (bsc#1090535). - xfs: convert XFS_AGFL_SIZE to a helper function (bsc#1090534). - xfs: detect agfl count corruption and reset agfl (bsc#1090534). - xfs: fix intent use-after-free on abort (bsc#1085400). - xfs: fix transaction allocation deadlock in IO path (bsc#1090535). - xhci: Add port status decoder for tracing purposes (). - xhci: Fix USB ports for Dell Inspiron 5775 (bsc#1090888). - xhci: add definitions for all port link states (). - xhci: add port speed ID to portsc tracing (). - xhci: add port status tracing (). - xhci: fix endpoint context tracer output (bsc#1087092). - xhci: workaround for AMD Promontory disabled ports wakeup (bsc#1087092). - xhci: zero usb device slot_id member when disabling and freeing a xhci slot (bsc#1090888). - xprtrdma: Fix corner cases when handling device removal (git-fixes). - xprtrdma: Fix list corruption / DMAR errors during MR recovery - xprtrdma: Return -ENOBUFS when no pages are available kernel-debug-4.12.14-lp150.12.7.1.nosrc.rpm True kernel-debug-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-base-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-base-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-debugsource-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-devel-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-4.12.14-lp150.12.7.1.nosrc.rpm True kernel-default-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-base-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-base-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-debugsource-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-devel-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-default-devel-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-docs-4.12.14-lp150.12.7.1.noarch.rpm True kernel-docs-4.12.14-lp150.12.7.1.nosrc.rpm True kernel-docs-html-4.12.14-lp150.12.7.1.noarch.rpm True kernel-kvmsmall-4.12.14-lp150.12.7.1.nosrc.rpm True kernel-kvmsmall-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-base-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-debugsource-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-devel-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-obs-build-4.12.14-lp150.12.7.1.src.rpm True kernel-obs-build-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-obs-build-debugsource-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-obs-qa-4.12.14-lp150.12.7.1.src.rpm True kernel-obs-qa-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-devel-4.12.14-lp150.12.7.1.noarch.rpm True kernel-macros-4.12.14-lp150.12.7.1.noarch.rpm True kernel-source-4.12.14-lp150.12.7.1.noarch.rpm True kernel-source-4.12.14-lp150.12.7.1.src.rpm True kernel-source-vanilla-4.12.14-lp150.12.7.1.noarch.rpm True kernel-syms-4.12.14-lp150.12.7.1.src.rpm True kernel-syms-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-4.12.14-lp150.12.7.1.nosrc.rpm True kernel-vanilla-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-base-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-debugsource-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-lp150.12.7.1.x86_64.rpm True kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.7.1.x86_64.rpm True openSUSE-2018-746 moderate openSUSE Leap 15.0 Update This update for osinfo-db provides the following fixes: - Make sure osinfo-query and virt-install detect CaaS Platform 3.0 correctly. (bsc#1098054) - Update database to version 20180612. This update was imported from the SUSE:SLE-15:Update update project. osinfo-db-20180612-lp150.2.3.1.noarch.rpm osinfo-db-20180612-lp150.2.3.1.src.rpm openSUSE-2018-771 moderate openSUSE Leap 15.0 Update This update for e2fsprogs fixes the following issues: Security issues fixed: - CVE-2015-0247: Fixed couple of heap overflows in e2fsprogs (fsck, dumpe2fs, e2image...) (bsc#915402). - CVE-2015-1572: Fixed potential buffer overflow in closefs() (bsc#918346). Bug fixes: - bsc#1038194: generic/405 test fails with /dev/mapper/thin-vol is inconsistent on ext4 file system. - bsc#1009532: resize2fs hangs when trying to resize a large ext4 file system. - bsc#960273: xfsprogs does not call %{?regenerate_initrd_post}. This update was imported from the SUSE:SLE-15:Update update project. e2fsprogs-1.43.8-lp150.3.3.1.src.rpm e2fsprogs-1.43.8-lp150.3.3.1.x86_64.rpm e2fsprogs-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm e2fsprogs-debugsource-1.43.8-lp150.3.3.1.x86_64.rpm e2fsprogs-devel-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err-devel-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err-devel-static-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err2-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err2-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs-devel-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs-devel-static-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs2-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs2-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm e2fsprogs-1.43.8-lp150.3.3.1.i586.rpm e2fsprogs-32bit-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm e2fsprogs-debuginfo-1.43.8-lp150.3.3.1.i586.rpm e2fsprogs-debugsource-1.43.8-lp150.3.3.1.i586.rpm e2fsprogs-devel-1.43.8-lp150.3.3.1.i586.rpm libcom_err-devel-1.43.8-lp150.3.3.1.i586.rpm libcom_err-devel-32bit-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err-devel-static-1.43.8-lp150.3.3.1.i586.rpm libcom_err2-1.43.8-lp150.3.3.1.i586.rpm libcom_err2-32bit-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err2-32bit-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm libcom_err2-debuginfo-1.43.8-lp150.3.3.1.i586.rpm libext2fs-devel-1.43.8-lp150.3.3.1.i586.rpm libext2fs-devel-32bit-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs-devel-static-1.43.8-lp150.3.3.1.i586.rpm libext2fs2-1.43.8-lp150.3.3.1.i586.rpm libext2fs2-32bit-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs2-32bit-debuginfo-1.43.8-lp150.3.3.1.x86_64.rpm libext2fs2-debuginfo-1.43.8-lp150.3.3.1.i586.rpm openSUSE-2018-788 moderate openSUSE Leap 15.0 Update This update for glibc fixes the following security issues: - CVE-2017-18269: An SSE2-optimized memmove implementation for i386 did not correctly perform the overlapping memory check if the source memory range spaned the middle of the address space, resulting in corrupt data being produced by the copy operation. This may have disclosed information to context-dependent attackers, resulted in a denial of service or code execution (bsc#1094150). - CVE-2018-11236: Prevent integer overflow on 32-bit architectures when processing very long pathname arguments to the realpath function, leading to a stack-based buffer overflow (bsc#1094161). - CVE-2018-11237: An AVX-512-optimized implementation of the mempcpy function may have writen data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper (bsc#1092877, bsc#1094154). This update was imported from the SUSE:SLE-15:Update update project. glibc-2.26-lp150.11.6.120.src.rpm glibc-2.26-lp150.11.6.120.x86_64.rpm glibc-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-debugsource-2.26-lp150.11.6.120.x86_64.rpm glibc-devel-2.26-lp150.11.6.120.x86_64.rpm glibc-devel-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-devel-static-2.26-lp150.11.6.120.x86_64.rpm glibc-extra-2.26-lp150.11.6.120.x86_64.rpm glibc-extra-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-html-2.26-lp150.11.6.120.noarch.rpm glibc-i18ndata-2.26-lp150.11.6.120.noarch.rpm glibc-info-2.26-lp150.11.6.120.noarch.rpm glibc-locale-2.26-lp150.11.6.120.x86_64.rpm glibc-locale-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-profile-2.26-lp150.11.6.120.x86_64.rpm nscd-2.26-lp150.11.6.120.x86_64.rpm nscd-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-testsuite-src-2.26-lp150.11.6.120.nosrc.rpm glibc-utils-2.26-lp150.11.6.120.x86_64.rpm glibc-utils-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-utils-src-2.26-lp150.11.6.120.nosrc.rpm glibc-utils-src-debugsource-2.26-lp150.11.6.120.x86_64.rpm glibc-2.26-lp150.11.6.120.i586.rpm glibc-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-debugsource-2.26-lp150.11.6.120.i586.rpm glibc-devel-2.26-lp150.11.6.120.i586.rpm glibc-devel-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-devel-static-2.26-lp150.11.6.120.i586.rpm glibc-extra-2.26-lp150.11.6.120.i586.rpm glibc-extra-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-locale-2.26-lp150.11.6.120.i586.rpm glibc-locale-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-profile-2.26-lp150.11.6.120.i586.rpm nscd-2.26-lp150.11.6.120.i586.rpm nscd-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-2.26-lp150.11.6.120.i686.rpm glibc-2.26-lp150.11.6.120.nosrc.rpm glibc-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-32bit-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-debuginfo-2.26-lp150.11.6.120.i686.rpm glibc-debugsource-2.26-lp150.11.6.120.i686.rpm glibc-devel-2.26-lp150.11.6.120.i686.rpm glibc-devel-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-devel-32bit-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-devel-debuginfo-2.26-lp150.11.6.120.i686.rpm glibc-devel-static-2.26-lp150.11.6.120.i686.rpm glibc-devel-static-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-locale-2.26-lp150.11.6.120.i686.rpm glibc-locale-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-locale-32bit-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-locale-debuginfo-2.26-lp150.11.6.120.i686.rpm glibc-profile-2.26-lp150.11.6.120.i686.rpm glibc-profile-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-utils-2.26-lp150.11.6.120.i586.rpm glibc-utils-32bit-2.26-lp150.11.6.120.x86_64.rpm glibc-utils-32bit-debuginfo-2.26-lp150.11.6.120.x86_64.rpm glibc-utils-debuginfo-2.26-lp150.11.6.120.i586.rpm glibc-utils-src-debugsource-2.26-lp150.11.6.120.i586.rpm openSUSE-2018-769 moderate openSUSE Leap 15.0 Update This update for libgcrypt fixes the following issue: The following security issue was fixed: - CVE-2018-0495: Fixed a novel side-channel attack, by enabling blinding for ECDSA signatures (bsc#1097410) This update was imported from the SUSE:SLE-15:Update update project. libgcrypt-1.8.2-lp150.5.3.1.src.rpm libgcrypt-cavs-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-cavs-debuginfo-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-debugsource-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-devel-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-devel-debuginfo-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt20-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt20-debuginfo-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt20-hmac-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-cavs-1.8.2-lp150.5.3.1.i586.rpm libgcrypt-cavs-debuginfo-1.8.2-lp150.5.3.1.i586.rpm libgcrypt-debugsource-1.8.2-lp150.5.3.1.i586.rpm libgcrypt-devel-1.8.2-lp150.5.3.1.i586.rpm libgcrypt-devel-32bit-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-devel-32bit-debuginfo-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt-devel-debuginfo-1.8.2-lp150.5.3.1.i586.rpm libgcrypt20-1.8.2-lp150.5.3.1.i586.rpm libgcrypt20-32bit-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt20-32bit-debuginfo-1.8.2-lp150.5.3.1.x86_64.rpm libgcrypt20-debuginfo-1.8.2-lp150.5.3.1.i586.rpm libgcrypt20-hmac-1.8.2-lp150.5.3.1.i586.rpm libgcrypt20-hmac-32bit-1.8.2-lp150.5.3.1.x86_64.rpm openSUSE-2018-772 moderate openSUSE Leap 15.0 Update This update for mercurial fixes the following issues: Security issues fixed: - CVE-2018-13346: Fix mpatch_apply function in mpatch.c that incorrectly proceeds in cases where the fragment start is past the end of the original data (bsc#1100354). - CVE-2018-13347: Fix mpatch.c that mishandles integer addition and subtraction (bsc#1100355). - CVE-2018-13348: Fix the mpatch_decode function in mpatch.c that mishandles certain situations where there should be at least 12 bytes remaining after thecurrent position in the patch data (bsc#1100353). This update was imported from the SUSE:SLE-15:Update update project. mercurial-4.5.2-lp150.2.3.1.src.rpm mercurial-4.5.2-lp150.2.3.1.x86_64.rpm mercurial-debuginfo-4.5.2-lp150.2.3.1.x86_64.rpm mercurial-debugsource-4.5.2-lp150.2.3.1.x86_64.rpm mercurial-lang-4.5.2-lp150.2.3.1.noarch.rpm mercurial-4.5.2-lp150.2.3.1.i586.rpm mercurial-debuginfo-4.5.2-lp150.2.3.1.i586.rpm mercurial-debugsource-4.5.2-lp150.2.3.1.i586.rpm openSUSE-2018-773 moderate openSUSE Leap 15.0 Update This update for rubygem-sprockets fixes the following issues: The following security vulnerability was addressed: - CVE-2018-3760: Fixed a path traversal issue in sprockets/server.rb:forbidden_request?(), which allowed remote attackers to read arbitrary files (bsc#1098369) This update was imported from the SUSE:SLE-15:Update update project. ruby2.5-rubygem-sprockets-3.7.2-lp150.2.3.1.x86_64.rpm ruby2.5-rubygem-sprockets-doc-3.7.2-lp150.2.3.1.x86_64.rpm rubygem-sprockets-3.7.2-lp150.2.3.1.src.rpm openSUSE-2018-754 moderate openSUSE Leap 15.0 Update ca-certificates-mozilla was updated to the 2.24 state of the Mozilla NSS Certificate store. (bsc#1100415) Following CAs were removed: * S-TRUST_Universal_Root_CA * TC_TrustCenter_Class_3_CA_II * TUeRKTRUST_Elektronik_Sertifika_Hizmet_Saglayicisi_H5 This update was imported from the SUSE:SLE-15:Update update project. ca-certificates-mozilla-2.24-lp150.3.3.1.noarch.rpm ca-certificates-mozilla-2.24-lp150.3.3.1.src.rpm openSUSE-2018-761 low openSUSE Leap 15.0 Update This update for feh fixes the following issue: - feh crashed on right-click when user tried to open menu (boo#1101466) This update also contains a number of upstream bug fixes in the 2.27.1 release. feh-2.27.1-lp150.2.3.1.src.rpm feh-2.27.1-lp150.2.3.1.x86_64.rpm feh-debuginfo-2.27.1-lp150.2.3.1.x86_64.rpm feh-debugsource-2.27.1-lp150.2.3.1.x86_64.rpm openSUSE-2018-775 moderate openSUSE Leap 15.0 Update This update for qutebrowser fixes the following issues: Security issue fixed: - CVE-2018-1000559: Fix an XSS issue on qute://history (boo#1101507). - CVE-2018-10895: Fix CSRF issue on the qute://settings page (boo#1100968). qutebrowser-1.4.1-lp150.2.3.1.noarch.rpm qutebrowser-1.4.1-lp150.2.3.1.src.rpm openSUSE-2018-776 moderate openSUSE Leap 15.0 Update This update for bouncycastle fixes the following issues: Security issues fixed: - CVE-2018-1000613: Fix use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') (boo#1100694). - CVE-2017-13098: Fix against Bleichenbacher oracle when not using the lightweight APIs (boo#1072697). bouncycastle-1.60-lp150.2.3.1.noarch.rpm bouncycastle-1.60-lp150.2.3.1.src.rpm bouncycastle-javadoc-1.60-lp150.2.3.1.noarch.rpm openSUSE-2018-758 moderate openSUSE Leap 15.0 Update This update contains a number of updated dependencies for Chromium, including ffmpeg 4. New package ffmpeg-4: - Builds ffmpeg 4 libraries New package ffmpeg-3: - Builds ffmpeg 3 libraries and command line utilities Changes in zeromq, codec2, libsodium: - baselibs.conf changes required for ffmpeg 4 codec2-0.6-lp150.2.3.2.src.rpm codec2-0.6-lp150.2.3.2.x86_64.rpm codec2-debuginfo-0.6-lp150.2.3.2.x86_64.rpm codec2-debugsource-0.6-lp150.2.3.2.x86_64.rpm codec2-devel-0.6-lp150.2.3.2.x86_64.rpm codec2-examples-0.6-lp150.2.3.2.noarch.rpm libcodec2-0_6-0.6-lp150.2.3.2.x86_64.rpm libcodec2-0_6-debuginfo-0.6-lp150.2.3.2.x86_64.rpm ffmpeg-3-3.4.4-lp150.3.1.src.rpm ffmpeg-3-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-debuginfo-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-debugsource-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavcodec-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavdevice-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavfilter-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavformat-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavresample-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libavutil-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libpostproc-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libswresample-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-libswscale-devel-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-3-private-devel-3.4.4-lp150.3.1.x86_64.rpm libavcodec57-3.4.4-lp150.3.1.x86_64.rpm libavcodec57-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libavdevice57-3.4.4-lp150.3.1.x86_64.rpm libavdevice57-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libavfilter6-3.4.4-lp150.3.1.x86_64.rpm libavfilter6-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libavformat57-3.4.4-lp150.3.1.x86_64.rpm libavformat57-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libavresample3-3.4.4-lp150.3.1.x86_64.rpm libavresample3-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libavutil55-3.4.4-lp150.3.1.x86_64.rpm libavutil55-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libpostproc54-3.4.4-lp150.3.1.x86_64.rpm libpostproc54-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libswresample2-3.4.4-lp150.3.1.x86_64.rpm libswresample2-debuginfo-3.4.4-lp150.3.1.x86_64.rpm libswscale4-3.4.4-lp150.3.1.x86_64.rpm libswscale4-debuginfo-3.4.4-lp150.3.1.x86_64.rpm ffmpeg-4-4.0.1-lp150.2.2.src.rpm ffmpeg-4-debugsource-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavcodec-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavdevice-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavfilter-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavformat-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavresample-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libavutil-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libpostproc-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libswresample-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-libswscale-devel-4.0.1-lp150.2.2.x86_64.rpm ffmpeg-4-private-devel-4.0.1-lp150.2.2.x86_64.rpm libavcodec58-4.0.1-lp150.2.2.x86_64.rpm libavcodec58-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libavdevice58-4.0.1-lp150.2.2.x86_64.rpm libavdevice58-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libavfilter7-4.0.1-lp150.2.2.x86_64.rpm libavfilter7-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libavformat58-4.0.1-lp150.2.2.x86_64.rpm libavformat58-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libavresample4-4.0.1-lp150.2.2.x86_64.rpm libavresample4-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libavutil56-4.0.1-lp150.2.2.x86_64.rpm libavutil56-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libpostproc55-4.0.1-lp150.2.2.x86_64.rpm libpostproc55-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libswresample3-4.0.1-lp150.2.2.x86_64.rpm libswresample3-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libswscale5-4.0.1-lp150.2.2.x86_64.rpm libswscale5-debuginfo-4.0.1-lp150.2.2.x86_64.rpm libsodium-1.0.16-lp150.3.5.1.src.rpm libsodium-debugsource-1.0.16-lp150.3.5.1.x86_64.rpm libsodium-devel-1.0.16-lp150.3.5.1.x86_64.rpm libsodium23-1.0.16-lp150.3.5.1.x86_64.rpm libsodium23-debuginfo-1.0.16-lp150.3.5.1.x86_64.rpm libzmq5-4.2.3-lp150.2.5.2.x86_64.rpm libzmq5-debuginfo-4.2.3-lp150.2.5.2.x86_64.rpm zeromq-4.2.3-lp150.2.5.2.src.rpm zeromq-debugsource-4.2.3-lp150.2.5.2.x86_64.rpm zeromq-devel-4.2.3-lp150.2.5.2.x86_64.rpm zeromq-tools-4.2.3-lp150.2.5.2.x86_64.rpm zeromq-tools-debuginfo-4.2.3-lp150.2.5.2.x86_64.rpm libsodium-debugsource-1.0.16-lp150.3.5.1.i586.rpm libsodium-devel-1.0.16-lp150.3.5.1.i586.rpm libsodium23-1.0.16-lp150.3.5.1.i586.rpm libsodium23-32bit-1.0.16-lp150.3.5.1.x86_64.rpm libsodium23-32bit-debuginfo-1.0.16-lp150.3.5.1.x86_64.rpm libsodium23-debuginfo-1.0.16-lp150.3.5.1.i586.rpm openSUSE-2018-759 important openSUSE Leap 15.0 Update This update for Chromium to version 67.0.3396.99 fixes multiple issues. Security issues fixed (bsc#1095163): - CVE-2018-6123: Use after free in Blink - CVE-2018-6124: Type confusion in Blink - CVE-2018-6125: Overly permissive policy in WebUSB - CVE-2018-6126: Heap buffer overflow in Skia - CVE-2018-6127: Use after free in indexedDB - CVE-2018-6129: Out of bounds memory access in WebRTC - CVE-2018-6130: Out of bounds memory access in WebRTC - CVE-2018-6131: Incorrect mutability protection in WebAssembly - CVE-2018-6132: Use of uninitialized memory in WebRTC - CVE-2018-6133: URL spoof in Omnibox - CVE-2018-6134: Referrer Policy bypass in Blink - CVE-2018-6135: UI spoofing in Blink - CVE-2018-6136: Out of bounds memory access in V8 - CVE-2018-6137: Leak of visited status of page in Blink - CVE-2018-6138: Overly permissive policy in Extensions - CVE-2018-6139: Restrictions bypass in the debugger extension API - CVE-2018-6140: Restrictions bypass in the debugger extension API - CVE-2018-6141: Heap buffer overflow in Skia - CVE-2018-6142: Out of bounds memory access in V8 - CVE-2018-6143: Out of bounds memory access in V8 - CVE-2018-6144: Out of bounds memory access in PDFium - CVE-2018-6145: Incorrect escaping of MathML in Blink - CVE-2018-6147: Password fields not taking advantage of OS protections in Views - CVE-2018-6148: Incorrect handling of CSP header (boo#1096508) - CVE-2018-6149: Out of bounds write in V8 (boo#1097452) The following tracked packaging changes are included: - Require ffmpeg >= 4.0 (boo#1095545) chromedriver-67.0.3396.99-lp150.2.3.3.x86_64.rpm chromedriver-debuginfo-67.0.3396.99-lp150.2.3.3.x86_64.rpm chromium-67.0.3396.99-lp150.2.3.3.src.rpm chromium-67.0.3396.99-lp150.2.3.3.x86_64.rpm chromium-debuginfo-67.0.3396.99-lp150.2.3.3.x86_64.rpm chromium-debugsource-67.0.3396.99-lp150.2.3.3.x86_64.rpm openSUSE-2018-763 moderate openSUSE Leap 15.0 Update This update for openssl-1_0_0 fixes the following issues: - CVE-2018-0732: During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server could have sent a very large prime value to the client. This caused the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack (bsc#1097158). - Blinding enhancements for ECDSA and DSA (bsc#1097624, bsc#1098592) This update was imported from the SUSE:SLE-15:Update update project. libopenssl-1_0_0-devel-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-steam-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-1.0.2n-lp150.2.3.1.src.rpm openssl-1_0_0-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-cavs-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-debugsource-1.0.2n-lp150.2.3.1.x86_64.rpm openssl-1_0_0-doc-1.0.2n-lp150.2.3.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2n-lp150.2.3.1.i586.rpm libopenssl-1_0_0-devel-32bit-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-1.0.2n-lp150.2.3.1.i586.rpm libopenssl1_0_0-32bit-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-32bit-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-debuginfo-1.0.2n-lp150.2.3.1.i586.rpm libopenssl1_0_0-hmac-1.0.2n-lp150.2.3.1.i586.rpm libopenssl1_0_0-hmac-32bit-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2n-lp150.2.3.1.i586.rpm libopenssl1_0_0-steam-32bit-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-steam-32bit-debuginfo-1.0.2n-lp150.2.3.1.x86_64.rpm libopenssl1_0_0-steam-debuginfo-1.0.2n-lp150.2.3.1.i586.rpm openssl-1_0_0-1.0.2n-lp150.2.3.1.i586.rpm openssl-1_0_0-cavs-1.0.2n-lp150.2.3.1.i586.rpm openssl-1_0_0-cavs-debuginfo-1.0.2n-lp150.2.3.1.i586.rpm openssl-1_0_0-debuginfo-1.0.2n-lp150.2.3.1.i586.rpm openssl-1_0_0-debugsource-1.0.2n-lp150.2.3.1.i586.rpm openSUSE-2018-777 moderate openSUSE Leap 15.0 Update This update for openssl-1_1 fixes the following issues: - CVE-2018-0732: During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server could have sent a very large prime value to the client. This caused the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack (bsc#1097158). - Blinding enhancements for ECDSA and DSA (bsc#1097624, bsc#1098592) This update was imported from the SUSE:SLE-15:Update update project. libopenssl-1_1-devel-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-debuginfo-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-hmac-1.1.0h-lp150.3.3.1.x86_64.rpm openssl-1_1-1.1.0h-lp150.3.3.1.src.rpm openssl-1_1-1.1.0h-lp150.3.3.1.x86_64.rpm openssl-1_1-debuginfo-1.1.0h-lp150.3.3.1.x86_64.rpm openssl-1_1-debugsource-1.1.0h-lp150.3.3.1.x86_64.rpm openssl-1_1-doc-1.1.0h-lp150.3.3.1.noarch.rpm libopenssl-1_1-devel-1.1.0h-lp150.3.3.1.i586.rpm libopenssl-1_1-devel-32bit-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-1.1.0h-lp150.3.3.1.i586.rpm libopenssl1_1-32bit-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-32bit-debuginfo-1.1.0h-lp150.3.3.1.x86_64.rpm libopenssl1_1-debuginfo-1.1.0h-lp150.3.3.1.i586.rpm libopenssl1_1-hmac-1.1.0h-lp150.3.3.1.i586.rpm libopenssl1_1-hmac-32bit-1.1.0h-lp150.3.3.1.x86_64.rpm openssl-1_1-1.1.0h-lp150.3.3.1.i586.rpm openssl-1_1-debuginfo-1.1.0h-lp150.3.3.1.i586.rpm openssl-1_1-debugsource-1.1.0h-lp150.3.3.1.i586.rpm openSUSE-2018-778 moderate openSUSE Leap 15.0 Update This update for ImageMagick fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-11625: Fixed heap-based buffer over-read in SetGrayscaleImage in the quantize.c file, which allowed remote attackers to cause buffer over-read via a crafted file. (bsc#1096200) - CVE-2018-11624: Fixed a use-after-free issue in the ReadMATImage function in coders/mat.c. (bsc#1096203) - CVE-2018-10805: Fixed several memory leaks in bgr.c, rgb.c, cmyk.c, gray.c, and ycbcr.c (bsc#1095812) - CVE-2018-12600: The ReadDIBImage and WriteDIBImage functions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098545). - CVE-2018-12599: The ReadBMPImage and WriteBMPImage fucntions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098546). The following other changes were made: - Fix -gamma issues in special cases. (bsc#1094745, bsc#1094742) This update was imported from the SUSE:SLE-15:Update update project. ImageMagick-7.0.7.34-lp150.2.6.1.src.rpm ImageMagick-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-debugsource-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-devel-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-doc-7.0.7.34-lp150.2.6.1.noarch.rpm ImageMagick-extra-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-devel-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm perl-PerlMagick-7.0.7.34-lp150.2.6.1.x86_64.rpm perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-7.0.7.34-lp150.2.6.1.i586.rpm ImageMagick-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm ImageMagick-debugsource-7.0.7.34-lp150.2.6.1.i586.rpm ImageMagick-devel-32bit-7.0.7.34-lp150.2.6.1.x86_64.rpm ImageMagick-devel-7.0.7.34-lp150.2.6.1.i586.rpm ImageMagick-extra-7.0.7.34-lp150.2.6.1.i586.rpm ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.6.1.i586.rpm libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm libMagick++-devel-32bit-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagick++-devel-7.0.7.34-lp150.2.6.1.i586.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.6.1.i586.rpm libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.6.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.6.1.i586.rpm libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm perl-PerlMagick-7.0.7.34-lp150.2.6.1.i586.rpm perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.6.1.i586.rpm openSUSE-2018-784 low openSUSE Leap 15.0 Update This update for perl-Finance-Quote fixes the following issues: - GnuCash was unable to retrieve price information if the Perl CGI module was not installed (boo#1077300). perl-Finance-Quote-1.47-lp150.2.8.1.noarch.rpm perl-Finance-Quote-1.47-lp150.2.8.1.src.rpm openSUSE-2018-785 moderate openSUSE Leap 15.0 Update This update for wpa_supplicant fixes the following issues: - wpa_supplicant was unable to read private key password passwords from the configuration file (boo#1099835) wpa_supplicant-2.6-lp150.3.3.1.src.rpm wpa_supplicant-2.6-lp150.3.3.1.x86_64.rpm wpa_supplicant-debuginfo-2.6-lp150.3.3.1.x86_64.rpm wpa_supplicant-debugsource-2.6-lp150.3.3.1.x86_64.rpm wpa_supplicant-gui-2.6-lp150.3.3.1.x86_64.rpm wpa_supplicant-gui-debuginfo-2.6-lp150.3.3.1.x86_64.rpm wpa_supplicant-2.6-lp150.3.3.1.i586.rpm wpa_supplicant-debuginfo-2.6-lp150.3.3.1.i586.rpm wpa_supplicant-debugsource-2.6-lp150.3.3.1.i586.rpm wpa_supplicant-gui-2.6-lp150.3.3.1.i586.rpm wpa_supplicant-gui-debuginfo-2.6-lp150.3.3.1.i586.rpm openSUSE-2018-786 moderate openSUSE Leap 15.0 Update This update for gnuhealth, trytond fixes the following issues: Changes in trytond: - Introduce PostgreSQL 10 compatibility (boo#1096706) Changes in gnuhealth: - add openSUSE-gnuhealth-setup, an installation script for GNU Health on openSUSE gnuhealth-3.2.10-lp150.5.6.1.noarch.rpm gnuhealth-3.2.10-lp150.5.6.1.src.rpm trytond-4.2.13-lp150.2.8.1.noarch.rpm trytond-4.2.13-lp150.2.8.1.src.rpm openSUSE-2018-787 moderate openSUSE Leap 15.0 Update This update for lxc fixes the following issues: - Avoid container start up problems when AppArmor is enabled (boo#1099239) liblxc-devel-2.0.9-lp150.2.3.1.x86_64.rpm liblxc1-2.0.9-lp150.2.3.1.x86_64.rpm liblxc1-debuginfo-2.0.9-lp150.2.3.1.x86_64.rpm lxc-2.0.9-lp150.2.3.1.src.rpm lxc-2.0.9-lp150.2.3.1.x86_64.rpm lxc-debuginfo-2.0.9-lp150.2.3.1.x86_64.rpm lxc-debugsource-2.0.9-lp150.2.3.1.x86_64.rpm openSUSE-2018-793 moderate openSUSE Leap 15.0 Update This update for wireshark fixes the following issues: Security issues fixed: - CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, boo#1101777) - CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, boo#1101788) - CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, boo#1101804) - CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, boo#1101786) - CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, boo#1101810) - CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, boo#1101776) - CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, boo#1101794) - CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, boo#1101800) - CVE-2018-14367: CoAP dissector crash (wnpa-sec-2018-42, boo#1101791) - CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, boo#1101802) Bug fixes: - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.8.html libwireshark9-2.4.8-lp150.2.6.1.x86_64.rpm libwireshark9-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm libwiretap7-2.4.8-lp150.2.6.1.x86_64.rpm libwiretap7-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm libwscodecs1-2.4.8-lp150.2.6.1.x86_64.rpm libwscodecs1-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm libwsutil8-2.4.8-lp150.2.6.1.x86_64.rpm libwsutil8-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-2.4.8-lp150.2.6.1.src.rpm wireshark-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-debugsource-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-devel-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-ui-qt-2.4.8-lp150.2.6.1.x86_64.rpm wireshark-ui-qt-debuginfo-2.4.8-lp150.2.6.1.x86_64.rpm libwireshark9-2.4.8-lp150.2.6.1.i586.rpm libwireshark9-debuginfo-2.4.8-lp150.2.6.1.i586.rpm libwiretap7-2.4.8-lp150.2.6.1.i586.rpm libwiretap7-debuginfo-2.4.8-lp150.2.6.1.i586.rpm libwscodecs1-2.4.8-lp150.2.6.1.i586.rpm libwscodecs1-debuginfo-2.4.8-lp150.2.6.1.i586.rpm libwsutil8-2.4.8-lp150.2.6.1.i586.rpm libwsutil8-debuginfo-2.4.8-lp150.2.6.1.i586.rpm wireshark-2.4.8-lp150.2.6.1.i586.rpm wireshark-debuginfo-2.4.8-lp150.2.6.1.i586.rpm wireshark-debugsource-2.4.8-lp150.2.6.1.i586.rpm wireshark-devel-2.4.8-lp150.2.6.1.i586.rpm wireshark-ui-qt-2.4.8-lp150.2.6.1.i586.rpm wireshark-ui-qt-debuginfo-2.4.8-lp150.2.6.1.i586.rpm openSUSE-2018-791 moderate openSUSE Leap 15.0 Update This update for libkgapi fixes the following issues: - Bugfix: Don't log oauth credentials in journal (boo#1101938) libKPimGAPIBlogger5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIBlogger5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPICalendar5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPICalendar5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIContacts5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIContacts5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPICore5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPICore5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIDrive5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIDrive5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPILatitude5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPILatitude5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIMaps5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPIMaps5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPITasks5-17.12.3-lp150.2.3.1.x86_64.rpm libKPimGAPITasks5-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libkgapi-17.12.3-lp150.2.3.1.src.rpm libkgapi-debuginfo-17.12.3-lp150.2.3.1.x86_64.rpm libkgapi-debugsource-17.12.3-lp150.2.3.1.x86_64.rpm libkgapi-devel-17.12.3-lp150.2.3.1.x86_64.rpm libkgapi-lang-17.12.3-lp150.2.3.1.noarch.rpm openSUSE-2018-780 important openSUSE Leap 15.0 Update This update for Chromium to version 68.0.3440.75 fixes multiple issues. Security issues fixed (boo#1102530): - CVE-2018-6153: Stack buffer overflow in Skia - CVE-2018-6154: Heap buffer overflow in WebGL - CVE-2018-6155: Use after free in WebRTC - CVE-2018-6156: Heap buffer overflow in WebRTC - CVE-2018-6157: Type confusion in WebRTC - CVE-2018-6158: Use after free in Blink - CVE-2018-6159: Same origin policy bypass in ServiceWorker - CVE-2018-6161: Same origin policy bypass in WebAudio - CVE-2018-6162: Heap buffer overflow in WebGL - CVE-2018-6163: URL spoof in Omnibox - CVE-2018-6164: Same origin policy bypass in ServiceWorker - CVE-2018-6165: URL spoof in Omnibox - CVE-2018-6166: URL spoof in Omnibox - CVE-2018-6167: URL spoof in Omnibox - CVE-2018-6168: CORS bypass in Blink - CVE-2018-6169: Permissions bypass in extension installation - CVE-2018-6170: Type confusion in PDFium - CVE-2018-6171: Use after free in WebBluetooth - CVE-2018-6172: URL spoof in Omnibox - CVE-2018-6173: URL spoof in Omnibox - CVE-2018-6174: Integer overflow in SwiftShader - CVE-2018-6175: URL spoof in Omnibox - CVE-2018-6176: Local user privilege escalation in Extensions - CVE-2018-6177: Cross origin information leak in Blink - CVE-2018-6178: UI spoof in Extensions - CVE-2018-6179: Local file information leak in Extensions - CVE-2018-6044: Request privilege escalation in Extensions - CVE-2018-4117: Cross origin information leak in Blink The following user interface changes are included: - Chrome will show the "Not secure" warning on all plain HTTP pages chromedriver-68.0.3440.75-lp150.2.6.1.x86_64.rpm chromedriver-debuginfo-68.0.3440.75-lp150.2.6.1.x86_64.rpm chromium-68.0.3440.75-lp150.2.6.1.src.rpm chromium-68.0.3440.75-lp150.2.6.1.x86_64.rpm chromium-debuginfo-68.0.3440.75-lp150.2.6.1.x86_64.rpm chromium-debugsource-68.0.3440.75-lp150.2.6.1.x86_64.rpm openSUSE-2018-781 moderate openSUSE Leap 15.0 Update This update for ffmpeg-4 fixes the following issues: - Avoid ffmpeg-4 depending on ffnvcodec (boo#1102532) ffmpeg-4-4.0.1-lp150.7.1.src.rpm ffmpeg-4-debugsource-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavcodec-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavdevice-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavfilter-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavformat-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavresample-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libavutil-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libpostproc-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libswresample-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-libswscale-devel-4.0.1-lp150.7.1.x86_64.rpm ffmpeg-4-private-devel-4.0.1-lp150.7.1.x86_64.rpm libavcodec58-4.0.1-lp150.7.1.x86_64.rpm libavcodec58-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libavdevice58-4.0.1-lp150.7.1.x86_64.rpm libavdevice58-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libavfilter7-4.0.1-lp150.7.1.x86_64.rpm libavfilter7-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libavformat58-4.0.1-lp150.7.1.x86_64.rpm libavformat58-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libavresample4-4.0.1-lp150.7.1.x86_64.rpm libavresample4-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libavutil56-4.0.1-lp150.7.1.x86_64.rpm libavutil56-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libpostproc55-4.0.1-lp150.7.1.x86_64.rpm libpostproc55-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libswresample3-4.0.1-lp150.7.1.x86_64.rpm libswresample3-debuginfo-4.0.1-lp150.7.1.x86_64.rpm libswscale5-4.0.1-lp150.7.1.x86_64.rpm libswscale5-debuginfo-4.0.1-lp150.7.1.x86_64.rpm openSUSE-2018-806 moderate openSUSE Leap 15.0 Update This update for libsndfile fixes the following issues: Security issues fixed: - CVE-2018-13139: Fix a stack-based buffer overflow in psf_memset in common.c that allows remote attackers to cause a denial of service (bsc#1100167). - CVE-2017-17456: Prevent segmentation fault in the function d2alaw_array() that may have lead to a remote DoS (bsc#1071777) - CVE-2017-17457: Prevent segmentation fault in the function d2ulaw_array() that may have lead to a remote DoS, a different vulnerability than CVE-2017-14246 (bsc#1071767) This update was imported from the SUSE:SLE-15:Update update project. libsndfile-progs-1.0.28-lp150.3.3.1.src.rpm libsndfile-progs-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile-progs-debuginfo-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile-progs-debugsource-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile-1.0.28-lp150.3.3.1.src.rpm libsndfile-debugsource-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile-devel-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile1-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile1-debuginfo-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile-debugsource-1.0.28-lp150.3.3.1.i586.rpm libsndfile-devel-1.0.28-lp150.3.3.1.i586.rpm libsndfile1-1.0.28-lp150.3.3.1.i586.rpm libsndfile1-32bit-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile1-32bit-debuginfo-1.0.28-lp150.3.3.1.x86_64.rpm libsndfile1-debuginfo-1.0.28-lp150.3.3.1.i586.rpm openSUSE-2018-807 moderate openSUSE Leap 15.0 Update This update for ovmf fixes the following issues: Security issues fixed: - CVE-2018-0739: Update openssl to 1.0.2o to limit ASN.1 constructed types recursive definition depth (bsc#1094289). This update was imported from the SUSE:SLE-15:Update update project. ovmf-2017+git1510945757.b2662641d5-lp150.4.3.1.src.rpm ovmf-2017+git1510945757.b2662641d5-lp150.4.3.1.x86_64.rpm ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.3.1.x86_64.rpm qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-lp150.4.3.1.noarch.rpm qemu-ovmf-x86_64-debug-2017+git1510945757.b2662641d5-lp150.4.3.1.x86_64.rpm ovmf-2017+git1510945757.b2662641d5-lp150.4.3.1.i586.rpm ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.3.1.i586.rpm qemu-ovmf-ia32-2017+git1510945757.b2662641d5-lp150.4.3.1.noarch.rpm openSUSE-2018-808 moderate openSUSE Leap 15.0 Update This update for rpm fixes the following issues: This security vulnerability was fixed: - CVE-2017-7500: Fixed symlink attacks during RPM installation (bsc#943457) This update was imported from the SUSE:SLE-15:Update update project. python-rpm-4.14.1-lp150.9.3.1.src.rpm python-rpm-debugsource-4.14.1-lp150.9.3.1.x86_64.rpm python2-rpm-4.14.1-lp150.9.3.1.x86_64.rpm python2-rpm-debuginfo-4.14.1-lp150.9.3.1.x86_64.rpm python3-rpm-4.14.1-lp150.9.3.1.x86_64.rpm python3-rpm-debuginfo-4.14.1-lp150.9.3.1.x86_64.rpm rpm-4.14.1-lp150.9.3.1.src.rpm rpm-4.14.1-lp150.9.3.1.x86_64.rpm rpm-build-4.14.1-lp150.9.3.1.x86_64.rpm rpm-build-debuginfo-4.14.1-lp150.9.3.1.x86_64.rpm rpm-debuginfo-4.14.1-lp150.9.3.1.x86_64.rpm rpm-debugsource-4.14.1-lp150.9.3.1.x86_64.rpm rpm-devel-4.14.1-lp150.9.3.1.x86_64.rpm python-rpm-debugsource-4.14.1-lp150.9.3.1.i586.rpm python2-rpm-4.14.1-lp150.9.3.1.i586.rpm python2-rpm-debuginfo-4.14.1-lp150.9.3.1.i586.rpm python3-rpm-4.14.1-lp150.9.3.1.i586.rpm python3-rpm-debuginfo-4.14.1-lp150.9.3.1.i586.rpm rpm-32bit-4.14.1-lp150.9.3.1.x86_64.rpm rpm-32bit-debuginfo-4.14.1-lp150.9.3.1.x86_64.rpm rpm-4.14.1-lp150.9.3.1.i586.rpm rpm-build-4.14.1-lp150.9.3.1.i586.rpm rpm-build-debuginfo-4.14.1-lp150.9.3.1.i586.rpm rpm-debuginfo-4.14.1-lp150.9.3.1.i586.rpm rpm-debugsource-4.14.1-lp150.9.3.1.i586.rpm rpm-devel-4.14.1-lp150.9.3.1.i586.rpm openSUSE-2018-811 moderate openSUSE Leap 15.0 Update This update for util-linux fixes the following security issue: - CVE-2018-7738: Fix local vulnerability using embedded shell commands in a mountpoint name (bsc#1084300) This update was imported from the SUSE:SLE-15:Update update project. python-libmount-2.31.1-lp150.7.6.1.src.rpm python-libmount-2.31.1-lp150.7.6.1.x86_64.rpm python-libmount-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm python-libmount-debugsource-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-systemd-2.31.1-lp150.7.6.1.src.rpm util-linux-systemd-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-systemd-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-systemd-debugsource-2.31.1-lp150.7.6.1.x86_64.rpm uuidd-2.31.1-lp150.7.6.1.x86_64.rpm uuidd-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libblkid-devel-2.31.1-lp150.7.6.1.x86_64.rpm libblkid-devel-static-2.31.1-lp150.7.6.1.x86_64.rpm libblkid1-2.31.1-lp150.7.6.1.x86_64.rpm libblkid1-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libfdisk-devel-2.31.1-lp150.7.6.1.x86_64.rpm libfdisk-devel-static-2.31.1-lp150.7.6.1.x86_64.rpm libfdisk1-2.31.1-lp150.7.6.1.x86_64.rpm libfdisk1-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libmount-devel-2.31.1-lp150.7.6.1.x86_64.rpm libmount-devel-static-2.31.1-lp150.7.6.1.x86_64.rpm libmount1-2.31.1-lp150.7.6.1.x86_64.rpm libmount1-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libsmartcols-devel-2.31.1-lp150.7.6.1.x86_64.rpm libsmartcols-devel-static-2.31.1-lp150.7.6.1.x86_64.rpm libsmartcols1-2.31.1-lp150.7.6.1.x86_64.rpm libsmartcols1-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libuuid-devel-2.31.1-lp150.7.6.1.x86_64.rpm libuuid-devel-static-2.31.1-lp150.7.6.1.x86_64.rpm libuuid1-2.31.1-lp150.7.6.1.x86_64.rpm libuuid1-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-2.31.1-lp150.7.6.1.src.rpm util-linux-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-debugsource-2.31.1-lp150.7.6.1.x86_64.rpm util-linux-lang-2.31.1-lp150.7.6.1.noarch.rpm util-linux-systemd-2.31.1-lp150.7.6.1.i586.rpm util-linux-systemd-debuginfo-2.31.1-lp150.7.6.1.i586.rpm util-linux-systemd-debugsource-2.31.1-lp150.7.6.1.i586.rpm uuidd-2.31.1-lp150.7.6.1.i586.rpm uuidd-debuginfo-2.31.1-lp150.7.6.1.i586.rpm libblkid-devel-2.31.1-lp150.7.6.1.i586.rpm libblkid-devel-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libblkid-devel-static-2.31.1-lp150.7.6.1.i586.rpm libblkid1-2.31.1-lp150.7.6.1.i586.rpm libblkid1-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libblkid1-32bit-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libblkid1-debuginfo-2.31.1-lp150.7.6.1.i586.rpm libfdisk-devel-2.31.1-lp150.7.6.1.i586.rpm libfdisk-devel-static-2.31.1-lp150.7.6.1.i586.rpm libfdisk1-2.31.1-lp150.7.6.1.i586.rpm libfdisk1-debuginfo-2.31.1-lp150.7.6.1.i586.rpm libmount-devel-2.31.1-lp150.7.6.1.i586.rpm libmount-devel-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libmount-devel-static-2.31.1-lp150.7.6.1.i586.rpm libmount1-2.31.1-lp150.7.6.1.i586.rpm libmount1-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libmount1-32bit-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libmount1-debuginfo-2.31.1-lp150.7.6.1.i586.rpm libsmartcols-devel-2.31.1-lp150.7.6.1.i586.rpm libsmartcols-devel-static-2.31.1-lp150.7.6.1.i586.rpm libsmartcols1-2.31.1-lp150.7.6.1.i586.rpm libsmartcols1-debuginfo-2.31.1-lp150.7.6.1.i586.rpm libuuid-devel-2.31.1-lp150.7.6.1.i586.rpm libuuid-devel-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libuuid-devel-static-2.31.1-lp150.7.6.1.i586.rpm libuuid1-2.31.1-lp150.7.6.1.i586.rpm libuuid1-32bit-2.31.1-lp150.7.6.1.x86_64.rpm libuuid1-32bit-debuginfo-2.31.1-lp150.7.6.1.x86_64.rpm libuuid1-debuginfo-2.31.1-lp150.7.6.1.i586.rpm util-linux-2.31.1-lp150.7.6.1.i586.rpm util-linux-debuginfo-2.31.1-lp150.7.6.1.i586.rpm util-linux-debugsource-2.31.1-lp150.7.6.1.i586.rpm openSUSE-2018-813 moderate openSUSE Leap 15.0 Update This update for quassel fixes the following issues: - Change quasselcore.service to start after default.target instead of network.target as the PostgreSQL backend may not be available during startup otherwise. (bsc#1102568) - Fix build with Qt 5.11 quassel-0.12.5-lp150.4.3.1.src.rpm quassel-base-0.12.5-lp150.4.3.1.x86_64.rpm quassel-client-0.12.5-lp150.4.3.1.x86_64.rpm quassel-client-debuginfo-0.12.5-lp150.4.3.1.x86_64.rpm quassel-client-qt5-0.12.5-lp150.4.3.1.x86_64.rpm quassel-client-qt5-debuginfo-0.12.5-lp150.4.3.1.x86_64.rpm quassel-core-0.12.5-lp150.4.3.1.x86_64.rpm quassel-core-debuginfo-0.12.5-lp150.4.3.1.x86_64.rpm quassel-debuginfo-0.12.5-lp150.4.3.1.x86_64.rpm quassel-debugsource-0.12.5-lp150.4.3.1.x86_64.rpm quassel-mono-0.12.5-lp150.4.3.1.x86_64.rpm quassel-mono-debuginfo-0.12.5-lp150.4.3.1.x86_64.rpm openSUSE-2018-809 important openSUSE Leap 15.0 Update This update for mutt fixes the following issues: Security issues fixed: - bsc#1101428: Mutt 1.10.1 security release update. - CVE-2018-14351: Fix imap/command.c that mishandles long IMAP status mailbox literal count size (bsc#1101583). - CVE-2018-14353: Fix imap_quote_string in imap/util.c that has an integer underflow (bsc#1101581). - CVE-2018-14362: Fix pop.c that does not forbid characters that may have unsafe interaction with message-cache pathnames (bsc#1101567). - CVE-2018-14354: Fix arbitrary command execution from remote IMAP servers via backquote characters (bsc#1101578). - CVE-2018-14352: Fix imap_quote_string in imap/util.c that does not leave room for quote characters (bsc#1101582). - CVE-2018-14356: Fix pop.c that mishandles a zero-length UID (bsc#1101576). - CVE-2018-14355: Fix imap/util.c that mishandles ".." directory traversal in a mailbox name (bsc#1101577). - CVE-2018-14349: Fix imap/command.c that mishandles a NO response without a message (bsc#1101589). - CVE-2018-14350: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along INTERNALDATE field (bsc#1101588). - CVE-2018-14363: Fix newsrc.c that does not properlyrestrict '/' characters that may have unsafe interaction with cache pathnames (bsc#1101566). - CVE-2018-14359: Fix buffer overflow via base64 data (bsc#1101570). - CVE-2018-14358: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along RFC822.SIZE field (bsc#1101571). - CVE-2018-14360: Fix nntp_add_group in newsrc.c that has a stack-based buffer overflow because of incorrect sscanf usage (bsc#1101569). - CVE-2018-14357: Fix that remote IMAP servers are allowed to execute arbitrary commands via backquote characters (bsc#1101573). - CVE-2018-14361: Fix that nntp.c proceeds even if memory allocation fails for messages data (bsc#1101568). Bug fixes: - mutt reports as neomutt and incorrect version (bsc#1094717) This update was imported from the SUSE:SLE-15:Update update project. mutt-1.10.1-lp150.2.3.1.src.rpm mutt-1.10.1-lp150.2.3.1.x86_64.rpm mutt-debuginfo-1.10.1-lp150.2.3.1.x86_64.rpm mutt-debugsource-1.10.1-lp150.2.3.1.x86_64.rpm mutt-doc-1.10.1-lp150.2.3.1.noarch.rpm mutt-lang-1.10.1-lp150.2.3.1.noarch.rpm openSUSE-2018-810 important openSUSE Leap 15.0 Update This update for OpenJDK 10.0.2 fixes the following security issues: - CVE-2018-2940: the libraries sub-component contained an easily exploitable vulnerability that allowed attackers to compromise Java SE or Java SE Embedded over the network, potentially gaining unauthorized read access to data that's accessible to the server. [bsc#1101645] - CVE-2018-2952: the concurrency sub-component contained a difficult to exploit vulnerability that allowed attackers to compromise Java SE, Java SE Embedded, or JRockit over the network. This issue could have been abused to mount a partial denial-of-service attack on the server. [bsc#1101651] - CVE-2018-2972: the security sub-component contained a difficult to exploit vulnerability that allowed attackers to compromise Java SE over the network, potentially gaining unauthorized access to critical data or complete access to all Java SE accessible data. [bsc#1101655) - CVE-2018-2973: the JSSE sub-component contained a difficult to exploit vulnerability allowed attackers to compromise Java SE or Java SE Embedded over the network, potentially gaining the ability to create, delete or modify critical data or all Java SE, Java SE Embedded accessible data without authorization. [bsc#1101656] Furthemore, the following bugs were fixed: - Properly remove the existing alternative for java before reinstalling it. [bsc#1096420] - idlj was moved to the *-devel package. [bsc#1096420] This update was imported from the SUSE:SLE-15:Update update project. java-10-openjdk-10.0.2.0-lp150.2.3.2.src.rpm java-10-openjdk-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-accessibility-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-accessibility-debuginfo-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-debuginfo-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-debugsource-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-demo-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-devel-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-headless-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-javadoc-10.0.2.0-lp150.2.3.2.noarch.rpm java-10-openjdk-jmods-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-src-10.0.2.0-lp150.2.3.2.x86_64.rpm java-10-openjdk-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-accessibility-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-accessibility-debuginfo-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-debuginfo-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-debugsource-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-demo-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-devel-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-headless-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-jmods-10.0.2.0-lp150.2.3.2.i586.rpm java-10-openjdk-src-10.0.2.0-lp150.2.3.2.i586.rpm openSUSE-2018-815 moderate openSUSE Leap 15.0 Update This update for pam_kwallet fixes the following issues: - pam_kwallet changes the way it accesses the salt file (boo#1099421) * It's now accessed by an unprivileged process * It's overwritten if it's not a regular file * It's not written if the user's home directory doesn't exist pam_kwallet-5.12.5-lp150.4.3.1.src.rpm pam_kwallet-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-common-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-debuginfo-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-debugsource-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-32bit-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-32bit-debuginfo-5.12.5-lp150.4.3.1.x86_64.rpm pam_kwallet-5.12.5-lp150.4.3.1.i586.rpm pam_kwallet-common-5.12.5-lp150.4.3.1.i586.rpm pam_kwallet-debuginfo-5.12.5-lp150.4.3.1.i586.rpm pam_kwallet-debugsource-5.12.5-lp150.4.3.1.i586.rpm openSUSE-2018-798 moderate openSUSE Leap 15.0 Update This update for phpMyAdmin fiyes the following issue: - missing dependency on php-ctype (boo#1103305) phpMyAdmin-4.8.2-lp150.2.6.1.noarch.rpm phpMyAdmin-4.8.2-lp150.2.6.1.src.rpm